Senior Incident Response Manager

We’re looking for a Senior Incident Response Manager to join our cyber-security team in Reading, UK or Schiphol, NL

In this fantastic opportunity, you will work at the forefront of cyber defence operations, delivering Group Security’s and Liberty Global’s wider mission through helping to reduce; the impact of cyber incidents affecting Liberty Global, Retained Markets and Joint Ventures. You will provide the Subject Matter Expertise to coordinate and drive the response to serious cyber incidents through the best practice Incident Management (IM) life cycle and ensure root cause analysis is performed to support improvement of our controls.

You will lead the Cyber Emergency Response Team responsible for ensuring the delivery of the cyber incident response (CIR) life cycle for serious cyber incidents by ensuring that the relevant parts of the business and partners are engaged and activated to undertake the actions needed to reduce impact on our business. When not responding to incidents, you will help develop our Incident Management and Incident Response capabilities, including writing and maintaining playbooks, assessing the Incident Response maturity, undertaking and assisting in table-top cyber-scenario exercises. You will provide Subject Matter support to wider cyber related projects and support the continuous service improvement of cyber incident response and management and providing oversight of all incidents and working with Security Architecture on trends.

The role  focuses on stakeholder engagement and coordination and whilst we seek candidates with a strong Cyber Incident Management background, we are also looking for someone who has strong cyber security and risk management experience. As a member of our pro-active, pragmatic, and energetic team, you are in the unique position to interact with people and teams globally, across all levels of Liberty Global, Operating Companies and Joint Ventures, and influence decisions that have a direct impact on operational stability and effectiveness of Security Control of our business.

Please note, in order to be considered for this role, you must have or be able to attain and maintain NPPV SC Clearance.
Job Responsibilities

• You will act as a trusted advisor and Cyber Incident subject matter expert to Liberty Global, Operating Companies and Joint Ventures  guiding senior leadership to enable the management of business impacts and risk mitigation associated with a cyber incident or data breach
• Lead and coordinate response to significant cyber incidents delivering effective and timely response measures through a coordinated and structured approach
• Lead the development of cyber incident response containment plans and remediation strategies with the business; present strategic and tactical plans both orally and in written reports for key stakeholders and all involved third parties.
• Lead improvements in cyber incident response, incident management, incident investigation and response principles and guidelines for incident management activities.
• Provide the expertise in establishing the extent of a Cyber Attack, the business impacts, and lead remediation activities coordinating with Incident Response and Threat Intelligence delivery teams to handle inquiries, briefings, and status reports in a variety of formats.
• Technical & Management reporting to demonstrate effectiveness and value of the teams work.
• Create incident reports and lead incidents status up to date through regular updates.
• Oversee all aspects of incident management process from evaluation to resolution.
• Maintain daily communication with wider Group Security Operations Team.
• Support the development of incident management playbooks templates, and coordinate incident exercises.
• Provide written and verbal briefings to key stakeholders and senior leaders
• Provide incident root cause analysis, with a view to identifying and influencing future prevention by maintaining the Incident knowledge base.
• Work with the Threat Intelligence Team to monitor intelligence sources to maintain situational awareness of cyber threat landscape and incident trends.

We Tend To Look For People With

• Extensive demonstrable experience of managing, investigating and responding to cyber incidents.
• Deep knowledge and understanding of co-ordinating cross-organisational responses to cyber security incidents.
• Strong leadership and communication skills.
• Focused and organised, with a good attention to detail.
• Good understanding of adversarial techniques.
• Crisis management experience
• Ability to rapidly absorb and understand complex technical situations under pressure
• Ability to facilitate conversations with large groups of remote people
• Ability to maintain calm during stressful situations
• Ability to translate technical incidents into business terms
• Working knowledge of SIEM architecture, XDR and Vulnerability Management, Incident Response tooling.
• Strong report writing and communication skills.
• Understanding crisis management, business continuity and disaster recovery procedures.
• Ability to understand technical topics dealing with technical teams then explain and present them to management level executives.
• Being able to handle multiple competing priorities in a fast-paced environment to proceed high priority tasks to a resolution.
• Be an active participant of the out of hours on call team, providing 24/7 incident management support
• Relevant certifications such as CGIH, CISM, GCIH, GCFA

What’s in it for you?

• Competitive salary + Bonus **where applicable**
• Matched pension contribution up to 10%
• 25 days annual leave with the option to purchase 5 more and paid volunteering
• Access to physical and mental health benefits such as the Calm app, personal medical, critical illness cover and dental insurance
• Access to our car benefit scheme
• Professional development including upskilling, mentoring, and access to online learning
• Great office and hybrid work environment
• The chance to join an innovative, fast-paced and passionate team

Who we are:

Join Liberty Global and Shape Tomorrow’s Connections Today!

Liberty Global is a dynamic team of veteran operators and investors committed to generating and delivering value through the strategic management of our three platforms: Liberty Telcom, Liberty Growth and Liberty Services.

We prioritize diversity, equity, and sustainability, using technology for good. If you're curious, resilient and have a limitless mindset, join our high-performing team.

Liberty Global is an equal opportunity employer, committed to an inclusive environment and accommodating all candidates. We’re eager to hear from you, no matter your background.

This Direct Search is handled exclusively by Liberty Global. We kindly ask agencies not to send applications and we don’t offer compensation for unsolicited CVs