Overview
Cyber Security Incident Response Consultant (Junior-Mid Level) - IR, Cyber, SOC
Location: Belfast (office-based / hybrid - not fully remote)
Salary: £28,000 - £45,000 (depending on experience)
Employment Type: Permanent
Security Clearance: Must be eligible for UK security clearance due to the nature of client engagements
The Role
We are seeking Junior to Mid‑Level Cyber Security Incident Response Consultants to join a growing incident response team based in Belfast. This role is suited to candidates with existing experience in cyber security who are looking to build deeper incident response expertise and progress their careers within a consultancy environment.
The role is not fully remote, and candidates must be prepared to relocate to Belfast.
About you
* Solid understanding of networking concepts, operating systems and common attack techniques
* Practical experience using security tooling such as SIEM, EDR, IDS/IPS and firewall technologies
* Hands‑on knowledge of forensic methods across Windows, Linux and cloud platforms
* Good understanding of common attack types, including ransomware and phishing, and how they are detected and responded to
* A methodical, analytical approach to problem solving
* Ability to remain calm and effective when working under pressure
* Strong written and verbal communication skills
* 3-5 years\' experience working in cyber security, with exposure to incident response or SOC environments
* Must be eligible for UK security clearance due to the nature of client engagements
Professional Qualifications & Development
Junior Incident Response Consultant
* Foundational certifications such as CompTIA Security+ or CompTIA CySA+
* Entry‑level incident response qualifications such as CEH or ECIH
* Exposure to GIAC certifications (e.g. GCIH, GCIA) is advantageous but not essential
* Strong desire to learn, develop and progress, with support to work towards advanced certifications
Mid‑Level Incident Response Consultant
* One or more recognised incident response or forensic certifications (GCIH, GCFA, GCIA, GNFA, GCFR)
* Defensive and detection‑focused certifications such as CySA+ or BTL2
* Cloud security certifications (AWS or Azure security‑focused) are advantageous
* Demonstrated commitment to continuous professional development within incident response
Day‑to‑Day Activities
* Support organisations through cyber incidents by coordinating response activities in line with established incident response frameworks and undertaking technical investigations.
* Analyse logs, endpoint telemetry and network data to identify malicious activity and understand attacker behaviour throughout the incident lifecycle.
* Assist with containment, eradication and recovery activities, advising clients on technical actions while working alongside internal teams and third‑party providers.
* Conduct forensic investigations and post‑incident reviews to determine root cause, scope of compromise and business impact.
* Engage with client stakeholders, managed service providers and communications teams to ensure a coordinated and effective response.
* Produce clear and accurate incident documentation, including timelines, technical findings and executive‑level reports.
* Contribute to the continuous improvement of incident response playbooks, tooling and investigative techniques.
* Incorporate threat intelligence to enhance investigations and strengthen future detection and response strategies.
* Support proactive consultancy activities such as incident response exercises, client briefings and industry events.
About Adecco
Adecco is acting as an Employment Agency. We are proud to be an equal opportunities employer. We are on the client\'s supplier list for this role.
Keywords
Cyber Security Incident Response, Ransomware Response, Phishing Analysis, Digital Forensics, Threat Hunting, Threat Intelligence, SIEM (Splunk, Sentinel, QRadar), EDR (CrowdStrike, Defender for Endpoint), IDS/IPS, Network Traffic Analysis, Log Analysis, Malware Analysis, Memory Forensics, Disk Forensics, Windows Security, Linux Security, Active Directory, Cloud Security (AWS, Azure), MITRE ATT&CK, Indicators of Compromise (IOCs), Tactics Techniques and Procedures (TTPs), Security Operations, Blue Team, Incident Response Playbooks, Breach Response, Regulatory Reporting, Cyber Consultancy, Security Clearance, Belfast, Hybrid Working
#J-18808-Ljbffr