Job reference number 332138
Senior Cyber Incident Responder
Competitive salary 18% bonus potential, 25 days annual leave and pension
Full time
Permanent
Hybrid working either London or Sheffiled office x3 days a week
Cyber Incident Responder
Location: Sheffield or London x3 days a week in office
Are you ready to take command when cyber threats strike? RMG Cyber Security Operations is seeking a seasoned Cyber Incident Responder to join our elite team. This is your opportunity to play a pivotal role in defending critical information and operational technology assets across a dynamic and complex enterprise.
About the Role
As a Cyber Incident Responder, you’ll be at the forefront of our security operations—leading high-severity incident investigations, coordinating response efforts, and ensuring our organization remains resilient against evolving threats. You’ll operate with autonomy, precision, and urgency, helping shape our incident response capabilities to meet industry best practices and regulatory standards.
Key Responsibilities
* Incident Response: Act as incident commander during escalations, driving containment and recovery actions.
* Preparedness: Test and refine incident response plans and playbooks to ensure operational readiness.
* Process Development: Maintain and embed effective incident handling procedures across the organization.
* Tooling: Identify and deploy cutting-edge incident response tools (COTS and open source).
* Threat Hunting: Conduct proactive hunts using threat intelligence and vulnerability insights.
* Reporting: Deliver KPI/KRI-driven reports and serve as SME on relevant initiatives.
* Stakeholder Engagement: Collaborate with internal teams to ensure swift and coordinated incident resolution.
* Supplier Coordination: Work with third-party vendors to manage external incident response efforts.
What You’ll Bring
* Proven experience across the full incident response lifecycle in large, complex environments.
* Exceptional analytical skills with the ability to distill noise into actionable insights.
* Strong communication skills—able to influence senior stakeholders and tailor messaging effectively.
* Calm, decisive leadership under pressure, with the ability to inspire confidence at all levels.
* Up-to-date knowledge of threat actors, vulnerabilities, and adversary tactics.
Preferred Qualifications
* SANS GIAC GCIH or GCFA, or equivalent industry-recognized certifications.
Why RMG?
At RMG, we don’t just respond to threats—we anticipate them. Join a team that values innovation, agility, and strategic thinking. Whether you're based in Sheffield or London, you'll be part of a collaborative environment where your expertise drives real impact.
Ready to lead the charge against cyber threats? Apply now and become a cornerstone of RMG’s cyber defense strategy.
About Us
At Royal Mail we connect companies, customers and communities across the country, delivering a ‘one-price-goes-anywhere’, universal postal service to more than 30 million addresses. As one of the UK’s leading companies, we are focused on being recognised as the best delivery company in the UK and across Europe.
Royal Mail are proud of our diverse employee network groups and the active role they play to support belonging and encourage a positive work environment. We are firmly committed to inclusion and passionate about our people representing the communities we serve.
We are happy to support your need for any adjustments during the application and hiring process. Please share the details within your application if required.
We are Forces family friendly and a Gold signatory to the Armed Forces Covenant. We welcome applications from ex-Armed Forces personnel, reservists, veterans, cadet instructors and military spouses/partners.
For more information on Royal Mail Group and our values please click here:
Closing Date: 25th October. Please note, this advert may close early if the appropriate number of applications has been reached.
#LI-POST