DescriptionIn this role, you will be responsible for managing cyber security incidents from detection through to recovery, helping to protect the organisation from evolving threats. You will lead the development and execution of response playbooks and procedures, deliver simulation exercises to test readiness, and implement measures to improve organisational resilience. This is a key role that supports Heathrowβs ability to respond quickly, effectively, and confidently to cyber incidents.
Responsibilities- Responding to cyber security incidents according to the cyber security incident response policy, plans, playbooks and procedures.
- Providing technical guidance to first responders for handling information security incidents.
- Providing timely and relevant updates to appropriate stakeholders and decision makers.
- Communicating investigation findings to relevant business units to help improve the information security posture.
- Validating and maintains incident response plans and processes to address potential threats.
- Compiling and analyses data for management reporting and metrics.
- Monitoring relevant information sources to stay up to date on current attacks and trends.
- Analysing potential impact of new threats and communicates risks back to detection engineering functions.
- Performing root-cause analysis to document findings and participate in root-cause elimination activities as required.
Qualifications- Certified Information Systems Security Professional (CISSP) and/or Global Information Assurance Certification (GIAC) or similar.
- Experience conducting root-cause analysis and using investigation findings to inform remediation and preventative measures.
- Strong awareness of current threat landscapes, with the ability to assess new threats and communicate associated risks to technical and non-technical stakeholders.
- Strong experience in cyber security operations, especially in an incident response role or security operations centre.