About Bridewell
One of the most exciting prospects in the UK cyber security sector today, Bridewell is a leading cyber security services company specialising in protecting and transforming critical business functions for some of the world's most trusted organisations. We are the trusted partner for operators of essential services and provide end-to-end cyber security capabilities that help our clients overcome their security challenges, allowing them to operate safely and securely.
Bridewell holds the Gold level, Investors in People award which we feel solidifies and reflects on the outstanding calibre that makes us truly one team.
Who are we looking for?
Due to the continued growth, Bridewell's CSIRT is looking for an experienced Incident Response Consultant to serve as a trusted advisor to our CNI clients and third parties, helping to grow the internal capability and offering of the Consultancy element of Incident Response, focusing on strengthening their cyber incident response capabilities through incident preparation activities, documentation development, and cyber incident exercise facilitation.
This role focuses on the consultation aspects of the full incident lifecycle, from preparation through the post-incident review and recovery, working across multiple client environments to enhance their security posture.
Outside of your core role, we expect you to be continuously looking for ways to improve and mature the current incident response service line, be able to technically assist in responding to security incidents, as well as facilitating a culture where those around you can grow and develop.
What you'll be doing:
- Help shape and develop Incident Response Consultancy capabilities and service lines based upon strong value proposition for our customers.
- Design and maintain incident response plans and playbooks tailored to client environments.
- Create and lead cyber incident exercises and simulations for client organisations at both a technical and executive level, in line with Bridewell's NCSC CIE assurance framework.
- Act as incident coordinator during active incidents, managing stakeholder communications.
- Assess and improve clients' incident response capabilities and documentation against regulatory requirements and industry best practices.
- Creating bespoke playbooks, addressing both technical and business level responses for a wide range of cyber security incidents.
- Serve as a direct Subject Matter Expert (SME) for our clients by promptly investigating direct queries or issues raised.
- Conduct thorough post-incident reviews and root-cause analyses to drive continuous improvement and prevent future incidents across a range of clients.
- Be able to manage multiple engagements whilst maintaining a consistent quality of work.
What we're looking for:
- Relevant certifications such as GCIH, GCFA, BTL1, or CREST.
- Experience in MSSP and/or security consulting roles.
- Experience in crisis management or business continuity planning across multiple client environments.
- Knowledge of frameworks such as NIST CSF, ISO 27001, and MITRE ATT&CK.
- Experience in managing incident response programs for regulated industries.
- Background in conducting post-incident reviews and working with organisations to prioritise and implement lessons learned.
- Experience in developing and delivering Incident Response service lines such as consultancy, exercising and incident management.
What's in it for you?
Our vision is to create a safe, inclusive digital world where people and organisations can thrive. Our values of Do the Right Thing, One Team and Above and Beyond emphasises the importance of the part we play in society, and our commitment to our people and clients. Our story to-date has been phenomenal, but success doesn't end here and as we continue to grow and scale, we want to keep the same culture, passion and commitment to high quality that has enabled us to get this far. Bridewell will provide a great career opportunity with continual development as well as the following:
- 25 Days Holiday - Plus buy and sell options
- Flexible Working (around core office hours)
- Performance Incentive Bonus
- Company Pension
- Employee Shareholder Scheme
- Personal Day & Birthday Off - After 1 year of service
- Family Leave - After 1 year of service
- Enhanced Maternity based on length of service
- Dedicated Training Budget
- Life Assurance
- Electric Vehicle Scheme & Cycle to Work Scheme
- Private Healthcare (incl. Gym discounts and vison care)
This position requires travel to client locations, approximately 20-25% of working time, with expenses.
Note: To be eligible for this job you must either hold UK Security Clearance or be eligible and willing to go through this security clearance
Bridewell values diversity and is an equal opportunity employer. We are dedicated to fostering an inclusive environment where all employees feel respected, supported, and empowered to do their best work. If you require any reasonable adjustments throughout the interview process please let us know.