Oh oh! Awesome! {$ msg.text $} ({$ msg.count $})

Head of Global Incident Response

  • Basingstoke +3 more
  • Basingstoke +3 more

WithSecure™ protects businesses all over the world from modern threats. We do this through a Co-security approach born from first-hand knowledge that no one can solve every cyber security problem alone.

Every single day, our diverse, growing team fights against online extortion, threats to national infrastructure, the unlawful spread of sensitive information, and everything in-between.

The best part about working for WithSecure is our people! We are a community of dedicated and passionate professionals that take workplace happiness seriously.

If you’re looking for something that’s more than just a job – we’d love to hear from you.

What we need:

We need an experienced and passionate incident response professional to lead our global incident response team. The ideal candidate will have a strong technical understanding, experience in hands-on incident response, and managing major cyber security incidents. The global incident response team has a long history of handling high profile incident response engagements and has built a solid retainer base of clients that continues to provide a mix of cybercrime and state-backed intrusions for investigation.

The ambition here at WithSecure is substantial for incident response, and the successful candidate will need to help recognise that desired growth in the long term. This will require someone who is proactive and who has the desire to develop the team, technology, and incident response offerings here at WithSecure to take them to the next level.

Key Responsibilities

  • Ownership of the vision, roadmap, and development of the global incident response function

  • Ownership of managing the workload of the team and ensuring in all engagements that the team meets deadlines and act as an escalation point for client engagements when needed

  • Recruit, train and develop a diverse team of incident responders

  • Act as the subject matter expert on incident response services for internal and external stakeholders

  • To ensure the incident response technology roadmap is driven forward to enable the team to be more effective and unlock key business opportunities

  • Present at external conferences, events and to key forums to raise awareness of the awesome work conducted by the team

  • Undertake line management responsibilities and drive professional development pathways for the global incident response team

  • Recruit, train and develop a diverse team of incident responders in a global follow the sun model

  • Present at external conferences, events and to key forums to raise awareness of the awesome work conducted by the team

  • A degree of on-call and escalation responsibilities will be part of the role

What are we looking for?

  • Experience leading high performing teams of technical professionals and helping to build and improve capabilities
  • Experience with remotely line managing individuals across different countries and cultures
  • Experience working in a similar role in incident response at a technical lead, managing or principal consultant level
  • Experience and detailed technical knowledge within all the phases of incident response
  • Experience managing major cyber security incidents
  • A passion and willingness to learn and continuously acquire knowledge to keep pace with evolving investigation and technology trends
  • Excellent written English and communication skills for producing quality reports to be consumed both at the executive and technical practitioner level
  • Ability to work with a diverse range of stakeholders and ensure the long-term progression of multiple workstreams that involve multi-function collaboration
  • Experience presenting to executive and technical audiences both internally and at industry events

What you will have access to:

  • IR investigation tech stack – The team makes use of both commercial forensics tooling and a bespoke technical pipeline for data ingestion, analysis and detection.

  • MDR Tech Stack – Primarily based on our in-house EDR solution, but increasingly involving cloud-based data as well, this gives us deep visibility over all our customer’s estates (process, memory, network, etc). The data is invaluable both for extracting intelligence and hunting for adversaries and other threats.

  • In-house Malware Intelligence – We have various in-house technologies connected to different cyber security products we offer across millions of endpoints, which collect huge amounts of data on files seen executing, sandbox executions, URLs visited, certificates observed etc.

  • Detection and Response Team – Our incident response team works closely with our talented team of Countercept threat hunters who regularly investigate threats for our MDR clients across the world. The close collaboration between these teams provides vital insights into emerging threat trends and innovative detection engineering solutions.

  • Threat Intelligence Team –Our threat intelligence team has access to a wide aperture full of valuable data sources relating to both criminal and nation state threats.

  • World-class Expertise – WithSecure employs around 1,700 people, a large percentage of which are security experts. Across the various areas of the business, such as consultancy, MDR and security software development, you can find at least one expert in almost any area of technology or security that you can think of.

Our four promises to you:

  • Freedom – you will have the opportunity to define new ways of working how we engage with our customers, and how the value of the service gets represented
  • You will work together with experienced and enthusiastic colleagues, and within WithSecure you will find some of the best minds in the cyber security industry
  • Your work will be clearly visible and recognised – all over the world and across our business units
  • You can rely on the support from the entire WithSecure leadership including our top executives

Work with great people

Karolina Malagocka
Senior Marketing Manager
"At F-Secure we see the value of each and every person"
Robert Grześkowiak
Lead Software Engineer
"At F-Secure you won't feel bored. There are opportunities to learn new things every day."
Fairuz Zainor
Researcher
"I joined F-Secure straight after graduating and now, 10 years later, I am still happy to be here."
William Jardine
Managing Consultant
"The freedom is a big thing for me. The trust you are doing something worthwhile."
Robert Grześkowiak
Lead Software Engineer
"At WithSecure you won't feel bored. There are opportunities to learn new things every day."
Fairuz Zainor
Researcher
"I joined WithSecure (previously F-Secure) straight after graduating and now, 10 years later, I am still happy to be here."
William Jardine
Managing Consultant
"The freedom is a big thing for me. The trust you are doing something worthwhile."

Great Place to Work

  • Over 1,700 amazing colleagues in nearly 30 offices

  • Possibility to protect the world

  • Work with best of class experts who care

  • Relaxed, open and fun working environment

  • 68+ of nationalities

  • Global with the spirit of a small company

About the company

Purpose – Why we exist
We are here to build and sustain trust in a digital society
We are here to build and sustain trust in a digital society — trust that is threatened by uncertainty, fear and worry caused by cyber attacks and crime.

Vision – Where we are heading
No one should experience a serious loss because of a cyber attack
We envision a future where no one should experience a serious loss or be put out of business because of cyber attack or crime. At least no one who puts their trust in us.

Mission – What we do
Accelerate transition to outcome-based security
Our mission is to research, innovate and build technologies, human expertise and delivery-business models that will accelerate our customers’ and partners’ transition to outcome-based security.

1988F-Secure established under the name Data Fellows

1992First public hysteria about a computer virus

2002First Antivirus for mobile phones

2004F‑Secure Labs launches first antivirus industry blog

2009F‑Secure’s next step into the cloud

2015F-Secure aims to become the leading European cyber security company

2018MWR InfoSecurity joins F-Secure

Danielle Acott | Contact Person

I'm interested
WithSecure

Basingstoke +3 more
Visit website