Information Security Incident Response Manager

I’m interested


Leeds - St Johns

Contract type


Job description

When it comes to online security, there’s no job too big or too small.

We take pride in delivering the best possible sports betting and gaming platform to our customers. In our high availability online world, our systems need to be protected and fully operational 24/7. As an Information Security Incident Response Manager, you’ll make sure attacks to our systems are neutralised. And that we learn from each and every one.

As you know, Information Security plays a vital part in giving our customers the great service and peace of mind they’ve come to expect. Like any online business we unfortunately face risks (including Ddos, ransomware and malware attacks) so we need a safe pair of hands at the helm.

You’ll play a lead role in building our global security operations services. You’ll manage your own team of Security Analysts in Leeds, working with SOC colleagues in Krakow to strengthen our first line of defence. With a developer on hand to help with automation and tool integration as part of your overall program of service and security improvements, you’ll make sure no problem goes unanswered.

Using your Info Sec expertise, you’ll create and maintain robust response plans, making sure all incidents are resolved quickly. You’ll own the most serious issues and keep a close eye on things when we’re relying on others for help. You’ll make sure we get to the bottom of problems and learn from them, meaning we’re better equipped to anticipate and deal with future threats. Things happen fast here, and they’re not always straightforward. We’re still building our toolkit, so from time to time you’ll need to be creative in your approach to security and work with the business to reach a safe compromise.

Sometimes you’ll find yourself delivering difficult messages to business leaders, so you’ll need to be a confident communicator.  You’ll use good decisive judgement when the pressure’s on, and you’ll support your team when they need to drop everything and pull together. With your cool head, you’ll be able to draw on your experience and take all this in your stride.

When you apply, please include a concise CV (no longer than 3 pages) which shouts about your Information Security knowledge, particularly networks and SIEM implementations. We’d like to hear about your experience responding to security incidents such as DDoS, ransomware, malware and general website attacks. PCI-DSS, CISSP, CISM, GCIH, GCIA and GCFA would be beneficial. If you’ve had exposure to web application firewalls, even better.