Incident Response Manager

Manchester
6 days ago
Create job alert

We are currently recruiting for an Incident Response Manager, reporting to the Security Operations Senior Manager, to lead and coordinate containment, eradication and post-incident activities for cyber security incidents across all regions and countries where Tunstall operates.
This is an incredibly exciting time to join Tunstall as we embark on an exciting period of transformation. You will be joining a recently created and growing global Information Security team within Tunstall and play a key part in the success of this transformation, by helping to reduce the impact of cyber-attacks and ensuring that we can keep delivering our vital service to millions of customers globally.
This role would be based at our Manchester office working on a hybrid basis. We are flexible on number of days in the office.
What will you be doing in this role?
As our Incident Response Manager, you will help develop our incident response capability, by contributing to the creation of security incident response plans, as well as playbooks, runbooks, and all materials required for us to be able to respond to and manage cyber incidents effectively and efficiently.
You will govern and coordinate cyber incidents, acting as the point of reference for all stakeholders and leading the different activities required. Leading the technical activities, in cooperation with Technology and IT Teams, to determine the root cause, impact and to identify the necessary remedial actions is vital to the success of this role.
The Ideal candidate:
To be successful in this role you will have considerable experience in cybersecurity, with proven experience as an Incident Response Manager or responder. You will have demonstrable experience of managing cyber incidents in complex, multinational organisations. A strong technical background in IT and cyber security, and a willingness and ability to combine technical and management activities proficiently is a must for this role.
In addition, you will have a deep understanding of cybersecurity threats and their evolution, adversarial techniques, tactics and procedures, industry frameworks such as MITRE, and best practice and standards in incident management.
The successful candidate will be proactive, methodical, and an excellent communicator who takes ownership of tasks, is able to solve problems effectively, and is tenacious in their approach to ensure completion of tasks to time and required quality.
What we offer:
Hybrid Working,
Competitive salary + potential bonus,
Car allowance,
25 days holiday + public holidays (pro rata)
Holiday purchase scheme,
Contributory pension,
Paid volunteer day to support a cause you are passionate about,
Enhanced maternity, paternity, adoption and shared parental pay entitlements,
Private health insurance,
Dedicated 24/7 employee benefits platform ‘Verlingue’ that include things like: free eye tests, retail discounts,
EAP WeCare service - including a 24/7 online GP and mental health counselling service,
Boost your learning and growth through access to a Talent Library with over 800 courses, covering subjects from business skills to project management essentials,
A warm and welcoming team environment,
Development and a chance to build a rewarding career.
Some of your key tasks will be…

  • Help create and form the incident response capability, including the security incident response plan as well as the playbooks, runbooks and all materials required to be able to respond to and manage cyber incidents effectively and efficiently,
  • Govern and coordinate cyber incidents, acting as the point of reference for all stakeholders and leading the different activities required,
  • Lead the technical activities, in cooperation with technology and IT teams, to determine the root cause, impact, and identify remediation actions,
  • Collaborate with cross-functional teams including Technology, Business units, Legal and senior stakeholders,
  • Prepare and present written and verbal incident status reports to ensure all stakeholders are kept up to date,
  • In collaboration with other areas, coordinate and conduct post-incident reviews and analysis to identify areas for improvement and help drive continuous improvement,
  • Work closely with Governance, Risk and Compliance (GRC) teams and regional information security teams to document identified risks and issues highlighted through post-incident or root cause analysis activities,
  • Build strong relationships with external and internal stakeholders, including cybersecurity vendors and industry peers, to facilitate information sharing and collaborative incident response efforts,
  • This position requires on call and overtime in the case of a severe cyber incident,
  • Keep a constant innovative, challenging and constructive attitude towards continuous improvement.
    Key skills and experience:
  • Considerable experience in cybersecurity, with demonstrable experience in an incident response manager or incident responder role,
  • Previous experience managing cyber incidents in a complex multinational organisation,
  • Strong technical background in IT and cybersecurity,
  • Willingness and ability to combine technical and management activities proficiently in a single role,
  • Deep understanding of cybersecurity threats and their evolution, adversarial techniques, tactics and procedures, industry frameworks such as MITRE, and best practices and standards in incident management,
  • Ability to manage complexity and make decisions with limited information or under uncertainty and in high-pressure situations,
  • Excellent written and verbal communication skills,
  • Experience and confidence in being able to communicate effectively with senior stakeholders,
  • Bachelor’s degree in computer science, Computer Engineering, Mathematics or similar or have equivalent experience,
  • You must be able to communicate effectively in English (ie CEFR C1).
    Desirable skills and experience:
  • Spanish or Swedish language skills
    If you are not sure if you have the relevant skills or experience, then please apply (only takes a few minutes) and let our team review and come back to you.
    A bit about us:
    Tunstall is a market-leading health and care technology provider.
    We’re passionate about ensuring our team reflects the brilliant and unique qualities of the people and communities we support. Our incredible team of more than 3,000 colleagues provides life saving and life changing technology and services to millions of people in 18 different countries.
    At Tunstall you’ll find a place where you’re valued and celebrated for being yourself. We empower our people to deliver the very best teamwork, innovation and thought leadership by creating an environment where we champion diversity and inclusion. We demonstrate our commitment to diversity and inclusion at each step. From our open, fair, and transparent recruitment processes, through to the many development and career growth opportunities we provide.
    Each Tunstall colleague has a superpower… they’re unique. No one else is them, and we think that’s special. Come and join our mission and be part of our team, our One Tunstall team

Related Jobs

View all jobs

Senior Cyber Incident Response Analyst

Technical Security Manager

Business Development Manager - SOC Services

Information Security Manager

Technical Infosec Manager

Information Security Manager

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Job-Hunting During Economic Uncertainty: Cyber Security Edition

The cybe rsecurity sector sits at the forefront of today’s digital landscape, defending businesses and governments alike from increasingly sophisticated threats. From incident response and network security to cloud protections and zero-trust architectures, cyber security professionals tackle an ever-evolving array of challenges. Yet, even this mission-critical field is not immune to economic turbulence. When broader financial markets experience uncertainty—whether through global recessions, regional downturns, or unexpected macro events—the hiring climate can shift, making roles more selective and budgets tighter. For job seekers in cyber security, this can be disconcerting. You might discover that once-abundant vacancies have become scarce, competition for the remaining positions is fiercer, or company priorities pivot away from large-scale expansions toward essential, cost-justified security projects. At the same time, data breaches and cyberattacks don’t pause during economic slowdowns—if anything, they may escalate as bad actors exploit organizational vulnerabilities. This paradox means that while the market feels tough, demand for cyber security expertise remains robust. In this article, we’ll look at: Why economic uncertainty affects cyber security hiring trends. Strategies for staying competitive, even if the number of open roles shrinks. Methods to highlight your skills, adapt to shifting priorities, and network effectively. Approaches for preserving mental well-being during prolonged searches or uncertain feedback loops. How www.cybersecurityjobs.tech can help you find the ideal security-focused role. By proactively sharpening your skill set, tailoring your professional profile, and engaging with a focused community, you can secure a rewarding cyber security job—even when the broader market feels volatile.

Careers

How to Achieve Work-Life Balance in Cyber Security Jobs: Realistic Strategies and Mental Health Tips

Cyber security is one of today’s most vital and rapidly expanding sectors. As data breaches, ransomware, and other cyber threats continue to evolve, the demand for skilled professionals is surging across industries—from finance and healthcare to government and e-commerce. Whether you’re a penetration tester, security analyst, or threat intelligence expert, you play a key role in safeguarding digital infrastructure and sensitive information. This high-stakes environment, however, often comes with intense pressure. Long hours, constant vigilance, and an ever-changing threat landscape can make it challenging to find time for personal well-being. Many cyber security specialists report difficulty striking a sustainable work-life balance, unsure if it’s even possible in a field that never truly sleeps. Yet, as concerns about mental health and burnout become more pressing, professionals and employers alike are seeking better ways to combine career advancement with a fulfilling personal life. In this comprehensive article, we’ll explore how to achieve a work-life balance in cyber security. You’ll discover strategies for managing 24/7 threat alerts, the importance of realistic expectations, ways to maintain mental health in high-intensity roles, and tips for setting boundaries without compromising your professional growth. Whether you’re new to this dynamic arena or already an established specialist, these insights can help you thrive personally and professionally in the fast-paced world of cyber security.

Careers

Transitioning from Academia to the Cyber Security Industry: How Researchers Can Harness Their Skills to Protect Commercial Environments

Cyber security has become a mission-critical field in an era where data breaches, ransomware attacks, and sophisticated hacking techniques threaten businesses and public institutions alike. As digital transformation touches nearly every facet of modern life, the need for highly skilled individuals capable of defending systems and networks continues to grow. For PhDs and academic researchers with expertise in areas like cryptography, network security, or threat intelligence, this presents an exciting opportunity to deploy your analytical prowess in a high-impact, fast-paced commercial setting. In this guide we’ll explore how academics can successfully pivot from the research lab to the cyber security industry. Learn how to apply rigorous, theory-driven approaches to real-world challenges, from designing secure software architectures to neutralising advanced persistent threats. By embracing the industry’s urgency and end-to-end mindset, you can transform your scholarly insights into robust, market-facing security solutions that protect companies and users on a global scale.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.