A global organisation with a complex digital environment is looking for an experienced Information Security Specialist to strengthen its incident response capability and drive a major insider risk programme. This role is ideal for someone with several years of hands‑on experience, confident working with senior stakeholders, and comfortable managing non‑urgent but sensitive information security incidents.
You'll join a highly collaborative security function, working closely with a small team of specialists, the Business Continuity Lead, and stakeholders across the organisation.
What You'll Be Doing
Incident Management
Lead and improve the organisation's incident response processes.
Handle non‑urgent infosec incidents such as poor data handling, internal user behaviour issues, and policy breaches.
Troubleshoot incidents appropriately and guide stakeholders through containment and recovery.
Plan, run, and deliver tabletop exercises - especially those involving senior leadership.
Conduct post‑incident reviews and embed lessons learned into BAU operations.Insider Risk Programme
Take ownership of a significant insider threat programme.
Work with HR, Legal, Compliance, SOC, and data teams on detection, investigation, and prevention.
Maintain confidentiality and a structured, methodical approach throughout.Threat Intelligence & Stakeholder Engagement
Monitor and interpret threat developments, especially those relevant to critical national infrastructure.
Translate intelligence and technical detail into clear, actionable insights.
Promote a strong, business‑aligned security culture.Collaboration
Work alongside a small, supportive team (currently four members).
Engage regularly with high‑level stakeholders across the organisation.
Partner with the Business Continuity Lead on exercises, planning, and major incident simulations.What You'll Bring
Several years' experience in information security, incident response, or threat management.
Strong stakeholder management skills, including working with senior business leaders.
Confident managing non‑urgent internal incidents (user behaviour, data misuse, policy failures).
Experience planning and leading tabletop exercises.
Good understanding of insider threat management and investigative processes.
Knowledge of standard cyber tooling (e.g., Microsoft stack).
Awareness of risks linked to critical national infrastructure.
Calm, analytical approach - especially under pressure