Senior Security Consultant (Incident Response Management)

TL;DR

Senior Security Consultant (Cybersecurity): Designing and refining incident management capabilities for organizations with an accent on pragmatic planning, immersive tabletop exercises, and crisis response frameworks. Focus on strengthening leadership decision-making, ensuring readiness to respond to cyber incidents, and improving resilience and recovery outcomes.

Location: Hybrid working with travel to client sites in Manchester, Cheltenham, or London, United Kingdom.

Company

hirify.global is a global cybersecurity and resilience company that helps organizations protect their brand, value, and reputation.

What you will do

• Design and deliver incident management and crisis response frameworks aligned to best practice (NIST, ISO 27035, ISO 22301).
• Lead Silver-level tabletop exercises for leadership teams, simulating real-world cyber events to test strategy, communication, and coordination.
• Assess and uplift readiness through gap analyses and maturity assessments across people, process, and technology.
• Develop tailored, actionable incident management playbooks and decision trees that integrate with technical and operational response teams.
• Coordinate with SOC, IR, and resilience specialists to ensure incident response and escalation paths are aligned.
• Provide trusted advisory to executive, operational, and technical audiences, translating technical impact into clear business decisions.

Requirements

• Strong experience in incident management, crisis management, or cyber resilience consulting, ideally within complex or regulated environments.
• Proven background designing and running tabletop exercises, particularly at Silver (tactical/managerial) level.
• In-depth knowledge of incident response lifecycle principles (prepare, detect, respond, recover, learn).
• Familiarity with frameworks such as NIST CSF, ISO 27035, ISO 22301, and NCSC guidance.
• Excellent facilitation and communication skills, with confidence leading workshops and debriefs with senior stakeholders.
• Strong written reporting ability, with a focus on clarity, prioritisation, and actionable outcomes.
• Consulting experience including stakeholder management, requirements gathering, and presentation of findings.
• Must be willing and able to undergo a background clearance vetting process.

Nice to have

• Experience facilitating Gold-level (strategic) exercises or broader business continuity workshops.
• Understanding of communications and media management during cyber incidents.
• Exposure to incident response operations or SOC environments.
• Certifications such as ISO 22301 LA/LI, CISM, CISSP, or PRINCE2.

Culture & Benefits

• Focus on real-world, practical, evidence-based improvements.
• Collaborative culture, partnering with cyber, continuity, and crisis experts across a global network.
• Environment that encourages continuous learning, experimentation, research, and expertise growth.
• Inclusive and supportive workplace embracing diverse perspectives and flexible working styles.