Cyber Security Incident Response Consultant

Cyber Security Incident Response Consultant (Mid Level) - IR, Cyber, SOC

Location: Belfast (office‑based)
Salary: £35,000 - £50,000 (depending on experience)
Employment Type: Permanent
Security Clearance: Must be eligible for UK security clearance due to the nature of client engagements

Company Profile
This is a remarkable opportunity to join a highly respected global cyber security organisation, recognised for delivering incident response and cyber advisory services at the highest level of technical and professional excellence.

The organisation supports clients across multiple sectors during complex and business‑critical cyber incidents, guiding them from initial detection through containment, recovery and post‑incident assurance. With deep expertise across incident response, digital forensics and threat intelligence, the team is trusted to operate in high‑pressure environments where precision, clarity and sound judgement are essential.

Joining the business means becoming part of a collaborative, expert‑led consultancy where individuals are encouraged to learn, grow and develop, gaining exposure to real‑world incidents while being supported through structured training, mentoring and certification pathways.

The Role
We are seeking Mid‑Level Cyber Security Incident Response Consultants to join a growing incident response team based in Belfast. This role is suited to candidates with existing experience in cyber security who are looking to build deeper incident response expertise and progress their careers within a consultancy environment.

The role is not fully remote, and candidates must be prepared to relocate to Belfast please

About you
- Solid understanding of networking concepts, operating systems and common attack techniques
- Practical experience using security tooling such as SIEM, EDR, IDS/IPS and firewall technologies
- Hands‑on knowledge of forensic methods across Windows, Linux and cloud platforms
- Good understanding of common attack types, including ransomware and phishing, and how they are detected and responded to
- A methodical, analytical approach to problem solving
- Ability to remain calm and effective when working under pressure
- Strong written and verbal communication skills
- 3-5 years' experience working in cyber security, with exposure to incident response or SOC environments
- Must be eligible for UK security clearance due to the nature of client engagements

Professional Qualifications & Development
Mid‑Level Incident Response Consultant
- One or more recognised incident response or forensic certifications (GCIH, GCFA, GCIA, GNFA, GCFR)
- Defensive and detection‑focused certifications such as CySA+ or BTL2
- Cloud security certifications (AWS or Azure security‑focused) are advantageous
- Demonstrated commitment to continuous professional development within incident response

Day‑to‑Day Activities
- Support organisations through cyber incidents by coordinating response activities in line with established incident response frameworks and undertaking technical investigations.
- Analyse logs, endpoint telemetry and network data to identify malicious activity and understand attacker behaviour throughout the incident lifecycle.
- Assist with containment, eradication and recovery activities, advising clients on technical actions while working alongside internal teams and third‑party providers.
- Conduct forensic investigations and post‑incident reviews to determine root cause, scope of compromise and business impact.
- Engage with client stakeholders, managed service providers and communications teams to ensure a coordinated and effective response.
- Produce clear and accurate incident documentation, including timelines, technical findings and executive‑level reports.
- Contribute to the continuous improvement of incident response playbooks, tooling and investigative techniques.
- Incorporate threat intelligence to enhance investigations and strengthen future detection and response strategies.
- Support proactive consultancy activities such as incident response exercises, client briefings and industry events.

About Adecco
Adecco is acting as an Employment Agency. We are proud to be an equal opportunities employer. We are on the client's supplier list for this role.

Keywords
Cyber Security Incident Response, Ransomware Response, Phishing Analysis, Digital Forensics, Threat Hunting, Threat Intelligence, SIEM (Splunk, Sentinel, QRadar), EDR (CrowdStrike, Defender for Endpoint), IDS/IPS, Network Traffic Analysis, Log Analysis, Malware Analysis, Memory Forensics, Disk Forensics, Windows Security, Linux Security, Active Directory, Cloud Security (AWS, Azure), MITRE ATT&CK, Indicators of Compromise (IOCs), Tactics Techniques and Procedures (TTPs), Security Operations, Blue Team, Incident Response Playbooks, Breach Response, Regulatory Reporting, Cyber Consultancy, Security Clearance, Belfast,

Desired Skills and Experience

Cyber Security Incident Response, Ransomware Response, Phishing Analysis, Digital Forensics, Threat Hunting, Threat Intelligence, SIEM (Splunk, Sentinel, QRadar), EDR (CrowdStrike, Defender for Endpoint), IDS/IPS, Network Traffic Analysis, Log Analysis, Malware Analysis, Memory Forensics, Disk Forensics, Windows Security, Linux Security, Active Directory, Cloud Security (AWS, Azure), MITRE ATT&CK, Indicators of Compromise (IOCs), Tactics Techniques and Procedures (TTPs), Security Operations, Blue Team, Incident Response Playbooks,