Cyber Security Incident Response EngineerVacancy type Current vacanciesProfession ITLocation Flexible locationDescriptionLocation: London or ManchesterWe are seeking a Cyber Security Incident Response Engineer to join our Central IT team, working directly with the Tokio Marine Global Fusion Centre US Operations group.You will handle day-to-day maintenance of security infrastructure in addition to proactive threat hunting and incident response. Your role will be key in the development, installation, configuration, and continuous improvement of the global security operations service and be critical in the response to external and internal threats.This position will require a blend of technical expertise, analytical skills, and effective communication abilities to ensure swift and efficient handling of security events. You will also be expected to identify opportunities to automate and improve effectiveness of operations.About usBDP is a leading, global, multidisciplinary design practice united by a shared purpose: to design a world that’s built for good. For more than 60 years, we've been solving problems, creating innovative spaces, and pushing the boundaries of what’s possible. From the start, we've been pioneers in the world of design, and our legacy is built on the meaningful, people-centred places we've brought to life.We are a diverse, international practice of architects, engineers, designers, and urbanists. We work closely with our clients, users, and communities to craft spaces for living, working, learning, and enjoying life across the globe. With studios spanning the UK, Ireland, Europe, Asia, and North America, our reach is as broad as our expertise. And since joining forces with Japan’s Nippon Koei in 2016, our ability to deliver integrated, impactful design has only grown stronger.Our work is rooted in creativity, quality, and collaboration. We believe that great design removes barriers and opens new possibilities, all while meeting the demands of a constantly evolving world. Whether we’re designing homes, workplaces, or public spaces, we always put people at the heart of our thinking, ensuring that the environments we create are not just functional, but also inclusive, beautiful, and socially and environmentally responsible.We’re proud of the places we've shaped and the lives we've touched, and we are committed to continuing our mission of designing a better, more connected world—one that leaves every place better than we found it.Essential Job Functions:Conduct security investigations and lead security incident response in a cross-functional environment and drive incident resolutionMonitor security systems and infrastructure to support best performance and reliabilityImplement and manage security tools and processes, to detect and mitigate threatsMaintain robust security feeds and ensure data integrityProactive look for threats working with level one analysts, affected teams and security vendorsAuthor threat detection rules and subsequent SOAR playbooksRefine operational metrics, key performance indicators, and service level objectives to measure Security Operations and Incident Response servicesIdentify and implement security process automation, continuously improving processes and toolsBe a technical subject matter expert for Security Operations and incident Response servicesProvide expertise to partnered security teams in mitigation of those threatsCommunicate complex technical information clearly and concisely to both technical and non-technical audiencesCollaborate with partner security teams to offer guidance and bolster support of the organization’s security infrastructureBuild, cultivate, and maintain positive relationships with internal customers to identify and facilitate solutions to increase the impact of the team's workInfluence and align the team’s vision and strategythe successful candidate will be required to undergo a security clearance process and therefore you will be required to have at least 3 years UK residency within the last 5 years.We will also need to confirm your employment/ educational history over the last 3 years in order to qualify.Other Functions:Follow proper internal controls as necessary to conduct job functions and/or carry out responsibilities and/or administrative activities at the Company.Perform special projects and other duties as may be assigned.Establish and build strong working relations and partnerships with other teams, Group Companies, and senior management.Qualifications:5 or more years of experience in an operational cybersecurity role2 or more years of hands-on experience in an incident response role utilizing CrowdStrikeExperience developing and delivering on incident and program status for leadershipExperience in threat hunting including leveraging intelligence data to proactively find and iteratively investigate suspicious behavior across networks and systemsExperience analyzing network and host-based security eventsProficient System Administration with either Microsoft Windows or LinuxProficient with CLI shells such as PowerShell or bashProficient with Security Log infrastructure configuration such as Windows Event Forwarding (WEF) or syslogProficient in an interpreted language such as Python, Perl, or RubyFamiliarity with regular expressionsFamiliarity with Large Language Models tools such as OllamaKnowledge of operating systems, file systems, and memory structures on Windows, MacOS and LinuxKnowledge of networking technologies, specifically TCP/IP and the related protocolsUnderstanding of networks, operating systems, and architecture and how they affect the security posture of a companyDemonstrate a strong problem-solving aptitudeDemonstrate ownership of projects or tasksStrong verbal and written communication skillsPoise and ability to act calmly and competentlyBDP offersIn return, BDP can offer you a wide range of learning opportunities to encourage personal and professional career development. From sponsorship to profession led CPD events, we also offer annual appraisals and a mentoring scheme that is supported by our internal online learning platform.We are committed to being an employer of choice and offer a competitive remuneration and benefits package that includes an employee profit share scheme, tax efficient smart benefits, private medical insurance, life insurance, long term sickness insurance, interest free season ticket loans, health screening, opportunity to buy/swap holidays and enhanced maternity and paternity provision, plus many more.We offer regular international, and studio based social, sporting and charitable events. Some recent events include month-end socials, a hiking club, wellbeing webinars and toolbox talks. Our variety of employee forums gives everyone the platform to have a voice and be heard which drives cultural changes and helps to create an engaged, inclusive organisation.To find out on more detail about what BDP can offer you, please visit: https://www.bdp.com/en/careers-at-bdp/why-join-bdp/ .To applyTo apply for the role please visit the BDP Recruitment System and click on the ‘Apply’ button below the vacancy. You will then need to complete the online application form and attach an up-to-date CV with a cover letter (