SIRT Manager - Work from home with occasional travel to client site

Job Description

More than you expected Grant Thornton UK LLP is part of a global network of independent audit, tax and advisory firms, made up of some 58,000 people in over 135 countries. Were a team of independent thinkers who put quality, inclusion and integrity first. All around the worldwe bring a different experience to our clients. A better experience. One that delivers the expertise they need in a way that goes beyond. Personal, proactive, and agile. Thats Grant Thornton. NEW GROUND WONT BREAK ITSELF. Every day our teams help people in businesses and communities to do what is right and achieve their goals.The Grant Thornton Cyber Defence Centre are an established MSSP at the forefront of Cyber solutions, working with industry leading technologies. We offer a path for progression and invest in our workforce. Initiative is encouraged and support is always availableacross the team and wider group. We work collaboratively and cross functionally, boasting a healthy ethos whereby we aim to promote the best version of ourselves and you.Working from within the SIRT team, the successfully candidate will be working closely with other members of the team carrying out duties such as EDR alert investigation, Threat Hunting across client digital networks and general network security investigations.Working within this role, the SIRT Managers position with require the qualities of both an analyst and manager as during times when the department leads are unavailable the manager will deputise and provide support and guidance to the SOC, Incident Responseteams and clients.Were happy to talk flexible working and consider reduced hours and job shares, well support you to balance your work and life.A look into the role As a SIRT Manager within our Cyber Defence Centre, you will:

• Act as a point of contact for assistance to SOC members who are investigating more complex EDR alerts and require assistance and direction
• To conduct and manage Threat Hunting by both SIRT and SOC members thought out the multiple environments that are managed by GTUK
• Upon deployment by IR teams, conduct real-time searches for threats and remediate as directed by personnel deployed and IR leads
• Use live Ops to search for targeted data or threats using both built in searches and formulate custom queries using OS query language
• When required to do so, compile and manage groups of machines into policies that dictate how they behave based on observed Tactics, Techniques and procedures
• Remain up to date with current and emerging threats that could damage GTUK clients

Knowing youre right for us Joining us as a SIRT Manager, the minimum criteria youll need is a professional qualification such as GCFA, GCIH, GNFA or equivalent with post qualification experience, and to be confident managing a large portfolio of clients. The successful applicantwill ideally have experience in a similar role. It would be great if you had some of the following skills, but dont worry if you dont tick every box, well help you develop along the way.

• Knowledge and experience of computer networks, operating systems, software, hardware and security
• An understanding of Cyber security risks associated with various technologies and ways to manage them
• The ability to analyse and solve problems related to identified threats, patterns and trends
• Experience working with EDR tools such as Carbon Black and Crowdstrike
• Knowledge of cyber threats, malware analyse and attacker techniques
• Be able to utilise your knowledge of the MITRE ATT&CK framework whilst investigating incidents
• Understanding Threat hunting theory and the different types of hunts
• An understanding and experience of Incident Response tools
• Practical experience and knowledge of Powershell, Apple and Linux scripting
• Having had previous experience of handling an Incident response investigation
• Experience at using Structured Query Language (SQL)
• Experience with analytical tools such as Splunk data management tooling

Knowing were right for youEmbracing uniqueness, the culture at Grant Thornton thrives on the contributions of all our people, we never settle for what is easy, we look beyond to deliver the right thing, for everyone. Building an inclusive culture, where we value difference and respectour colleagues helps our people to perform at the best of their ability and realise their potential.Our open and accessible culture means youll interact with leaders who are interested in you and everything you bring to our firm. The things that set you apart, we value them. Thats why we give you the freedom to bring your whole self to work and pursueyour passions inside and outside of work.Beyond the job Life is more than work. The things you do, and the people youre with outside of work matter, thats why were happy to look at flexible working options for all our roles, and well always do our best to keep your work and life in balance.The impact you can make here will go far beyond your day job. From secondments, to fundraising for local charities, or investing in entrepreneurs in the developing world, youll be giving back to society. Its that drive to do the right thing that runs throughour every move, grounded in our CLEARR valuesCollaboration, Leadership, Excellence, Agility, Respect and Responsibility.Were looking for people who want to contribute, spark fresh ideas and go beyond expectations. People who want to be able to proudly do whats right, for the firm, our clients, our people and themselves. Its how it should be.#LI-ME1#GTRO