Cyber Incident Manager

  • Anywhere
  • Anywhere


Do you have a passion for cyber security and are now looking to take your career even further? Then look no more! Because here at Aviva we share that passion.

An extraordinary opportunity has arisen for a Cyber Incident Manager within our Global Cyber Security Operations (GCSO) team. The role is primarily based in London; however, we can be flexible and candidates can also be based out of our Bristol offices.

Working as part of the Global Cyber Security Incident Management function the role will manage delivery of Cyber Incident Management services to Aviva markets, supporting regulatory, IT Security best practice, policy, and business requirements.

In this fantastic opportunity, the chosen post-holder will work at the forefront of cyber defence operations, delivering GCSO’s and Aviva’s wider mission through reducing the impact of cyber intrusions on our networks. You’ll drive the response to higher severity cyber incidents through the best practice life cycle and ensure root cause analysis is performed to support improvement of our controls.

You’ll drive the incident response (IR) life cycle for serious cyber incidents by ensuring that the relevant parts of the business are engaged and activated to undertake the actions needed to reduce impact on our business. When not responding to incidents, you will help develop our IR capabilities, including writing and maintaining playbooks, assessing the IR maturity, and assisting in table-top cyber-scenario exercises. You will provide SME support to wider cyber related projects and support the continuous service improvement of incident management.

The role focuses on stakeholder engagement and coordination and whilst we seek candidates with a strong IR background, we are also looking for someone who has cyber security and risk management experience.

Skills & Experience required

  • Lead and own significant security incidents delivering effective and timely response measures through a coordinated and structured approach
  • Work with wider CISO teams to ensure that incidents are appropriately assessed, categorised, and triaged
  • Perform incident related cyber risk management and root cause analysis, ensuring effective threat remediation and aiding the prevention of re-occurrence
  • Provide written and verbal briefings to key stakeholders and senior leaders
  • Manage and coordinate Post Incident Review (PIR) sessions, effectively improving the incident management service whilst also improving business operations
  • Collaborate with wider security teams to ensure that the business maximises its capabilities to defend and respond to cyber incidents
  • Collaborate with IT and wider business service teams to investigate and resolve cyber incidents
  • Strong knowledge of security incident response & management best practices and industry standards/frameworks
  • Sound and demonstrable knowledge of security fundamentals and clear understanding of risk management techniques/frameworks
  • Be resilient, appropriately challenging and be driven by reducing complexity whilst operating in an ever evolving and complex environment
  • Be an active participant of the out of hours on call team, providing 24/7 incident support
  • Support continuous service improvement of the incident management framework, processes, and tooling

Desirable Skills & Experience

  • Experience of developing and producing incident response processes, wider security documentation and technical playbooks
  • Conduct trend analysis and maintain a level of cyber threat & situational awareness to protect the business and its global markets
  • Support CISO cyber security projects and act as an SME regarding incident management
  • General understanding of key technologies, including servers, desktops, networks, and security related products
  • Experience of responding too/handling of IT Security incidents in a global environment
  • Experience working with 3rd parties and Managed Security Service Providers (MSSPs) from a security operations perspective


  • BSc in Computer Science or similar field of study desired but not required
  • MSc in Information Security or similar field of study desired but not required

What will you get for this role?

  • Competitive salary depending on location, skills, experience and qualifications
  • A generous defined contribution pension scheme
  • Annual performance related bonus and pay review
  • A holiday allowance of 29 days plus bank holidays and the option to buy/sell up to 5 additional days
  • Up to 40% discount for some Aviva products through “My Aviva Extras” plus discounts for Friends and Family (some exclusions apply)
  • Excellent range of flexible benefits to include a matching share save scheme

Working at Aviva

At Aviva, we’re people with a purpose. To be with you today, for a better tomorrow.

We bring this to life by ensuring risk handling is at the heart of the way we all work. We love people who do the right thing for our customers, and our colleagues. We want people who speak up, who take ownership, and who make good decisions.

The way we do this is important too. We always ‘Care More’. It’s our thing. We’re all about our people – that’s you – so we can be pretty flexible. If you want to work from home some of the time or change your hours so you can pick up your kids or care for someone in your family, we’re very open to that. In fact, we don’t advertise roles as either part or full time, because we know each person has different needs, just as each business area has different needs. So, it’s up to you to discuss working hours during your interview.

We care deeply about being inclusive and that means we encourage applications from people with a diverse group of backgrounds and experiences. We want our employees to bring their whole self to work and that starts with you.

We interview every disabled applicant* that meets the minimum criteria for the job . Once you’ve applied, please send us a separate email stating that you have a disclosed disability, and we’ll make sure we interview you.

We’d love it if you could submit your application online. If you require an alternative method of applying, please give Ryan Morgan a call on 0121 281 4269 or send an email to [email protected]

*As defined in The Equality Act 2010*. By ‘minimum criteria’ we mean you should provide us with evidence which demonstrates that you generally meet the level of competence required and have the qualifications, skills or experience defined as essential to perform the role.

To apply for this job please visit

To apply for this job please visit

Contact us


Related Jobs