GE Jobs

Mobile GE Logo

Job Information

General Electric Senior Incident Responder in Cheltenham, United Kingdom

Job Description Summary

We are currently recruiting for a Senior Incident Responder for our Cheltenham office. This role will be responsible for hunting, detecting and responding to digital security threats. You will learn and develop your technical leadership abilities and whilst enhancing on your strong comprehension of malware, emerging threats and calculating risk. The successful candidate will have knowledge of the cyber security either through studies or on the job experience with a passion for continuous improvement and striving to develop career further. Please note for this role you will be required to obtain and maintain SC clearance.

Job Description


  • Specialise in network-centric analysis (NSM), host-centric analysis (live response, digital forensics), malware analysis, and log-centric analysis (SIEM)

  • Perform daily response operations on a schedule that may involve non-traditional working hours

  • Curate signatures, tune systems/tools, and develop scripts and correlation rules

  • Analyse host and network forensic artifacts and identify patterns and behaviours related to threat actors

  • Lead technical aspects of incident detection and response

  • Mentor and train incident other team members on detection techniques and processes

Skills and experience:

  • Bachelor's Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math) or equivalent work experience

  • CISSP, CISM or related SANs or Industry certifications

Desired Expertise:

  • First relevant Cyber or IT related experience in client and server environments. Infrastructure management and support

  • Understanding of CND-based analytical models (Kill Chain, ATT&CK, Pyramid of Pain, etc.)

  • Understanding of APT, Cyber Crime and other associated tactics

  • Understanding of host forensics and network analysis techniques and tools

  • Understanding of malware and reverse engineering

  • Understanding of vulnerabilities. Vulnerability management, remediation and implementation techniques.

  • Understanding of responding to threats in cloud platforms (AWS, Azure, Google, etc.)

  • Excellent verbal and written communication skills

  • Excellent organisational and analytical skills

  • Detail oriented with the ability to multi-task and prioritise efforts

  • Good team working and collaboration skills

At GE Aviation we understand the importance of Total Reward. Our flexible benefits plan, called FlexChoice, gives you freedom, choice and flexibility in the way you receive your benefits, as well as giving you the opportunity to make savings where possible.

As a new joiner to GE we are pleased to be able to offer you the following as default in your benefit fund, which you then can tailor to meet your individual needs;

  • Non-contributory Pension

  • Life Assurance

  • Group income protection

  • Private medical cover

  • Holiday Hourly equivalent of 26 days, with flexible option to buy or sell

Baseline Personnel Security Standard (BPSS) clearance is required and must be maintained for this role. Please note that in the event that BPSS clearance cannot be obtained, you may not be eligible for the role and/or any offer of employment may be withdrawn on grounds of national security. Please see the link below for further details regarding the requirements for BPSS clearance: BPSS (https://https/

Applications from job seekers who require sponsorship to work in the UK are welcome and will be considered alongside all other applications. However, under the applicable UK immigration rules as may be in place from time to time, it may be that candidates who do not currently have the right to work in the UK may not be appointed to a post if a suitably qualified, experienced and skilled candidate who does not require sponsorship is available to take up the post. For further information please visit the UK Visas and Immigration website. (https://https/


Additional Information

Relocation Assistance Provided: No