Security Information & Event Management (SIEM) Specialist - Incident Response Lead

Bristol, UK

Graphcoreis one of the world’s leading innovators in Artificial Intelligence compute.

It is developing hardware, software and systems infrastructure that will unlock the next generation of AI breakthroughs and power the widespread adoption of AI solutions across every industry.

As part of the SoftBank Group,Graphcoreis a member of an elite family of companies responsible for some of the world’s most transformative technologies. Together, they share a bold vision: to enable Artificial Super Intelligence and ensure its benefits are accessible to everyone.

Graphcore’s teams are drawn from diverse backgrounds and bring a broad range of skills and perspectives.A melting pot of AI research specialists, silicon designers, software engineers and systems architects, Graphcore enjoys a culture of continuous learning and constant innovation.

The SIEM Specialist/Incident Response Team Lead is responsible for managing the organization's security information and event management system, monitoring network activity in real-time, identifying potential security threats, and leading incident response efforts. This role requires a strong understanding of security information and event management systems, threat intelligence, and incident response procedures.

You’ll be joining a multidisciplinary team with strong technical skills and a very supportive culture. We work closely together and regularly share knowledge, and your skills will make a direct impact on our business. It’s an exciting and pivotal moment for us right now, with plenty of new projects ahead. If you're looking to solve interesting problems and see your work deliver real-world results, this is the team for you.

• SIEM System Management: Configure, manage, and maintain the SIEM system to ensure it is accurately collecting, processing, and analysing log data from various sources.
• Liaise with our external Security Operations Center (SOC) Managed Service Provider (MSP) for incident response and escalation purposes, ensuring seamless collaboration and communication during incident response efforts.
• Stay up to date with emerging threats, trends, and best practices in threat intelligence to enhance the organization's ability to detect and respond to cyber threats.
• Develop, implement, and maintain incident response plans to ensure effective containment, eradication, recovery, and post-incident activities.
• Lead incident response efforts, including coordinating efforts with cross-functional teams (e.g., IT, operations), and with external security providers on containment, eradication, recovery, and post-incident activities.
• Incident Reporting and Communication: Provide regular updates on incident status, containment, and resolution to senior leadership and stakeholders.
• Develop and deliver internal training and table-top exercises of incident response procedures.
• Ensure the SIEM system is aligned with industry standards (e.g., ISO 27001, Cybersecurity Essentials) and regulatory requirements.

• Experience in cybersecurity or a related field
• Proven experience with SIEM systems
• Experience with threat intelligence frameworks (e.g., MITRE ATT&CK)
• Excellent communication and collaboration skills to work effectively with cross-functional teams
• Strong analytical and problem-solving skills to identify potential security threats
• Ability to manage competing priorities and meet deadlines in a fast-paced environment
• Bachelor's degree in computer science, Cybersecurity, or a related field
• CISSP, CEH, OSCP, or equivalent security certifications
• Experience with SIEM systems for hybrid environments
• Familiarity with incident response frameworks (e.g., NIST CSF, ISO 27035)
• Knowledge of penetration testing frameworks
• Strong scripting skills in languages like Python, Bash or PowerShell
• Experience with big data analytics and visualization tools

In addition to a competitive salary, Graphcore offers flexible working, a generous annual leave policy, private medical insurance and health cash plan, a dental plan, pension (matched up to 5%), life assurance and income protection. We have a generous parental leave policy and an employee assistance programme (which includes health, mental wellbeing, and bereavement support). We offer a range of healthy food and snacks at our central Bristol office and have our own barista bar! We welcome people of different backgrounds and experiences; we’re committed to building an inclusive work environment that makes Graphcore a great home for everyone. We offer an equal opportunity process and understand that there are visible and invisible differences in all of us. We can provide a flexible approach to interview and encourage you to chat to us if you require any reasonable adjustments.