Contracts IT Recruitment Consulting Ltd logo

ServiceNow SIR Consultant (Cyber Security Operations)

Contracts IT Recruitment Consulting Ltd
1 hour ago
Contract
North
United Kingdom

ServiceNow SIR Consultant (Cyber Security Operations)
Location: Northwest - 2 days/week onsite (hybrid working)
Duration: 6 months initial
Excellent Rates - Outside of IR35
*Public Sector Experience and relevant accreditation highly desirable*

*Urgent 6 Month contract - Interviewing and hiring now!*

This is a *Northwest* Hybrid based role with an excellent immediate start within a Public Sector organisation working on *Designing and implementing end-to-end SIR workflows covering incident triage, investigation, escalation and case management.*

We're looking for an experienced ServiceNow Security Incident Response (SIR) Consultant to play a key role in enhancing and optimising a mature Cyber Security Operations capability.

This is an exciting opportunity to work on a high-profile cyber programme, designing intelligent workflows, automating security processes and integrating cutting-edge security technologies to improve incident response across a complex enterprise environment.

What You'll Be Doing

You'll lead the design, configuration, and optimisation of the ServiceNow Security Incident Response (SIR) platform, ensuring it supports efficient, scalable and effective cyber incident management.

Your work will include:

  • Designing and implementing end-to-end SIR workflows covering incident triage, investigation, escalation and case management.
  • Configuring and enhancing the ServiceNow SIR platform, including forms, templates, automated routing and response playbooks.
  • Integrating SIR with SIEM, SOAR, threat intelligence platforms and wider ITSM processes.
  • Developing automation that improves analyst efficiency and reduces response times.
  • Building dashboards, reporting and operational metrics that provide meaningful cyber insight.
  • Producing technical documentation, playbooks and process guidance to support long-term service maturity.
  • Delivering training, knowledge transfer and successful transition into Business as Usual (BAU).

What We're Looking For

We're seeking someone with proven experience in:

  • ServiceNow Security Incident Response (SIR) implementation and configuration.
  • Cyber Security Operations (SOC/CSOC) and incident response processes.
  • ServiceNow SecOps, workflow automation and platform customisation.
  • Integration with SIEM, SOAR and threat intelligence technologies.
  • ITIL and IT Service Management processes.
  • Stakeholder engagement, documentation and knowledge transfer.

Experience working within enterprise or regulated environments and an understanding of NCSC-aligned cyber incident management would be highly desirable.

If you're passionate about cyber security, automation and delivering smarter incident response through ServiceNow, we'd love to hear from you.

Please note: This role is subject to pre-employment screening and the successful candidate must be able to satisfy the vetting requirements associated with working on sensitive government programmes.

Please send your CV or call Javaid to discuss further.
We are an equal opportunities employment agency and welcome applications from all suitably qualified persons regardless of race, sex, disability, religion/belief, sexual orientation, or age.

We champion differences in technology recruitment and work with clients who actively wish to diversify their talent force - ALL applicants are welcome to apply