Overview

Location: Flexible (UK). Please note: due to the nature of client work, willingness to undergo a Security Clearance process is required, which requires 5+ years UK address history at the point of application.

Accenture is a leading global professional services company delivering strategy and consulting, interactive, technology and operations with digital capabilities across all services. We value inclusion and the whole person, with core values including Stewardship, Best People, Client Value Creation, One Global Network, Respect for the Individual and Integrity. Accenture is committed to equal opportunities and welcomes applications from all sections of society.

We are expanding our Security CIFR practice to provide around-the-clock incident response services to enterprise clients. The team operates across Europe, delivering expertise to multinational clients and thought leadership within our company. This is an opportunity to learn, grow and advance in an innovative culture that supports boundaryless career opportunities.

This role involves cutting-edge technologies and a broad range of new skills as part of a global team delivering expert incident response services.

Flexibility and mobility: there may be requirements to spend time onsite with clients to enable delivery of our services.

Responsibilities

• Lead incident response engagements, including coordination of other resources for on-site and remote investigations
• Identify and investigate intrusions to determine the cause and extent of the breach
• Conduct data collection, host and network digital forensics, log analysis, malware analysis and living-off-the-land techniques in support of investigations, including leveraging EDR solutions and threat intelligence
• Lead threat hunting engagements
• Conduct incident response within various Cloud platforms
• Identify attacker Tactics, Techniques and Procedures (TTPs) to develop indicators of compromise
• Develop and implement dynamic remediation plans in conjunction with incident response engagements
• Lead authoring of client reports on investigative findings
• Communicate with customers technically and strategically to stakeholders and legal counsel throughout engagements
• Support leadership in properly scoping engagements with innovative, methodical approaches based on customer requirements
• Mentor and train CIFR team members
• Contribute to development and maintenance of service offerings

As an Investigator you will

• Engage credibly with a broad C-suite agenda and guide senior leadership in forming robust security and resilience strategies
• Apply deep industry expertise to help clients develop appropriate strategies with limited capacity in incident response
• Understand client needs in the security market and apply insights to deliver short- and long-term value

As part of Accenture Security CIFR, you will respond to large and complex data breaches and conduct cyber threat hunting in varied environments. You will work in a fast-paced, collaborative team supporting one mission: provide expert incident response services to Accenture customers.

What we are looking for (experience and skills)

• Strong knowledge of incident response, digital forensics and cyber incident investigation processes
• Familiarity with common DFIR toolsets
• DFIR knowledge across Windows, Linux and MacOS
• Experience of Threat Hunting on endpoints and ideally networks
• Ability to identify TTPs and develop indicators of compromise
• Experience in finding and eradicating attackers and improving monitoring and protection capabilities
• Ability to develop and implement dynamic remediation plans with incident response engagements
• Understanding of enterprise environments and how they work
• Understanding of common malware types and infection vectors
• Ability to lead a team of investigators during demanding engagements including client interaction
• Excellent project management and client-facing communication skills

Set yourself apart

• Experience with Cloud environments
• Experience with OT and ICS environments
• Knowledge of scripting and programming languages
• Experience with reverse engineering and sandboxing technologies
• Relevant degree in computing/IT
• Security certifications (e.g., GREM, GCFE, GCFA, CEH, GCIH)
• Minimum 5 years of DFIR experience

What’s in it for you

In addition to a competitive salary, Accenture offers a comprehensive benefits package including 30 days’ vacation per year, private medical insurance, car allowance (paid as cash), a bonus scheme, and 3 extra days per year for charitable work of your choice.

Flexibility and mobility are required to deliver this role, including potential onsite time with clients to enable delivery of our services.

About Accenture

Accenture is a leading global professional services company delivering strategy and consulting, interactive, technology and operations. We combine extensive experience with specialized capabilities across more than 40 industries, supported by a global network. With 733,000 people serving clients in more than 120 countries, Accenture drives innovation to help clients improve performance and create lasting value. Visit us at www.accenture.com

Accenture is an equal opportunities employer and does not discriminate on grounds of race, religion or belief, ethnicity, disability, age, citizenship, marital status, domestic partnership or civil union, sexual orientation, or gender identity, or any other basis as protected by applicable law.

Closing Date for Applications: 30/09/2025

Accenture reserves the right to close the role prior to this date should a suitable applicant be found.