Cyber Security Investigations Lead

WPP IT provides IT services for WPP, the world’s largest communications services group. As a creative transformation company, WPP is helping its clients transform the future through extraordinary work. WPP IT is an integral part of that journey and we are proud to provide technology for some of the world’s most creative brands.

Visit our LinkedIn page to see what we're up to!

Why we're hiring:

At WPP, technology is at the heart of everything we do, and it is WPP IT’s mission to enable everyone to collaborate, create and thrive. WPP IT is undergoing a significant transformation to modernise ways of working, shift to cloud and micro-service-based architectures, drive automation, digitise colleague and client experiences and deliver insight from WPP’s petabytes of data. 

As we progress on this journey, we require a  Cyber Security Investigations Lead to take full responsibility for the complete cyber security investigation lifecycle. They will provide investigation, profiling, evidence gathering, case management and open source intelligence capabilities into the Cyber Security function and will report directly to the Global Head of Cyber Security. 

The Cyber Security Investigations lead will work closely with colleagues including but not limited to incident responders, forensic and malware specialists, and cyber threat intelligence analysts in order to investigate cyber events. 

They will develop and maintain close relationships with relevant law enforcement agencies, third party specialists and internal legal and security teams. 

What you'll be doing:

• Ownership of the cyber security investigations lifecycle 
• Digital profiling 
• Open source intelligence 
• Evidence gathering 
• Case management 
• Production of cyber investigation reports 
• Delivery of cyber investigation briefings to senior management 

What you'll need:

• Previous law enforcement experience or similar preferable  
• Minimum 5-10 years investigative experience 
• Experience with case management solutions such as Resolver Core 
• Experience with investigation tools such as GBG Investigate 
• Full understanding of CPIA disclosure rules 
• OSINT trained 
• Experience with RIPA 
• GDPR aware as well as experience in lawful business monitoring 
• Experience of digital profiling and cyber investigations including platforms, networks, mobile and social media 
• Hand on experience with digital forensic techniques and tools 
• Strong knowledge of relevant cyber-crime and computer instigation laws and restrictions 
• Hands-on experience with dark web analysis  
• Ability to document findings into reports that can be understood across all levels of the organisation. 
• Strong presentation and communication skills, both verbal and written

Who you are:

You're open: We are inclusive and collaborative; we encourage the free exchange of ideas; we respect and celebrate diverse views. We are accepting: of new ideas, new partnerships, new ways of working.

You're optimistic: We believe in the power of creativity, technology and talent to create brighter futures or our people, our clients and our communities. We approach all that we do with conviction: to try the new and to seek the unexpected.

You're extraordinary: we are stronger together: through collaboration we achieve the amazing. We are creative leaders and pioneers of our industry; we provide extraordinary every day.

What we'll give you:

Passionate, inspired people – We promote a culture of people that do extraordinary work.

Scale and opportunity – We offer the opportunity to create, influence and complete projects at a scale that is unparalleled in the industry.

Challenging and stimulating work – Unique work and the opportunity to join a group of creative problem solvers. Are you up for the challenge?

WPP is an equal opportunity employer and considers applicants for all positions without regard to race, color, religion or belief, sex, age, national origin, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability. We believe in creating a dynamic work environment that values diversity and inclusion and strives to recruit a diverse slate of candidates to help us achieve that goal.

Please read our Privacy Notice for more information on how we process the information you provide.