Role Description This role is positioned within our Volume Motor Litigation Unit which deals with motor litigation across MOJ, OICP, Small Claims and Fast Track claims to the value of £25k. The unit is made up of distinct file handler teams managing the different work types previously mentioned. The unit offers clear progression pathways, both technically and operationally allowing candidates to continue their career journey within the business. The role of MOJ/OICP File Handler is within our Part 8 Team managing a caseload of litigation MOJ and OICP portal cases up to a value of £25k. Cases would be managed from the point of service through to resolution. All claims would be handled on behalf of key insurer clients as Defendant. The role would suit: - An established portal litigator looking for opportunities to progress their career longer term. - Pre-litigation handlers, paralegals, or handling assistants looking to move into a litigated file handling role. - A law graduate looking for their first handling role. Full induction training will be provided along with continued on the job training and supervision. Qualifications - Previous experience of handling own caseload of litigated claims (either in a defendant or claimant role) desirable. - Understanding of case law and litigation practice and process, and Court Practice Rules. - Ability to plan and prioritise workloads. - Efficient in a process driven environment. - Excellent listening and verbal communication skills. - Excellent written communication skills and the ability to compose professional written communications. - Ability to follow instruction with attention to detail. - Ability to recognise when sensitivity and tact are required. - Effectively work within a team. - Proficient IT skills (Word, Excel and Office). - Good standard of education – 5 GCSE’s grade C/5 or equivalent including maths and English. Requirements - Independent management of a caseload of Part 8 cases, including effective planning and organising of the associated workload to ensure Court deadlines are met. - Delivery of agreed performance targets and quality standards. - Analysis of the available evidence to create an initial case strategy on quantum. - Undertake effective telephone discussions and negotiations with the client, Defendant, third party insurer and third party Solicitors to pursue the efficient and appropriate settlement of cases and apportionment of costs. - Drafting of Court documents and complying with all Court deadlines. - Instructing, briefing and liaising with Counsel. - Guide the Defendant through the litigation process where required and set expectations. - Timely and accurate maintenance of all case management, billing and management information systems to ensure completeness of records and aid business decision making. - Delegation of tasks where available and appropriate to other members of the team. - Dealing with correspondence and telephone calls within strict service level agreements. - Updating reports upon receipt of evidence as required. - Adhering to Client Guidelines. - Provide written updates by email or letter to clients detailing case activity to ensure that they receive up to date and accurate information about progress when requested. - Ensuring files are kept within ISO 9001 guidelines. - Assisting the team with file tasks as required. - Assisting the team leader with team tasks as required. - To ensure compliance with the SRA Code of Conduct 2011. Benefits - Davies Incentive Plan. - 25 days holiday per year which increases with level of service (opportunity to buy & sell 3 days). - Simply Health Care Cash Plan. - WeCare – 24/7 online GP, mental health support and virtual wellbeing covering a whole host of topics to do with health, mental health, wellbeing & healthy living and financial & legal wellbeing. - Death In Service – after 1 years’ service. - Pension Contribution based 5% Employee / 3% Employer. - Employee Resource Groups. - Employee Volunteering Programme. - Cycle to Work Scheme*. - Tech Scheme*. - Season Ticket Loan*. - Gym Flex*. - Access to Online Discount Sites. - Discounted Gourmet Society Membership. - Discounted Tickets for Merlin Attractions nationwide. - Discounts at local retail outlets. *after successfully completing probation.

Role Description The Incident Commander serves as the senior operational leader during cybersecurity incidents and is responsible for directing, coordinating, and managing all response activities throughout the incident lifecycle. This position acts as the central decision-maker during major cyber events, ensuring that technical teams, business stakeholders, executive leadership, and external partners operate in a coordinated and effective manner. The Incident Commander leads incident response efforts involving: - Ransomware - Data breaches - Cloud compromises - Insider threats - Business email compromise - Advanced persistent threats - Other high-impact security incidents The role is responsible for: - Establishing response priorities - Coordinating technical investigations - Managing escalation activities - Directing containment and recovery actions - Ensuring timely communication with executive leadership and stakeholders The Incident Commander serves as the bridge between technical teams and organizational leadership by translating complex technical findings into actionable business information. The position oversees: - Incident status reporting - Executive briefings - Operational decision-making - Forensic coordination - Threat intelligence integration - Post-incident reviews The Incident Commander is ultimately accountable for ensuring incidents are managed efficiently, risks are minimized, and business operations are restored as quickly and safely as possible. Qualifications - Extensive experience leading cybersecurity incident response operations within enterprise, government, defense, critical infrastructure, or managed security service environments - Strong expertise in incident response, crisis management, cyber defense operations, threat intelligence, digital forensics coordination, and executive communications - Experience managing complex security incidents involving multiple teams, technologies, stakeholders, and business units - Strong knowledge of incident handling methodologies, cyber attack lifecycles, ransomware response, breach management, cloud security incidents, and enterprise security operations - Exceptional leadership, communication, and organizational skills - Capability of delivering executive briefings, managing stakeholder expectations, facilitating crisis communications, and translating technical information into business-focused recommendations - Experience coordinating forensic investigations, threat intelligence activities, legal considerations, regulatory reporting, and recovery operations is highly desirable Requirements - Preferred certifications include CISSP, GCIH, GCFA, CISM, CASP+, PMP, ITIL, or equivalent industry-recognized certifications - Equivalent experience leading major cybersecurity incidents, crisis response operations, or cyber defense missions may be considered in lieu of specific certifications Core Skills - Incident Response Leadership - Crisis Management - Executive Briefings and Communications - Threat Intelligence Integration - Digital Forensics Coordination - Major Incident Management - Cybersecurity Operations - Risk Assessment and Decision Making - Stakeholder Management - Recovery and Business Continuity Coordination - Regulatory and Reporting Awareness - Cross-Functional Team Leadership

Role Description Nscale's Incident Management and Change Management processes lack a single owner driving them as operational discipline. As the company onboards large scale workloads, we need a dedicated process champion sitting inside Support — the team that owns both functions — to own the processes, implement them in tooling, train the organization, advocate across teams, run the daily operational rhythm, and report on program health to leadership. This is a hands-on, operational role. You will be the person in the bridge when MI/SEV-1s fire, the chair of the Change Advisory Board, the author of postmortem templates, the trainer of new Incident Commanders, and the analyst presenting monthly process metrics to the SLT. The work spans process design, tooling configuration and culture change. What You Will Own - Own the processes. - Take the in-flight Incident Management and Change Management process documents to a v1.0 state. - Close the gaps that are already known: - Severity declaration authority - IC/scribe/comms-lead role separation - SLA/SLO tables for ack and resolution - Customer communication ladder - War-room scaling beyond -red/-blue - Change risk classification - Emergency change path - Change freeze policy - Postmortem template - RCA SLA/SLO - Implement in tooling. - Drive the Jira Service Management implementation for incident and change workflows as part of the active Servicely-to-Jira migration. - Define required fields, ticket hygiene standards, escalation routing, automation, and integrations. - Ensure the service catalogue is accurate, current, and properly referenced by both incident and change tickets so impact analysis is reliable. - Run the operational rhythm. - Act as Incident Commander or Major Incident Manager for SEV-1 and complex SEV-2 events. - Chair the Change Advisory Board on a defined cadence. - Facilitate postmortems and drive action items to closure with measurable SLAs. - Manage the change calendar including freeze windows around customer-critical periods. - Coordinate communications during incidents — internal updates, customer notifications, executive escalation, regulatory notification where sovereign workloads require it. - Train and advocate. - Build and certify a pool of Incident Commanders across Support, SRE, and adjacent engineering teams. - Run tabletop exercises and game days on a quarterly cadence (immediate priority: three tabletops in May, June, and July leading into first production customer go-live). - Onboard engineers to both processes as they join. - Be the visible champion for blameless postmortem culture, mitigate-first response, and disciplined change practice. - Report on health program. - Define the metrics that matter — mean time to acknowledge, mean time to mitigate, mean time to resolve, postmortem closure rate, recurrence rate, change success rate, change-caused incident rate, action-item ageing — and publish a monthly program report to the SLT. - Identify systemic issues from trend analysis and feed them back into runbooks, training, and process revisions. Qualifications - 5+ years in ITSM / Service Management roles with direct ownership of Incident Management and Change Management processes. - Hands-on experience facilitating major incidents end-to-end as Incident Commander or Major Incident Manager in a 24/7 production environment. - Demonstrable experience running a Change Advisory Board or equivalent change-review forum. - Proven track record configuring Jira Service Management, ServiceNow, or equivalent ITSM tooling for both incident and change workflows. - Strong writing skills — process documents, postmortems, executive incident reports, training material. - Comfort holding the room under pressure with senior stakeholders, engineers, and customers concurrently on the bridge. Strongly Preferred - Experience in cloud, hyperscaler, AI infrastructure, or HPC environments. - Familiarity with SRE concepts — SLOs, error budgets, blameless postmortems, runbook discipline. - Experience designing and running tabletop exercises and game days. - Experience operating processes for regulated or sovereign customer workloads where notification timing has regulatory weight. - Familiarity with Jira's automation, JSM portals, and integration ecosystem (the migration is in flight). - Comfortable working across time zones and cultures — Nscale spans Norway, UK, Finland, Portugal, and the US. Benefits - Collaborative, supportive, and innovative environment where your contributions spark real impact. - Highly competitive package (base + equity) with reviews every 12 months. - Join the fastest-growing tech startup, your chance to push boundaries, collaborate with brilliant minds, and make your mark on cutting-edge AI. - Dynamic progression plan tailored to your ambitions. - Human-First Flexibility: We treat you as humans first. Our flexible workplace trusts Nscalers to deliver, giving you the autonomy to shape your day around life's moments. - Join our thriving remote-first team. Geography is no barrier to impact or connection. Equal Opportunities Statement We strongly encourage applications from people of colour, the LGBTQ+ community, people with disabilities, neurodivergent people, parents, carers, and people from lower socio-economic backgrounds. If there’s anything we can do to accommodate your specific situation, please let us know. The responsibilities outlined in this job description are not exhaustive and are intended to provide a general overview of the position. The employee may be required to perform additional duties, tasks, and responsibilities as assigned by management, consistent with the skills and qualifications required for the role.

• Design, build, and improve automated evidence collection capabilities that increase the speed, consistency, and completeness of incident investigations. • Create and maintain SOAR playbooks that orchestrate investigation, enrichment, containment, notification, and recovery workflows. • Integrate SIEM, EDR, IAM, cloud, email, case management, and threat intelligence platforms to enable unified response actions and stronger analyst context. • Develop and deploy response tooling that may utilize AI to improve response capabilities across cloud, endpoint, identity, SaaS, email, and data platforms. • Develop scripts, tools, and integrations that support triage, containment, enrichment, forensic collection, and operational response workflows. • Ensure responders have the logs, telemetry, access, and tooling needed to investigate and respond without unnecessary delay. • Build dashboards, operational views, and incident metrics that measure response performance, workflow health, and process effectiveness. • Identify repeated manual analyst tasks and turn them into safe, scalable, and repeatable automation. • Review incident response plans, identify readiness gaps, and help develop practical strategies to improve preparedness. • Design and optimize incident response playbooks aligned to relevant threats, operating models, and business needs to allow for quick identification and response to potential incidents. • Collaborate with Response Operations and Automation team stakeholders for prioritization, automation creation, and integrations with security tooling. • Facilitate or support tabletop exercises, drills, and readiness activities to validate plans and improve operational performance. • Lead or support complex investigations involving host, network, identity, email, and cloud artifacts to determine nature, scope, and root cause. • Partner with cross-functional teams to guide containment, remediation, recovery, and post-incident improvement activities. • Brief technical teams and leadership on findings, risks, recommendations, and response decisions during and after incidents. • Contribute to incident response standards, methodologies, documentation, and internal knowledge sharing. • Participate in an incident response on-call rotation, including weekend coverage, as required.