1 to 25 of 300 Incident Response Jobs in the UK

with cross-functional teams to identify and mitigate cybersecurity risks, develop policies and procedures, and ensure compliance with regulatory requirements. Additionally, you will lead incident response efforts, conduct security awareness training, and stay abreast of emerging threats and technologies to continuously enhance the security posture. It is important … of security policies, standards, and procedures Conduct risk assessments and develop mitigation plans to address cybersecurity threats Manage security operations, including monitoring, detection, and incident response Collaborate with IT and other departments to ensure security controls are effectively integrated into systems and processes Provide leadership and guidance to more »

state of MongoDB’s productsCoordinate responses to high-profile supply chain eventsRequirementsBasic understanding of the following security concepts: encryption, access controls, vulnerability management, SSDLC, incident response, and business continuity/disaster recovery as they apply in a cloud environmentBasic understanding of the following cloud networking concepts: VPCs, security more »

of Threat Remediation is responsible for applying their extensive array of technical knowledge & experience to drive the remediation of complex technical challenges resulting from incident response engagements and other related initiatives. This role requires ongoing proactive collaboration with various technical & non-technical business partners across the company, along … with incident responders during & after incidents. The incumbent will primarily focus on bolstering threat remediation capabilities in response to more significant technical challenges encountered by the team and serving as a champion for improvements to our security posture.This is an exciting opportunity to be part of a diverse … sources of risk for the company. Establish and maintain positive working relationships with key business partners across the organization. Proactively identify opportunities to support incident response efforts through active participation in daily team calls and direct engagement with stakeholders.Take ownership of specific threat remediation projects stemming from incident more »

architecture, and integration with security control frameworks.Oversee the implementation and operation of controls to meet identified security control objectives.Advise operations teams supporting computer security incident response activities related to intrusion detection monitoring, scanning, cyber threat reporting, and development/implementation of vulnerability mitigation strategies.Develop trusted advisor relationships for more »

Ensure compliance with data privacy laws and regulations.Risk Management: Conduct risk assessments and take appropriate actions to mitigate the risks associated with data security.Incident Response: Respond to security incidents, conduct investigations, and implement solutions to prevent similar incidents in the future.Training and Development: Train and educate stakeholders about our more »

these services, safeguarding the skies for countless travellers. As the custodian of these vital systems, your responsibilities will include meticulous oversight of daily operations, incident response, and strategic long-term management. Your role is crucial in ensuring the continuous availability of aviation safety services, and you will be more »

operations team and the quality of third party services and deliverables, reviewing performance.Take the lead management responsibility for all cyber security event monitoring and incident response services received from all partner organisations with a focus on our Managed Security Service relationship (MSS).Manage the search for cyber threats … that may go undetected in our environment that have evaded our automated security tools and defences.Accountable for Cyber Security incident response management including the establishment, maintenance and improvement of cyber security incident response plans, procedures, and playbooks.Promote security orchestration, automation, and response (SOAR) solutions for … systems and operational playbooks to enable efficient discovery of security events and response actions.Ideal experience:Minimum 5 years+ experience leading Cyber Security Operations teams.Practical experience of incident response governance (lifecycles, frameworks, incident handling) and developing incident response playbooks/processes, Security Orchestration, Automation and more »

defined processes.Supporting accreditation activities with the client and regulating authorities.Conducting security reviews and audits in accordance with defined processes.Conducting security operations, including Protective Monitoring, Incident Management, Incident Response, and Incident Recovery activities.If you would like to learn more about the opportunities available please get in touch.Share more »

defined processes.Supporting accreditation activities with the client and regulating authorities.Conducting security reviews and audits in accordance with defined processes.Conducting security operations, including Protective Monitoring, Incident Management, Incident Response, and Incident Recovery activities.If you would like to learn more about the opportunities available please get in touch. more »

dynamic code analysis, security scanning, investigation of security reports from InfoSec, our bug bounty program, or other trusted partners, and direct work with our incident response team on product security issues and incidents. This role has wide-reaching impact, strong autonomy, and the resources and empowerment to make more »

trends and tradecraft of Advanced Persistent Manipulators (APM) to drive action and response. The candidate must be able to craft formal intelligence and use incident response best practices to participate in active investigations and document relevant findings of these activities.- Leverage knowledge of marketing and advertising strategies to … cross-functional teams and leadership as appropriate. Further, the candidate is expected to use communication skills to work closely with cross-functional partners in response to actions over a variety of security disciplines to disseminate information and reporting as appropriate in support of TikTok's critical business and operational more »

reference: 40942/PG I’m working with a boutique consultancy, who are seeking to grow to their existing cyber function with another dedicated incident response/threat hunting specialist.This role is varied, offering the incumbent an opportunity to conduct incident response and threat hunting engagements. … but not limited to APT tracking and malware analysis.In order to be successful in your application, you will need:At least 3 years cyber incident response experience.Certifications such as GCIH, GCIA or GCFA/E.Ideally, consultancy experience however, strong regulated exposure is also welcomed.Strong baseline threat hunting skills … and ideally, an interest in research focused tasks.This is an exciting role for an incident responder, looking for a step up from basic cases to truly partner with organisations across the globe.Please contact pg@barclaysimpson for immediate consideration.IND123We seek individuals from a diverse talent pool and encourage applicants from more »

ongoing maintenance and monitoring. the team in demanding environments, provide constructive feedback, and foster individual and team development. as the escalation point for security response incidents, both during and outside business hours. the Cyber Security Incident process/procedure and Incident Response Team, conducting war games … and incident scenarios to prepare the IT department for real incidents. forensic investigations and reporting following cyber security incidents, involving third-party specialists if necessary. informed about the latest security threats, principles, techniques, and protocols, including new vulnerabilities, and act on them as needed. within an ITIL V3 & ISO27001 … approaches including ISMS, risk analysis and assessments, the CIA triad, attack vectors (including social engineering), cryptography, confidentiality issues, and best practices for cyber security incident response (including triage and chain of custody). to proactively identify areas for improvement, share lessons learned, and encourage the same behavior in more »

new tools and techniques to enhance the security posture Administer and mature tool configurations, optimize performance, and feature utilization Integrate tools to automate critical response tasks. Evaluate TVM tool and patches, updates, and perform maintenance Develop detailed documentation on TVM implementation, configuration, and processes Plan, develop, and implement new … security devices or services for TVM as needed Identify, create and mature cybersecurity operations processes. Assist with forensic investigations and incident response team (CIRT) activities.as needed Assist with security awareness activities (communications, posters, events, assessments) as needed Participate in incident runbook development Escalate pertinent findings in a … management expertise Experience executing attack defense tactics with security technologies including DNS, SMTP, firewall, and endpoint solutions. Experience and participation as needed with security incident and investigations Assist as needed with security awareness content such as communications, posters, presentations Experience with security management/configuration cloud tools and services more »

and Configuration for Microsoft Cloud Services: Configure cloud services and Defender for Cloud for integration with Rapid7 InsightIDR SIEM to enhance security monitoring and incident response capabilities. Integrate SIEM for monitoring Entra ID sign-in, audit, and risk log categories. Work with Security Operations to build and test more »

expand your skills in Digital forensics investigations. You would be part of a team that in the future could see you becoming skilled within Incident Response or becoming a future leader of the business. Role includes: Conducting analysis in either a lab or on client sites Secure and more »

for applications & infrastructure on a Sailpoint based project. Responsibilities: Applications deployment to AWS & Azure Managing code & configuration using Git Developing CI/CD pipelines Incident responses Monitoring of production systems Being part of/leading builds across systems Required skills. Active HO SC Expert in Azure & AWS environments Skilled more »

seeking expressions of interest for passionate cybersecurity professionals to join our dynamic team. Initially we will be seeking experience with Managed Extended Detection and Response (MXDR) services. At Sekuro we leverage cutting-edge technologies and strategic partnerships to provide top-tier security solutions to our global clientele. Job Description … our MXDR services. Key Responsibilities: Design and Implementation: Architect and deploy advanced MXDR solutions using CrowdStrike and AWS to protect client environments. Monitoring and Response: Conduct continuous monitoring, threat hunting, and incident response activities to identify and mitigate security threats. Integration: Integrate MXDR solutions with clients’ existing … security infrastructure and workflows. Automation: Develop and implement automation scripts and tools to enhance threat detection and response capabilities. Client Support: Provide expert-level support and guidance to clients, including conducting security assessments and providing recommendations. Collaboration: Work closely with other cybersecurity experts, analysts, and engineers within Sekuro to more »

reviews and support the wider team with security best practice, testing and troubleshooting. Own the security posture of the solution, overseeing application vulnerability management, incident response and recovery process, and ensuring mitigation and escalation approaches are in place. Skill & Experience Minimum of 3 years’ experience in a security more »

security controls. Manage platform aspects of DR plans. Improve maintenance and patching procedures. Promote automation, tooling, and documentation. Participate in on-call cover and Incident Response. Contribute to change management. Qualifications: 3+ years' experience in datacentre, public cloud, or hybrid infrastructure. Experience with Windows Server and Azure-based services. more »

privacy. We are rated as a leader by multiple industry analysts for Global, EMEA and Asia-Pacific Cybersecurity Consulting services. Our multi-disciplined Cyber Incident Response (CIR) practice is central to this. Our team supports PwC’s clients in crisis to prepare, respond and recover from cyber attacks … detect and respond to attacks, and with their IT teams to implement targeted technical improvements that increase “cost to the attacker”. Our Cyber Incident Response practice works closely alongside many other of our front-line technical teams, including our global threat intelligence team, our Managed Cyber Defence … understanding of how organisations can prevent, detect, assess and respond to cybersecurity threats and incidents, as well as how to build best of class incident response and security operations capabilities. We also want team members who will be passionate about developing and improving our technical consulting offerings using more »

The ideal candidate will have a strong background in Sentinel, Infrastructure as Code (IAC), and Security Operations (SecOps). Key Responsibilities Security Monitoring and Incident Response Implement and manage security monitoring solutions using Microsoft Sentinel. Develop and maintain incident response playbooks and procedures. Lead incident response efforts, including investigation, containment, and remediation. Develop and maintain secure IAC templates using tools such as Terraform, CloudFormation, or ARM. Conduct security reviews and audits of IAC templates to identify and mitigate risks. Perform regular security assessments, vulnerability management, and penetration testing. Risk Management and Compliance Identify more »

reviews, and adherence to processes and procedures. Develop and manage the security cloud migration process, identifying and addressing any gaps. Manage the Cyber Security Incident process and the Incident Response Team, conducting training exercises to prepare for real incidents. Proactively handle complaints and escalations, resolving issues before … they escalate. Act as the escalation point for security response incidents Conduct one to one performance reviews with team members to support their development. Maintain and enhance the security of IT services, coordinating with third parties for patching, vulnerability resolution, and system hardening. Create and update security documentation to … management, and content filtering. Solid grasp of security approaches including ISMS, risk analysis and assessments, the CIA triad, social engineering, cryptography, confidentiality issues, and incident response best practices. Operate within an ITIL V3 and ISO27001 service delivery framework. Manage relationships with stakeholders. Work to meet defined Service Level more »

of security solutions impact business strategies Create documentation of findings and recommendations (root cause and risk analysis as needed Assist with forensic investigations and incident response team (CIRT) activities. Assign work to Cyber SOC for remediation Escalate pertinent findings in a timely manner Leverage vendors and internal resources … to interface various security tools to automate critical response tasks Support Compliance managers in providing Cybersecurity artifacts Align information cybersecurity operations with NIST, and ISO 27001 requirements Establish role as a local presence and focal point for business and IT contact. Create the relationships. As the local Cyber management … controls, processes, and policies to improve security posture and identify gaps in existing controls. Assist with Cyber security awareness initiatives and events Assist with incident response planning and activities Essential Qualifications and Education: Bachelor’s Degree in Information Technology (minimum) or equivalent experience and certifications 7 or more more »

in all vendor and project activities. - Develop and maintain frameworks for security assessments. - Stay updated on emerging security threats and industry trends. - Participate in incident response and investigations. - Collaborate with procurement to evaluate and manage vendor security. - Review vendor documentation to assess security posture. - Apply risk management principles more »