151 to 175 of 256 Incident Response Jobs in the UK

events and alerts in real-time to identify potential security incidents. Investigate and analyse security incidents to determine their root cause and impact. Execute incident response procedures and escalate issues as necessary. Document and report security incidents, findings, and actions taken. Collaborate with senior SOC analysts and other … IT/security teams to continuously improve security monitoring and incident response capabilities. Requirements: 1-2 years hands on experience with all of the following: Office 365, Azure, Defender, Intune, Entra ID Strong interest in cybersecurity and a desire to pursue a career in this field. Minimum more »

and maintaining our security information and event management (SIEM) system. Your focus will be on leveraging Elasticsearch and related technologies to enhance threat detection, incident response, and overall security posture. What you’ll be doing • Data Ingestion and Enrichment: o Configure Elasticsearch pipelines for data ingestion from various … of the SIEM infrastructure. • Security Engineering: o Contribute to security engineering projects, transitions, and transformations. o Work closely with security operations and associated security incident response systems o Stay informed about emerging threats and security best practices. • Keep abreast of relevant technologies in the area. This may entail more »

new tools and techniques to enhance the security posture Administer and mature tool configurations, optimize performance, and feature utilization Integrate tools to automate critical response tasks. Evaluate TVM tool and patches, updates, and perform maintenance Develop detailed documentation on TVM implementation, configuration, and processes Plan, develop, and implement new … security devices or services for TVM as needed Identify, create and mature cybersecurity operations processes. Assist with forensic investigations and incident response team (CIRT) activities.as needed Assist with security awareness activities (communications, posters, events, assessments) as needed Participate in incident runbook development Escalate pertinent findings in a … management expertise Experience executing attack defense tactics with security technologies including DNS, SMTP, firewall, and endpoint solutions. Experience and participation as needed with security incident and investigations Assist as needed with security awareness content such as communications, posters, presentations Experience with security management/configuration cloud tools and services more »

and digital deployments. Continuously adjust cyber capabilities based on evolving cyber threat landscapes. Support and potentially lead NOC/SOC operational teams. Oversee Cyber incident response, conduct post-incident reviews (PIRs), root-cause analysis (RCAs), and implement mitigating solutions. Manage capacity for cyber platforms proactively. Design data more »

maintain information security strategies and objectives to enhance the overall security posture of the business. Monitor and analyse security incidents and breaches, and lead incident response efforts to contain and mitigate the impact in a timely manner. Reporting to senior management on Cyber related metrics and improvement needs. more »

be beneficial but equivalent experience or demonstratable equivalent knowledge will also be accepted. Cyber, Security, Information Security leadership, Technology, Management, Risk Management and Governance, Incident Response, Security Remediation, Security Policy Creation, Third Party Risk Management, Attack Surface Management Creation exposure and experience essential. The role holder will possess more »

Develop and maintain strong relationships with key stakeholders. Lead and manage a security pillar, ensuring the delivery of high-quality work. Document and maintain incident response plans for various cybersecurity incidents. Maintain Business Continuity Policies and Plans to ensure uninterrupted operations. Prepare and maintain Disaster Recovery plans to … mitigate potential disruptions. Collaborate with teams for data center operations and backup, ensuring compliance and risk management. Manage crisis response professionals and conduct simulation exercises to test preparedness. Qualifications and Experience: Bachelor’s degree in a related technical area. One or more relevant certifications such as CISSP, CISM, GCIH … CEH, or OSCP. Proficiency in SIEM Platforms, vulnerability management tools, and incident management processes. Experience in managing security functions or SOC capabilities. Strong analytical skills to analyze security monitoring data and identify threats. Ability to make considered decisions and ensure successful delivery in a fast-paced environment. Why Join more »

incorporated into the business Risk Register. Participate in supplier reviews, serving as the subject matter expert in cybersecurity. Provide support during the Bank's incident response process involving suppliers. Contribute to the continuous monitoring of key third-party relationships. Enhance awareness of third-party cybersecurity risks through local more »

in all vendor and project activities. - Develop and maintain frameworks for security assessments. - Stay updated on emerging security threats and industry trends. - Participate in incident response and investigations. - Collaborate with procurement to evaluate and manage vendor security. - Review vendor documentation to assess security posture. - Apply risk management principles more »

Risk Management, CPSM & Threat Intelligence. Skills required: Control Frameworks & Industry Standards (ISO27001, 27002, GDPR, NIST) Security Operations Performance Tracking Data Security, Malware Detection, Threat & Incident response For the right person this is a huge opportunity - considering the sustained growth that they're going through, this role has a more »

the appropriate tools, technologies & processes to mitigate critical security risks (e.g., system and mobile antivirus software, encryption modules, patch management programs, insider threat protection, incident response plans, forensic capabilities, and regulation compliance). Conduct vulnerability assessments and administrative audits on client computer systems and network devices considering the more »

for security incidents, and responding promptly to security breaches. As a Cyber Security Analyst you will be gain exposure across: Security Infrastructure Vulnerability Management Incident Response Ideally you will have experience across: Security principles, techniques, and protocols Endpoints, servers, infrastructure and networking technologies Experience in supporting security systems more »

roles: Experience with LogRhythm/Splunk, Darktrace (Threat Visualiser) and FireEye Network Communication Protocols experience (DNS, HTTP/S, SSL, SMTP etc..) Knowledge of Incident Response, log analysis and PCAP Analysis. If you are interested in any of these SOC roles and are working at any level across more »

and Configuration for Microsoft Cloud Services: Configure cloud services and Defender for Cloud for integration with Rapid7 InsightIDR SIEM to enhance security monitoring and incident response capabilities. Integrate SIEM for monitoring Entra ID sign-in, audit, and risk log categories. Work with Security Operations to build and test more »

party monitoring tools to detect issues, perform root cause analysis, and implement remediation actions promptly. Develop comprehensive documentation, runbooks, and playbooks outlining procedures for incident response, troubleshooting, and system maintenance. Qualifications: Bachelor's degree in Computer Science, Engineering, or related field (or equivalent experience). Strong experience with more »

continuously developed. This role requires a dynamic leader who is adept at managing complex product support scenarios, fostering seamless product adoption, and facilitating rapid incident resolution. Your leadership will directly impact our product management and DevOps practices, driving significant improvements across the board. Your Opportunity Lead and develop: Manage … the day-to-day operations of our Digital Operations team, focusing on exceptional support and strategic product advancements. Strategic oversight: Spearhead critical monitoring and response initiatives aligned with best practices in Observability and Site Reliability Engineering. Innovation and improvement: Continuously seek innovative ways to enhance our support processes, integrating … cutting-edge technology solutions and refining our incident response strategies. What We’d Like You to Bring Experience and expertise: A solid background in technology with a focus on IT service management, cloud services (AWS, Azure), and an in-depth understanding of ITIL principles. Leadership acumen: Proven leadership more »

standards, including Cyber Essentials, ISO 27001, 27002, Data Protection Act, and GDPR. In-depth knowledge of the Microsoft O365 environment, threat intelligence analysis, Security Incident Response processes, disaster recovery, and business continuity principles. Familiarity with security testing principles, vulnerability scanning, risk identification, resolution, and reporting. Experience in formal more »

Handle security incidents and escalations, manage 3rd-party technical support. Provide security metrics, maintain documentation, and collaborate on technology design. Oversee security platform support, incident response, and vulnerability management. Track cyber threats, support vulnerability analysis, and lead system patching and updates. Integrate security into BAU processes, maintain technical more »

and documentation to support secure DevOps practices. Monitor security metrics and logs to detect and respond to security incidents. Lead and participate in security incident response activities, including root cause analysis and remediation efforts. To be considered for this role, you should have: Must have hands on experience more »

and documentation to support secure DevOps practices. Monitor security metrics and logs to detect and respond to security incidents. Lead and participate in security incident response activities, including root cause analysis and remediation efforts. To be considered for this role, you should have: Must have hands on experience more »

the senior point of contact and advisor for managers and employees on all IT related topics including client devices, datacentre, cloud & office infrastructure. Providing Incident Response, Changes, and Project-Based Work, as well as guidance to L2 engineer. Day to day responsibilities include: Installing and maintaining the companies … Ensuring the companies operating environments are safe and secure Updating any software and hardware where necessary Documenting all reported malfunctions and actions taken in response Experience and skills needed: Ability to support, design and implement infrastructure technologies and solutions such as: computing, storage, networking, cloud computing, including IaaS, PaaS more »

reviews and support the wider team with security best practice, testing and troubleshooting. Own the security posture of the solution, overseeing application vulnerability management, incident response and recovery process, and ensuring mitigation and escalation approaches are in place. Skill & Experience Minimum of 3 years’ experience in a security more »

technical and process skills, as well as an architectural view and implementing security by design. Other essentials: Background that covers cyber technology, security operations, incident response, architecture, and training. Experience in implementing technology such as SIEM, XDR, SOAR, etc. Background in Financial Services or other regulated industries (desired more »

Executive will be supporting the development and enforcement of data protection policies, providing assistance with compliance efforts, handling data subject requests, and contributing to incident response and risk mitigation activities. The Data Protection Executive plays a vital role in helping the organization maintain trust with stakeholders and protect more »

dynamic code analysis, security scanning, investigation of security reports from InfoSec, our bug bounty program, or other trusted partners, and direct work with our incident response team on product security issues and incidents. This role has wide-reaching impact, strong autonomy, and the resources and empowerment to make more »