101 to 125 of 285 Incident Response Jobs in the UK

risks on key systems, and collaborating with internal teams, and third parties, to agree, implement and review security controls. You would be contributing to incident response efforts. You’ll be Involved In: Policy Development and implementation: Risk Management Third Part management Incident Preparation Compliance Monitoring and Reporting more »

Professional) •Other Cyber/information Security qualification (e.g. CISSP, CCSP, CCNA, SABSA) Desirable Skills • Knowledge of; Cloud, on-prem, SaaS, PaaS, IaaS environments • Security incident response, code/malware analysis more »

python or PowerShell - Desired Basic knowledge of designing and deploying information technology and solutions in one or more of the core domains: Endpoint protection; Incident Response; Malware Analysis; Application and Data security; Infrastructure and Endpoint; and Security Intelligence/SIEM. Understanding and experience working with structured design methodologies. more »

utilities sector. Utilise the Prevalent Platform for supply chain tooling. Conduct thorough security assessments to identify threats, vulnerabilities, and gaps in supplier ecosystems. Manage incident response plans and actively participate in incident resolution processes. Ensure suppliers adhere to security requirements and industry regulations through continuous monitoring. Develop more »

your communication skills must be very strong. You will have an excellent understanding of ITIL methodologies and demonstrable experience of working on IT Requests, Incident management, Change Management and Problem Solving. You will utilize ServiceNow and Manage Engine as the primary IT Service Management (ITSM) solution to efficiently manage … software licensing terms, license models and enterprise maintenance and support contracts. Work under limited supervision, both independently and within a team environment. Proficient in incident management tools and IT service management platforms with a focus on global incident response (e.g., ITSM, Jira, ServiceNow). Strong analytical and more »

for apprentices to work on a wide variety of activities and learn from security experts. Successful applicants will be involved in operational security management, incident response, risk management & compliance and security advice provision to deliver safe, secure, and innovative business solutions to drive sustainable value for a competitive … stakeholders to assess and recommend fixes for weaknesses in our existing business services, design and deliver security solutions for new services and support our response to security incidents Work with our Governance, Risk and Compliance manager to make sure we understand our security risk posture and are compliant with … Have guidance from your manager and the team who will support you and teach you how to be a security practitioner Provide support in response to security incidents occurring within L&G. Working in conjunction with the Security Operations Centre (SOC) service provider to provide security event monitoring Support more »

Lead, you will play a pivotal role in coordinating security operations within their IT environment. Your responsibilities will include managing cyber defence technologies, coordinating incident response, and leading threat hunting efforts. You will collaborate closely with internal teams and external partners to ensure the highest level of security … global team of IT security operations analysts, supporting their development and training. Select, deploy, and maintain cyber defence technologies such as Endpoint Detect and Response, Anti-Virus, SIEM, and SOAR. Monitor and manage the use of cyber defence tools, ensuring efficient performance and driving operational efficiency. Develop Standard Operating … Procedures (SOPs) and other documentation to support cyber operations. Respond to cyber-related incidents, coordinating remediation efforts and post-incident reviews. Enable threat hunting through the fusion of threat intelligence and business risk analysis. Requirements: Strong understanding of network protocols, firewalls, and intrusion detection/prevention systems. Proficiency in more »

Azure Information Protection (AIP), and Azure Security Centre to enhance cloud security posture. Provide technical expertise and guidance on cloud security architecture, controls, and incident response procedures. Required Skills and Qualifications: Proven experience in Information Security GRC, with a focus on aligning to frameworks such as NIST. Strong more »

tools, and methodologies. Recommend and implement appropriate security solutions to enhance the organization's security posture and resilience against cyber threats. Develop and maintain incident response plans and procedures to effectively respond to security incidents and breaches. Coordinate with internal teams and external stakeholders to contain incidents, minimize more »

play a crucial role in implementing and managing their cybersecurity infrastructure. Your responsibilities will include: - Implementing and managing Azure Sentinel SIEM for threat detection, incident response, and security monitoring. - Configuring and maintaining Microsoft Defender for endpoint protection and threat detection. - Developing and maintaining KQL (Kusto Query Language) scripts more »

wide number of enterprise technologies. Role The role of the Cyber Security Analyst Apprentice will perform the following: • Security event monitoring and management • Initiate incident response • Review and act on threat intelligence • Undertake vulnerability management and liaise with Digital Services teams to remediate • Undertake security reviews and security more »

information assets. Ensure regular KPIs are developed and maintained and identify areas for improvement and make recommendations accordingly. Be the lead in Cyber security incident response and ensure processes and procedures and playbooks are efficient, effective and are tested regularly in line with policy. Develop and maintain a more »

business ensuring security and monitoring requirements are determined and implemented through onboarding or continuous improvement activities Qualifications & Experience: Professional experience of working in an Incident Response Team or a similar environment Knowledge of SIEM platforms such as Azure Sentinel, Microsoft Defender, Splunk, ArcSight, QRadar, or LogRhythm. Strong analytical more »

engagements across a broad range of information security disciplines, including: Technical domains and cyber transformation Framework assessments and roadmapping Cyber regulations, governance and compliance Incident Response, Disaster Recovery and Business Continuity Training and Exercising Threat Intelligence Project Management S-RM Consultants are organised and dynamic project managers and more »

Administer computer based security and monitoring systems. Carry out software or configuration backups of IT and OT equipment ranging in age. Participate in cyber incident response planning, exercising and digital forensic investigation. Ensure station documentation and network diagrams are maintained and accurately reflect design and configuration changes for more »

Infrastructure Security Accountabilities * Lead the Security Operations pillar, determining and delivering requirements, methods, and tools to provide value and reduce risk across proactive monitoring, incident response, threat management and vulnerability management (among other activity) . * Lead the creation and maintenance of Security Operations policy, standards procedures, and documentation … the application and compliance of security operations procedures, reviewing actual and potential security breaches, and ensuring their investigation. * Lead the Security Operations team's response to incidents, recommending actions and appropriate control improvements. * Monitor the external environment to gather intelligence on emerging technologies, documenting impacts, threats, and opportunities to … activities within company IT, providing expert advice where necessary in the review of vulnerability assessment tools and techniques. * Develop, maintain, and test Security Operations' incident management procedures, investigating escalated incidents and facilitating recovery post-incident resolution. * Lead Security Operations risk management activities, leading on the identification of risks more »

Support the annual penetration testing schedule by arranging penetration testing, including tracking, and communicating penetration testing results. - Perform supplementary testing of clients detection and response controls by procuring, installing, and running penetration testing tooling. - Participate in process improvement work to automate and improve critical cyber security processes such as … monitoring, patching, and hardening. - Develop and maintain process documentation for security architecture, vulnerability management, cyber incident response, and playbooks. - Provide security representation across multiple geographies, business units and teams to achieve objectives, including engagement with the Information Security Enhancement Office. Skills, Knowledge and Experience - Has obtained one or more »

Development Lifecycle (SSDLC), Compliance as Code, Security Orchestration, Container Security, Microservices Security, Threat Modelling, Secure Configuration Management, Secure DevOps Practices, Security Scanning & Testing, Security Incident Response, Identity & Access Management (IAM), Secure Cloud Environments, Secure Code Reviews Nature: Permanent, Full Time Hours: Monday - Friday 09.00 -17.30 Gross pay … + 20% bonus, Health Care, Discounts & other benefits Key Activity: * Develop & Deploy Security Protocols * Perform Security & Operational Evaluations * Integrate Security & Operations within DevSecOps * Manage Incident Responses * Enhance Operational Effectiveness * Coordinate on Code Security & Operational Streamlining * Promote DevSecOps Principles * Address Security & Operational Incidents * Implement DevSecOps Enhancements Overview: As a DevSecOps … testing & vulnerability scanning within our CI/CD pipelines. * Conduct regular security assessments & audits to identify & mitigate risks. * Respond to security incidents & conduct post-incident analysis to prevent future occurrences * Stay up to date with the latest security threats, vulnerabilities, & industry best practices. * Collaborate with DevSecOps Product Owner, Run more »

Skills - Experience managing teams in support of UKIC or MOD - Experience with current threats and attack vectors. - Knowledge of intrusion detection and/or incident handling experience. CSSP Infrastructure Support certifications - Advanced knowledge of solution development techniques and best practices related to demonstration, pilot, and test management and operations. … emerging capabilities. - Experience implementing automation to reduce mundane tasks and expedite processes. - Hands-on cybersecurity experience (Protect, Detect, Respond and Sustain) within a Computer Incident Response organization. - Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion more »

standards, including ISO/IEC 27001, UK government security policies, and MOD regulations. - Provide expertise in secure system design, data encryption, access controls, and incident response planning. - Collaborate with cross-functional teams to ensure that security requirements are integrated into all phases of system development and operation. - Investigate … and frameworks such as ISO/IEC27001, NIST, and the UK government's Security Policy Framework. - Proven experience in risk assessment, security auditing, and incident response. - Excellent communication and interpersonal skills, with the ability to convey complex security concepts to both technical and non-technical audiences. - Strong problem-solving more »

Develop and maintain strong relationships with key stakeholders. Lead and manage a security pillar, ensuring the delivery of high-quality work. Document and maintain incident response plans for various cybersecurity incidents. Maintain Business Continuity Policies and Plans to ensure uninterrupted operations. Prepare and maintain Disaster Recovery plans to … mitigate potential disruptions. Collaborate with teams for data center operations and backup, ensuring compliance and risk management. Manage crisis response professionals and conduct simulation exercises to test preparedness. Qualifications and Experience: Bachelor’s degree in a related technical area. One or more relevant certifications such as CISSP, CISM, GCIH … CEH, or OSCP. Proficiency in SIEM Platforms, vulnerability management tools, and incident management processes. Experience in managing security functions or SOC capabilities. Strong analytical skills to analyze security monitoring data and identify threats. Ability to make considered decisions and ensure successful delivery in a fast-paced environment. Why Join more »

knowledge of Security Operations, Access Management, and Policy Development. Understanding of security frameworks such as NIST or ISO 27001 Knowledge of vulnerability assessment tools, incident response frameworks, and risk management methodologies. Analytical mindset and problem-solving abilities to assess security risks and propose appropriate mitigation strategies. Ability to more »

DEVOPS environment, with strong knowledge of AWS services and security best practices. Proven experience working as part of a SOC function, with expertise in incident response and threat hunting. Strong understanding of network security principles, protocols, and technologies. Excellent communication and interpersonal skills, with the ability to effectively more »

across information assets. Ensure regular KPIs are developed and maintained and identify areas for improvement and make recommendations accordingly. Be the lead in Cybersecurity incident response and ensure processes and procedures and playbooks are efficient, effective, and are tested regularly in line with policy. Develop and maintain a more »

incorporated into the business Risk Register. Participate in supplier reviews, serving as the subject matter expert in cybersecurity. Provide support during the Bank's incident response process involving suppliers. Contribute to the continuous monitoring of key third-party relationships. Enhance awareness of third-party cybersecurity risks through local more »