1 to 25 of 180 Incident Response Jobs in the UK excluding London

demonstrate technical and process skills, as well as an architectural view and implementing security by design.Other essentials:Background that covers cyber technology, security operations, incident response, architecture, and training.Experience in implementing technology such as SIEM, XDR, SOAR, etc.Background in Financial Services or other regulated industries (desired)Experience in more »

and Configuration for Microsoft Cloud Services:Configure cloud services and Defender for Cloud for integration with Rapid7 InsightIDR SIEM to enhance security monitoring and incident response capabilities.Integrate SIEM for monitoring Entra ID sign-in, audit, and risk log categories.Work with Security Operations to build and test required alert more »

code, perform threat modelling and security testing of applications, run SAST, DAST, SCA and secret scanning tools, manage the bug bounty program and lead incident response for software bugs.Please apply if you're looking to take your career to the next level, happy to run you through the more »

Operations Infosec team.Key Responsibilities:Lead, implement, and manage key network security controls.Conduct audits, certifications, and provide consultancy support.Utilise automation to enhance security posture and response capabilities.Liaise with stakeholders to enforce network security policies.Utilise threat intelligence to proactively defend against threats.Mentor junior security professionals and support incident response.Qualifications/ more »

Job DescriptionRole: Head of Incident Management & Service OperationsLocation: West London – hybridSalary: £110,000 – 125,000 + car allowance + bonus + benefitsWe have a great opportunity with one of our FTSE100 clients looking for a Head of Head of Incident Management & Service Operations to join them during an … exciting period of transformation. You’ll oversee the operational aspects of IT services with a particular focus on incident management.You’ll be responsible for leading and managing the processes, teams, and technologies that ensure effective incident resolution, the delivery of high-quality IT services, and the continuous improvement … processes across service operations. The role:Define the IT Operation Centre standards and patterns for managing incidents, problems, events, change and release managementEnsure major incident management procedures are ready-to-deployLead on root cause analysis activities for major incidentsBe the driver of problem resolutionProvide insight into Operational Performance at more »

Job DescriptionAbout UsOutbreach provides specialist Cyber Incident Response and Crisis Management services to our midsize clients spread across the world.With offices in London, Dubai, and New York we are different to most other security companies in that we assume our clients will experience a security breach and we … for the company as consultants that can be called on to supplement our permanent teams when our clients experience incidents and engage Outbreach.Role DescriptionThe Incident Manager (IM) is the glue who holds together all other teams and stakeholders in a cyber incident. You can think of this role like … accountable for their activities.The IM with be extremely detail orientated and comfortable with ensuring processes are appropriately followed and progressed as needed during the incident and quickly raising any challenges to the relevant owner.IMs will generally only be working on one incident at a time though in some more »

of overseeing and leading remediation of security assessments, technical testing, and vulnerability analysis including Cyber Essentials, Cyber Essentials Plus, and NIST CSF. Experience in incident response and overseeing improvement actions such as development and tuning of security monitoring, alerting, and reporting. Technical knowledge and broad hands-on experience more »

with our clients Cyber Security policies and standards. Key Responsibilities: Service Management of security partners ensuring high levels of performance are delivered across detection, response, and recovery. Developing cyber incident response plans, playbooks, and processes that allow security operations team to respond to incidents rapidly and effectively. … collaboratively with IT teams to remediate vulnerabilities identified through red team engagements, penetration testing, and vulnerability scanning. Planning and coordination of large-scale security incident response, remediation and recovery efforts involving multiple parties and teams. Manage the delivery of daily/weekly security reports. Manage Email security monitoring. more »

ensuring clients' data and systems are secure and resilient. Position Summary: As a SOC Analyst, you will be responsible for monitoring security events, conducting incident response, and providing threat intelligence. You will work closely with other SOC analysts to enhance security operations and protect clients from cyber threats. … Key Responsibilities: Monitor security events and logs to identify potential security incidents. Perform incident analysis, classification, and response actions. Provide proactive threat intelligence and recommend mitigation strategies. Collaborate with other SOC Analysts and Shift Leads on incident handling and investigations. Conduct threat hunting activities to identify potential … security breaches. Assist in the tuning of security monitoring tools and systems. Prepare comprehensive incident reports and participate in service review preparations. Maintain excellent communication with customers and internal teams. Stay updated with industry trends, emerging threats, and technological advancements. Required Qualifications: Bachelor’s degree in Cybersecurity, Information Technology more »

incidents, acting as the "security lead" within a resolver group. · Ensure that the Head of Security Operations and other senior stakeholders are appraised of incident impact, developments, and outcomes. · Recognise when external assistance is required to support or guide incident response and escalate promptly. · Develop - and guide … the development of - runbooks and processes, ensuring they're fit-for-purpose and followed. · Prepare incident reports and gather reporting metrics for cyber events and incidents. · Analyse security event trends to tune rules and thresholds to improve the fidelity of detections and alerts. What you’ll need: · Extensive experience more »

Design: Design, implement, and maintain security architecture for our AWS environment, ensuring it aligns with industry best practices and compliance standards. Threat Detection and Incident Response: Develop and maintain detection mechanisms for security threats and incidents within AWS infrastructure, including EC2 instances, Kubernetes clusters, Docker containers, S3 buckets … and RDS databases. Respond promptly to security incidents and conduct thorough post-incident analysis to prevent future occurrences. Vulnerability Management: Conduct regular vulnerability assessments and penetration testing on AWS resources, identifying and remediating vulnerabilities in a timely manner. Implement and manage automated scanning tools to ensure continuous security monitoring. … tools to track and analyze activities within the AWS environment. Maintain centralized logging for all AWS services and develop custom alerts for security events. Incident Response Planning and Training: Develop and maintain incident response plans for security incidents occurring within the AWS environment. Conduct regular tabletop more »

the Senior Information Security Manager here you will be responsible for maintaining and executing WHSmith’s cyber security strategy, ensuring compliance with regulations, managing incident response efforts, and implementing effective security controls to protect the organisation's digital assets. You will lead cross-functional teams and our third … of security awareness to mitigate cyber risks and safeguard critical information. What you will be doing Overseeing day-to-day security operations, including monitoring, incident response, vulnerability management, and threat intelligence, to maintain a strong security posture and promptly address any security incidents or vulnerabilities Establishing and maintaining … business operations while mitigating risk Maintaining cyber security policies, standards, and procedures, ensuring compliance with industry regulations and best practices Leading the organization’s incident response efforts and establishing robust processes for identifying, responding to, and recovering from security incidents Working closely with WHSmith’s technology architects to more »

Building sophisticated monitoring dashboards using log data, metrics and traces from a number of sources including New Relic, Grafana, Splunk and Kibana. Administering an incident response platform, like PagerDuty, to enable fast and efficient resolution of incidents. Working with service owners and other teams on integrations while supporting more »

with a focus on safeguarding sensitive data and intellectual property. Security Operations: Oversee the day-to-day management of security systems and protocols, including incident response, threat detection, and vulnerability management. Security Awareness: Develop and deliver comprehensive training programs to promote a culture of security awareness and best more »

to vulnerability management reduction across all IT Systems and you will work with the SOC to assist in the coordination and management of cyber incident response activities. The ideal candidate will have come from a IT Infrastructure background, have moved into Cyber Security, and will hold a current … due to the volume of applications received, we are unable to communicate feedback to all candidates. In the event you have not received a response within 14 days of your application, it is unlikely that your application will be progressed on this occasion. Please continue to review our website more »

product teams to embed security into agile development cycles. Provide expert guidance on security best practices, including secure coding, threat modelling, vulnerability management, and incident response. Develop and implement security policies, standards, and procedures tailored to agile and DevSecOps environments. Conduct security training and awareness programs to promote a more »

their whole OT Environment. Their client, a well known Energy & Utilities organisation, need someone to come in with extensive experience in Risk Management and Incident Response planning for Operational technology environments. In this role, you will mentor and support an OT Analyst who will be supporting you on more »

computer systems. Ensure efficient resolution of faults and customer feedback are addressed as a priority. Maintain ownership of calls, communicating with customers to achieve response targets defined with Annual Performance Reviews and KPI’s. Use technical knowledge to interpret customer requirements, troubleshoot calls, provide advice, and fault resolution on … training, consultancy, and solutions to regulated, high value and high threat environments. Kenyon International Emergency Services is a world leader in emergency planning and incident response. Air Partner CHS specialises in conditioning monitoring solutions that predict and prevent the failure of electromechanical systems. Air Partner works with Climate and more »

candidate will bring a combination of technical expertise, strategic vision, and leadership skills to oversee all aspects of network operations, including system monitoring, maintenance, incident response, and customer support. As the Head of Network Operations, you will play a pivotal role in enhancing our network's performance and … charging experience for users. Coordinate with internal teams and external partners to enhance network capabilities, including software updates, hardware upgrades, and new installations. Manage incident response protocols, ensuring swift and effective resolution of any network disruptions or customer issues. Drive the adoption of best practices in network management more »

specialist that provides support to the clients across UK, Europe and Australia. We have an excellent job opportunity for you. Role Title: SIEM/Incident SME(Need Active DV Clearance) Location: Hybrid onsite in one of the following locations 2/3 days per week - Corsham, Portsmouth or Northallerton … including the development and mentoring of junior analysts, monitoring networks to actively remediate unauthorised activities. Your role • Develop and integrate security event monitoring and incident management services. • Respond to security incidents as they occur as part of an incident response team. • Implement metrics and dashboards to give more »

address identified vulnerabilities and weaknesses. Develop & establish supplier chain security agreements/contracts/questionnaires and manage completion and disengagement. Ensure timely and robust incident management resolution, including major incident response coordination and management. Stay informed about emerging cybersecurity threats and trends, providing recommendations for proactive risk more »

through ongoing threat analysis and being up to date with the future threat landscape. Working with security tools such as; Sentinel, Defender and Azure Incident response planning for different Cyber Threats Monitoring of IT Security systems, providing trend analysis Implementing and maintaining firewall configurations What's in it more »

ever-evolving threat landscape. Here's what you'll be doing: Develop and implement a comprehensive information security program: Think risk assessments, vulnerability management, incident response, access control, the whole enchilada. Lead and empower a team of security professionals: Guide, mentor, and inspire your team to achieve peak more »

Cyber Incident Response Manager Cyber Incident Respond Principal/Manager will own all cyber security events throughout the incident life-cycle, ensuring all reporting and escalation flows are performed in adherence to agreed documentation and SLA’s. You will work side by side with the Cyber … Detect Team. Cyber Detect manage all security alerts undertaking triage analysis and technical incident response. Incident readiness is the first step of the incident life-cycle, preparing for the next incident if of the upmost importance. As Respond Manager you will be expected to deliver a … strong incident readiness program. This is based in Buckinghamshire office x2 days a week, x3 remote. £70 – 90,000 + Financial Industry Employment Benefits + Bonuses Lead cross-functional post-incident process reviews to identify and implement continuous improvement initiatives. Partner with Legal, 2LoD, Major Incident Management more »

Azure Storage, Security, and Network Components. Azure policies and governance tools for handling compliance and security Expertise in securing virtualized environments, including threat detection, incident response, and compliance frameworks. Automation tooling for example, Logic Apps, Functions, Azure Automation, Event Grid etc AVD architecture, deployment options, management tools, and more »