1 to 25 of 51 Cyber Defence Jobs in the South East

About the Opportunity Job Type: Permanent Application Deadline: 31 August 2025 Title Cyber Security Operational Incident Manager - Technical Consultant Department Cyber Defence Operations - GCIS Location Kingswood, Surrey, Gurgaon, Bangalore Reports To Senior Manager - CDO Level 5 We share a commitment to making things better for clients and each other. We continually explore new technology and different ways … of working to put our clients first. So bring your boldest ideas to our Cyber Defense Operations team and feel like you're making progress. About your team Technology function across FIL is responsible for all global aspects of Technology, Digital, Cybersecurity, and Innovation. Fidelity is a value-driven, customer-obsessed organization and in Technology we are fortunate to … play a direct role in helping our clients with one of the most important aspects of their lives - their financial well-being. Within the Technology function is our Global Cyber & Information Security (GCIS) that operates enterprise security services and controls. These are designed to mitigate Cyber and Information Security risks ensuring that Fidelity's business operates securely. The More ❯

Cyber Security Operational Incident Manager - Technical Consultant Join to apply for the Cyber Security Operational Incident Manager - Technical Consultant role at Fidelity International Cyber Security Operational Incident Manager - Technical Consultant 1 day ago Be among the first 25 applicants Join to apply for the Cyber Security Operational Incident Manager - Technical Consultant role at Fidelity International About … The Opportunity Job Type: Permanent Application Deadline: 31 August 2025 Title Cyber Security Operational Incident Manager - Technical Consultant Department Cyber Defence Operations - GCIS Location Kingswood, Surrey, Gurgaon, Bangalore Reports To Senior Manager - CDO Level 5 We share a commitment to making things better for clients and each other. We continually explore new technology and different ways of … working to put our clients first. So bring your boldest ideas to our Cyber Defense Operations team and feel like you’re making progress. About Your Team Technology function across FIL is responsible for all global aspects of Technology, Digital, Cybersecurity, and Innovation. Fidelity is a value-driven, customer-obsessed organization and in Technology we are fortunate to play More ❯

Engineering: Develop detection rules and maintain playbooks. Automation and Scripting: Automate tasks using tools like Python and PowerShell. Threat Hunting: Identify and mitigate potential threats. Collaboration: Work with other cyber defence teams and communicate findings. Continuous Improvement: Suggest and document process improvements. Monitoring: Provide continuous security console monitoring. Technical Analysis: Analyse incident telemetry and investigation pathways. Intelligence Integration … AWS Certified Cloud Practitioner). Proficiency in network/application protocols and operating systems. Experience with security tools (EDR, SOAR, SIEM). Preferred scripting/programming experience. Knowledge of cyber security legislation and best practices. Preferred experience dealing with incidents in a wide range of environments, including OT and ICS technologies. Preferred experience of working with wider Cyber Defence teams, including Intelligence, Vulnerability Management, Threat Hunting and Purple Teams Personal Attributes: Strong interpersonal, analytical, and problem-solving skills. Effective team player with excellent communication. Adaptable, detail-oriented, and proactive. Why Join Centrica? Dynamic and innovative team. Continuous learning and professional development. Supportive and inclusive work environment. Competitive salary and bonus potential. Employee Energy Allowance at More ❯

Social network you want to login/join with: Are you ready to take the lead in safeguarding critical networks and mentoring the next generation of cyber defenders? We’re on the hunt for a SOC Analyst to join our high-performing SOC team. As a key player in our cyber defence operations, you’ll lead from … the front—managing teams, guiding investigations, and helping shape the future of our security strategy. If you’re passionate about cyber security and thrive in a fast-paced, threat-driven environment, we want to hear from you. What You’ll Be Doing Monitor & Detect: Identify and respond to security alerts from SIEM, IDS/IPS, EDR, and other tools. … strengthen the defensive posture and maintain compliance. Insider Threat Management: Lead investigations and support sensitive case handling. What You Bring to the Role Must-Have Experience: Strong background in cyber security, protective monitoring, and incident response. Proficient in SIEM tools (e.g., LogRhythm, Splunk) and IDS systems (e.g., Snort). In-depth knowledge of network and host security. Skilled in More ❯

We’re looking for a Senior Incident Response Manager to join our cyber-security team in Reading, UK or Schiphol, NL In this fantastic opportunity, you will work at the forefront of cyber defence operations, delivering Group Security’s and Liberty Global’s wider mission through helping to reduce; the impact of cyber incidents affecting Liberty … Global, Retained Markets and Joint Ventures. You will provide the Subject Matter Expertise to coordinate and drive the response to serious cyber incidents through the best practice Incident Management (IM) life cycle and ensure root cause analysis is performed to support improvement of our controls. You will lead the Cyber Emergency Response Team responsible for ensuring the delivery … of the cyber incident response (CIR) life cycle for serious cyber incidents by ensuring that the relevant parts of the business and partners are engaged and activated to undertake the actions needed to reduce impact on our business. When not responding to incidents, you will help develop our Incident Management and Incident Response capabilities, including writing and maintaining More ❯

Social network you want to login/join with: Cyber Security Incident Responder, Brighton Location: Brighton, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 Job Description: We are seeking an enthusiastic and experienced Cyber Security Incident Responder (IR) to join our dynamic team. The role involves maintaining the … security of Element’s digital infrastructure by managing cyber incidents. This is a unique opportunity to be a key member of Cyber Defence, working closely with stakeholders to develop a 24/7 operational cyber defence capability. Experience in Digital Forensics and Incident Response (DFIR) is encouraged. This position requires on-call duties and overtime … during serious cyber attacks. Location in the UK is flexible. Responsibilities: Build Element’s IR capability following industry best practices (NIST, SANS, etc.). Lead cyber incident management, conduct investigations, determine root causes, and recommend remediation. Collaborate with IT, Privacy, Legal teams, and senior stakeholders; report incident statuses. Conduct post-incident reviews for continuous improvement. Perform digital forensics More ❯

Social network you want to login/join with: Cyber Security Incident Responder, Guildford Client: Location: Guildford, United Kingdom Job Category: Other - EU work permit required: Yes Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 Job Description: We are looking for an enthusiastic and experienced Cyber Security Incident Responder (IR) to join our dynamic team. The role involves … maintaining the security and resilience of Element’s digital infrastructure by managing cyber incidents. This is a key role in Cyber Defence, working with stakeholders to develop a robust 24/7 operational cyber defence capability. Experience in Digital Forensics and Incident Response (DFIR) is preferred. This position requires on-call and overtime during serious … cyber attacks. Location in the UK is flexible. Responsibilities: Build Element’s IR capability, implementing best practices based on industry frameworks like NIST and SANS. Lead cyber incident management, conduct investigations, determine root causes, and recommend remediation. Collaborate with IT, Privacy, Legal teams, and senior stakeholders; report incident statuses. Perform post-incident reviews for continuous improvement. Conduct digital More ❯

Cyber Security Incident Responder, Milton Keynes We are seeking an enthusiastic and experienced Cyber Security Incident Responder (IR) to join our dynamic team. The role involves maintaining the security and resilience of Element’s digital infrastructure by managing cyber incidents effectively. This is a unique opportunity to be a key member of our Cyber Defence team, developing a 24/7 operational cyber defence capability. Experience in Digital Forensics and Incident Response (DFIR) is preferred. This position requires on-call work and overtime during serious cyber attacks. Location in the UK is flexible. Responsibilities: Build and enhance Element’s IR capability, implementing best practices aligned with industry frameworks like NIST and … SANS. Lead cyber incident management, conduct investigations, determine root causes, impacts, and remediation steps. Collaborate with IT, Privacy, Legal teams, and senior stakeholders; prepare incident reports. Conduct post-incident reviews and continuous improvement initiatives. Perform digital forensics and malware analysis to assess incident impact. Contribute to developing cyber defence metrics and KPIs. Stay updated on cyber More ❯

Social network you want to login/join with: Cyber Security Incident Responder, Portsmouth, Hampshire Location in the UK is flexible. Job Description: We are seeking an enthusiastic and experienced Cyber Security Incident Responder (IR) to join our team. The role involves managing and progressing cyber incidents to maintain the security of Element’s digital infrastructure. This … is a key position in Cyber Defence, working with stakeholders to develop a 24/7 operational cyber defence capability. Experience in Digital Forensics and Incident Response (DFIR) is preferred. This role requires on-call duties and overtime during serious cyber attacks. Responsibilities: Build Element’s IR capability, implementing best practices aligned with industry frameworks … like NIST and SANS. Lead cyber incident management, conducting investigations, identifying root causes, impacts, and remediation. Collaborate with IT, Privacy, Legal, and senior stakeholders; report incident statuses. Conduct post-incident reviews for continuous improvement. Perform digital forensics and malware analysis. Contribute to developing cyber defence metrics and KPIs. Stay updated on cyber threats and technologies. Maintain More ❯

Social network you want to login/join with: Cyber Security Incident Responder, Slough Location: Slough, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 Job Description: We are looking for an enthusiastic and experienced Cyber Security Incident Responder (IR) to join our dynamic team. The role involves maintaining … the security of Element’s digital infrastructure by managing cyber incidents. This is a key role in Cyber Defence, working with stakeholders to develop a 24/7 operational cyber defence capability. Experience in Digital Forensics and Incident Response (DFIR) is preferred. This position requires on-call work and overtime during serious cyber attacks. … Location in the UK is flexible. Responsibilities: Build and implement Element’s IR capability following industry best practices (NIST, SANS) Govern and coordinate cyber incidents, lead incident management, conduct investigations, identify root causes, and recommend remediation Collaborate with IT, Privacy, Legal teams, and stakeholders; report incident status Conduct post-incident reviews and digital forensics, malware analysis Develop cyber More ❯

Social network you want to login/join with: Cyber Security Incident Responder, Dartford Client: Location: Dartford, United Kingdom Job Category: Other - EU work permit required: Yes Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 Job Description: We are looking for an enthusiastic and experienced Cyber Security Incident Responder (IR) to join our dynamic team. The role involves … maintaining the security of Element’s digital infrastructure by managing cyber incidents. This is a key role in Cyber Defence, working closely with stakeholders at all levels to develop a 24/7 operational cyber defence capability. Experience in Digital Forensics and Incident Response (DFIR) is preferred. This position requires on-call and overtime during … serious cyber attacks. Location in the UK is flexible. Responsibilities: Help build Element’s IR capability, implementing best practices aligned with industry frameworks like NIST and SANS. Lead cyber incident management, conducting investigations, determining root causes, and recommending remediation. Collaborate with IT, Privacy, Legal teams, and stakeholders; prepare incident reports. Conduct post-incident reviews for continuous improvement. Perform More ❯

Social network you want to login/join with: Cyber Security Incident Responder, basingstoke col-narrow-left Client: Location: Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 col-wide Job Description: We are looking for an enthusiastic and experienced Cyber Security Incident Responder (IR) to join our … dynamic and growing team. The role holder will play a critical role in maintaining the security and resilience of Element’s digital infrastructure by effectively managing and progressing cyber incidents. This is a unique opportunity to be a founding key member of Cyber Defence. You will work closely with key stakeholders at all levels to develop what you … see as a great 24/7 operational cyber defence capability. Whilst the role is not solely technical, we encourage applications from those with experience in Digital Forensics and Incident Response (DFIR). This position requires on call and overtime if there are very serious cyber attacks. Location in the UK is flexible. Responsibilities: Help build Element More ❯

Social network you want to login/join with: Cyber Security Incident Responder, reading col-narrow-left Client: Location: reading, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 col-wide Job Description: We are looking for an enthusiastic and experienced Cyber Security Incident Responder (IR … our dynamic and growing team. The role holder will play a critical role in maintaining the security and resilience of Element’s digital infrastructure by effectively managing and progressing cyber incidents. This is a unique opportunity to be a founding key member of Cyber Defence. You will work closely with key stakeholders at all levels to develop what … you see as a great 24/7 operational cyber defence capability. Whilst the role is not solely technical, we encourage applications from those with experience in Digital Forensics and Incident Response (DFIR). This position requires on call and overtime if there are very serious cyber attacks. Location in the UK is flexible. Responsibilities: Help build More ❯

Social network you want to login/join with: Cyber Security Incident Responder, high wycombe col-narrow-left Client: Location: high wycombe, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 col-wide Job Description: We are looking for an enthusiastic and experienced Cyber Security Incident … our dynamic and growing team. The role holder will play a critical role in maintaining the security and resilience of Element’s digital infrastructure by effectively managing and progressing cyber incidents. This is a unique opportunity to be a founding key member of Cyber Defence. You will work closely with key stakeholders at all levels to develop what … you see as a great 24/7 operational cyber defence capability. Whilst the role is not solely technical, we encourage applications from those with experience in Digital Forensics and Incident Response (DFIR). This position requires on call and overtime if there are very serious cyber attacks. Location in the UK is flexible. Responsibilities: Help build More ❯

Social network you want to login/join with: Cyber Security Incident Responder, oxford district col-narrow-left Client: Location: oxford district, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 col-wide Job Description: We are looking for an enthusiastic and experienced Cyber Security Incident … our dynamic and growing team. The role holder will play a critical role in maintaining the security and resilience of Element’s digital infrastructure by effectively managing and progressing cyber incidents. This is a unique opportunity to be a founding key member of Cyber Defence. You will work closely with key stakeholders at all levels to develop what … you see as a great 24/7 operational cyber defence capability. Whilst the role is not solely technical, we encourage applications from those with experience in Digital Forensics and Incident Response (DFIR). This position requires on call and overtime if there are very serious cyber attacks. Location in the UK is flexible. Responsibilities: Help build More ❯

Social network you want to login/join with: Cyber Security Incident Responder, Crawley, West Sussex Location: Crawley, West Sussex, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 Job Description: We are seeking an enthusiastic and experienced Cyber Security Incident Responder (IR) to join our growing team. The … role involves maintaining the security and resilience of our digital infrastructure by managing cyber incidents. This is a unique opportunity to be a key member of Cyber Defence, working closely with stakeholders to develop a 24/7 operational cyber defence capability. Experience in Digital Forensics and Incident Response (DFIR) is encouraged. This position requires … on-call duties and overtime during serious cyber attacks. Location in the UK is flexible. Responsibilities: Build Element’s IR capability, implementing best practices aligned with industry frameworks like NIST and SANS. Govern and coordinate cyber incidents, acting as the lead incident manager and technical authority. Conduct investigations, determine root causes, impacts, and remediation actions. Collaborate with IT More ❯

Social network you want to login/join with: Cyber Security Incident Responder, Southampton Client: Location: Southampton, United Kingdom Job Category: Other - EU work permit required: Yes Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 Job Description: We are looking for an enthusiastic and experienced Cyber Security Incident Responder (IR) to join our dynamic and growing team. The … role involves maintaining the security and resilience of Element’s digital infrastructure by managing cyber incidents. This is a key role in Cyber Defence, working closely with stakeholders to develop a 24/7 operational cyber defence capability. Experience in Digital Forensics and Incident Response (DFIR) is preferred. This position requires on-call work and … overtime during serious cyber attacks. Location in the UK is flexible. Responsibilities: Build Element’s IR capability, implementing best practices in line with industry frameworks like NIST and SANS. Govern and coordinate cyber incidents, acting as the lead incident manager and technical authority. Conduct investigations to reduce risk, determine root cause, impact, and remediation actions. Collaborate with IT More ❯

Social network you want to login/join with: Cyber Security Incident Responder, Maidstone Location: Maidstone, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 Job Description: We are looking for an enthusiastic and experienced Cyber Security Incident Responder (IR) to join our dynamic team. The role involves maintaining … the security of Element’s digital infrastructure by managing cyber incidents. This is a key position in Cyber Defence, working with stakeholders to develop a 24/7 operational cyber defense capability. Experience in Digital Forensics and Incident Response (DFIR) is preferred. The role requires on-call duties and overtime during serious cyber attacks. Location … in the UK is flexible. Responsibilities: Build Element’s IR capability, implementing best practices based on industry frameworks like NIST and SANS. Lead cyber incident management, conducting investigations, determining root causes, and recommending remediation. Collaborate with IT, Privacy, Legal teams, and senior stakeholders; report incident statuses. Conduct post-incident reviews and digital forensics, including malware analysis. Contribute to developing More ❯

not just responding to security incidents-you're revolutionising how it's done. At Maersk, one of the world's largest and most respected logistics and shipping companies, our Cyber team is pioneering a whole new approach to incident response. This isn't your typical SOC/CERT role: our combined fire team approach team is built on cutting … to life. Are you ready to be part of something transformational at Maersk and join a team that's setting a new standard in cybersecurity? Join a World-Class Cyber Team: Be part of an elite cyber operation at one of the globe's most renowned logistics companies, where your contributions truly make a difference. Multidimension role to … a fast-paced, stimulating atmosphere. Participate in exciting CTF competitions alongside a team of experts, pushing the boundaries of your knowledge and skills. Using cutting edge technologies: Tackle complex cyber incidents that require innovative solutions and utilizing the latest technologies available in the market. Your expertise will be crucial in addressing and mitigating sophisticated threats, allowing you to hone More ❯

a trusted Security Depth Partner. In short, giving you unparalleled access to Microsoft’s security product roadmap, security previews, and frontline support. You'll work at the forefront of cyber defence, directly contributing to investigations involving nation-state threat actors (including IR, CH, and NK based campaigns) while refining your skills across enterprise-scale log ingestion and customised … endpoint, cloud, and network layers Experience in SIEM content development, including KQL, analytics rules, and custom data connectors Scripting and engineering skills: Python, PowerShell, APIs, Function Apps Background in cyber threat detection, incident response, or DFIR is a plus Ability to work in fast-paced, customer-facing environments Technical Skills PowerShell, Python, REST APIs Log ingestion and parsing across More ❯

to £50,000pa - Southampton Location: Southampton (Hybrid – 3 days onsite) Salary: Up to £50,000 A major UK infrastructure organisation is seeking a SOC Analyst to help strengthen its cyber defence capabilities. This is a great opportunity to join a Microsoft-focused environment and work hands-on with leading security tools like Microsoft Sentinel and Defender . You More ❯

to £50,000pa - London Location: London (Hybrid – 3 days onsite) Salary: Up to £50,000 A major UK infrastructure organisation is seeking a SOC Analyst to help strengthen its cyber defence capabilities. This is a great opportunity to join a Microsoft-focused environment and work hands-on with leading security tools like Microsoft Sentinel and Defender . You More ❯

Social network you want to login/join with: Cyber Security Incident Responder, Woking Location: Woking, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 Job Description: We are looking for an enthusiastic and experienced Cyber Security Incident Responder (IR) to join our dynamic and growing team. The role … involves maintaining the security and resilience of Element’s digital infrastructure by managing cyber incidents. This is a unique opportunity to be a key member of Cyber Defence, working closely with stakeholders to develop a 24/7 operational cyber defence capability. Experience in Digital Forensics and Incident Response (DFIR) is encouraged. This position requires … on-call availability and overtime during serious cyber attacks. Location in the UK is flexible. Responsibilities: Help build Element’s IR capability and implement best practices based on industry frameworks like NIST and SANS. Govern and coordinate cyber incidents, act as the lead incident manager, conduct investigations, determine root causes, impacts, and remediation actions. Collaborate with IT, Privacy More ❯

in office per week/4 days per month) Salary – £65-70k + 10% Bonus + Benefits Currently working with one of the most technologically advanced and established Cyber Defence functions in Europe with a Major Technology giant, who are supplementing their internal SOC capability and looking to bring in an L3 Analyst. You will be dealing … improve the SOC’s wider capabilities. This is an incredible opportunity for an experienced Senior SOC Analyst/Specialist to join what is honestly one of the most advanced Cyber Defence functions in the world, for an organisation with one of the largest digital footprints where you will gain exposure to an unprecedented volume of threats and respond … to incidents from the most sophisticated threat actors; whilst working alongside and learning from some of the best cyber defence SMEs in the world. Key Responsibilities: Act as a lead and technical escalation point on the most complex incidents and investigations. Work closely with wider Security teams to recommend system tuning/configuration improvements and opportunities to develop More ❯

trusted Security Depth Partner. In short giving you unparalleled access to Microsoft’s security product roadmap, security previews, and frontline support. You'll work at the sharp end of cyber defence, directly contributing to investigations involving nation-state threat actors (including IR, CH, and NK based campaigns) while refining your craft across enterprise-scale log ingestion and customised … cloud, and network layers Experience in SIEM content development, including KQL, analytics rules, and custom data connectors Scripting and engineering skills – Python, PowerShell, APIs, Function Apps A background in cyber threat detection, incident response or DFIR is a real plus Comfortable working in very fast-moving, customer facing delivery environments The Technical Shizzle: PowerShell, Python, REST APIs Log ingestion More ❯