1 to 25 of 41 Incident Analyst Jobs in the UK

Job Summary: The Senior Incident Response Analyst will play a critical role in our Security Operations Center (SOC) by leading the detection, analysis, and response to cybersecurity incidents. This individual will be responsible for monitoring security events, conducting in-depth investigations, and implementing advanced threat detection techniques. The ideal candidate will have extensive experience in cybersecurity, a strong … years of experience in a SOC or similar cybersecurity role. Strong understanding of cybersecurity principles, threat landscapes, and attack vectors. Proficiency with security tools and technologies. Experience with incident response and digital forensics is advantageous. Excellent analytical and problem-solving skills. Strong communication and interpersonal skills. Ability to work effectively under pressure and manage multiple priorities. Experience with scripting More ❯

Incident Response Lead Analyst - Cyber Security Join to apply for the Incident Response Lead Analyst - Cyber Security role at Boston Consulting Group (BCG) Incident Response Lead Analyst - Cyber Security 1 day ago Be among the first 25 applicants Join to apply for the Incident Response Lead Analyst - Cyber Security role at Boston … across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do Position Overview As a Cyber Security Incident Response Manager at BCG, you will be a key member of our Cyber Security Incident Response Team (CSIRT), responsible for identifying, analyzing, and mitigating cyber threats. This role … requires a proactive approach to threat hunting, cyber threat intelligence, and incident response, ensuring the protection of BCG’s global network. You will work closely with the Security Operations Center (SOC), Security Information and Event Management (SIEM), and Managed Security Service Provider (MSSP) to enhance detection and response capabilities. Your expertise will contribute to strengthening our security posture and More ❯

across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do Position Overview As a Cyber Security Incident Response Manager at BCG, you will be a key member of our Cyber Security Incident Response Team (CSIRT), responsible for identifying, analyzing, and mitigating cyber threats. This role … requires a proactive approach to threat hunting, cyber threat intelligence, and incident response, ensuring the protection of BCG’s global network. You will work closely with the Security Operations Center (SOC), Security Information and Event Management (SIEM), and Managed Security Service Provider (MSSP) to enhance detection and response capabilities. Your expertise will contribute to strengthening our security posture and … minimizing business risks associated with cyber threats. What Will You Do? Act as a Tier 3 Incident Responder, supporting complex investigations into cyber security incidents. Conduct proactive threat hunting to detect and neutralize emerging threats. Monitor and analyze logs via SIEM, EDR, and network traffic analysis tools for potential attack indicators. Investigate security incidents, including malware infections, phishing attacks More ❯

and review and raise security incidents in ticketing systems. Assist in security reporting, ensuring timely and quality delivery. Prepare and present reports using Microsoft PowerPoint and Excel. Provide Critical Incident Response Reports and lessons learned to stakeholders. Handle legal and law enforcement-related issues as necessary. Review security incidents periodically for trend analysis and recommend improvements or sales opportunities … to the Security Delivery Lead. Respond to incidents following playbooks and the Security Incident Management Process. Advise the account on Critical Security Advisories, including responses to Threat Advisories, ModCerts, Carecert, and emergency patches. Develop and maintain a vulnerability management system for zero-day vulnerabilities. Manage security information requests from clients. Lead on complex incidents and ensure lessons learned are … security qualifications (e.g., CISSP, CISM) or willingness to obtain them. Proven security industry experience, preferably in public sector or armed services. Knowledge of tools, equipment, and forensic requirements for incident response and evidence collection. Note: DXC does not make employment offers via social media or request payments from applicants. For more info, see the employment scams link. About the More ❯

Security Incident Response Analyst Security Incident Response Analyst Apply remote type: Remote with Travel Locations: London Time type: Full time Posted on: Posted 24 Days Ago Time left to apply: End Date: January 17, 2025 (5 days left to apply) Job requisition id: R-8306 About the role Here at DS Smith, we are looking for … a skilled Security Incident Response Analyst to join our Security Operations Team. Are you currently working within a Security Operations team or related role, triaging alerts and incidents and looking to develop professionally? In this role, you will act as an escalation point for the Security Operations Centre analysts and effectively manage higher severity cyber incidents. A key … member of the IT Security Operations and Incident Response team, you will be helping protect our business from the current and emerging cyber threats in an international business operating in over 30 countries. Every day brings something new and exciting within our team, ensuring that no two days are the same. You will be exposed to new challenges and More ❯

talk with your recruiter to learn more. Base pay range Direct message the job poster from CPS Group (UK) Limited Senior Delivery Consultant Placing Tech Talent across the UK Incident Response Analyst – Hybrid – Newport – Up to £55,000 CPS Group is currently working with a leading UK-based Critical National Infrastructure (CNI) organisation, supporting their search for an … experienced Incident Response Analyst to join their growing Cyber Resilience Team. This is an exciting opportunity to be a key player in protecting vital national services from cyber threats, working within a Security Operations Centre (SOC) environment and collaborating with internal and external teams to detect, investigate, and respond to security incidents. Location: Newport – Hybrid (2-3 days … security alerts. Investigate suspicious activity and determine if incidents have occurred. Contain and mitigate security incidents to prevent further impact. Work closely with IT and security teams to develop incident response strategies. Analyse incidents to identify root causes and recommend improvements. Contribute to the development of cyber security plans, policies, and training. What We’re Looking For Proven experience More ❯

Security Analyst, Security Operations and Incident Response Meta is seeking a Security Analyst to join the Global Security Operations and Incident Response team. The Analyst will serve on the front lines of Meta's Security team and will lead and support security investigations across the company's global infrastructure as well as respond to escalations … from the Tier1 team. The analyst will leverage an armory of tools to investigate and respond to both external and internal security threats.Utilizing Meta's tooling, you will monitor security events in real-time, assess external and internal threats, and provide accurate and timely response. You will collaborate closely with technical teams, with a broad set of skills to … tackle the panoply of unique security challenges that we encounter at Meta scale. Security Analyst, Security Operations and Incident Response Responsibilities Investigate and respond to external and internal cybersecurity threats in a timely manner while communicating clearly and proactively until remediation. Act as an escalation point for Tier1 investigations, contribute to the development of the Tier1 function, and More ❯

Description It’s an exciting time to join the Incident Response team, with significant investment planned in all UK&I businesses to transform & deliver new digital services to our customers and streamline and automate our business processes. To help us manage our Cybersecurity Incidents, whilst performing forensic investigations & providing cyber threat intelligence services, we’re looking for a talented … individual with strong analytical skills to join this growing team. The Senior Incident Response Analyst will report to the Detection & Response Manager and will play a pivotal role in protecting what matters. By liaising with internal and external stakeholders, and providing expert recommendations and support, the Senior IR Analyst will help protect AXA UK from the latest … attending industry events. What you’ll be doing: Acting as the Subject Matter Expert for UK-wide security incidents, ensuring incidents are managed in accordance with UK and Group incident management requirements. Collaborating with UK and Global colleagues to help build a better & more secure AXA. Enabling appropriate DFIR services in the UK to meet jurisdictional requirements. Providing recommendations More ❯

talented Cyber Security and Tech talent needed for their teams | Principal Recruitment Consultant @ Enso... Enso Recruitment is working on behalf of a growing cybersecurity consultancy to find an experienced Incident Response Analyst. This role offers the opportunity to join a team dedicated to reducing the impact of cyber threats and helping clients strengthen their long-term resilience. The successful … candidate will join a fast-paced and collaborative incident response function, contributing to investigations, digital forensics, threat intelligence, and client reporting. This position is ideal for someone who thrives on problem-solving, has strong technical skills, and enjoys working closely with clients during live security incidents. Key Responsibilities: Take part in active incident response cases, including digital forensics … and stakeholder coordination. Conduct initial incident assessments and support the full response lifecycle, from containment to recovery. Carry out security assessments and use threat intelligence and open-source research to inform investigations. Collaborate across teams to deliver end-to-end incident response and security services. Document findings and actions thoroughly, producing clear reports and remediation guidance for clients. More ❯

identifying operational and security risks and collaborating with business, functional, and customer stakeholders to develop plans that manage risk to acceptable levels. We are currently seeking a Sr. Cyber Incident Response Analyst to join our team. About the Role Monitor for and investigate suspicious or malicious activity and alerts Review Change Management requests for security relevance and impact … Daily review of system, application logs, and custom monitoring tools Malware and Advanced Persistent Threat (APT) analysis and remediation Incident Response and Investigations Availability for rotating on-call shifts (up to 2 - 3 times per year) About You Bachelor's degree preferred or equivalent related field experience Professional Certifications preferred, including SANS GIAC or CISSP Microsoft, Linux, Networking or … related certifications a plus. Experience in Information Technology Extensive experience in information security incident response and operations management Extensive experience of OS, application, and network security weaknesses, vulnerabilities, and remediation Experience researching, analyzing, and resolving complex problems with minimal supervision Experience reading and understanding system data, including, but not limited to, security event logs, system logs, and firewall logs More ❯

identifying operational and security risks and collaborating with business, functional, and customer stakeholders to develop plans that manage risk to acceptable levels. We are currently seeking a Sr. Cyber Incident Response Analyst to join our team. About the Role Monitor for and investigate suspicious or malicious activity and alerts Review Change Management requests for security relevance and impact … Daily review of system, application logs, and custom monitoring tools Malware and Advanced Persistent Threat (APT) analysis and remediation Incident Response and Investigations Availability for rotating on-call shifts (up to 2 - 3 times per year) About You Bachelor's degree preferred or equivalent related field experience Professional Certifications preferred, including SANS GIAC or CISSP Microsoft, Linux, Networking or … related certifications a plus. Experience in Information Technology Extensive experience in information security incident response and operations management Extensive experience of OS, application, and network security weaknesses, vulnerabilities, and remediation Experience researching, analyzing, and resolving complex problems with minimal supervision Experience reading and understanding system data, including, but not limited to, security event logs, system logs, and firewall logs More ❯

SecurePortal. This provides clients with a continuous, living threat management system throughout the duration of the contract, rather than a single point-in-time assessment. We’re expanding our Incident Response team and looking for a Incident Response Analyst to join us in tackling some of the most challenging cybersecurity threats. The role requires analytic thinking, problem … dynamic team, you will play a critical role in reducing the impact of cyberattacks and enchanting our clients security posture to prevent future attacks. Key responsibilities include: Conducting initial incident assessments and contribute to Incident Response management. Participate in live Incident Response operations including digital forensics. Perform security assessments, threat intelligence gathering and OSINT analysis. Collaborating with … investigation tooling – SIEM, SOAR, EDR etc. Proficiency in log analysis of Networking, Windows, Mac and Linux and Cloud. Understanding of evidence collection process based on priority. Strong understanding of incident response following NIST 800-61 guidelines incorporating containment, eradication and recovery phases. Experience with digital forensics and investigations, including evidence collection and chain-of-custody protocols. Should have an More ❯

Red Snapper Recruitment are seeking a detail-oriented and experienced Cyber Incident Management (CIM) and Threat and Vulnerability Management (TVM) Governance Analyst to support a robust cybersecurity governance program. This role plays a key part in enhancing and maintaining the integrity of cybersecurity operations through effective data analysis, reporting, and cross-functional collaboration. The successful candidate will contribute … Collaborate with internal teams and external partners to support governance-related functions. Assist with distributing governance reports across organizational leadership and forums. What You Bring: Deep understanding of cyber incident response, patch management, and vulnerability assessment in large-scale environments. Strong problem-solving, analytical, and organizational skills. Ability to build strong working relationships in a global, distributed team environment. More ❯

Red Snapper Recruitment are seeking a detail-oriented and experienced Cyber Incident Management (CIM) and Threat and Vulnerability Management (TVM) Governance Analyst to support a robust cybersecurity governance program. This role plays a key part in enhancing and maintaining the integrity of cybersecurity operations through effective data analysis, reporting, and cross-functional collaboration. The successful candidate will contribute … Collaborate with internal teams and external partners to support governance-related functions. Assist with distributing governance reports across organizational leadership and forums. What You Bring: Deep understanding of cyber incident response, patch management, and vulnerability assessment in large-scale environments. Strong problem-solving, analytical, and organizational skills. Ability to build strong working relationships in a global, distributed team environment. More ❯

Red Snapper Recruitment are seeking a detail-oriented and experienced Cyber Incident Management (CIM) and Threat and Vulnerability Management (TVM) Governance Analyst to support a robust cybersecurity governance program. This role plays a key part in enhancing and maintaining the integrity of cybersecurity operations through effective data analysis, reporting, and cross-functional collaboration. The successful candidate will contribute … Collaborate with internal teams and external partners to support governance-related functions. Assist with distributing governance reports across organizational leadership and forums. What You Bring: Deep understanding of cyber incident response, patch management, and vulnerability assessment in large-scale environments. Strong problem-solving, analytical, and organizational skills. Ability to build strong working relationships in a global, distributed team environment. More ❯

Job Title: Cyber Incident Response Analyst Contract Type: Full time Permanent Location: Edinburgh/Glasgow/Alderley Park/London Working style: Hybrid 50% home/office based Closing date: 19th June 2025 This role will assure the response to a cybersecurity event or incident, taking the lead to contain the threat to the Royal London business … stabilize service. The role will coordinate activities between Defence, Threat Intelligence, SOC, and Engineering, and serve as the point of contact for IT Security within the Royal London Group incident management process. The team aims to minimize and control damage from cybersecurity incidents, ensuring incident management and response controls are effective to enable the identification, protection, detection, response … role contributes to our purpose by: Helping build financial resilience Moving fairly to a sustainable world Strengthening mutual choice for customers About the role Creation and maintenance of RLG incident response plan and procedures Undertake confidential and sensitive colleague investigations Develop and mature the Incident Response policy, process, and procedures Provide root cause analysis, create metrics, and generate More ❯

Press Tab to Move to Skip to Content Link Select how often (in days) to receive an alert: Company: Royal London Group Job Title: Cyber Incident Response Analyst Contract Type: Full time Permanent Location: Edinburgh/Glasgow/Alderley Park/London Working style: Hybrid 50% home/office based Closing date: 19th June 2025 This role will … assure the response to a cybersecurity event or incident, taking the lead to contain the threat to the Royal London business and support the remediation activities to stabilise service. The role will coordinate activities between Defence, Threat Intelligence, SOC and Engineering, and be the point of contact for IT Security within the Royal London Group incident management process. … The team’s purpose is to minimise and control the damage resulting from cybersecurity incidents, ensuring that appropriate incident management and response controls are in place and operating as required to enable the identification, protection, detection, response, and recovery of RLG information assets. It outlines how the role contributes to our purpose: Helping build financial resilience Moving fairly to More ❯

IT Security Incident Response Analyst - Solihull Crimson and IMI have joined forces to build IMI's new security team and we are looking for talented individuals to join us on this exciting journey. If you are passionate about IT security and want to be part of a dynamic team that is shaping the future of security within a … successful global company, we want to hear from you! We are seeking a highly skilled and experienced IT Security Incident Response Analyst to join the team. In this role, you will be responsible for identifying, investigating and responding to security incidents within the organisation. This role involves monitoring security systems, analysing threats, and implementing measures to mitigate risks … Key Responsibilities Respond to and manage cybersecurity incidents, ensuring timely resolution and minimising impact. Conduct forensic investigations to identify the root cause and extent of breaches. Develop and implement incident response plans, processes and playbooks. Collaborate with IT Security team to enhance monitoring and detection capabilities. Maintain current knowledge of security threats, vulnerabilities and mitigation techniques. Prepare detailed incident More ❯

Monitoring Operations Analyst | S2 | Incident Management | Milton Keynes/Hybrid Pay: Competitive Location: Milton Keynes, England Employment type: Full-Time Job Description Req#: Req1129435 Monitoring Operations Analyst | S2 | Incident Management | Milton Keynes/Hybrid WHAT YOU WILL BE DOING Join our community. This is a great opportunity to work as a Monitoring Operations Analyst in … technology and service triggers following established procedures. Communicating clearly and concisely, engaging support teams as needed. Collaborating across departments to deliver optimal service, maintaining key relationships with Change and Incident teams. Identifying and managing risks, ensuring controls are followed. Analyzing and delivering service metrics, enhancing views of various services. What you’ll bring. Understanding of Cloud computing. Knowledge of … logical flows (Infrastructure/Application). ITIL awareness, specifically incident and change disciplines. It would also be nice for you to have. Extensive ServiceNow experience. Previous banking experience. Knowledge of Agile, including IaaS, PaaS, microservices, Docker, and continuous deployment lifecycle. What else you need to know. This is a permanent role based in Milton Keynes. Shift-based role with More ❯

legal technology teams in the Americas & EMEA My client is a DFIR and offensive security specialist consultancy looking to expand their DFIR capabilities by onboarding an experienced technical DFIR analyst . This position will be remote, with occasional attendance at client sites to provide containment and remediation services to a range of clients. Responsibilities of a Senior Digital Forensic … Incident Response Analyst: Lead remediation activities for various cases, coordinating with wider teams as needed Conduct digital forensic investigations thoroughly Handle cases involving Malware, Ransomware, DDoS, Email Compromise, etc. Help improve the client’s Incident Response capabilities Serve as an SME for internal and external stakeholders on Incident Response matters Perform compromise assessments using agents, forensic … collectors, and log queries Requirements of a Senior Digital Forensic & Incident Response Analyst: 2+ years of experience in a DFIR/Incident Response role Strong technical knowledge of forensic investigations and incident response Consulting experience is a plus Expertise in threat mitigation, proactive measures, and handling cyber incidents, including DDoS attacks and threat intelligence Open-source More ❯

Senior Digital Forensic & Incident Response Analyst - Remote - Circa £80,000 My client is a DFIR and offensive security specialist consultancy looking to expand their DFIR capabilities by onboarding an experienced technical DFIR analyst. This position will be remote, with occasional attendance at client sites to provide containment and remediation services to a range of clients. Responsibilities of a … Senior Digital Forensic & Incident Response Analyst: Actively lead remediation activities for a variety of cases whilst coordinating with the wider teams in the business when necessary Conduct digital forensic investigations to the highest degree Hands-on with a range of cases such as Malware, Ransomware, DDoS, Email Compromise, and more Track record helping the client improve their Incident Response capabilities Act as an SME for internal and external stakeholders regarding all matters relating to Incident response Perform compromise assessment via agent-based, forensic collectors and log queries Requirements of a Senior Digital Forensic & Incident Response Analyst: 2+ years of previous experience working in a DFIR/Incident response role Demonstrate strong technical knowledge More ❯

Senior Digital Forensic & Incident Response Analyst - Remote - Circa £80,000 My client is a DFIR and offensive security specialist consultancy looking to expand their DFIR capabilities by onboarding an experienced technical DFIR analyst. This position will be remote, with occasional attendance at client sites to provide containment and remediation services to a range of clients. Responsibilities of a … Senior Digital Forensic & Incident Response Analyst: Actively lead remediation activities for a variety of cases whilst coordinating with the wider teams in the business when necessary Conduct digital forensic investigations to the highest degree Hands-on with a range of cases such as Malware, Ransomware, DDoS, Email Compromise, and more Track record helping the client improve their Incident Response capabilities Act as an SME for internal and external stakeholders regarding all matters relating to Incident response Perform compromise assessment via agent-based, forensic collectors and log queries Requirements of a Senior Digital Forensic & Incident Response Analyst: 2+ years of previous experience working in a DFIR/Incident response role Demonstrate strong technical knowledge More ❯

Senior Digital Forensic & Incident Response Analyst - Remote - Circa £80,000 My client is a DFIR and offensive security specialist consultancy looking to expand their DFIR capabilities by onboarding an experienced technical DFIR analyst. This position will be remote, with occasional attendance at client sites to provide containment and remediation services to a range of clients. Responsibilities of a … Senior Digital Forensic & Incident Response Analyst: Actively lead remediation activities for a variety of cases whilst coordinating with the wider teams in the business when necessary Conduct digital forensic investigations to the highest degree Hands-on with a range of cases such as Malware, Ransomware, DDoS, Email Compromise, and more Track record helping the client improve their Incident Response capabilities Act as an SME for internal and external stakeholders regarding all matters relating to Incident response Perform compromise assessment via agent-based, forensic collectors and log queries Requirements of a Senior Digital Forensic & Incident Response Analyst: 2+ years of previous experience working in a DFIR/Incident response role Demonstrate strong technical knowledge More ❯

Senior Digital Forensic & Incident Response Analyst - Remote - Circa £80,000 My client is a DFIR and offensive security specialist consultancy looking to expand their DFIR capabilities by onboarding an experienced technical DFIR analyst. This position will be remote, with occasional attendance at client sites to provide containment and remediation services to a range of clients. Responsibilities of a … Senior Digital Forensic & Incident Response Analyst: Actively lead remediation activities for a variety of cases whilst coordinating with the wider teams in the business when necessary Conduct digital forensic investigations to the highest degree Hands-on with a range of cases such as Malware, Ransomware, DDoS, Email Compromise, and more Track record helping the client improve their Incident Response capabilities Act as an SME for internal and external stakeholders regarding all matters relating to Incident response Perform compromise assessment via agent-based, forensic collectors and log queries Requirements of a Senior Digital Forensic & Incident Response Analyst: 2+ years of previous experience working in a DFIR/Incident response role Demonstrate strong technical knowledge More ❯

Senior Digital Forensic & Incident Response Analyst - Remote - Circa £80,000 My client is a DFIR and offensive security specialist consultancy looking to expand their DFIR capabilities by onboarding an experienced technical DFIR analyst. This position will be remote, with occasional attendance at client sites to provide containment and remediation services to a range of clients. Responsibilities of a … Senior Digital Forensic & Incident Response Analyst: Actively lead remediation activities for a variety of cases whilst coordinating with the wider teams in the business when necessary Conduct digital forensic investigations to the highest degree Hands-on with a range of cases such as Malware, Ransomware, DDoS, Email Compromise, and more Track record helping the client improve their Incident Response capabilities Act as an SME for internal and external stakeholders regarding all matters relating to Incident response Perform compromise assessment via agent-based, forensic collectors and log queries Requirements of a Senior Digital Forensic & Incident Response Analyst: 2+ years of previous experience working in a DFIR/Incident response role Demonstrate strong technical knowledge More ❯