12 of 12 Incident Response Jobs in Berkshire

strategy, with ongoing investment in tooling, threat intelligence, and specialist talent. The security function operates at a mature level, combining Security Operations, threat detection, incident response, and continuous improvement practices to defend against evolving threats. ________________________________________ Role Overview As a Security Monitoring & SIEM Analyst, you will play … role within the Security Operations function, focused on real-time detection, investigation, and response to cyber threats using SIEM and security tooling. This role combines hands-on SIEM analysis, alert triage, investigation, and detection improvement, alongside exposure to incident response and proactive threat detection activities. You will ...

improvement Lead security engagement within client Design Authority and Enterprise Architecture forums Manage integration with the client SOC, including security reporting, SIEM alignment, and incident response coordination Oversee security incident management in line with the client Cyber Security Incident Response Plan Own joiner/mover … Strong understanding of NCSC HMG IAS5, Cyber Assessment Framework (CAF), ISO 27001, and GDPR Hands-on experience integrating with a UK Government SOC, including incident response and security reporting Strong working knowledge of Oracle Cloud security (OCI IAM, Vault, network security, audit, PAM) Experience securing Oracle SaaS applications ...

control systems remain secure, compliant and operationally robust. You'll work closely with engineers, cybersecurity specialists, and external partners to monitor OT environments, support incident response, maintain asset and patch records, and contribute to risk, compliance and audit activities. The role also supports the ongoing improvement … safe, secure and continuous delivery of energy to millions. Location: UK-based hybrid role, Occasional travel to site. Day to day Support OT cybersecurity incident response, including investigation, evidence gathering, containment, remediation, and technical actions such as system isolation and patching, under CSIRT and GSOC guidance. Operate ...

malicious activity using telemetry, SIEM data, and threat intelligence, develop hypotheses based on MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs), and support incident management and response activities when threats are identified. We are open to experienced SOC Analysts where threat hunting, investigations, and proactive detection have formed … tradecraft Experience working with Indicators of Compromise (IOCs) and threat intelligence feeds Solid experience across the security event life cycle, including detection, investigation, and incident management Hands-on experience with EDR/XDR technologies such as Microsoft Defender, CrowdStrike, SentinelOne, or Carbon Black Strong knowledge of networking fundamentals ...

performance optimisation Oversee DNS migrations, upgrades, and transformations Implement and maintain DNS security (DNSSEC, DDoS protection, threat mitigation) Monitor performance, availability, and ensure robust incident response processes Act as escalation point for complex DNS/network issues and lead root cause analysis Drive automation using scripting (Python, PowerShell ...

environments Manage CI/CD pipelines using Jenkins Automate deployments using Bash, Python, YAML, and IaC tooling Support SRE practices including monitoring, observability, and incident response Troubleshoot infrastructure, networking, and deployment issues Work closely with DevOps, Security, and Infrastructure teams Required Experience Strong RHEL engineering background Kubernetes/ ...

frameworks, and risk management processes. Develop and maintain the Group IT Security Risk Register. Lead cyber security risk assessments and remediation planning activities. Manage incident response, cyber investigations, and escalation procedures. Oversee annual penetration testing programmes and security audits. Support compliance initiatives including Cyber Essentials, Cyber Essentials Plus ...

decisions through credibility, judgement and impact. Strong delivery mindset with the ability to manage multiple complex initiatives simultaneously, demonstrating consistent outcomes across risk management, incident response, assurance and security improvement programmes. Advanced capability in the safe and responsible use of AI and emerging technologies, including enterprise ...

platform and service design from the outset Lead key SRE practices such as reliability reviews, operational readiness, and toil reduction Drive automation across monitoring, incident response, and remediation Act as the technical escalation point for major incidents and high-risk releases Lead blameless post-incident reviews ...

availability Implement self-service tooling to empower development teams Drive DevOps best practices across the digital product lifecycle Develop and enhance monitoring, observability, and incident response processes Support global engineering teams delivering high-traffic platforms Key Requirements Proven experience supporting digital product delivery in a DevOps or platform ...

across multiple sectors. You’ll act as an escalation point for Tier 1, owning investigations end-to-end — triaging SIEM and EDR alerts, leading incident response, hunting threats using MITRE ATT&CK, and tuning detections to cut noise. You’ll also mentor junior analysts and help mature playbooks ...

specialist vendors performing maintenance or repair activities on site Follow permit-to-work and safety procedures for all maintenance and operational activities Participate in incident response and support troubleshooting during infrastructure events Maintain accurate maintenance records and operational logs Support testing activities including generator tests and infrastructure failover ...