15 of 15 Incident Response Jobs in Birmingham

Join Ofwats Corporate Enablers as a Head of Security Operations & Incident Response *Office Location: Birmingham (B5 4UA) with hybrid working * About Us We are Ofwat, the Water Services Regulation Authority, a non-ministerial government department responsible for regulating the water sector in England and Wales. Our work has … needed; holding water companies to account. Come and work at the source of everyday life. The Role As the Head of Security Operations and Incident Response, you will be responsible for the Security Strategy in Ofwat, our security operations, and overseeing the monitoring and response to security … team and be the primary point of contact for the leadership team and business stakeholders for any security event, ensuring comprehensive monitoring and effective response to cyber security threats across all networks, assets, and users. You will also be responsible for managing incidents related to personnel, technical, and physical More ❯

Compliance, and Identity function in Birmingham. This is a critical hands-on position focused on improving the organisation's security posture through proactive monitoring, incident response, vulnerability management, and supplier collaboration. The role will be part of a wider security team and reports to the Lead IT Security … Manager. Key Responsibilities: Lead day-to-day Security Operations activities including incident response and threat detection. Plan and support vulnerability assessments and penetration testing. Support live cyber incident investigations and remediation actions. Provide risk mitigation recommendations and technical input on audit actions. Help manage a third-party … Security Operations Centre and escalate complex incidents. Create and maintain playbooks for incident response and drive security capability improvements. Experience Required: Experience working across a wide IT security landscape, including networks, infrastructure, and software. Hands-on experience in SOC environments and live incident remediation. Knowledge of IT More ❯

Compliance, and Identity function in Birmingham. This is a critical hands-on position focused on improving the organisation's security posture through proactive monitoring, incident response, vulnerability management, and supplier collaboration. The role will be part of a wider security team and reports to the Lead IT Security … Manager. Key Responsibilities: Lead day-to-day Security Operations activities including incident response and threat detection. Plan and support vulnerability assessments and penetration testing. Support live cyber incident investigations and remediation actions. Provide risk mitigation recommendations and technical input on audit actions. Help manage a third-party … Security Operations Centre and escalate complex incidents. Create and maintain playbooks for incident response and drive security capability improvements. Experience Required: Experience working across a wide IT security landscape, including networks, infrastructure, and software. Hands-on experience in SOC environments and live incident remediation. Knowledge of IT More ❯

carefully selected team of experts are capable of solving complex cyber security challenges - keeping data secure and businesses running as usual. CyberClan's Global Incident Response Teams are available 24/7/365 to leap into action, responding to all cyber-attacks with proven defensive methodology. We … mentor junior staff and handle multiple projects simultaneously. Extensive travel may be required on short notice. Reporting to the Global Head of Digital Forensics & Incident Response, the successful candidate will join the Post Breach Remediation team, collaborating with cross-functional teams within the organization. Essential Functions Provide reliable … operations after a disaster. Own customer issues from troubleshooting to resolution or escalation. Identify and escalate urgent issues. Meet or exceed customer expectations regarding response quality, timeliness, and overall experience. Act as the point of contact for escalations, ensuring prompt resolution. Innovate beyond standard practices to rescue production environments. More ❯

cybersecurity team. The ideal candidate will be responsible for designing, implementing, and maintaining our customers Elastic SIEM infrastructure to ensure robust security monitoring and incident response capabilities. Embedded with an existing Customer SOC, you will provide Engineering support and expertise for the customers Elastic SIEM implementation, working alongside … real-time monitoring and analysis of security events. Data Integration : Integrate various data sources into Elasticsearch, ensuring data quality and consistency through ETL processes. Incident Response : Investigate and respond to security incidents, leveraging Elastic SIEM capabilities to identify and mitigate threats. Performance Optimization : Monitor and optimize the performance More ❯

using the Protective Monitoring platform and Internet resources to identify cyber-attacks/security incidents. Categorise all suspected incidents in line with the Security Incident policy. Recognise potential, successful, and unsuccessful intrusion attempts and compromises through reviews and further analysis of relevant event detail and incident summary information. … Write high-quality security incident tickets using existing knowledge resources and independent research. Assist with remediation activities or support customer stakeholders to inhibit cyber-attacks, clean up IT systems, and secure networks against repeat attacks. Produce security incident review reports to present information about incidents and provide security … recommendations. Understand Threat Intelligence and its application in an operational environment. Conduct Threat Hunting to identify attacks that may not have been captured. Support incident response to national-scale incidents in a coaching capacity. Assist in the development and implementation of SOC Use Cases. Collaborate with other teams More ❯

Officer: Support in the management of the Security Operations, establishing and delivering methods and tools to provide value and reduce risk across proactive monitoring, incident response, threat management and vulnerability management. Maintain operational security processes and ensure that all requests for support are dealt with, investigating security breaches … the Security, Compliance & Identity function to develop and enhance the team profile to develop enduring relationships with stakeholders and teams. Develop and maintain security incident playbooks and guidance. Benefits of working as a Senior IT Security Officer : a competitive pension scheme, with up to 12 per cent employer contributions More ❯

need. From a technical standpoint you'll need some, but potentially not all of the following: Solid experience in cyber operations, with exposure to incident response, vulnerability management, and security reporting Hands-on knowledge of tools such as: Microsoft Defender, Azure, Purview CrowdStrike Firewalls (e.g., Palo Alto, FortiGate More ❯

Key responsibilities and accountabilities: Design and recommend security architectures, solutions, and controls to protect client critical assets and data. Develop and help customers implement incident response plans, which outline steps to take in case of a security breach. Perform security assessments for customers, including penetration testing, to identify More ❯

v4, Agile, and other best practices for optimizing IT service management. Strong understanding of day-to-day SOC operations and industry-leading approaches to incident response and monitoring. Knowledgeable in firewalls, network security groups, access control mechanisms, and other essential security controls. Proven ability to enhance security posture More ❯

Reliability Engineering (SRE) team. Oversee system availability, data integrity, and performance monitoring. Drive compliance with security and regulatory requirements. Manage on-call rotations and incident response processes. Optimize cloud infrastructure and containerized deployments. Partner with engineering teams to improve deployment and automation strategies. Own budgeting decisions related to More ❯

Skills: Technical background in AI/ML, data science, or software engineering. Experience with cloud-native AI environments and SaaS AI products. Exposure to incident response and major technology failure events. Our Commitment: We promote diversity, inclusion, and support for all backgrounds. Reasonable adjustments available for recruitment. Join More ❯

Linux/Powershell). Experience of monitoring, logging and alerting stacks or APMs such as Datadog, Dynatrace, Solarwinds, Prometheus, Grafana, TICK, ELK. Exposure to incident response processes and scenarios. Solid verbal and written/diagrammatical communication skills. Experience of quality assurance techniques such as load/stress/ More ❯

Site Reliability Engineer (SRE) with experience in maintaining scalable and reliable infrastructure? We're looking for a proactive leader with a passion for automation, incident management, and system optimization. Key Skills Required: 5+ years of SRE or similar experience Expertise in Cloud Platforms (SIEM technologies preferred) Proficiency in Python … and collaboration skills Responsibilities: Design, implement, and manage scalable infrastructure Monitor and enhance system performance Automate repetitive tasks for efficiency Develop monitoring, alerting, and incident response systems Perform root cause analysis and preventative maintenance Ensure SIEM data sources remain healthy and troubleshoot logging issues More ❯

performance, availability). • Exposure to internal risk frameworks or external regulatory requirements (e.g., DORA, EBA, PRA). • Background in service reliability, system diagnostics, or incident response. More ❯