19 of 19 Incident Response Jobs in the East of England

lawyer to advise on and coordinate data protection matters, in particular, to oversee and run the Global Record of Processing Activities (RoPA) Inventory as well as coordinate the Global Incident Response (IR) Process. This involves overseeing a team who are responsible for completing and maintaining EY's Global RoPA and integration of Privacy Impact Assessment (PIA) records and … Third Party Vendor Due Diligence (VDD) data as well as coordinating the work of other resources and EY's Global Delivery Service ("GDS") involved in the Global Incident Response Process. The global data protection team is responsible for the implementation and transformation of EY's privacy compliance program, which include Binding Corporate Rules. The team works closely with … on data protection matters, including both personal data privacy and the protection of client and EY confidential information. The opportunity As the Global Legal Counsel - Data Protection RoPA and Incident Response, you will be responsible for overseeing the Records of Processing Activity (RoPA) process and inventory as well as the management of the Global Incident Response More ❯

for a Cyber Security Lead to join our team. This is a critical leadership role, overseeing the full security lifecycle — from architecture and policy development to operational resilience and incident response — across complex hybrid environments with a strong emphasis on cloud security (AWS and Azure). Your leadership will be central to ensuring that digital financial infrastructure remains … design through development, testing, and into operational deployment. Demonstrate a strong understanding of leading operational security functions, including SOC operations, threat intelligence, and vulnerability management. Experience of managing the incident response lifecycle, including triage, containment, investigation, remediation, and conducting post-incident reviews. Ability to establish and improve incident response playbooks and escalation processes to ensure More ❯

Job overview: This is an opportunity to lead global Security Operations focused on safeguarding Arm's digital environment through exemplary threat detection, incident response, and vulnerability management capabilities. This senior role, reporting directly into the CISO is accountable for driving the strategic direction of Arm's Detect & Response function, delivering outstanding performance and ensuring we are resilient … operations, you will lead cyber crisis management, C-Suite level stress testing, team development, and top-level cybersecurity thought leadership. Responsibilities: Own and deliver the strategic roadmap for cyber incident and vulnerability detection & response in line with Arm's threat profile and business objectives. You will guide and develop a high-performing team, driven with context of emerging More ❯

doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Provide Incident Response support. Maintain, improve and develop team knowledge of SOC tools, security operations and triage. Prepare reports for managed clients to both technical and non-technical audiences and … continuously improve their content and presentation. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. What you will bring : Experience in Security Operations Centre. Demonstrable experience of Managing Microsoft Sentinel or Splunk implementations. Knowledge and experience with Mitre Att&ck Framework. Solid grasp of client-server applications, multi-tier web applications, relational More ❯

adhered to across site Maintain high standards of Health and Safety and ensure all Safe Systems of Work processes are adhered to Take the lead role in Event and Incident response Work to ensure initial incident reports are completed and shared with customer Maintain a proactive involvement in the on-going technical evaluation of all plant and … record of managing a team Working knowledge and understanding of engineering operations within Critical Environments Creating and developing SOP/MOP and EOP documentation Demonstrable experience in dealing with incident management and post-incident reporting Electrical HV & LV AP IOSH Managing Safely or equivalent A calm yet responsive approach to incidents and post incident reporting Ability to More ❯

compliance, and security policies across cloud estates. Execute backup, disaster recovery, and business continuity procedures. Systems Management & Optimisation: Maintain and troubleshoot Azure and hybrid cloud environments. Perform proactive monitoring, incident response, and root cause analysis of mission-critical systems. Configure, optimise, and secure servers, virtual machines, networking, and storage solutions. Create and maintain scripts (e.g., PowerShell) to automate More ❯

to-end support across Service Desk tiers (13). That means you will not only resolve high-level, complex technical issues but also contribute to front-line customer service, incident triage, and service request fulfilment when required. The hours of work for this role are Monday - Sunday - 4 on 4 off - 7pm - 7am. Key Responsibilities as a Cloud Operations … Engineer: Maintain and troubleshoot Azure and hybrid cloud environments. Perform proactive monitoring, incident response, and root cause analysis of mission-critical systems. Configure, optimise, and secure servers, virtual machines, networking, and storage solutions. Create and maintain scripts (e.g., PowerShell) to automate operational tasks. Contribute to design and implementation of new cloud and hybrid solutions. Service Desk Element: Tier … experience in a 3rd line technical infrastructure support role Outstanding problem-solving skills with a structured and analytical mindset Experience with ITIL-aligned Service Desk processes. Ability to perform incident triage and service request fulfilment. Strong knowledge of end-user support: Windows OS, O365, Teams, Exchange Online, SharePoint. What We Offer: 33 days holiday (inclusive of bank holidays), with More ❯

the lifecycle from scoping, coordination and remediation management Solid understanding of Confidentiality, Integrity, Availability and Safety (CIA+S) and practical experience in applying that understanding in management of risk and response to events and changes Experience of process involved in gaining and maintaining accreditation for secure/sensitive systems using structured Risk analysis and treatment approaches Experience of process involved … in continuous assurance for information security management systems, e.g. NIST, ISO Experience of developing and managing a Cyber Incident Response capability Experience of developing Security Awareness training including Threat Modelling, table top war gaming Experience in tracing through and evaluating responses to security requirements for a system Experience in maintaining elements of security documentation sets (SyOPS, RMADs, Security More ❯

standards and business objectives. Lead the design, implementation, and continuous improvement of the Information Security Management System (ISMS). Oversee risk management activities, including risk assessments, mitigation planning, and incident response. You will work with senior stakeholders to ensure alignment between security initiatives and organisational priorities and strive to continually harden and enhance the organisation's IT systems. Manage … relationships with third party suppliers and external auditors and deliver awareness training, enhance and test the business's disaster recovery, continuity and incident response plans, and carry out internal audits for the InfoSec governance frameworks. Qualifications You must be a highly capable information security leader with a proven track record of delivering secure, compliant and robust systems and More ❯

and IDAM integrations Driving best practice with Microsoft Entra (Azure AD/IDAM protocols) Using and optimising tools like Sentinel, Splunk, Datadog, OpenTelemetry, and ELK Supporting observability, scanning, and incident response capabilities Tackling complex security challenges in a financial services context What were looking for Proven experience as a Security Engineer , ideally in financial services or insurance Strong More ❯

involved with: Handling Tier II-IV incidents and troubleshooting Change and configuration management Policy optimisation and risk reduction Patch, OS and capacity management Event monitoring and vulnerability management Security incident response and project support What we're looking for 5+ years in network security within large-scale operations Experience with technologies such as Cisco ASA, FirePower, Palo Alto More ❯

involved with: Handling Tier II-IV incidents and troubleshooting Change and configuration management Policy optimisation and risk reduction Patch, OS and capacity management Event monitoring and vulnerability management Security incident response and project support What we're looking for 5+ years in network security within large-scale operations Experience with technologies such as Cisco ASA, FirePower, Palo Alto More ❯

our forward thinking team as a Network Security Engineer, where you will play a key role in safeguarding our organisations' network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing and maintaining robust security solutions More ❯

and manage governance, compliance, and security policies across cloud estates. - Execute backup, disaster recovery, and business continuity procedures. - Maintain and troubleshoot Azure and hybrid cloud environments. - Perform proactive monitoring, incident response, and root cause analysis of mission-critical systems. - Configure, optimise, and secure servers, virtual machines, networking, and storage solutions. - Create and maintain scripts (e.g., PowerShell) to automate More ❯

into the SDLC. Designing and integrating security testing plans. Performing and overseeing application security testing and driving remediation. Managing end-to-end vulnerability workflows, including bug bounty findings. Supporting incident response activities when needed. Monitoring and reporting on application security metrics, KPIs, and emerging threats. Automating processes for vulnerability detection and integrating tools into the pipeline. Note: this More ❯

into the SDLC. Designing and integrating security testing plans. Performing and overseeing application security testing and driving remediation. Managing end-to-end vulnerability workflows, including bug bounty findings. Supporting incident response activities when needed. Monitoring and reporting on application security metrics, KPIs, and emerging threats. Automating processes for vulnerability detection and integrating tools into the pipeline. Note: this More ❯

to step into a hands-on, operational role with real impact - this could be the move for you. ?? The Role As part of a 24/7 internal security response team, you'll help protect complex network infrastructure from evolving threats. You'll support incident response, work closely with SOC analysts, and fine-tune key security tools More ❯

remediation progress. Vulnerability Management Investigate unauthorised access attempts and ensure compliance with relevant legislation. Collaborate with security teams to identify, assess, and remediate vulnerabilities. Support access control monitoring and incident response activities. Lifecycle & Infrastructure Operations Assist in the operation and control of IT infrastructure across hardware, software, and networks. Participate in change management processes for new or modified More ❯

Develop security testing plans and integrate into the software development lifecycle (S-SDLC) Perform and oversee security testing and manage remediation of identified vulnerabilities Take part in the security incident response team Prepare and monitor application security metrics and KPIs Note: This position will require participation in an on-call rotation What we're looking for: At least More ❯