126 to 150 of 499 Incident Response Jobs in England

Role At Teneo, we provide expert cyber security strategy, risk and response advisory within a multi‐disciplinary environment, working closely with our strategy and communications, risk advisory and restructuring teams across a globally connected platform. We are seeking highly experienced Cyber Response Managing Directors to join our growing … global cyber team. This role is suited to a senior cyber security leader with deep expertise in cyber response and recovery, including advising organisations on remediation and leading longer‐term post‐incident transformation. As a Managing Director, you will be responsible for building and leading a market‐facing ...

standards Act as the on-site technology point of contact Troubleshoot and resolve connectivity issues (Wi‐Fi, wired, endpoint, VPN, DHCP/DNS) Coordinate incident response with technical teams Maintain awareness of service performance Communicate clearly with both technical and non‐technical stakeholders Balance customer expectations with operational … hospitality or similar) Strong understanding of enterprise IT and networking fundamentals (Wi‐Fi, TCP/IP, DHCP, DNS, VPNs, endpoints, service delivery) Experience coordinating incident response in high‐pressure environments Ability to manage multiple stakeholders Clear communication with technical and non‐technical audiences A calm, structured approach during ...

execution across all support tiers. The Head of Support sets the standards, governs vendor performance, and ensures every aspect of the support experience — from incident response to customer satisfaction — meets enterprise-grade expectations. Key Responsibilities Service Reliability & Platform Stability Own platform availability, performance, and reliability across all tenants … Reduce incident frequency, severity, and blast radius Establish and drive Service Reliability Engineering (SRE) principles Ensure scalability and operational readiness of a multi-tenant platform Incident Management & Response Implement and lead a structured incident management framework (P1–P4) Act as executive owner of major incidents ...

Medical Protection Society is seeking an Information Security Incident Manager to lead cyber incident responses and enhance resilience. The role involves coordinating major incidents, ensuring effective governance, and improving incident response plans. Candidates should have strong expertise in cyber security, experience leading incidents, and excellent communication ...

pragmatic cyber security strategy aligned to business priorities, whilst establishing and maintaining security policies, standards, and governance frameworks. You will oversee security operations, including incident detection, response, and continuous improvement, and manage key third-party security service providers, ensuring performance and accountability. Risk management activities will … following experience: Proven interim experience in a Cyber Security Manager/Lead/Security Consultant role. Strong understanding of security operations, threat detection, and incident response practices. Experience working with SIEM, EDR, and monitoring technologies in enterprise environments. Demonstrable knowledge of security frameworks, controls, and governance models. Experience ...

Model & Ways of Working : Define and implement SRE ways of working and engagement patterns, aligning reliability practices with existing ITSM/ITIL processes (e.g., incident, problem, release and change) and modern engineering delivery. Reliability Measures (SLIs/SLOs) & Error Budgets : Establish service measures and targets (SLIs/SLOs … Insight: Shape observability approaches (metrics/logs/traces) and operational monitoring models that make reliability risks visible and actionable, improving operational decision‐making. Incident Excellence & Continuous Learning: Design incident analysis and improvement loops, including practical approaches that strengthen incident response and drive learning through post ...

private cloud platform, ensuring systems are actively monitored, vulnerabilities are managed, and services remain secure, compliant and resilient. Key Responsibilities Security Monitoring & Response Monitor SIEM, EDR and platform telemetry. Investigate alerts and perform incident triage and escalation. Conduct structured incident response activities. Vulnerability & Patch Management Execute … Release Security Assess changes for security impact. Ensure deployments meet security requirements. Support secure-by-design implementation. Documentation & Continuous Improvement Maintain SOPs, runbooks and incident documentation. Contribute to improvement of SecOps processes and tooling. Essential Experience & Skills Experience in Security Operations or SecOps. SIEM, EDR and vulnerability management tooling ...

working. Experience with leveraging AI for AppSec and CloudSec. AWS Certified Security – Speciality or equivalent practical AWS security experience. Terraform or CloudFormation expertise. Incident‐management or incident‐response experience. Experience with Splunk or similar logging/SIEM platforms. Experience with security metrics, dashboards or reporting that helped ...

/SLOs. You’ll help teams implement pragmatic observability—logging, metrics, and distributed tracing—with actionable alerting, and you’ll contribute to (or lead) incident response and post-incident reviews that drive learning and measurable improvements. Job qualifications We are looking for experience in the following skills … Dynatrace ( or similar tools) , including alerting, dashboards, and root-cause analysis. Exposure to AIOps practices , leveraging automation and intelligence for proactive issue detection and incident reduction. Experience supporting production platforms , including incident management, problem management, and continuous improvement. Ability to mentor junior engineers , influence technical standards ...

scripts and custom code to support and enhance our operational toolset.* - Support and optimize CI/CD pipelines to improve deployment speed and reliability.* Incident Management & Collaboration:* - Participate in an on-call rotation to troubleshoot and mitigate production incidents.* - Lead post-incident reviews and root cause analyses … tool development to streamline operational tasks and improve efficiency.* Documentation & Standards: Create and maintain comprehensive documentation for configurations, standard operating procedures (SOPs), and incident response protocols.* Communication & Stakeholder Management: Communicate effectively with technical and non-technical stakeholders, including senior management, regarding incident status, resolution plans, and identity ...

Security Analyst — Leeds 🔐 Full-time · 24/7 shift patter n Microsoft Sentinel/Defender XDR/KQL/Qualys/Incident Response/Threat Hunting/MITRE ATT&CK/Regulated environmen tsWe're looking for a Senior Security Analyst to join a security operations team … Leeds — embedded on a dedicated client engagement in a regulated industry, owning detection, investigation, and response end-to-en d. This isn't a ticket-processing role. You'll run incidents from first alert through to remediation, carry out proactive threat hunting and vulnerability scanning when the queue ...

strategy and operating model (build vs. buy vs. MSSP); maximize value from SIEM, SOAR, IAM, PAM, EDR, DLP, DSPM, and CTI platforms. Security Operations & Incident Response Accountable for SOC performance (24×7 detection, response, threat hunting), DFIR, purple-team/assurance, ransomware preparedness, and crisis playbooks. Maintain … executive incident communications, regulator notifications, and post-incident improvements. Act as escalation point for any security related service failures or major incidents. Threat and Vulnerability Management Support the TVM team in continuously reducing vulnerability levels in the organisation. Recommend procedural improvements and reporting to drive constant improvement. Drive ...

cloud and SaaS environments, and mentoring junior engineers. Responsibilities Manage and clearly explain security incidents identified by our Security Operations Centre (SOC) Provide timely incident response support during cybersecurity events (no on‐call duty) Deliver cybersecurity best practices to technical and non‐technical stakeholders Troubleshoot security and technical … customer‐facing security reports, workshops, guides and training content Mentor junior analysts and engineers Support continuous improvement of Arctic Wolf’s Managed Detection and Response (MDR) services Job Requirements 3–5 years of experience in cybersecurity (systems, network, or cloud administration) Proven track record in IT networking, network security ...

compliance roadmap, detailing priorities, timelines, and resource requirements. Compliance & Advisory : Provide ongoing support for compliance, interpret regulatory requirements, and ensure alignment with industry standards. Incident Leadership & Management : Lead the coordination of high-severity cyber incidents, ensuring effective communication and structured execution. Required Skills & Qualifications: Core Experience : Proven experience … Cyber Incident Response or Major Incident Management, preferably in a SOC or Security Operations environment. Stakeholder & Leadership Skills : Excellent communication skills, ability to influence and negotiate under pressure, and experience with senior stakeholders. Operational Capability : Experience managing incident bridges/war rooms and strong decision-making ...

monitoring, analysing and responding to security threats, while driving continuous improvement across our security operations capability. You’ll play a key role in incident response, threat intelligence, vulnerability management and ensuring effective use of our security tools and processes to reduce risk across the technology estate. Key responsibilities ...

relationships with outsourced 24/7 SOC/MDR providers Monitor performance against SLAs and ensure proactive threat detection across cloud environments Manage security incident escalations and coordinate response activities across internal and external teams Drive value and accountability from third-party security partners Governance, Risk & Compliance … tools and data classification platforms Good understanding of cloud security (Azure/AWS) and identity protocols (OIDC, SAML, MFA/Entra ID) Experience coordinating incident response across multiple stakeholders, including external forensic teams Strong commercial awareness with the ability to link security decisions to business outcomes Excellent communication ...

scalability and efficiency of SOC services. Working across SIEM, endpoint, and orchestration platforms (primarily Palo Alto XSOAR), you will reduce analyst workload, accelerate incident response, and enhance decision-making across customer environments. Key Responsibilities Automation Development – Design, build, and maintain scalable automation workflows across detection and response platforms. Integration & Orchestration – Deliver cross-platform automation enabling fast, reliable response actions. Lifecycle Management – Develop, deploy, and continuously optimise automation for performance, resilience, and coverage. Collaboration & Requirements Gathering – Work with SOC and engineering teams to identify automation opportunities. Documentation – Produce clear documentation to support delivery, troubleshooting, and continuous ...

technical role where youll investigate complex alerts, support threat-hunting activities, contribute to the tuning of SIEM detections, and help improve SOC processes and response playbooks. Youll also play an important role in mentoring analysts and supporting the continued development of the SOCs technical capability. Technology innovation is part … this role will continue to evolve as AI-driven detection, automation, and response capabilities are introduced. You will: Investigate, triage, and respond to security alerts across customer environments Support the tuning and maintenance of SIEM detection rules alongside senior analysts Carry out proactive threat analysis and support threat-hunting ...

Incident and Resilience Manager (DORA) MUST HAVE PAYMENTS Experience! UK Remote | Permanent Hiring a Incident Manager with strong DORA experience to lead operational resilience, major incident management and recovery planning within a regulated financial services environment. Key experience:* MUST DORA/Operational Resilience * Major Incident Management … Recovery* Financial Services/FinTech* ISO 22301/ISO 27001/NIST* Stakeholder & Regulatory Management This role will lead DORA implementation, resilience testing, ICT incident response, third-party risk and enterprise recovery planning across the business. High-impact role with strong visibility and ownership. Apply now for immediate ...

analysis to identify and mitigate potential threats. Design and enforce security controls based on identified requirements and gaps in existing structures. Threat Detection and Response Monitor and respond to security incidents ensuring rapid and effective action. Develop comprehensive incident response plans to maintain organisational resilience against threats. ...

reviews and monitoring KPIs Ensure compliance with IT security policy standards, including encryption, secure disposal, build hardening, monitoring, patching and access controls Lead security incident response and contribute to major incident management control Ensure effective communications outside of the IT team Production of an appropriate IT infrastructure ...

vulnerability and patch evidence, metrics and control narratives. Identify and implement automation and continuous improvement opportunities across vulnerability and patch management workflows. Collaborate with Incident Response, Threat Intelligence and Corporate Security teams to respond to actively exploited vulnerabilities and emerging threat trends. Experience Strong working knowledge of Ivanti ...

collaboratively with IT, engineering, and business teams to ensure security is integrated into all stages of development and operations. Threat Management: Implement threat detection, incident response, and resilience strategies, including monitoring and analysis of security events and alerts. Regulatory Compliance: Ensure that the organization meets all regulatory ...

identify anomalous behaviour across infrastructure, applications, and telemetry Leading technical responses to security incidents, including investigation, containment, and root cause analysis Building and refining incident response playbooks to ensure consistent and effective handling of threats Managing vulnerabilities end-to-end, from identification through to validated remediation Embedding security … tooling into CI/CD pipelines Partnering with engineering teams to ensure systems and applications are secure by design Automating security processes to improve response times and reduce manual effort Continuously improving security tooling, processes, and controls across the organisation What You’ll bring Strong understanding of cyber security ...

including IAM roles, network security, and compliance monitoring. FinOps & Cost Optimization:Analyze usage and costs to optimize resource allocation, including rightsizing and auto-scaling. Incident Management:Provide expert-level troubleshooting, incident response, and performance monitoring. This is a hybrid position, with the expectation being 3 days ...