151 to 175 of 499 Incident Response Jobs in England

rollback frequency Standardise release processes across engineering teams Implement progressive delivery practices Reliability & Observability Define and track SLIs/SLOs Enhance monitoring, alerting and incident response processes Lead post-incident reviews and root cause analysis Drive reduction of operational toil Security & Compliance Embed DevSecOps controls into pipelines … preferred) CI/CD tooling experience (GitHub Actions, GitLab CI, Jenkins) Experience operating production SaaS environments Strong observability tooling knowledge (Datadog, Prometheus, ELK etc.) Incident management and root cause analysis experience Experience in regulated or security-conscious environments is highly desirable ...

guidelines. Coordinate risk assessments, ensuring mitigation actions are documented, tracked and successfully implemented. Maintain accurate documentation and evidence to support all compliance activities. Support incident response processes and contribute to post incident reviews from a compliance standpoint. Stay informed on evolving cybersecurity regulations, frameworks and best practice. ...

Work closely with developers to improve deployment processes, performance and reliability Monitor system performance and availability using tools such as Prometheus and Grafana Lead incident response and contribute to post-incident reviews Automate repetitive processes and reduce manual intervention Improve system resilience, scalability and fault tolerance Support ...

Evaluate, select, and integrate security technologies including: Identity and Access Management (IAM) Security Information and Event Management (SIEM) Endpoint Detection and Response (EDR) Data Loss Prevention (DLP) Web Application Firewalls (WAF) Encryption and key management solutions Collaborate with engineering, DevOps, and IT teams to embed security-by-design … support Secure Software Development Lifecycles (SSDLC) Lead initiatives around incident response strategy, detection engineering, mitigation planning, and digital forensics readiness Monitor emerging cyber threats, vulnerabilities, and regulatory changes, providing expert guidance to stakeholders Produce high-quality architectural documentation supporting audit, governance, and compliance requirements Required Experience & Skills Proven ...

spend and implement FinOps best practices Maintain CI/CD pipelines – Implement and maintain reliability and observability aspects of GitHub workflows and deployment pipelines Incident response – Lead incidents, run blameless post-mortems, and drive continuous improvement Enable developers – Mentor teams on SRE and observability practices, helping them quickly … resolve issues Leverage AI tooling – Use AI‐assisted development tools (e.g. GitHub Copilot) to accelerate infrastructure work, and explore AI‐driven approaches to incident detection, root cause analysis, and remediation What We're Looking For Essential 3+ years in an SRE, Platform, or DevOps engineering role AWS services: CloudWatch ...

cybersecurity program Develop security policies, standards, and procedures Support transition to a risk‐based security model Oversee monitoring and alerting with SOC partners Manage incident response processes and reporting Coordinate response and reporting of security events Vulnerability Management & Security Operations Lead vulnerability management lifecycle Partner with ...

periodic security reviews and internal control assessments. Cyber Security and Security Monitoring Oversee cyber security measures including vulnerability management, access control, security monitoring and incident detection. Ensure regular vulnerability assessments, security reviews and penetration testing are conducted. Incident Management Establish and maintain procedures for managing information security incidents. … Coordinate investigation, response and reporting of cyber security incidents. Operational Resilience Support the Branch’s operational resilience framework from an information security perspective. Participate in disaster recovery planning, cyber security exercises and resilience testing. Third‐Party and Outsourcing Risk Assess information security risks associated with third‐party service providers ...

periodic security reviews and internal control assessments. Cyber Security and Security Monitoring Oversee cyber security measures including vulnerability management, access control, security monitoring and incident detection. Ensure regular vulnerability assessments, security reviews and penetration testing are conducted. Incident Management Establish and maintain procedures for managing information security incidents. … Coordinate investigation, response and reporting of cyber security incidents. Operational Resilience Support the Branch’s operational resilience framework from an information security perspective. Participate in disaster recovery planning, cyber security exercises and resilience testing. Third-Party and Outsourcing Risk Assess information security risks associated with third-party service providers ...

alerts to identify, investigate, and respond to potential threats. Administer and optimise EDR solutions (CrowdStrike) to ensure comprehensive endpoint protection across the organisation. Lead incident response activities, including investigation, containment, remediation, and post-incident analysis. Vulnerability & Risk Management Manage the vulnerability management programme, including scanning, prioritisation ...

systematic approach to diagnosing complex technical issues Strong analytical skills to interpret data, identify patterns, and draw actionable conclusions Be involved in investigating incident response activities and postmortem analyses using Dynatrace, Grafana or provide insights. Has the ability to troubleshoot and resolve data quality issues on time, ensuring … using Cloud solutions such as Azure & AWS and containerized environments (Kubernetes, OpenShift) to implement cloud-native monitoring Have good knowledge of ITSM/incident management tools integration. Interacts with and influences colleagues and has working level contact with customers Applies methodical approach to issue definition and resolution Demonstrates effective ...

cloud‐first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud‐native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR … risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Threat Management & Incident Response: Ability to detect, respond to, and mitigate cyber threats using SIEM, endpoint security, and vulnerability management tools. Networking & Infrastructure Security: Understanding ...

Lead vulnerability management, patching, endpoint protection, SIEM, and threat monitoring activities. Manage identity and access controls, MFA, privileged access, and conditional access policies. Lead incident response activities and coordinate remediation efforts. Conduct risk assessments and support audit and compliance activities. Drive improvements in data security, governance, and cyber … with ISO27001 principles and broader governance or quality frameworks such as ISO9001. Experience with backup, disaster recovery, and business continuity planning. Strong troubleshooting and incident management capability. Experience managing third-party suppliers and service providers. Excellent communication, stakeholder management, and relationship-building skills. Experience contributing to new system selection ...

similar, Industry certifications such as CompTIA Security+, GIAC, CISM, CISSP or other relevant certification preferred Strong understanding of network and end point security, incident response, threat intelligence, and vulnerability management Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS Strong knowledge ...

required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS: SOC Analyst, Security Operations Centre, Microsoft Sentinel, Splunk, SIEM, Incident Response, MITRE ATT and CK, Networking, SC Clearance ...

required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS: SOC Analyst, Security Operations Centre, Microsoft Sentinel, Splunk, SIEM, Incident Response, MITRE ATT and CK, Networking, SC Clearance ...

required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS: SOC Analyst, Security Operations Centre, Microsoft Sentinel, Splunk, SIEM, Incident Response, MITRE ATT and CK, Networking, SC Clearance ...

required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS: SOC Analyst, Security Operations Centre, Microsoft Sentinel, Splunk, SIEM, Incident Response, MITRE ATT and CK, Networking, SC Clearance ...

automation. Site Reliability Engineering Design, implement, and maintain systems for high availability, scalability, and performance. Monitor and improve application reliability through proactive measures and incident response. Develop and maintain observability solutions (metrics, logging, tracing). Participate in on-call rotations and drive root cause analysis for incidents. Collaboration & Continuous ...

outset. Own the technical quality and evolution of our cloud infrastructure and delivery pipelines, identifying and addressing systemic risks. Drive improvements to reliability practices, incident response, and post‐incident learning across teams. Provide hands‐on expertise across infrastructure, automation, and CI/CD when needed, particularly ...

backup, disaster recovery and service continuity Security Operations Platform security controls, monitoring and threat detection SIEM, SOAR, endpoint and network security tooling Operational security incident management in partnership with InfoSec End-user devices, operating systems and device lifecycle Microsoft 365, identity lifecycle management and collaboration tooling Endpoint security, compliance … legacy platforms Operational Excellence and Service Management Accountable for platform availability, performance, resilience and supportability Ensure platforms are operated in line with ITIL practices (incident, problem, change, configuration and continuous improvement) Oversee third-line support, major incident response and root cause analysis Security and Risk Management Ensure ...

this job title is advertised to attract the right skills needed for the role. Main duties of the job The Trainee Cyber Security Incident Manager role is within the NHS England National CSOC (Cyber Security Operations Centre), supporting the coordination, triage and management of cyber security incidents across … health and care system. Support the identification, triage and coordination of cyber security incidents within the NHS England National CSOC. Assist with incident management activity, ensuring incidents are logged, tracked and progressed in line with agreed processes and procedures. Work with technical analysts and operational colleagues to gather information ...

growing cyber security team based in Altrincham, South Manchester. You will play a key role in protecting critical systems, improving security posture, and supporting incident response across a modern hybrid IT environment. This is a hands-on technical role where youll work closely with infrastructure, cloud … respond to security alerts across SIEM and EDR platforms Manage and tune security tools including firewalls, WAFs, and endpoint protection Investigate and support response to security incidents Perform vulnerability assessments and remediation tracking Support implementation of security controls across cloud and on-prem environments Contribute to security policies, standards ...

role in helping our customers achieve greater visibility, performance, and reliability across their IT estatescontributing to their operational success through proactive insight and incident prevention. What you'll do Design, implement, and manage observability solutions using industry-leading tools such as Dynatrace (primary), Grafana, and Splunk Collect and analyse … e.g. ServiceNow) and CI/CD pipelines to enable proactive alerting and resolution workflowsAct as a Monitoring & Observability SME within customer delivery teams Support incident response activities and postmortems by identifying patterns, root causes, and optimisation opportunities Work collaboratively with cross-functional teams to define and implement best ...

join the firm in London. Responsibilities: * Undertake efficient, effective and proactive day-to-day cybersecurity operations to minimise the risk of a security incident, enabling the firm to do business. * Maintain the capability to react and respond to incidents in an effective and timely manner, minimising their impact … event data across the firms' systems, and procuring threat intelligence to inform the hunts. Key Skills: * Strong understanding of network and end point security, incident response, threat intelligence, and vulnerability management. * Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS. * Strong ...

Intellectual property storage, and SaaS application security. Alongside wider corporate security technical controls. Automation & Engineering: Write scripts and build tools to automate security workflows, incident response tasks, and audit evidence collection for compliance. Cross-Functional Collaboration: Work with IT and business operations to integrate security tools into everyday … Minimum Qualifications Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or equivalent practical experience. 5+ years’ experience in Security Engineering, Corporate Security, Detection & Response, or a related field. Hands-on experience administering IAM platforms (e.g. Okta, GoogleWorkspace). Deep hands-on experience with GoogleWorkspace products Practical hands ...