13 of 13 Incident Response Jobs in Hampshire

variety of stakeholders to ensure, the Leidos CSOC, a Defensive Cyber Security capability, can support a customers Cyber Resilience, protecting them with a 24 x 7 Threat Detection and Response service, mitigating their risk of Cyber Attack. The successful candidate will be able to demonstrate experience from a CSOC background or be able to demonstrate sufficient transferable Cyber Security … reactive analysis, articulating emerging trends to leadership and staff. Use data collected from Cyber Defence tools firewalls, IDS, network traffic, UEBA (User Entity Behaviour Analysis), Security Orchestration and Automated Response (SOAR) etc. to analyse events that occur within the environments. Respond to and correlate alerts from various detective and preventative Cyber Security tools such as Security Information Event Monitoring … SIEM), End Point Protection (EPP), End Point Detection and Response (EDR), XDR (Extended DR), Web Application Firewall (WAF), and Firewalls. Proactively detect suspicious activity, vulnerabilities, and security misconfigurations before they can be exploited by adversaries impacting Confidentiality, Integrity and Availability which could lead to a Cyber Security Incident. Inspection and correlation of logs from multiple sources to identify repeating More ❯

highly secure environment. You will work within a Security Operations Centre (SOC), designing and maintaining detection logic across SIEM (Security Information and Event Management) and EDR (Endpoint Detection and Response) platforms. Your work will help identify and contain malicious activity, reduce false positives, and improve overall detection coverage across networks, endpoints, cloud services, and identity platforms. Job Description As … cyber operations team responsible for implementing and maintaining high-fidelity detection capabilities. You will contribute to the development of detection rules, threat hunting activities, and automation workflows to support incident response and continuous improvement. Key responsibilities include: Designing and tuning detection rules and use cases in SIEM and EDR platforms Monitoring and investigating security alerts to identify potential … threats Conducting proactive threat hunting using MITRE ATT&CK and threat intelligence sources Collaborating with incident response teams to support investigations and containment Enhancing detection coverage across network, endpoint, cloud, and identity sources Developing automation scripts and playbooks to streamline triage and response Documenting detection processes and providing knowledge transfer to SOC analysts Person Specification You will More ❯

highly secure environment. You will work within a Security Operations Centre (SOC), designing and maintaining detection logic across SIEM (Security Information and Event Management) and EDR (Endpoint Detection and Response) platforms. Your work will help identify and contain malicious activity, reduce false positives, and improve overall detection coverage across networks, endpoints, cloud services, and identity platforms. Job Description As … cyber operations team responsible for implementing and maintaining high-fidelity detection capabilities. You will contribute to the development of detection rules, threat hunting activities, and automation workflows to support incident response and continuous improvement. Key responsibilities include: Designing and tuning detection rules and use cases in SIEM and EDR platforms Monitoring and investigating security alerts to identify potential … threats Conducting proactive threat hunting using MITRE ATT&CK and threat intelligence sources Collaborating with incident response teams to support investigations and containment Enhancing detection coverage across network, endpoint, cloud, and identity sources Developing automation scripts and playbooks to streamline triage and response Documenting detection processes and providing knowledge transfer to SOC analysts Person Specification You will More ❯

seeking a Head of Cyber Security to lead from the front, shaping security strategy across legal, IT, and client-facing systems. Youll define security architecture, lead threat assessments, manage incident response, and ensure compliance with regulatory standards relevant to legal practice. This role offers you a unique opportunity to build a security function in a high-stakes environment … identity & access management, network security, encryption, threat modelling Hands-on knowledge securing hybrid and cloud infrastructure (AWS/Azure/GCP) Experience building and managing security teams, setting processes (incident response, SOC, vulnerability management) Familiarity with compliance/legal security requirements (e.g. GDPR, Legal Privilege, regulatory/security audits) Strong stakeholder management able to communicate with partners, executives More ❯

Advisory - Expertise in leading the adoption of industry cyber frameworks (e.g., NIST, ISO) and providing high-level advisory to boards, executives, and stakeholders on emerging threats and compliance posture. Incident Oversight & Resilience - Executive capability to govern cyber incident response strategies, ensuring the organisation's preparedness, crisis management, and post-incident assurance processes. Security Governance Principles - Deep More ❯

Senior Security Analyst – SOC/Incident Response I’m partnering with a fast-growing Cyber Defence function that’s strengthening its Security Operations Centre and looking for a talented Senior Security Analyst to join the team. You’ll take a leading role in detecting, analysing, and responding to cyber threats across diverse client environments, mentoring junior analysts, improving … detection content, and helping drive SOC maturity. What you’ll do: Lead complex investigations and incident response. Develop SIEM/EDR use cases and correlation rules. Perform proactive threat hunting and support automation initiatives. Produce incident reports and guide remediation activities. Help coach and upskill junior analysts. You should bring: 2–4 years’ experience in a SOC, CSIRT More ❯

development and delivery of our information security strategy Managing audits, certifications and risk assessments Supporting secure system design and change Driving company-wide security awareness and training Acting as Incident Response Manager for security events What we're looking for: 5+ years’ experience in information security Strong knowledge of ISO27001, Cyber Essentials Plus and risk management CISSP or More ❯

development and delivery of our information security strategy Managing audits, certifications and risk assessments Supporting secure system design and change Driving company-wide security awareness and training Acting as Incident Response Manager for security events What we're looking for: 5+ years’ experience in information security Strong knowledge of ISO27001, Cyber Essentials Plus and risk management CISSP or More ❯

second-line responder for internal IT queries, troubleshooting escalated issues effectively Supporting IT budgeting, forecasting, and cost tracking to maintain financial control and transparency Participating in cybersecurity strategy and incident response planning, while contributing to disaster recovery and business continuity initiatives Overseeing company e-commerce platforms by managing product listings, pricing, and inventory accuracy, ensuring smooth integration of More ❯

be doing: Deploying and maintaining network architecture. Configuring and managing firewalls and network security systems. Monitoring and optimising network performance. Proactively identify and resolve issues and providing technical support, incident response and root-cause analysis for network faults. Collaborate with multi-functional teams to deliver project requirements. Document network configurations, maintain standards and protocols, support audits and compliance. More ❯

a senior analyst within the team while also providing direction, coordination, and mentorship to colleagues. You must have experience across the core Cyber Security domains, including TVM, SIEM, EDR, Incident Response, DLP, EASM, Cloud Security, Application Security, WAF, and User Access Management, along with a strong understanding of industry frameworks such as NIST and CIS . This role … models where feasible, or by designing and deploying new approaches within Luxoft. Support and contribute to the wider Cyber Security services delivered by the team, including TVM, SIEM, EDR, Incident Handling, DLP, EASM, Cloud Security, and WAF. Provide cover and support for team members during absence or workload peaks. Build strong working relationships across both DXC and Luxoft Security More ❯

a senior analyst within the team while also providing direction, coordination, and mentorship to colleagues. You must have experience across the core Cyber Security domains, including TVM, SIEM, EDR, Incident Response, DLP, EASM, Cloud Security, Application Security, WAF, and User Access Management, along with a strong understanding of industry frameworks such as NIST and CIS . This role … models where feasible, or by designing and deploying new approaches within Luxoft. Support and contribute to the wider Cyber Security services delivered by the team, including TVM, SIEM, EDR, Incident Handling, DLP, EASM, Cloud Security, and WAF. Provide cover and support for team members during absence or workload peaks. Build strong working relationships across both DXC and Luxoft Security More ❯

a senior analyst within the team while also providing direction, coordination, and mentorship to colleagues. You must have experience across the core Cyber Security domains, including TVM, SIEM, EDR, Incident Response, DLP, EASM, Cloud Security, Application Security, WAF, and User Access Management, along with a strong understanding of industry frameworks such as NIST and CIS . This role … models where feasible, or by designing and deploying new approaches within Luxoft. Support and contribute to the wider Cyber Security services delivered by the team, including TVM, SIEM, EDR, Incident Handling, DLP, EASM, Cloud Security, and WAF. Provide cover and support for team members during absence or workload peaks. Build strong working relationships across both DXC and Luxoft Security More ❯