5 of 5 Incident Response Jobs in Hemel Hempstead

security incidents on critical client infrastructure. In-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Provide Incident Response support. Maintain, improve and develop team knowledge of SOC tools, security operations and triage. Prepare reports for managed clients to both technical … and non-technical audiences and continuously improve their content and presentation. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. What youll bring: Experience in Security Operations Centre. Demonstrable experience of Managing Microsoft Sentinel and Splunk implementations. Knowledge and experience with Mitre More ❯

infrastructure. Perform detailed analysis of network traffic, diverse log sources (system, application, network), and other security data to identify threats and vulnerabilities. Provide crucial Incident Response (IR) support during security events. Contribute to the continuous improvement of the team's knowledge regarding SOC tools, operational procedures, and effective … concise reports for managed clients, tailored for both technical and non-technical audiences, focusing on continuous improvement of content and delivery. Maintain meticulous security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. What You'll Bring: Proven experience working within a Security Operations Centre (SOC More ❯

Engineering Professional). Other Cyber/information Security qualification (e.g. CISSP, CCSP, CCNA, SABSA) Desirable Skills Cloud, on-prem, SaaS, PaaS, IaaS environments. Security incident response. Coding skills. Experience working with Azure Sentinel. If you are interested in this role but not sure if your skills and experience are More ❯

a fast-paced, mission-critical environment. The Role • Monitoring & triaging alerts across secure client environments • Investigating threats using logs, traffic, and endpoint telemetry • Supporting incident response, containment & recovery • Developing smarter detection rules (think MITRE ATT&CK) • Creating incident reports for both technical & non-technical audiences • Staying ahead More ❯

a fast-paced, mission-critical environment. The Role • Monitoring & triaging alerts across secure client environments • Investigating threats using logs, traffic, and endpoint telemetry • Supporting incident response, containment & recovery • Developing smarter detection rules (think MITRE ATT&CK) • Creating incident reports for both technical & non-technical audiences • Staying ahead More ❯