19 of 19 Incident Response Jobs in Hertfordshire

not held). Demonstrated success leading Security Engineering teams and managing large client bases. Strong client relationship and stakeholder management skills. Project management proficiency. Incident response experience (simulated and real-world). Analytical problem-solving ability, with strong risk assessment and mitigation skills. CISSP-ISSEP certification. Other security … qualifications desirable (e.g., CISSP, CCSP, CCNA, SABSA). Desirable Skills: Experience with cloud, on-prem, SaaS, PaaS, and IaaS environments. Security incident response background. Coding/scripting ability. Familiarity with Azure Sentinel. Benefits: £5,400 car allowance 25 days annual leave with the option to purchase additional days More ❯

security incidents on critical client infrastructure. In-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Provide Incident Response support. Maintain, improve and develop team knowledge of SOC tools, security operations and triage. Prepare reports for managed clients to both technical … and non-technical audiences and continuously improve their content and presentation. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. What you will bring : Experience in Security Operations Centre. Demonstrable experience of Managing Microsoft Sentinel or Splunk implementations. Knowledge and experience with More ❯

infrastructure. Perform detailed analysis of network traffic, diverse log sources (system, application, network), and other security data to identify threats and vulnerabilities. Provide crucial Incident Response (IR) support during security events. Contribute to the continuous improvement of the team's knowledge regarding SOC tools, operational procedures, and effective … concise reports for managed clients, tailored for both technical and non-technical audiences, focusing on continuous improvement of content and delivery. Maintain meticulous security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. What You'll Bring: Proven experience working within a Security Operations Centre (SOC More ❯

and take corrective actions. Triage and escalate incidents based on severity, organizational policies, and operational impact, ensuring timely resolution and minimal downtime. Perform initial incident response actions , including containment, mitigation, and support for recovery, working closely with IT and security teams. Collaborate with IT and security teams to … Ensure the availability and performance of services, proactively identifying potential issues that could affect users, and collaborating with teams to resolve operational incidents. Maintain incident logs, documentation, and reports , tracking all events and resolutions for auditing, compliance, and continuous improvement purposes. Analyse trends in security threats and vulnerabilities , staying … ahead of emerging risks and continuously refining response strategies to mitigate future incidents. Participate in threat hunting and vulnerability assessments, working with cross-functional teams to identify and close gaps in security while ensuring business operations run smoothly. Support internal and external stakeholders to ensure security configurations, operational practices More ❯

standards in accordance with regulatory requirements. Risk Management: Conduct regular security audits, vulnerability assessments, and penetration tests to identify risks and recommend mitigation strategies. Incident Response: Lead and coordinate response efforts during security incidents, ensuring swift resolution and minimal impact. Technology Integration: Collaborate with IT and business More ❯

standards in accordance with regulatory requirements. Risk Management: Conduct regular security audits, vulnerability assessments, and penetration tests to identify risks and recommend mitigation strategies. Incident Response: Lead and coordinate response efforts during security incidents, ensuring swift resolution and minimal impact. Technology Integration: Collaborate with IT and business More ❯

high standards of Health and Safety and ensure all Safe Systems of Work processes are adhered to. Take the lead role in Event and Incident response Work to ensure initial incident reports are completed and shared with customer Maintain a proactive involvement in the on-going technical … Working knowledge and understanding of engineering operations within Critical Environments Creating and developing SOP/MOP and EOP documentation Demonstrable experience in dealing with incident management and post-incident reporting. Electrical HV & LV AP IOSH Managing Safely or equivalent A calm yet responsive approach to incidents and post … incident reporting Ability to embrace change and new processes and to be able to implement them within the team Excellent attitude to service delivery and cultivating a client first approach To undergo full security checks to BS7858:2019 What we offer you An agile company culture with short decision More ❯

frameworks and standards (NIST CSF, IEC 62443, CIS, GDPR etc.) Maintain the department’s information security procedures, including but not limited to information security incident response and business continuity management, conducting tabletop exercises to evaluate effectiveness. Manage the information security awareness training program to ensure all employees develop More ❯

frameworks and standards (NIST CSF, IEC 62443, CIS, GDPR etc.) Maintain the department’s information security procedures, including but not limited to information security incident response and business continuity management, conducting tabletop exercises to evaluate effectiveness. Manage the information security awareness training program to ensure all employees develop More ❯

security incidents on critical client infrastructure. Conduct in-depth analysis of network traffic, system events, and logs to detect security threats and vulnerabilities. Provide Incident Response support and maintain thorough incident documentation. Continuously improve SOC tool usage, operational practices, and knowledge-sharing across the team. Prepare and More ❯

on a part-time basis . In this role, you'll take the lead in strengthening the organisation's security posture by driving forward incident response, vulnerability management, and compliance initiatives. You'll be a key player in embedding security best practices across the business and ensuring alignment More ❯

OSINT, dark web forums, and internal telemetry for threat indicators Translating raw technical data into actionable insights for security teams Collaborating with SOC and Incident Response teams to support real-time threat mitigation Creating detailed intelligence reports and contributing to proactive threat hunting Leveraging frameworks like MITRE ATT More ❯

OSINT, dark web forums, and internal telemetry for threat indicators Translating raw technical data into actionable insights for security teams Collaborating with SOC and Incident Response teams to support real-time threat mitigation Creating detailed intelligence reports and contributing to proactive threat hunting Leveraging frameworks like MITRE ATT More ❯

administering services like Active Directory, DNS, and DHCP. A track record of managing high-availability infrastructure in enterprise or hybrid environments. Experience of monitoring, incident response, and performance tuning across physical, virtual, and cloud-based systems. Familiarity with ITIL practices and delivering services that meet or exceed SLAs. More ❯

quality, signalling (SIP/H.323), and connectivity issues . Collaborate with other operations teams to support project delivery and ensure platform stability. Lead local incident response and support global change and project initiatives. Provide knowledge sharing and technical mentoring to colleagues. Required Skills and Experience: 5+ years’ experience More ❯

quality, signalling (SIP/H.323), and connectivity issues . Collaborate with other operations teams to support project delivery and ensure platform stability. Lead local incident response and support global change and project initiatives. Provide knowledge sharing and technical mentoring to colleagues. Required Skills and Experience: 5+ years’ experience More ❯

support Site Focal Point with technical insight necessary for secure file management according to policies and have a role in new system implementation and incident response. It is key for the OT Network Security Engineer to have in-depth understanding of network architecture to design, implement, and manage secure … firewall management. Change Management: Implement change control processes to ensure that network changes are appropriate tested and approved without disruption to critical OT operations. Incident Management: Support the technical response to operational technology-related incidents, ensuring rapid resolution to minimize downtime and operational disruption. Device Management: Harden devices … in place for all critical areas. People Management: Collaborate with internal owners of security technologies such as antivirus, IDS/IPS, SIEM, endpoint detection & response, configuration management, privileged identity management, etc. Why you? Basic Qualifications: We are looking for professionals with these required skills to achieve our goals: Bachelor More ❯

mitigating cyber risks, while advising on security architecture and strategy. Shaping tailored SIEM/SOC security solutions, with a particular emphasis on Splunk. Managing incident responses, refining security processes, and continually improving resilience. To secure the role you will have: Strong proficiency with Splunk – ideally certified as either Splunk … to those who can demonstrate deep hands-on experience.) Experience leading Security Engineering teams and engaging with large enterprise clients. Proven track record in incident management and technical problem-solving. Ability to assess complex security landscapes and develop effective mitigation strategies. Qualifications such as CISSP-ISSEP, CISSP, CCSP, CCNA More ❯

mitigating cyber risks, while advising on security architecture and strategy. Shaping tailored SIEM/SOC security solutions, with a particular emphasis on Splunk. Managing incident responses, refining security processes, and continually improving resilience. To secure the role you will have: Strong proficiency with Splunk – ideally certified as either Splunk … to those who can demonstrate deep hands-on experience.) Experience leading Security Engineering teams and engaging with large enterprise clients. Proven track record in incident management and technical problem-solving. Ability to assess complex security landscapes and develop effective mitigation strategies. Qualifications such as CISSP-ISSEP, CISSP, CCSP, CCNA More ❯