21 of 21 Incident Response Jobs in the North West

lead the operational security function responsible for protecting the organisation's information assets, technology services, and users. This role oversees all security operation functions, incident response, threat detection, vulnerability management, and continuous improvement of the organisation's security posture. Working closely with Infrastructure, Cloud, Architecture, Governance, Compliance … manage the daily operations of the internal Security Operations team and primary relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response ...

ensuring the organisation's systems, networks, and data remain protected against evolving cyber threats. As the SecOps Lead, you will manage security monitoring and incident response activities while providing strategic direction for security tools including SIEM and Endpoint Detection & Response (EDR) platforms. You will work closely with … daily operational activities and performance. Define and implement the strategy and operational roadmap for security monitoring, detection, and response. Own and manage the security incident response lifecycle, including investigation, containment, remediation, and post-incident reviews. Lead incident response efforts during high-severity security events ...

security incidents that require deviation from documented remediation methods, or are of a particularly critical nature. They drive efforts to ensure swift and efficient incident resolution and risk mitigation. They are also responsible for creating and utilizing automation workflows to streamline Security Operations incident response. Key Deliverables: • Documented … hypothesis-led cyber threat hunts resulting in improved detection capabilities and improved cyber security controls and safeguards • Critical incident response and management, ensuring appropriate investigation and mitigation activities are taken • Development of new proactive monitoring use cases and corresponding runbooks for incident detection and mitigation • Automation ...

automated deployment processes across environments. Monitoring & Observability: Implement and maintain monitoring solutions for infrastructure and applications. Develop dashboards and alerting systems to ensure proactive incident and security event management. Evaluate and integrate new observability tools as needed. Automation & Tooling: Automate repetitive tasks to improve efficiency and reduce human error. … Azure environments. Ensure scalability, resilience, and security of service-based architectures. Implement cost management strategies to optimise cloud spend without compromising performance or security. Incident Response & Root Cause Analysis: Lead incident response efforts, including security incidents, and conduct post-mortem reviews. Drive continuous improvement through lessons ...

compliance with security standards, and protecting both organisational and customer data. You will act as an important escalation point for security-related matters, including incident response, while supporting technical teams in maintaining a strong and compliant security posture. Key Responsibilities Review and analyse current security measures to identify … frameworks, and industry best practices Experience across infrastructure and networking environments, both on-premise and cloud-based Hands-on involvement in vulnerability management and incident response Familiarity with security monitoring tools such as firewalls, IDS/IPS, and extended detection solutions Experience working with SIEM, cloud security platforms ...

define enterprise-wide security strategy, and ensure resilience across all technology environments during a time of rapid change.You'll oversee governance, architecture, operations, and incident response, while working closely with senior leadership to safeguard critical systems, data, and digital services. Acting as a trusted advisor, you'll translate … drive a global information security strategy aligned to organisational priorities and risk appetite. Lead multidisciplinary teams spanning governance, risk, compliance, architecture, operations, and incident response. Embed recognised frameworks such as ISO 27001, NIST CSF, NIS2, and DORA into policies, processes, and technology platforms. Oversee security operations, including monitoring, threat ...

monitoring across multiple networks and services Oversee and contribute to the analysis, investigation and escalation of security incidents Coordinate closely with Cyber Operations and Incident Response teams to contain and mitigate threats Develop and enhance detection use cases, tooling and operational processes Provide subject matter expertise on threat … previous clearance About the team The Cyber Operations team protects critical systems and sensitive environments from advanced threat actors. Covering Threat Intelligence, Detection, Incident Response and Active Defence, the team operates at the forefront of cyber security, safeguarding the technology and services that support national security and those ...

Security Practices, Level 3) equips you with the practical skills employers in Greater Manchester are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … security principles. Threat Intelligence: Develop expertise to identify risks and analyze threats. Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls. Incident Response: Prepare for and respond to live cyber security incidents. Ethics & Law: Understand legislation and ethical conduct within the cyber security sector. Professional Skills ...

Security Practices, Level 3) equips you with the practical skills employers in Greater Manchester are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … security principles. Threat Intelligence: Develop expertise to identify risks and analyze threats. Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls. Incident Response: Prepare for and respond to live cyber security incidents. Ethics & Law: Understand legislation and ethical conduct within the cyber security sector. Professional Skills ...

C#, Angular, SQL Server Stay hands-on when needed: design, code, pair, review PRs, unblock the team Drive quality, reliability and security: testing approach, incident response, post-incident improvements Hire, onboard and develop engineers (including onshore/offshore collaboration) What we need from you 8+ years building ...

/CD pipelines with blue-green, canary, and rolling deployments, including automated, zero-downtime database releases. Implement comprehensive monitoring, logging, alerting, and automated incident workflows with clear reporting. Strengthen cloud security posture (IAM, secrets, vulnerability scanning) and embed DevSecOps practices while maintaining PCI-DSS compliance. Drive reliability through SLIs …/SLOs, incident response, disaster recovery testing, and capacity planning for peak events. Optimise performance and cost across hybrid environments through right-sizing, forecasting, and resource governance. Apply AI-driven tooling for anomaly detection, operational optimisation, and compliance automation. Collaborate cross-functionally, maintain documentation, and promote DevOps best ...

improve processes. Ownership & Accountability: Take end-to-end ownership of services from design through production operations. Ensure systems are reliable, observable, and supportable. Lead incident response and post-incident learning within your team. What We're Looking For: Proven experience as a senior engineer or tech lead ...

services independently Maintain high engineering standards through documentation, tooling, and best practices Participate in a paid on-call rotation to support platform reliability and incident response Skills & Experience Strong Linux systems knowledge (Debian, RHEL/CentOS environments) Experience with containerisation technologies such as Docker and Kubernetes Hands ...

governance. Implement Zero Trust principles, network segmentation, encryption, key management, and secure access control models. Partner with SecOps teams to ensure monitoring, logging, and incident response capabilities are embedded Develop automation and service optimisation strategies to improve performance, cost efficiency, and availability. Conduct capacity planning, resilience engineering, disaster ...

This IR Lead will have the previous following experience: Lead and evolve SOC operations using Microsoft security tools (including Sentinel), driving improvements in detection, response, and overall capability maturity Act as an escalation point for incidents, remaining hands-on and directly involved in investigations and response when required … Develop and refine incident response processes, playbooks, and workflows to strengthen organisational resilience Establish meaningful metrics, reporting, and threat visibility to inform decision-making and demonstrate SOC effectiveness ...

service delivery. Provide expert, hands-on support across cloud environments such as Microsoft 365, Azure, and AWS. Drive security service delivery, including threat detection, incident response, vulnerability remediation, and security configuration. Manage complex technical escalations to ensure outstanding security outcomes. Act as a trusted security advisor, helping customers ...

teams at all levels Leading cross-functional initiatives with Data Engineering and wider Digital Services Managing budgets, contracts and supplier relationships Corporate Risk and Incident management Supporting digital transformation and application convergence initiatives aligned to Trust strategy Driving continuous improvement and user experience enhancements across all supported systems Previous … problems *Subject to eligibility Important Information Please ensure that you document evidence of meeting all the essential criteria in the supporting information. If sufficient response is received this post could be closed earlier than the specified closing date, please apply as soon as possible to ensure that your application ...

emerging threats and potential vulnerabilities across the company Lead activities such as security testing, threat modelling and vulnerability reviews Build, maintain and regularly update incident response and disaster recovery plans Work closely with teams across the business to ensure security is built into products, projects and processes Promote … knowledge of security tools (e.g. CrowdStrike, Sentinel, Purview, iBoss) Solid understanding of security frameworks (ISO 27001, PCI DSS, SOC 2) Experience in risk assessment, incident management and vulnerability testing Excellent communication skills across technical and non-technical audiences Strong analytical mindset with attention to detail Benefits: 25 days' holiday ...

governance frameworks which lead to outstanding technical controls - processes and quality assurance; training and SOPs; auditing, feedback loops and root cause analysis * Lead an incident response/handle L3 and above level referrals and escalations * Can see technical issues down the road and inform the group risk management ...

Answer customer enquiries in real time - Diagnose and resolve faults across the network - Maintain and monitor equipment and systems, carrying out routine checks and incident response - Document and communicate technical issues clearly, using ticketing/monitoring tools - Liaising with internal teams, stakeholders and third-party suppliers The candidate ...

strategy. You'll provide senior technical leadership, protecting critical systems and information assets. Working closely with executive leaders, you'll manage risk, compliance, and incident response. You'll lead and develop a specialist cyber security team and oversee SOC operations. This role is key to enabling secure digital transformation … Cyber Security About you: Proven senior cyber security leadership experience Strong knowledge of NHS/regulated environment Expertise in ISO27001, GDPR, and cyber incident management Confident communicator with inclusive, values-based leadership About us North West Ambulance Service NHS Trust provides 24 hour, 365 days a year accident ...