22 of 22 Incident Response Jobs in Staffordshire

monitoring, logging, and alerting systems to deliver full operational visibility, proactively identify issues, optimise performance, and maintain uptime for critical services. Reliability Engineering and Incident Response – Own incident detection, response, and post-mortems. Implement best practices to improve system reliability, enforce SLAs, and minimise business impact … Datadog, or OpenTelemetry, with the ability to build dashboards, set alerts, and derive meaningful insights from system data. Experience managing production incidents, including leading incident response, performing thorough root cause analysis, and driving long-term improvements to system reliability and resilience. Strong security awareness and practical experience implementing ...

risk with quantifiable results. We're comprised of top talent from private industry, government, intelligence, and law enforcement who are specialists in threat detection, incident response, digital forensics, offensive security, risk management, and cyber resilience. As a subsidiary of specialty insurance giant, Beazley, we've been … forefront of cyber insurance management and breach response activities for business clients in the US, UK, and Europe since 2017. As Beazley Security, the company will have an expanded scope, leveraging nearly two decades of cyber incident experience, a strong services division, and a business strategy focused ...

social engineering assessments and physical security testing Produce detailed scoping documents and executive-level penetration testing reports aligned with CREST and NCSC standards Lead incident response investigations and digital forensic analysis when required Work independently on client-facing assessments whilst collaborating with senior consultants and team leaders Maintain … Certified Testers, and forensic specialists delivers: Penetration Testing & Security Audits: Infrastructure, application, and mobile assessments Compliance Advisory: PCI DSS, GDPR, ISO27001 implementations and certifications Incident Response & Forensics: 24/7 emergency response and digital evidence analysis Specialist Services: SCADA testing, social engineering, business continuity planning Based ...

role in protecting a large-scale, high-availability environment, acting as an escalation point for complex security incidents. Your day will include: Leading incident response activities: investigating alerts, conducting threat hunting, and managing escalations. Tuning and configuring Splunk SIEM to reduce false positives and enhance detection accuracy. Handling … malware analysis, forensic reviews and sensitive internal cases. Correlating logs across multiple systems and using threat intelligence to strengthen detection capabilities. Producing clear, concise incident reports for senior stakeholders, including non-technical audiences. Supporting junior analysts with guidance, best practice coaching and career development (no formal line management). ...

procedures, controls, and governance Identification, analysis, and prioritisation of cyber risks and vulnerabilities across on-prem, cloud, and third-party environments Advisory support for incident response planning, crisis management exercises, and resilience improvements Support to SOC operations, including process improvement and escalation protocols Supplier and third-party security … Strong hands-on background in cybersecurity governance, risk management, and security operations Proven experience delivering cybersecurity assessments, audits, and improvement programmes Demonstrable experience with incident response, crisis management, and cyber resilience planning Experience assessing supplier and third-party cybersecurity risk across the supply chain Strong understanding of recognised ...

helping a leading British retailer find an Incident Response Lead! You will join a huge tech transformation and own the IR space!! The role will be a mix of working closely with technical teams, and managing both technical and business stakeholders. To be a fit, you will have ...

Process Improvement & Innovation: Drive continuous improvement initiatives, establish DevOps best practices, and identify opportunities for innovation in software development processes, tools, and technologies. Troubleshooting & Incident Management: Lead root cause analysis and resolution of complex infrastructure and deployment issues; establish incident response procedures and post-incident review ...

/Jenkins/GitHub Actions/AWS Code Pipeline). Contribute to observability efforts including metrics, logs, traces, and alerting systems. Participate in incident response and post-incident reviews; help reduce MTTR through automation. Automate operational tasks using TypeScript and scripting languages; codify ops playbooks. Help implement ...

incidents. Help implement security best practices and policies to protect digital assets. Gain exposure to SIEM tools and security monitoring platforms. Assist with creating incident response documentation and security reports. Support compliance efforts and basic risk assessments aligned with industry standards. Learn about network security concepts, including firewalls … methodologies. What You'll Gain Hands-on exposure to real-world cybersecurity operations and defensive strategies. Practical experience with vulnerability assessment, security monitoring, and incident response. 1:1 mentorship from experienced cybersecurity professionals. Internship Certificate and Letter of Recommendation upon successful completion. Opportunity for a Pre-Placement Offer ...

incidents. Help implement security best practices and policies to protect digital assets. Gain exposure to SIEM tools and security monitoring platforms. Assist with creating incident response documentation and security reports. Support compliance efforts and basic risk assessments aligned with industry standards. Learn about network security concepts, including firewalls … methodologies. What You'll Gain Hands-on exposure to real-world cybersecurity operations and defensive strategies. Practical experience with vulnerability assessment, security monitoring, and incident response. 1:1 mentorship from experienced cybersecurity professionals. Internship Certificate and Letter of Recommendation upon successful completion. Opportunity for a Pre-Placement Offer ...

Benchmarks, EU AI Act, GDPR) and adapt processes accordingly. Operational Security Oversee day-to-day security operations, including vulnerability management, access reviews, and incident response readiness. Provide insights and triage signals from security tooling (SAST, DAST, dependency scanning, SIEM). Work hands-on to perform internal security assessments ...

environment. This SOC places a strong emphasis on development, with clear progression pathways into Threat Intelligence, SOC Engineering, Professional Services, Senior SOC roles, and Incident Response. Key Responsibilities Detect & Investigate Monitor and triage alerts across SIEM, EDR/XDR, email, and web security platforms. Investigate suspicious activity and assess ...

timely remediation. Manage and maintain LogicMonitor for cloud platform monitoring: Create and update logicmodules Configure alert rules and escalation chains Manage ServiceNow integration for incident handling Build and maintain dashboards Optimize alerting to prevent alert storms and missed alerts Provide support for ITHC coordination, access provisioning, and post-engagement … manage Workbooks Configure Azure Policies for security posture Implement regulatory compliance templates Hands-on experience with LogicMonitor and ServiceNow integrations Proven ability to lead incident response and vulnerability remediation efforts Nice-to-Have Skills: Familiarity with multi-cloud environments (AWS, GCP) Experience in coordinating ITHC assessments and managing ...

decisions directly improve the organisation's security posture. What You will Be Doing: Leading triage, investigation and classification of security events Taking ownership of incident containment, recovery and root cause analysis Acting as a technical escalation point for junior analysts Conducting threat intelligence analysis and sharing insights Tuning SIEM … rules, improving detection capability and reducing false positives Supporting onboarding of new data sources and improving correlation logic Leading post-incident reviews, reporting and service review summaries Supporting vulnerability lifecycle management, remediation guidance and patch validation Contributing to continuous improvement, automation, MITRE ATT&CK mapping and threat modelling What ...

decisions directly improve the organisation's security posture. What You will Be Doing: Leading triage, investigation and classification of security events Taking ownership of incident containment, recovery and root cause analysis Acting as a technical escalation point for junior analysts Conducting threat intelligence analysis and sharing insights Tuning SIEM … rules, improving detection capability and reducing false positives Supporting onboarding of new data sources and improving correlation logic Leading post-incident reviews, reporting and service review summaries Supporting vulnerability lifecycle management, remediation guidance and patch validation Contributing to continuous improvement, automation, MITRE ATT&CK mapping and threat modelling What ...

Microsoft Intune: Device compliance, configuration profiles, and application protection policies. Microsoft 365 Admin Centre: User administration, policy configuration, and tenant oversight. Microsoft Defender Portal: Incident review, threat analytics, and alert investigation. Azure Admin Centre: Basic understanding of Azure resources, controls, and policies. Threat & Phishing Analysis: Experience identifying and responding … excellence What Makes This Opportunity Unique A Gateway Into Cybersecurity Perfect for IT professionals aiming to move into security operations, with comprehensive training across incident response, threat detection, and security monitoring. Certification Support You'll begin with the SC-200 (Microsoft Security Operations Analyst) and progress through ...

cloud workloads. Integrate WAF solutions with CI/CD pipelines and automate security controls. Monitor and optimize application security performance within AWS environments. Support incident response teams during security investigations. Skills Requirements: Proven experience with WAF platforms: Akamai, F5, Azure WAF, AWS WAF, Imperva, Vultr, NexusGuard. Solid foundation ...

Azure, AWS, and hybrid cloud environments. Strong proficiency in Terraform and Infrastructure-as-Code (IaC) practices. Solid experience with CI/CD, observability tooling, incident response, and automated deployments. Comfort navigating and improving legacy infrastructure and multi-language environments (.NET and Ruby). A security-first mindset with ...

tuning for large-scale production deployments (eg parallelisation, partitioning, caching, compute configuration). Design monitoring, alerting and observability for pipelines, applications and integrations. Handle incident response and root cause analysis for platform and application issues. Define and enforce non-functional requirements (SLA/SLOs, resilience, disaster recovery). … Operational runbook and handover Demonstrable enterprise experience with Performance bottlenecks at scale, Complex permissioning/security models, Schema and ontology evolution, Integration failures and incident recovery Strong client-facing track record with senior stakeholders and C-suite including technical steering sessions and design reviews. Technical Skills Strong practical knowledge ...

partitioning, caching, compute configuration) with mentorship from more senior colleagues. Contribute to monitoring, alerting and observability setup for pipelines, applications and integrations. Participate in incident response and root cause analysis for platform and application issues. Assist in applying non-functional requirements (SLA/SLOs, resilience, backup and recovery … Performance issues or optimisation tasks, Permissions and basic security models, Schema/ontology changes and their impact on downstream use cases, Integration problems and incident recovery in collaboration with senior staff. Some client-facing experience (e.g. workshops, demos, requirement sessions or design walkthroughs). Any experience helping to train ...

Gateway, CDK) Collaborate across Product, Security, and Engineering teams, embed identity into new features, and uphold engineering excellence through CI/CD, testing, and incident response Required experience: Strong full-stack development skills (TypeScript, C#, AWS) An in-depth security mindset with an understanding of Zero Trust & OAuth2 ...

Commercial, and Customer Experience. You will ensure tech priorities perfectly support urgent business goals and operational reality. Champion platform stability, overseeing uptime, latency, and incident response. You'll establish robust monitoring and on-call procedures, ensuring our teams are always prepared and responsive. How we will measure impact Your ...