24 of 24 Incident Response Jobs in the Thames Valley

cloud environment. This is not a traditional SOC role focused on alert handling . The position sits at the senior technical level and combines incident leadership, detection engineering, threat hunting and automation. You’ll have genuine ownership of security operations maturity rather than working in a ticket-driven environment. … senior technical point of escalation within the SOC, leading complex investigations and driving continuous improvement across tooling, detection capability and response processes. Typical responsibilities include: Leading complex security incidents end-to-end including investigation, containment, forensics and root cause analysis. Designing, tuning and improving detection across SIEM ...

responsible for the leadership, governance and performance of Security Operations Centre capabilities supporting a secure defence programme. The role ensures effective monitoring, detection and response across classified environments, working closely with incident response and threat teams. Key Responsibilities Own SOC operating model, processes and performance management Ensure … effective monitoring and detection across secure environments Oversee SOC analysts, tooling and service providers where applicable Drive continuous improvement of detection use cases and response workflows Coordinate closely with incident response and vulnerability teams Provide senior-level reporting on security posture and operational effectiveness Ensure SOC activities ...

support audits across platforms. Ensure compliance with Salesforce security standards (e.g., permission sets, field-level security, data classification). Operations and Reliability Lead incident response and post-incident reviews to improve platform resilience. Define and manage service monitoring, alerting, and error budgets. Champion secure change management practices … processes, Gearset pipelines, and rollback strategies. Metrics and Reporting Establish and report on operational and delivery metrics such as deployment frequency, system reliability, and incident response times. Leadership and Team Management Mentor DevOps Engineers and lead knowledge-sharing sessions. Promote a culture of continuous learning and technical excellence. ...

Clearance Hybrid work model OUTSIDE IR35 Job Requirements Spec: - end-to-end technical leadership, architecture, and delivery oversight of Network Detection & Response (NDR) and Extended Detection & Response (XDR) solutions using Darktrace and Microsoft Defender - secure, scalable, and successful implementation of advanced detection technologies that enhance organisational threat visibility … improve incident response capability, and support a modern security operations function. - close collaboration with cybersecurity, infrastructure, networking, SOC analysts, service owners, and senior stakeholders to align technical designs with security strategy, operating models, and business needs. - definition of the target architecture for Darktrace NDR and Microsoft Defender ...

operationally focused role that blends technical security responsibilities with governance, risk, and compliance (GRC) elements. As Cyber Security Analyst, you will: Lead cyber incident investigations with SOC and client teams Triage and analyse alerts across email, cloud, and hybrid systems Perform threat hunting and develop detection use cases Manage … vulnerability assessments and remediation efforts Maintain and optimise DLP tools and incident response Support forensic readiness and insider risk initiatives Develop and enforce security policies and awareness programs Lead incident response and produce investigation reports Utilise and enhance Microsoft Security Stack (Sentinel, Defender, Purview) Drive Zero ...

implementing technical protocols to owning security compliance to championing best security practice to the business. The Role Design and implement security solutions Contribute to Incident response and Disaster Recovery programs Partner with IT and wider business to align processes with best practice Ensure compliance with security policies, procedures … frameworks Lead and participate in incident response and disaster recovery programs Skills and Experience Strong knowledge of IT infrastructure and security tools Proven understanding of desktop and server operating systems Experience with SIEM, endpoint protection, identity management and cloud security tools Understanding of cloud security and compliance (CISSP ...

Support Security Teams Assist other Group Security teams by providing vulnerability-specific intelligence. Contribute to building a shared knowledge repository for all teams. 9. Incident Support Assist in analysing and resolving security incidents, focusing on vulnerability-related aspects. Use post-incident reviews to pre-empt vulnerabilities and improve … communication skills for reporting and stakeholder engagement. Ability to collaborate with cross-functional teams, including SOC, IT, and external vendors. Problem-Solving Experience in incident response and remediation strategies for vulnerabilities. Creative thinking for implementing counterintuitive solutions (e.g., gamification, predictive analytics). Leadership and Mentorship Proven ability ...

building a shared knowledge repository for all teams. 9.Incident Support oAssist in analysing and resolving security incidents, focusing on vulnerability-related aspects. oUse post-incident reviews to pre-empt vulnerabilities and improve resilience. Technical Expertise: oStrong understanding of vulnerability management processes, tools, and frameworks (e.g., Rapid7, Nessus, Qualys, OpenVAS … communication skills for reporting and stakeholder engagement. oAbility to collaborate with cross-functional teams, including SOC, IT, and external vendors. Problem-Solving: oExperience in incident response and remediation strategies for vulnerabilities. oCreative thinking for implementing counterintuitive solutions (e.g., gamification, predictive analytics). Leadership and Mentorship: oProven ability ...

risk , drive security governance , and embed a security-first culture across the organisation. You'll also act as the key contact for information assurance, incident response, supplier security , and regulatory compliance . What you'll do: Own and maintain the ISMS in line with ISO 27001 standards. Lead … audits, risk assessments, and incident response. Oversee supplier assurance and security governance. Promote cyber awareness and staff training. Support ongoing compliance with GDPR and regulatory frameworks. What we're looking for: Proven experience managing an enterprise ISMS and ISO 27001 audits. Strong knowledge of cyber threats, cloud security (Azure ...

Pharmaceuticals/Life Sciences Chemicals Soft Skills Strong stakeholder communication with engineering and plant teams Ability to work independently within isolated OT environments Calm, incident-response mindset focused on safety and uptime Preferred Qualifications Oracle OCP/OCM Microsoft Certified: Database Administrator Knowledge of IEC 62443, NIST ...

Cyber Security policies under the SIRO. Lead ISO 27001 recertification, internal audits, and remediation. Work with infrastructure/product teams on data security and incident handling. Oversee playbooks and ensure measurable risk reduction. Digital Clinical Safety Collaborate with IT, Clinical, Legal, HR, SIRO, and Caldicott Guardian. Maintain the Digital … Cyber Security policies under the SIRO. Lead ISO 27001 recertification, internal audits, and remediation. Work with infrastructure/product teams on data security and incident handling. Oversee playbooks and ensure measurable risk reduction. Digital Clinical Safety Collaborate with IT, Clinical, Legal, HR, SIRO, and Caldicott Guardian. Maintain the Digital ...

cloud (Azure) infrastructure, with a strong emphasis on security, resilience and availability. You will play a key role in infrastructure upgrades, new solution design, incident response and disaster recovery planning, working across multiple UK sites with occasional wider travel. Key Responsibilities Design, implement and support on-premise ...

associated registers Manage and support all aspects of cyber security within the business Promote business-wide awareness of cyber procedures and best practices Support incident response, disaster recovery (DR), and data breach protocols Assist with cyber-related audit activity Business Continuity & Risk Support the development, management, and review ...

maintaining robust cyber security measures across the organisation's infrastructure. This includes project work on new security initiatives alongside day-to-day support and incident response. You'll be expected to work collaboratively with other engineers in the team, providing support when required, whilst also taking the lead ...

cybersecurity threats and trends, as well as advancements in network security technologies. Develop and enforce policies and procedures for network access, monitoring, and security incident response. What youll bring Youll have professional certifications such as CCNA, CCNP, or extensive knowledge of Checkpoint and Cisco Firewalls, and F5 Load Balancers ...

operations are effective, resilient and aligned with wider security, engineering and programme objectives. Key Responsibilities Provide management oversight of cyber operational activities, including monitoring, incident response and vulnerability management Define and maintain cyber operations governance, processes and reporting Act as the senior point of coordination for cyber incidents … Skills & Experience Active SC Clearance or above Proven experience in cyber operations management, security operations oversight or cyber assurance roles Strong understanding of cyber incident management, threat monitoring and operational security controls Experience operating in complex, regulated or safety-critical environments Ability to manage and assure cyber services delivered ...

delivering and maintaining resilient network infrastructure. This role will suit someone comfortable working in regulated environments, owning network design through to BAU support and incident response. Key Responsibilities Design & Implementation Plan, configure, and deploy network solutions including LAN, WAN, WLAN and VPNs to meet business and security requirements. Maintenance … infrastructure projects and resolve escalated issues. Upgrades & Patching Carry out regular upgrades and patching of network hardware and software to maintain compliance and stability. Incident Response Respond quickly and effectively to network outages and security incidents, supporting root cause analysis and remediation. Required Skills & Experience Strong knowledge ...

Support Manager with delegated technical workload and escalation oversight. Ensure incidents and escalations are resolved in line with agreed processes and SLAs. Participate in incident response, coordinating technical resolution and communication. Contribute to documentation, knowledge sharing, and continuous improvement of support processes. Required Skills & Experience Minimum 4 years ...

hardware-in-the-loop (HIL), bench tests, regression tests. Reliability, Safety & Compliance Drive FMEA, DFMEA, and robust validation plans (bench, rig, track); own incident response and root-cause analysis. Ensure compliance with FIA/series regulations, homologation constraints, scrutineering requirements, and BoP-related data handling. Where appropriate, complete ...

operational visibility and supportability. Provide escalation-level IT support for complex or high-impact technical issues affecting internal users, services, and business operations. Support incident response activities including triage, prioritisation, root cause analysis, remediation planning, and post-incident documentation. Ensure all changes are well-documented, tested … Experience planning and delivering system improvements, upgrades, and enhancements in live production environments. Strong operational mindset, with experience improving supportability through monitoring, documentation, and incident reduction. Ability to work independently, prioritise effectively, and deliver outcomes with minimal supervision. Strong written and verbal communication skills, with the ability to explain ...

CSAS reviews. Maintenance of platform security and Secure by design documentation. Development and maintenance of platform security standards and policies (Including SecOps) Development of incident response plans in line with Services policy Ongoing cyber and security threat assessment to the CITADEL platform and customer systems. ...

mechanical discipline. Strong working knowledge of critical environments such as data centres, hospitals, or financial facilities. Proven ability to lead shift teams and manage incident response in real time. Up-to-date knowledge of Wiring Regulations, health and safety compliance, and permit-to-work systems. Exceptional communication skills ...

buildings Oversee permit-to-work systems, audits, inspections and risk assessments Ensure emergency preparedness and security arrangements are in place, tested and effective Support incident response, including out-of-hours escalation where required Contractor & Supplier Management Manage performance of service partners against agreed SLAs and KPIs Build strong ...

technologies, HSMs, virtualization, and scripting is desirable. Design and implement solutions for collecting, analysing, and storing security event data, including automation and orchestration of incident response workflows. Participate in requirements gathering and development of concise solution documentation ('solutions on a page'). Conduct performance testing of cyber monitoring ...