126 to 150 of 337 Incident Response Jobs in the UK excluding London

guidelines. Coordinate risk assessments, ensuring mitigation actions are documented, tracked and successfully implemented. Maintain accurate documentation and evidence to support all compliance activities. Support incident response processes and contribute to post incident reviews from a compliance standpoint. Stay informed on evolving cybersecurity regulations, frameworks and best practice. ...

Work closely with developers to improve deployment processes, performance and reliability Monitor system performance and availability using tools such as Prometheus and Grafana Lead incident response and contribute to post-incident reviews Automate repetitive processes and reduce manual intervention Improve system resilience, scalability and fault tolerance Support ...

Evaluate, select, and integrate security technologies including: Identity and Access Management (IAM) Security Information and Event Management (SIEM) Endpoint Detection and Response (EDR) Data Loss Prevention (DLP) Web Application Firewalls (WAF) Encryption and key management solutions Collaborate with engineering, DevOps, and IT teams to embed security-by-design … support Secure Software Development Lifecycles (SSDLC) Lead initiatives around incident response strategy, detection engineering, mitigation planning, and digital forensics readiness Monitor emerging cyber threats, vulnerabilities, and regulatory changes, providing expert guidance to stakeholders Produce high-quality architectural documentation supporting audit, governance, and compliance requirements Required Experience & Skills Proven ...

periodic security reviews and internal control assessments. Cyber Security and Security Monitoring Oversee cyber security measures including vulnerability management, access control, security monitoring and incident detection. Ensure regular vulnerability assessments, security reviews and penetration testing are conducted. Incident Management Establish and maintain procedures for managing information security incidents. … Coordinate investigation, response and reporting of cyber security incidents. Operational Resilience Support the Branch’s operational resilience framework from an information security perspective. Participate in disaster recovery planning, cyber security exercises and resilience testing. Third-Party and Outsourcing Risk Assess information security risks associated with third-party service providers ...

alerts to identify, investigate, and respond to potential threats. Administer and optimise EDR solutions (CrowdStrike) to ensure comprehensive endpoint protection across the organisation. Lead incident response activities, including investigation, containment, remediation, and post-incident analysis. Vulnerability & Risk Management Manage the vulnerability management programme, including scanning, prioritisation ...

systematic approach to diagnosing complex technical issues Strong analytical skills to interpret data, identify patterns, and draw actionable conclusions Be involved in investigating incident response activities and postmortem analyses using Dynatrace, Grafana or provide insights. Has the ability to troubleshoot and resolve data quality issues on time, ensuring … using Cloud solutions such as Azure & AWS and containerized environments (Kubernetes, OpenShift) to implement cloud-native monitoring Have good knowledge of ITSM/incident management tools integration. Interacts with and influences colleagues and has working level contact with customers Applies methodical approach to issue definition and resolution Demonstrates effective ...

similar, Industry certifications such as CompTIA Security+, GIAC, CISM, CISSP or other relevant certification preferred Strong understanding of network and end point security, incident response, threat intelligence, and vulnerability management Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS Strong knowledge ...

required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS: SOC Analyst, Security Operations Centre, Microsoft Sentinel, Splunk, SIEM, Incident Response, MITRE ATT and CK, Networking, SC Clearance ...

required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS: SOC Analyst, Security Operations Centre, Microsoft Sentinel, Splunk, SIEM, Incident Response, MITRE ATT and CK, Networking, SC Clearance ...

required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS: SOC Analyst, Security Operations Centre, Microsoft Sentinel, Splunk, SIEM, Incident Response, MITRE ATT and CK, Networking, SC Clearance ...

required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS: SOC Analyst, Security Operations Centre, Microsoft Sentinel, Splunk, SIEM, Incident Response, MITRE ATT and CK, Networking, SC Clearance ...

Cyber Essentials Plus compliance, including audits, policy lifecycle management, and partner alignment, acting as a trusted advisor across the partnership. - Managing security operations, including incident response, threat detection, and vulnerability management. - Technical Expertise Providing authoritative guidance on cyber risks, evaluating technologies, and staying ahead of emerging threats. - Serving ...

outset. Own the technical quality and evolution of our cloud infrastructure and delivery pipelines, identifying and addressing systemic risks. Drive improvements to reliability practices, incident response, and post‐incident learning across teams. Provide hands‐on expertise across infrastructure, automation, and CI/CD when needed, particularly ...

this job title is advertised to attract the right skills needed for the role. Main duties of the job The Trainee Cyber Security Incident Manager role is within the NHS England National CSOC (Cyber Security Operations Centre), supporting the coordination, triage and management of cyber security incidents across … health and care system. Support the identification, triage and coordination of cyber security incidents within the NHS England National CSOC. Assist with incident management activity, ensuring incidents are logged, tracked and progressed in line with agreed processes and procedures. Work with technical analysts and operational colleagues to gather information ...

Spacelabs Privacy and Security Program is a shared service model with responsibility for Cybersecurity and Privacy by Design, Compliance, Security Testing and Incident Response. As a Spacelabs Senior Cybersecurity Engineer you are responsible for cybersecurity and privacy functions for our Products. The role collaborates with Spacelabs Project Teams … security inquiries complaint and vulnerability reports provide consistent cybersecurity and privacy guidance to Spacelabs and Customer Lead Cybersecurity and Privacy Complaint Event and Incident Invest Requirements: 10+ years of Cybersecurity and Privacy Compliance 5-10 years of Cloud Security Experience (AWS preferred) 5 years experience leading product cyber security ...

growing cyber security team based in Altrincham, South Manchester. You will play a key role in protecting critical systems, improving security posture, and supporting incident response across a modern hybrid IT environment. This is a hands-on technical role where youll work closely with infrastructure, cloud … respond to security alerts across SIEM and EDR platforms Manage and tune security tools including firewalls, WAFs, and endpoint protection Investigate and support response to security incidents Perform vulnerability assessments and remediation tracking Support implementation of security controls across cloud and on-prem environments Contribute to security policies, standards ...

that supports precision medicine Key Responsibilities Design and develop threat-led detections using threat intelligence and threat-hunting outputs Create novel analytic techniques for incident detection Collaborate with an MSP SOC to maintain and tune the detection catalogue Build automated reporting dashboards using Microsoft Sentinel workbooks Support security initiatives … Employment Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Keywords: Cyber Threat Engineer, Detection & Response Engineer, SIEM Engineer, Security Detection Engineer,T hreat Hunting Engineer, Security Automation Engineer, SOC Engineer, Incident Response Engineer, Cloud Security Engineer, Network Security ...

role in helping our customers achieve greater visibility, performance, and reliability across their IT estatescontributing to their operational success through proactive insight and incident prevention. What you'll do Design, implement, and manage observability solutions using industry-leading tools such as Dynatrace (primary), Grafana, and Splunk Collect and analyse … e.g. ServiceNow) and CI/CD pipelines to enable proactive alerting and resolution workflowsAct as a Monitoring & Observability SME within customer delivery teams Support incident response activities and postmortems by identifying patterns, root causes, and optimisation opportunities Work collaboratively with cross-functional teams to define and implement best ...

insights into real security improvements 🧠 What you’ll bring: • SOC/security environment experience • Strong knowledge of SIEM, EDR, networking & OS (Windows/Linux) • Incident response experience end-to-end • Analytical mindset + clear communication skills ✨ Bonus points for: Microsoft Security (Sentinel, Defender), cloud security, scripting, MITRE ...

principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and non-technical stakeholders Excellent analytical, documentation, and problem-solving capability Knowledge ...

data protection controls are consistently applied and reviewed. Proactively identify, communicate, and mitigate operational and security risks. Operational Excellence Undertake proactive monitoring, alerting, and incident response processes. Participate in the on‐call rota. Contribute to improvements in tooling, automation, and operational processes to reduce toil and increase reliability. ...

Security Analyst, youll act as a senior technical escalation point within the SOC, supporting the wider analyst team while leading the investigation and response to sophisticated cyber threats and incidents. Youll work closely with internal security teams, customers, and stakeholders to continuously evolve detection capabilities, improve operational maturity … work, candidates must have current SC clearance and be eligible to obtain UK Government DV clearance. What Youll Be Doing Lead the investigation and response to complex cyber security incidents across high-security customer environments Act as a senior escalation point for Tier 1 and Tier 2 analysts during ...

guide immediate containment steps (e.g.asset isolation, password reset). Escalation: Escalate confirmed or high severity incidents to the Level 2 SOC (outsourced) or internal incident response teams, ensuring complete and accurate handoff documentation. Incident Documentation: Create and maintain detailed case notes, timelines, and evidence within the case ...

/CD pipelines with blue-green, canary, and rolling deployments, including automated, zero-downtime database releases. Implement comprehensive monitoring, logging, alerting, and automated incident workflows with clear reporting. Strengthen cloud security posture (IAM, secrets, vulnerability scanning) and embed DevSecOps practices while maintaining PCI-DSS compliance. Drive reliability through SLIs …/SLOs, incident response, disaster recovery testing, and capacity planning for peak events. Optimise performance and cost across hybrid environments through right-sizing, forecasting, and resource governance. Apply AI-driven tooling for anomaly detection, operational optimisation, and compliance automation. Collaborate cross-functionally, maintain documentation, and promote DevOps best ...

Spacelabs Privacy and Security Program is a shared service model with responsibility for Cybersecurity and Privacy by Design, Compliance, Security Testing and Incident Response. As a Spacelabs Senior Cybersecurity Engineer you are responsible for cybersecurity and privacy functions for our Products. The role collaborates with Spacelabs Project Teams … security inquiries complaint and vulnerability reports provide consistent cybersecurity and privacy guidance to Spacelabs and Customer Lead Cybersecurity and Privacy Complaint Event and Incident Investigations for assigned projects Qualifications 10+ years of Cybersecurity and Privacy Compliance 5-10 years of Cloud Security Experience (AWS preferred) 5 years’ experience leading ...