51 to 75 of 340 Incident Response Jobs in the UK excluding London

smoothly in production. You will contribute to the operation of managed Kubernetes platforms (AKS/EKS), supporting best practices in monitoring, automation, and incident response, while continuing to develop your expertise in cloud-native technologies. About Synalogik Synalogik develops technology that enables organisations to work effectively with complex … supported, and then get the satisfaction of seeing them in products used in Tier 1 businesses. Key Responsibilities Site Reliability Engineering Participate in incident response, troubleshooting, and post-incident reviews Help reduce operational toil through automation and process improvements Contribute to improving system availability, performance, and scalability ...

problem arises. Design, maintain and improve alerts, monitoring and dashboards (e.g. Grafana) to ensure issues are actionable, meaningful and detected early. Contribute to post-incident reviews, sharing learnings and driving continuous improvement. Define, document, and improve operational processes for monitoring, alerting, incident response, and support workflows. Create … support, with exposure to backend and cloud environments. Solid troubleshooting and debugging skills for cloud infrastructure, applications, and pipelines. Knowledge of monitoring, alerting, and incident response practices in cloud environments. Experience using monitoring/observability tools (e.g. Grafana) to produce actionable insights, not just visualisations Familiarity with ...

Security Operations Model) Lead on investigations, and respond to security incidents across multiple client environments Perform threat detection, triage, analysis, and remediation activities Lead incident response activities and provide technical guidance to junior analysts Analyse alerts from SIEM, EDR, IDS/IPS, and other security tooling Conduct threat … security monitoring Support continuous improvement of SOC processes, playbooks, and operational procedures Collaborate with infrastructure and engineering teams to strengthen security posture Produce detailed incident reports and client-facing documentation Assist with vulnerability management and security compliance activities Contribute to mentoring and development of junior team members Required Experience ...

tooling Career progression within a growing security function Key responsibilities: Monitor, investigate and respond to cyber security alerts and incidents Lead and support incident response activities Conduct threat hunting and threat modelling exercises Manage vulnerability remediation and penetration testing activities Support and improve SIEM, EDR/…/XDR, IDS/IPS and firewalls Good understanding of Microsoft Azure security technologies Knowledge of NIST, ISO27001 and CIS Controls Experience in incident response, vulnerability management and threat intelligence Relevant certifications such as CISSP, CISM, GIAC or Security+ Soft skills: Strong analytical and problem-solving abilities Calm ...

mature Security Operations Centre, focused on protecting essential services. The Opportunity You'll play a key role in real-time threat detection and response, working across a complex enterprise environment. This position combines SOC operations, threat hunting, and continuous improvement, giving you the chance to influence detection capability … response maturity. What You'll Be Doing Monitoring & Triage Analyse and triage security alerts using SIEM platforms Correlate events and identify patterns across multiple data sources Assess severity, scope, and business impact Investigation & Analysis Conduct detailed investigations across endpoint, network, identity, and log data Build evidence-led timelines ...

cyber assurance integrates Knowledge of methodologies (Waterfall, Incremental, SAFE, DevOps) Experienced in managing ITHC activities end-to-end, from initial scoping through remediation Incident Response & Awareness Experienced in developing and managing Cyber Incident Response capabilities, including planning, implementation, and continuous improvement Proven experience designing and delivering ...

integration and performance testing for all components Ensure solutions are reliable, reproducible and stable across releases Support continuous improvement of testing practices Monitoring and Incident Response Implement observability and monitoring tooling Track system performance and detect anomalies Support incident response, troubleshooting and root cause analysis ...

ideal candidate is a “leader‐doer” who can manage the security of complex environment while remaining sharp enough to deep‐dive into an incident response bridge or a cloud architecture review. Duties and Responsibilities Detection Strategy : Build and maintain a world‐class Threat Intelligence program to pivot from … reactive to proactive defense. IR Leadership : Serve as the ultimate escalation point for high‐priority security incidents, leading the Incident Response team through containment, eradication, and recovery. Hunting : Establish regular threat‐hunting cadences to identify dormant or sophisticated actors within the environment. Stay abreast, and keep up with ...

data. The successful individual will: Lead and develop a high-performing Information Security team Oversee security operations including SIEM, endpoint protection, vulnerability management and incident response Manage cyber resilience across both cloud and on-premise environments Act as the senior escalation point for security incidents and response … understanding of cyber security operations, governance and risk management Experience managing and developing technical security teams Strong knowledge of SIEM technologies, cloud security and incident response processes Ability to communicate effectively with both technical teams and senior leadership Experience operating within regulated environments Desirable experience includes: CISSP, CISM ...

increase operational efficiency and reduce manual intervention;* Evaluate system designs and architectures for reliability, performance, security, and efficiency, ensuring best practices are followed;* Lead incident response efforts, conduct root cause analysis, and implement long-term solutions for complex issues;* Develop and maintain comprehensive runbooks and procedures for incident response and operational tasks;* Collaborate with cross-functional teams to review and provide feedback on technical designs, ensuring alignment with SRE principles;* Participate in on-call rotations and handle critical incidents with confidence and expertise;* Continuously improve documentation for systems and services, contributing to a knowledge-sharing culture ...

mapping Risk advisory and assurance Business resilience Data privacy and GDPR ISO 27001 assessments Supply chain assurance PCI 3DS, PCI P2PE, PCI SSF audits Incident response readiness and planning Card production and PIN audits Cyber maturity assessments Incident response planning Gold/Silver/Bronze tabletops ...

Network Security Engineer, where you will play a key role in safeguarding our clients’ organisations’ network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing … Permanent Location – Stevenage (Onsite Shift work) Salary - £50k (Plus £2k bonus and shift allowance) Keywords: Network Security Engineer, SOC, Security Operations Center, Firewalls, Incident Response, Security Incidents, Networking Principles, Virtual Private Networks, Security Protocols, Vulnerabilities, Threats. Only apply for this role if you currently hold the specific Government ...

practical, proportionate security advice to stakeholders. Reporting & Metrics Develop and maintain meaningful metrics to measure the effectiveness of vulnerability management and threat intelligence functions. Incident Response Support Support and enhance incident response processes. Represent cyber security during operational incidents, coordinate with stakeholders, and assist threat intelligence ...

security infrastructure Monitor and manage security tools including firewalls, SIEM, PAM, IDS, endpoint security, and network access controls Handle cyber security incidents and support incident response and recovery activities Perform root cause analysis and work with problem management teams Plan, test, and implement changes following strict change control … environments) Strong experience in OT/IT security operations and infrastructure Hands-on experience with network security, firewalls, and monitoring tools Experience in incident response and cyber security improvement initiatives Preferred Skills Industrial protocols: DNP3, ICCP, IEC 61850 Standards: NISD, NCSC CAF, ISO 27001/ ...

your background and interests, your work may include: Reviewing security maturity against recognised good practice Supporting Cyber Essentials preparation and assessments Developing and testing incident response plans Carrying out tabletop and simulated incident exercises Assessing and improving supply chain security Advising on secure application and software development … love to hear from you. Apply now and send over your CV for a quick review. Security, Cyber, Cybersecurity, Infosec, Information Security, Incident Response, IR, Consult, Consultant, Consulting, Compliance, 27001, GDPR, DPA, Data Protection, GRC, Governance, Risk Circle Recruitment is acting as an Employment Agency in relation ...

both soft and technical skills, focused on the engineering, optimisation, and support of SOC tooling, telemetry, and detection capabilities to improve threat visibility and incident response across hybrid environments. Key Responsibilities Operate, support, and tune SIEM and security monitoring platforms, including Graylog and Splunk. Maintain and optimise … ingestion pipelines across multiple data sources. Develop and refine detection rules, alerts, dashboards, and SOC playbooks. Support incident response, investigation, and containment activities. Automate SOC processes and workflows using scripting tools such as PowerShell, Python, or Bash. Integrate new systems and infrastructure into SOC monitoring and visibility. Work ...

architecture, secure development lifecycle practices and appropriate technical controls Strengthen capabilities across core security domains including identity and access management, privileged access, vulnerability management, incident response, disaster recovery, data protection, security awareness and supplier security Work closely with stakeholders at all levels of the organisation, including operational teams … Culture, Business Infrastructure & Operations and Finance, to support audits, evidence gathering, control improvement and the effective adoption of security requirements across the organisation Lead response to significant information security incidents, acting as a senior decision‐maker during crisis situations and driving post‐incident learning and improvement Build ...

opportunity for a Senior Cyber Security Analyst (12 month contract) within Marshall.The focus of this technical role is on threat prevention, detection and response for Marshall, including the configuration and monitoring of a security information and event management (SIEM) system, operating next generation antivirus, intrusion detection/prevention systems … Marshall protection and detection capabilities as risks evolve over time.Responsibilities include:Managing set checklistsProblem management through to handover or resolutionThreat identification and classificationIncident response leadReport writingStakeholder managementContinuous improvementJunior SOC staff mentoringTasks:Helping to maintain and monitor the effectiveness of security measures and controlsConduct and help coordinate, routine security event ...

/7 SOC services across multiple platforms and projects. You will lead and support a small team of analysts, oversee security monitoring and incident response, and contribute to the development of security controls, processes and governance. You will work closely with senior stakeholders to produce security reporting, support … technical work and mentoring others. Senior SOC Analyst essential skills Proven experience working within a SOC environment, ideally 3+ years Strong knowledge of SIEM, incident management and threat intelligence Experience with cloud security, networking and information security principles Understanding of IDAM, RBAC and joiners, movers and leavers processes Ability ...

/7 SOC services across multiple platforms and projects. You will lead and support a small team of analysts, oversee security monitoring and incident response, and contribute to the development of security controls, processes and governance. You will work closely with senior stakeholders to produce security reporting, support … technical work and mentoring others. Senior SOC Analyst essential skills Proven experience working within a SOC environment, ideally 2+ years Strong knowledge of SIEM, incident management and threat intelligence Experience with cloud security, networking and information security principles Understanding of IDAM, RBAC and joiners, movers and leavers processes Ability ...

alerts within a live SOC environment. Analyse security incidents to determine scope, impact, and priority, ensuring appropriate escalation and response. Manage end-to-end incident response activities from detection through to resolution. Support the development and enhancement of SIEM use cases, detection rules, analytics, and playbooks. Conduct real … cloud environments, and enterprise IT infrastructure. Experience creating and tuning detection use cases, analytics, and playbooks. Knowledge of Information Security principles, threat detection, and incident response practices. Familiarity with Microsoft technologies, Linux systems, and security tooling. Understanding of security frameworks and data protection principles including GDPR ...

implement, and support a range of cyber security solutions across client environments. You will be involved in both proactive security improvement projects and reactive incident response activity, helping clients strengthen their overall security posture. This is a highly varied role suited to someone who enjoys working across multiple … security solutions across network, endpoint, and cloud environments Deploy and manage firewalls, endpoint protection, EDR, and security monitoring tools Lead and support cyber security incident response activities including investigation, containment, remediation, and reporting Conduct vulnerability assessments, security reviews, and risk analysis Recommend and implement improvements aligned to security ...

infrastructure, implementing and overseeing risk management processes, ensuring that appropriate controls and countermeasures are in place to mitigate all identified risks. Lead the incident response efforts, including preparing for, detecting, and responding to cyber security incidents, ensure that an effective incident response plan is in place … regularly tested and managing post incident analysis and reporting to prevent future occurrences. Manage and mentor the cyber security team, fostering a culture of continuous learning and development, ensuring that the team has the necessary skills and tools to protect the organisation effectively, and oversee recruitment, training, and performance ...

network and security infrastructure, ensuring robust protection of business systems and data. Key Responsibilities Manage day-to-day cyber security operations and incident response Monitor and optimise security tools (SIEM, firewalls, endpoint security) Maintain and support network infrastructure (LAN/WAN, Wi-Fi, L2/L3) Identify threats … Alto firewalls, SIEM tools, and endpoint security Experience with L2/L3 networking (Nexus, LAN/WAN, Wi-Fi) Vulnerability management (e.g. Qualys) and incident response expertise Understanding of data security, threat analysis, and security best practice Essential Requirements Strong problem-solving and analytical skills Excellent communication ...

technical engine behind the organisation's global digital integrity. Your responsibilities will include: Managing the Global SOC to ensure proactive threat hunting and rapid incident response across all global time zones. Implementing a cutting-edge DevSecOps approach to ensure security is automated and embedded within the CI/… have personally achieved certification from scratch) 2.DevSecOps (Embedding security into CI/CD pipelines and automated workflows) 3.SOC Management (Overseeing global threat detection and incident response) 4.NIST Framework (Applying security standards for the Americas region) 5.Essential 8 (Understanding and implementing Australian security protocols) 6.Vulnerability Management (Coordinating risk-based ...