101 to 125 of 327 Incident Response Jobs in the UK

private cloud platform, ensuring systems are actively monitored, vulnerabilities are managed, and services remain secure, compliant and resilient. Key Responsibilities Security Monitoring & Response Monitor SIEM, EDR and platform telemetry. Investigate alerts and perform incident triage and escalation. Conduct structured incident response activities. Vulnerability & Patch Management Execute … Release Security Assess changes for security impact. Ensure deployments meet security requirements. Support secure-by-design implementation. Documentation & Continuous Improvement Maintain SOPs, runbooks and incident documentation. Contribute to improvement of SecOps processes and tooling. Essential Experience & Skills Experience in Security Operations or SecOps. SIEM, EDR and vulnerability management tooling ...

focused on monitoring, analysing and responding to security threats, while driving continuous improvement across our security operations capability. Youll play a key role in incident response, threat intelligence, vulnerability management and ensuring effective use of our security tools and processes to reduce risk across the technology estate. ...

working. Desirable Experience with leveraging AI for AppSec and CloudSec. AWS Certified Security – Speciality or equivalent practical AWS security experience. Terraform or CloudFormation expertise. Incident-management or incident-response experience. Experience with Splunk or similar logging/SIEM platforms. Experience with security metrics, dashboards or reporting that ...

updates Embed security within the software delivery lifecycle (DevSecOps principles) Support audits and ensure compliance with recognised frameworks (e.g., ISO 27001, Cyber Essentials) Lead incident response and root cause analysis for security and infrastructure-related events Monitoring, Reliability & Support Implement monitoring, alerting, and observability across infrastructure and applications … Knowledge of warehouse or automation systems and integrations (ERP, WMS, PLC/SCADA) Cloud experience (Azure) and containerisation (Docker, Kubernetes) Familiarity with ITIL processes (incident, change, problem management) Relevant certifications (e.g., VMware, Security+, CISSP, Terraform) Personal Attributes Strong ownership and accountability for delivering robust infrastructure solutions Pragmatic problem-solver ...

updates Embed security within the software delivery lifecycle (DevSecOps principles) Support audits and ensure compliance with recognised frameworks (e.g., ISO 27001, Cyber Essentials) Lead incident response and root cause analysis for security and infrastructure-related events Monitoring, Reliability & Support Implement monitoring, alerting, and observability across infrastructure and applications … Knowledge of warehouse or automation systems and integrations (ERP, WMS, PLC/SCADA) Cloud experience (Azure) and containerisation (Docker, Kubernetes) Familiarity with ITIL processes (incident, change, problem management) Relevant certifications (e.g., VMware, Security+, CISSP, Terraform) Personal Attributes Strong ownership and accountability for delivering robust infrastructure solutions Pragmatic problem-solver ...

relationships with outsourced 24/7 SOC/MDR providers Monitor performance against SLAs and ensure proactive threat detection across cloud environments Manage security incident escalations and coordinate response activities across internal and external teams Drive value and accountability from third-party security partners Governance, Risk & Compliance … tools and data classification platforms Good understanding of cloud security (Azure/AWS) and identity protocols (OIDC, SAML, MFA/Entra ID) Experience coordinating incident response across multiple stakeholders, including external forensic teams Strong commercial awareness with the ability to link security decisions to business outcomes Excellent communication ...

Incident and Resilience Manager (DORA) MUST HAVE PAYMENTS Experience! UK Remote | Permanent Hiring a Incident Manager with strong DORA experience to lead operational resilience, major incident management and recovery planning within a regulated financial services environment. Key experience:* MUST DORA/Operational Resilience * Major Incident Management … Recovery* Financial Services/FinTech* ISO 22301/ISO 27001/NIST* Stakeholder & Regulatory Management This role will lead DORA implementation, resilience testing, ICT incident response, third-party risk and enterprise recovery planning across the business. High-impact role with strong visibility and ownership. Apply now for immediate ...

objectives, manage workloads and foster professional growth within the team. Security Operations: Oversee operations including threat monitoring, vulnerability management, access controls, endpoint security and incident response. Maintain robust cyber resilience measures across on-premise and cloud environments. Compliance and Risk Management: Ensure compliance with GDPR, SRA requirements (for legal … report findings to senior management. Stakeholder Engagement: Collaborate with partners; business services; fee earners; global office teams to embed a culture of security awareness. Incident Management: Act as escalation point for major incidents; coordinate response efforts; conduct post-event reviews; update disaster recovery/business continuity plans accordingly. ...

helping keep everything running smoothly behind the scenes while we deliver for our customers. You’ll get hands-on with AWS, working across monitoring, incident response, automation, and CI/CD — all the good stuff that keeps modern platforms fast, reliable, and scalable. This isn’t a role … support across multiple applications. Monitor system health, including application environments, scheduled jobs, integrations, and message queues, and contribute to logging and alerting standards. Support incident management activities, including triage, troubleshooting, escalation, root cause analysis (RCA), and continuous improvement based on incident trends. Assist with routine maintenance tasks such ...

Protection department. Our team is responsible for designing, implementing, configuring, and maintaining security tools used across Elsevier Technology. You will collaborate with colleagues from Incident Response, Threat Engineering, Governance Risk & Compliance (GRC), and work closely with business users to ensure our security tools are effectively adopted throughout … DevOps methodologies. We value practical experience applying IT security principles across areas such as Network Security, Security Operations, Vulnerability Management, Risk Management, and Incident Response. Responsibilities Collaborate within the security engineering team to design and implement security tooling. Design, build, and maintain AWS cloud infrastructure using Infrastructure as Code ...

technical role where youll investigate complex alerts, support threat-hunting activities, contribute to the tuning of SIEM detections, and help improve SOC processes and response playbooks. Youll also play an important role in mentoring analysts and supporting the continued development of the SOCs technical capability. Technology innovation is part … this role will continue to evolve as AI-driven detection, automation, and response capabilities are introduced. You will: Investigate, triage, and respond to security alerts across customer environments Support the tuning and maintenance of SIEM detection rules alongside senior analysts Carry out proactive threat analysis and support threat-hunting ...

periodic security reviews and internal control assessments. Cyber Security and Security Monitoring Oversee cyber security measures including vulnerability management, access control, security monitoring and incident detection. Ensure regular vulnerability assessments, security reviews and penetration testing are conducted. Incident Management Establish and maintain procedures for managing information security incidents. … Coordinate investigation, response and reporting of cyber security incidents. Operational Resilience Support the Branch’s operational resilience framework from an information security perspective. Participate in disaster recovery planning, cyber security exercises and resilience testing. Third-Party and Outsourcing Risk Assess information security risks associated with third-party service providers ...

hiring a seasoned VP-Level Major Incident Manager to lead end-to-end management of high-severity technology incidents across a complex, regulated environment. You will command incidents from detection through restoration, ensure crisp executive communications, drive cross-technology recovery, and influence decisions that directly impact operational stability. What … Lead and coordinate major incidents across infrastructure, applications, middleware, cloud, EUC, network, identity, data, and third parties Establish and manage incident command structure, including team roles, bridge calls, and communications, ensuring clear ownership and rapid triage Drive restoration by coordinating technical SMEs, vendors, and operations teams; remove blockers ...

performance optimisation Oversee DNS migrations, upgrades, and transformations Implement and maintain DNS security (DNSSEC, DDoS protection, threat mitigation) Monitor performance, availability, and ensure robust incident response processes Act as escalation point for complex DNS/network issues and lead root cause analysis Drive automation using scripting (Python, PowerShell ...

leveraging market opportunities. Experience selling security services, consulting, or technologies such as cyber threat intelligence, security awareness and training, cloud security, crisis and incident response management, third‐party risk management, threat and vulnerability management, security in disruptive technologies (AI, CRQ, web application firewall, identity theft protection). Strong ...

maintain security tooling across cloud environments Work with engineering teams to improve security, reliability, and operational resilience Implement monitoring, logging, and alerting solutions Support incident response, troubleshooting, and continuous improvement activities Contribute to automation initiatives and security-by-design practices Requirements Experience working with AWS cloud environments Hands ...

maintain security tooling across cloud environments Work with engineering teams to improve security, reliability, and operational resilience Implement monitoring, logging, and alerting solutions Support incident response, troubleshooting, and continuous improvement activities Contribute to automation initiatives and security-by-design practices Requirements Experience working with AWS cloud environments Hands ...

into CI/CD pipelines and DevSecOps practices. Proven capability in risk assessments, threat modeling, and control gap analysis. Experience collaborating with SOC and Incident Response teams during security events. Working knowledge of security frameworks and regulations (NIST, ISO 27001, CIS, GDPR, etc.). Ability to translate technical ...

Azure-native architectures. Technical guidance and collaboration with engineering teams to improve database design, data access patterns and application performance. Continuous improvement activities, including incident response, root cause analysis and platform automation. About You and What You'll Bring You're an engineer who enjoys ownership, values continuous ...

Azure-native architectures. Technical guidance and collaboration with engineering teams to improve database design, data access patterns and application performance. Continuous improvement activities, including incident response, root cause analysis and platform automation. About You and What You'll Bring You're an engineer who enjoys ownership, values continuous ...

security‐related client matters Support customer audits, security questionnaires, and due diligence processes Identify, assess, and manage security risks across the business Lead incident response planning and execution Continuously improve detection and response capabilities Act as a trusted advisor to the CTO and broader executive leadership ...

growing cyber security team based in Altrincham, South Manchester. You will play a key role in protecting critical systems, improving security posture, and supporting incident response across a modern hybrid IT environment. This is a hands-on technical role where youll work closely with infrastructure, cloud … respond to security alerts across SIEM and EDR platforms Manage and tune security tools including firewalls, WAFs, and endpoint protection Investigate and support response to security incidents Perform vulnerability assessments and remediation tracking Support implementation of security controls across cloud and on-prem environments Contribute to security policies, standards ...

primarily a people management role, we value leaders who remain close to the services they support. You will be actively involved in service management, incident response, problem resolution, change planning, and operational improvements. You will work with the team to identify opportunities to improve reliability, efficiency, monitoring, automation … ensuring effective collaboration and service outcomes. Representing the team in operational, project, and governance forums, advocating for service improvements and business needs. Operational Leadership, Incident Management & Escalation Leading the operational response to issues that may impact print production schedules, publication deadlines, or delivery commitments. Making informed decisions during ...

This role is ideal for someone who brings experience of cyber operations and can apply that knowledge to strengthen and evolve our detection and response capability in a complex NHS environment, where patient safety and operational continuity are critical. The role will be involved in delivering digital safety, security … operation and ongoing development of our SOC and SIEM capability *Own and continuously improve detection use cases, alerting, triage, and response processes *Act as a technical lead for monitoring and detection, ensuring controls are effective, proportionate, and aligned to risk *Investigate and respond to security incidents, providing clear, risk ...

role in helping our customers achieve greater visibility, performance, and reliability across their IT estatescontributing to their operational success through proactive insight and incident prevention. What you'll do Design, implement, and manage observability solutions using industry-leading tools such as Dynatrace (primary), Grafana, and Splunk Collect and analyse … e.g. ServiceNow) and CI/CD pipelines to enable proactive alerting and resolution workflowsAct as a Monitoring & Observability SME within customer delivery teams Support incident response activities and postmortems by identifying patterns, root causes, and optimisation opportunities Work collaboratively with cross-functional teams to define and implement best ...