51 to 75 of 428 Incident Response Jobs in the UK

networking) who’s looking to move further into security. This is a hands-on role sitting at the intersection of infrastructure and security, combining incident response and investigation with ongoing improvement of security systems and controls in a high-performance environment. The Role You’ll work across both … supporting internal users Security engineering: tuning detection systems, improving configurations, and strengthening overall security posture You’ll gain exposure across: Network and endpoint monitoring Incident response Security testing and reviews Log analysis and threat detection Vendor and software risk assessment Identity and access management Responsibilities: Investigate and triage ...

processing environments. This role requires deep, handson leadership experience operating largescale, realtime, highavailability platforms. The successful candidate will have directly owned production outcomes, major incident response, and operational risk in mature, highly regulated environments, where reliability, speed of decisionmaking, and judgment under pressure are critical. Global Operations holds … operational foundation. As part of this evolution, the organization is moving toward fully orchestrated, automated ways of working, where detection, triage, decisionsupport, and response are increasingly driven by integrated automation and intelligent systems rather than manual, siloed intervention. Global Operations serves as the engine room of production operations-balancing ...

processing environments. This role requires deep, handson leadership experience operating largescale, realtime, highavailability platforms. The successful candidate will have directly owned production outcomes, major incident response, and operational risk in mature, highly regulated environments, where reliability, speed of decisionmaking, and judgment under pressure are critical. Global Operations holds … operational foundation. As part of this evolution, the organization is moving toward fully orchestrated, automated ways of working, where detection, triage, decisionsupport, and response are increasingly driven by integrated automation and intelligent systems rather than manual, siloed intervention. Global Operations serves as the engine room of production operations-balancing ...

processing environments.This role requires deep, handson leadership experience operating largescale, realtime, highavailability platforms. The successful candidate will have directly owned production outcomes, major incident response, and operational risk in mature, highly regulated environments, where reliability, speed of decisionmaking, and judgment under pressure are critical.Global Operations holds the responsibility … operational foundation. As part of this evolution, the organization is moving toward fully orchestrated, automated ways of working, where detection, triage, decisionsupport, and response are increasingly driven by integrated automation and intelligent systems rather than manual, siloed intervention. Global Operations serves as the engine room of production operations-balancing ...

across the business. The Role Youll lead day-to-day cyber security operations, working closely with IT and business stakeholders to ensure robust monitoring, incident response, and risk management processes are in place. This is a hands-on role with both operational and strategic elements. Key Responsibilities Overseeing … cyber operations, including threat monitoring and incident response Managing vulnerabilities and supporting remediation activities Supporting the development and delivery of cyber security strategy Collaborating with internal teams and third-party providers Driving awareness, training, and continuous improvement initiatives About You Experience in cyber security operations, SOC, or incident ...

Trust's critical systems and information assets. You will be a senior technical specialistwith CISSP certification, workinghands-onacross: Cyber security architecture,implementation and monitoring. Incident response and operational cyber resilience. Vulnerability management and cyber risk reduction. Supporting compliance with NHS and national cyber security standards. The base … applications. Design, implement, and maintain technical security controls to protect systems, data, and system boundaries from cyber attack, malware, ransomware, and insider threats. Support incident response activities, including investigation, containment, remediation, and reporting of information security incidents and data breaches. Lead and support vulnerability management, working with Infrastructure ...

clients—from fast-growing organizations to large enterprise and public sector environments. Our security function supports clients through capabilities such as Managed Detection and Response (MDR), threat hunting, vulnerability management, penetration testing, and incident response, alongside advisory-led consulting engagements. The organization is experiencing strong growth … cyber threats across varied environments. You will support and mentor junior analysts, lead complex investigations, and contribute to the ongoing development of detection and response capabilities. This role is suited to a security professional with a solid technical background, a collaborative approach, and an interest in progressing into leadership ...

lead and develop a security operations capability within a fast-paced environment. This role is key to maintaining strong cyber resilience through effective incident response, threat detection, and continuous service improvement. Key Responsibilities Team Leadership: Lead and manage a cyber security operations team, ensuring strong communication, decision-making … service delivery. Incident Management: Oversee end-to-end incident response, ensuring processes are maintained and critical incidents are effectively managed. Security Monitoring: Deliver and improve security monitoring, including SIEM management, threat hunting, and intrusion detection. Threat Intelligence: Collect and analyse OSINT and commercial threat intelligence, providing actionable ...

test and deploy efficiently Advise during design sessions to help engineers pick the right solutions for projects Reliability & Operations Own production reliability, uptime, and incident response Define and enforce SLAs and SREs Lead incident response and post‐incident reviews Ensure monitoring, alerting, and on‐call … growing company Ability to operate production systems under pressure Deep hands‐on experience with the AWS cloud platform Strong background in reliability, observability, and incident management Experience leading or mentoring engineers What we offer in return 💰 Competitive salary depending on experience 🏝️ 27 days of annual leave (including 3 days ...

intelligence review), Microsoft Defender for Endpoint and Defender for Cloud, and Darktrace, including system and model tuning, email module management, and configuration of autonomous response actions. You will be responsible for incident response activities, including triaging security alerts, investigating incidents, coordinating escalation and remediation, and conducting root … works closely with the Security Operations Centre (SOC) partner, supporting the assessment and investigation of alerts and contributing to the development and refinement of incident response plans and playbooks. You will support vulnerability management activities, including vulnerability assessments, annual audits, and penetration testing. This includes preparing and presenting ...

Incident Response Analyst Scottish Power HQ, Glasgow Flexible & Hybrid working pattern Negotiable rate, Inside IR35, PAYE and UMB options available Help us create a better future, quicker SP Energy Networks (SPEN) has kicked off an ambitious security transformation programme to transparently reduce risk, achieve compliance with NIS regulations ...

operational resilience, developer experience and infrastructure team leadership. You will be responsible for shaping the long term infrastructure roadmap, improving reliability and observability, strengthening incident response and ensuring the platform can support a growing customer base and increasingly critical product suite. This is a role for someone … cloud architecture to support scale, resilience and performance Set standards across infrastructure, CI/CD, environments and observability Lead production reliability, uptime, incident response and post incident reviews Improve monitoring, alerting and on call practices to ensure they are effective and sustainable Partner closely with the Information ...

case dialog flows (REFER, re-INVITE, UPDATE, early media, SDP renegotiation). · Build dashboards and alerting on call quality, ASR, ACD, NER, and SIP response-code distributions. Telco Infrastructure & Carrier Operations · Manage SIP trunks and interconnects with upstream carriers and tier-1 wholesalers. · Own carrier onboarding, IP whitelisting, codec …/profile alignment, and signalling testing. · Coordinate with carriers on incident triage, MOS degradation, FAS, and trunk failover. Routing, Numbering & Number Management · Maintain and evolve LCR (Least Cost Routing) logic, prefix tables, and routing policies across multiple carriers. · Handle DID/number provisioning, porting (LNR/LNP) workflows, E.164 ...

Security Incident Response Manager (Cyber Threat) - Global financial services company - Full time permanent role - Salary up to £110,000 plus bonus. Hybrid working (twice a week in the London office) A large global financial services firm is looking for an Incident Response Manager within its cyber ...

engineering principles to operations, automate processes, and improve system resilience. Working closely with development and operations teams, you will help build monitoring, alerting and incident response capabilities that minimise downtime and enhance service levels. What you'll be doing * Design and implement monitoring and alerting systems for critical … services * Automate operational tasks to improve efficiency and reduce manual effort * Collaborate with development teams to enhance system reliability and performance * Manage incident response and post-incident reviews * Analyse system metrics to identify trends and areas for improvement * Contribute to capacity planning and scalability strategies What ...

ready to step into a Shift Lead role within a fast-paced Managed Security Operations Centre. This is a hands-on leadership position combining incident response, threat detection, and team mentoring across multiple critical client environments. Due to the nature of the role, a very high level … Lead and support SOC Analysts during shift operations Triage, investigate, and escalate security incidents Analyse logs, alerts, and network activity to identify threats Support incident response and post-incident reporting Contribute to detection rules, use cases, and process improvements Experience required: SOC/cyber security operations experience ...

Security Incident Response Manager (Cyber Threat) - Global financial services company - Full time permanent role - Salary up to £100,000 plus bonus. Hybrid working (twice a week in the London office) A large global financial services firm is looking for an Incident Response Manager within its cyber ...

social engineering assessments and physical security testing Produce detailed scoping documents and executive-level penetration testing reports aligned with CREST and NCSC standards Lead incident response investigations and digital forensic analysis when required Work independently on client-facing assessments whilst collaborating with senior consultants and team leaders Maintain … Certified Testers, and forensic specialists delivers: Penetration Testing & Security Audits : Infrastructure, application, and mobile assessments Compliance Advisory : PCI DSS, GDPR, ISO27001 implementations and certifications Incident Response & Forensics : 24/7 emergency response and digital evidence analysis Specialist Services : SCADA testing, social engineering, business continuity planning Based ...

Service Reviews You will also be required to keep abreast of threat intelligence developments, and work closely with S‐RM’s Threat Intelligence and Incident Response teams to integrate key data points into our service. Support to other teams will be required where ASM is used … value‐add to assessment‐based engagements in our Risk & Resilience practice, and also where ASM is used to support incident investigation with our Incident Response practice. You will be required to work closely with the other managed service teams (Managed Detection and Response and Cyber Threat ...

strengthening the organisation's security posture. Role Overview: You'll lead on security engineering initiatives, own key security platforms, drive automation and support incident response and threat detection activities. You'll also contribute to strategic security projects and ensure secure, scalable and resilient solutions across the business. … using Terraform and Ansible. Maintain secure baselines for Windows, Linux and Kubernetes. Automate IAM workflows and integrate identity governance into CI/CD. Support incident response, threat detection and Red/Blue team exercises. Maintain security documentation and participate in on-call rotations. Qualifications & Experience: Degree in Computer ...

Security: Drive the secure design and operation of critical technology platforms, collaborating with platform owners and engineering teams to embed security throughout the lifecycle. Incident Response & Threat Management: Provide technical oversight for incident response, threat detection, and vulnerability management. Lead root cause analysis and remediation ...

Security Drive the secure design and operation of critical technology platforms collaborating with platform owners and engineering teams to embed security throughout the lifecycle Incident Response Threat Management Provide technical oversight for incident response threat detection and vulnerability management Lead root cause analysis and remediation ...

management activities. Report on security posture to the Board and leadership team. 2. Regulatory Compliance & Engagement Ensure full compliance with DORA (ICT risk management, incident reporting, resilience testing, third-party risk), PSD2-SCA, PCI-DSS, SWIFT CSP, GDPR (as it relates to ICT), and EBA guidelines. … primary liaison for DNB, EBA, and other regulators; manage regulatory inquiries, audits, inspections, and reporting obligations. 3. Incident & Access Management Own and manage end-to-end response to security incidents and data breaches, including coordination, escalation, investigation, containment, and regulatory reporting in line with DORA and GDPR. Oversee ...

DDoS protection to keep our platform secure and performant. Drive vulnerability management across cloud infrastructure and application code, ensuring timely prioritisation and resolution. Lead incident response coordinate detection, investigation, containment and post-incident reviews. Maintain and evolve security monitoring, alerting and operational runbooks to ensure consistent coverage. … familiarity is important. Practical understanding of UK GDPR, DPA 2018 and PCI-DSS compliance requirements. Experience building or maturing security governance policies, risk registers, incident response procedures. Ability to communicate security risk and posture clearly to both technical teams and senior leadership. Hands-on comfort with security tooling ...

policies, and specific customer requirements. You will act as a primary point of contact for compliance reporting and assurance testing while supporting our cyber incident response efforts. What You’ll Do (Responsibilities) In this role, you will: Maintain Regulatory Oversight : Stay current on all new and existing … Reporting & Assessments : Create regular, customer-facing reports on the control environment and security incidents, and assist in the completion of detailed customer security assessments. Incident Support : Assist the Cyber Incident Response team with critical communications and assurance during cybersecurity incidents. What You’ll Bring (Skills & Qualifications ...