1 to 25 of 38 Incident Response Jobs in Yorkshire

Information Security Incident Manager Location: Leeds (Hybrid – 2 days per week on site). Contract: Permanent, Full Time. Salary: £70,000 - £80,000 (DOE). Job Overview The Information Security Incident Manager will lead the organisation’s response to cyber security incidents, strengthening overall resilience. The role … commands major cyber incidents, coordinating technical and business teams, ensuring effective governance, preparedness, and regulatory compliance. Responsibilities Lead the organisation’s cyber incident response, coordinating technical, operational, and business activities from containment to recovery. Act as Cyber Incident Commander for major incidents, setting priorities, directing response ...

Cyber Incident Response Analyst - Contract Location: Sheffield (2 days onsite) Rate: 500 p/d Duration: 6 Months - July 2026 - January 2027 A large enterprise organisation is looking for a Cyber Incident Response Analyst to support their Cyber Defence team on a contract basis. This … coordination-focused incident response role, managing cyber incidents through the response lifecycle rather than deep technical remediation. Experience Required Previous experience within Incident Response/Security Operations Strong understanding of the NIST incident response lifecycle Familiarity with MITRE ATT&CK and cyber kill ...

Security Operations Team This is an excellent opportunity for a CyberSecurity Analyst looking to join a mature cyber security operation and continue developing their incident response, threat detection and cyber defence skills within a highly respected technology organisation. An established international technology and cyber security services provider … excellent opportunity for a cyber security professional looking to further develop their experience within a mature Security Operations environment, gaining exposure to incident response, threat detection, vulnerability management and modern Microsoft security technologies. Working within a highly regulated customer environment, you will help monitor, investigate and respond ...

excellent opportunity for a cyber security professional looking to further develop their experience within a mature Security Operations environment, gaining exposure to incident response, threat detection, vulnerability management and modern Microsoft security technologies. Working within a highly regulated customer environment, you will help monitor, investigate and respond … critical business systems and infrastructure. The Role As a SOC Analyst, you will be responsible for monitoring and responding to cyber security events, supporting incident investigations and helping to maintain a strong security posture across customer environments. Key Responsibilities Monitor and investigate security alerts and events across cloud, endpoint ...

operations. This is a technical role suited to an experienced analyst with strong engineering instincts, hands-on coding capabilities, and a deep understanding of incident response, detection engineering, and adversary tradecraft. This position includes approximately one week per month of on-call availability for high-priority incident … ideal for someone who has likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible ...

Senior Cyber Incident Responder Daily Rate: Inside IR35 Location: Sheffield Job Type: Hybrid (2-3 days on-site) Join our Cyber Defence Centre (CDC) as a Senior Cyber Incident Responder. This senior, business-facing role within Security Operations & Engineering focuses on end-to-end cyber incident management … coordination, and stakeholder engagement across complex environments. You will lead the response to high-severity cyber incidents, ensuring effective command, communication, and decision-making throughout the incident lifecycle. Day-to-day of the role: Incident Leadership & Management: Lead the coordination of high-severity cyber incidents from initiation ...

plus core services. LAN/WAN network security & patch management. VM management (VMware/Proxmox). Cyber Security & Firewall management. AWS cloud administration. IT Incident response & DR. What youll need: A minimum of 5+ years experience in IT Infrastructure/Networking/Service Delivery or equivalent roles. … patching, software deployment and lifecycle management). Working knowledge of identity and security controls (e.g., MFA, Conditional Access, RBAC/least privilege) and supporting incident response activities. Experience working within a Service Desk/ticketing environment, managing workload to SLAs and owning incidents/requests through to resolution. ...

activities. Monitor compliance across endpoint and network security solutions. Configure, maintain and support anti-malware, device control and Data Loss Prevention (DLP) technologies. Support incident response activities, security investigations and remediation of security breaches. Maintain backup and recovery procedures for network and security systems. Configure, manage and troubleshoot … WildFire. Experience with IDS, IPS, DLP, DDoS mitigation and security monitoring technologies. Strong experience supporting Cisco ISE and posture compliance environments. Experience with security incident response and vulnerability remediation. Strong troubleshooting and analytical skills. Excellent communication and stakeholder management abilities. Desirable Experience Relevant certifications such as CCNP, CCIE ...

senior levels, influencing senior stakeholders with effective articulation of business and operational risk in clear and pragmatic terms. Lead and participate in cyber incident response exercises and real incidents Own cyber risk management and contribute to the enterprise risk register. Ensure compliance with relevant standards and frameworks (e.g. … OT. Support audits, assessments, and regulatory or customer assurance activities. Remain hands-on in the day-to-day operation of cyber security, including: Incident response and investigation. Security tooling, monitoring, and vulnerability management. Supplier and third-party risk assessment. Experience required Experience owning a cyber security strategy encompassing ...

Certificate in Cyber Security Practices, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you ll gain hands-on experience that prepares you for today s fast-growing cyber security and IT roles. … Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills ...

Certificate in Cyber Security Practices, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills ...

Principles of Cyber Security, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills ...

site) Join our Cyber Defence Centre (CDC) as a SOC Analyst. This is a crucial hands-on operational role within Security Operations, focused on incident detection, investigation, and response. You will play a pivotal role in ensuring effective monitoring, triage, and response to security events, while also driving … continuous improvement and detection engineering initiatives. Day-to-day of the role: Incident Detection & Response: Investigate and respond to security incidents and alerts escalated from Tier 1/Tier 2 SOC. Perform in-depth analysis and triage of security events, identifying threats and determining impact. Support high-severity ...

Principles of Cyber Security, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you ll gain hands-on experience that prepares you for today s fast-growing cyber security and IT roles. … Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills ...

Principles of Cyber Security, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills ...

Principles of Cyber Security, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills ...

Medical Protection Society is seeking an Information Security Incident Manager to lead cyber incident responses and enhance resilience. The role involves coordinating major incidents, ensuring effective governance, and improving incident response plans. Candidates should have strong expertise in cyber security, experience leading incidents, and excellent communication ...

Security Analyst — Leeds 🔐 Full-time · 24/7 shift patter n Microsoft Sentinel/Defender XDR/KQL/Qualys/Incident Response/Threat Hunting/MITRE ATT&CK/Regulated environmen tsWe're looking for a Senior Security Analyst to join a security operations team … Leeds — embedded on a dedicated client engagement in a regulated industry, owning detection, investigation, and response end-to-en d. This isn't a ticket-processing role. You'll run incidents from first alert through to remediation, carry out proactive threat hunting and vulnerability scanning when the queue ...

compliance roadmap, detailing priorities, timelines, and resource requirements. Compliance & Advisory : Provide ongoing support for compliance, interpret regulatory requirements, and ensure alignment with industry standards. Incident Leadership & Management : Lead the coordination of high-severity cyber incidents, ensuring effective communication and structured execution. Required Skills & Qualifications: Core Experience : Proven experience … Cyber Incident Response or Major Incident Management, preferably in a SOC or Security Operations environment. Stakeholder & Leadership Skills : Excellent communication skills, ability to influence and negotiate under pressure, and experience with senior stakeholders. Operational Capability : Experience managing incident bridges/war rooms and strong decision-making ...

scalability and efficiency of SOC services. Working across SIEM, endpoint, and orchestration platforms (primarily Palo Alto XSOAR), you will reduce analyst workload, accelerate incident response, and enhance decision-making across customer environments. Key Responsibilities Automation Development – Design, build, and maintain scalable automation workflows across detection and response platforms. Integration & Orchestration – Deliver cross-platform automation enabling fast, reliable response actions. Lifecycle Management – Develop, deploy, and continuously optimise automation for performance, resilience, and coverage. Collaboration & Requirements Gathering – Work with SOC and engineering teams to identify automation opportunities. Documentation – Produce clear documentation to support delivery, troubleshooting, and continuous ...

Lead vulnerability management, patching, endpoint protection, SIEM, and threat monitoring activities. Manage identity and access controls, MFA, privileged access, and conditional access policies. Lead incident response activities and coordinate remediation efforts. Conduct risk assessments and support audit and compliance activities. Drive improvements in data security, governance, and cyber … with ISO27001 principles and broader governance or quality frameworks such as ISO9001. Experience with backup, disaster recovery, and business continuity planning. Strong troubleshooting and incident management capability. Experience managing third-party suppliers and service providers. Excellent communication, stakeholder management, and relationship-building skills. Experience contributing to new system selection ...

this job title is advertised to attract the right skills needed for the role. Main duties of the job The Trainee Cyber Security Incident Manager role is within the NHS England National CSOC (Cyber Security Operations Centre), supporting the coordination, triage and management of cyber security incidents across … health and care system. Support the identification, triage and coordination of cyber security incidents within the NHS England National CSOC. Assist with incident management activity, ensuring incidents are logged, tracked and progressed in line with agreed processes and procedures. Work with technical analysts and operational colleagues to gather information ...

Egress and MFA solutions. Produce technical documentation and support continuous improvement initiatives across IT systems and services. Assist with information security compliance, audits and incident response activities aligned to Cyber Essentials and ISO27001 standards. Participate in an out-of-hours on-call rota and provide occasional support across ...

solutions such as Cisco DUO and Microsoft Authenticator * Assist with secure access technologies, including SASE platforms (e.g. Check Point Harmony) * Contribute to security monitoring, incident response, and remediation activities ________________________________________ Infrastructure & Networking * Assist with the administration of firewalls, particularly Cisco Meraki * Support and maintain network infrastructure, including switches ...

monitor SLAs, OKRs, and user satisfaction metrics. Implement and continually improve IT service management processes and tooling. Embed ITIL best practices across incident, problem, and change management. Oversee onboarding and offboarding processes, ensuring timely provisioning and equipment returns. Team Leadership & Growth Line manage IT Managers across … with data protection and licensing requirements. Support health & safety compliance, including DSE standards. Promote security awareness and a strong security‐first culture. Coordinate security incident response and remediation. Vendor & Budget Management Manage IT vendors, suppliers, and service providers. Negotiate contracts and ensure value for money. Own IT procurement ...