21 of 21 Incident Response Jobs in the East of England

Stevenage The CERT Incident Responder is responsible for leading digital forensics and incident response (DFIR) readiness. While also advancing the organisation's Adversarial Exposure Validation (AEV)- including Red and Purple Team activities The role ensures detection, response, and control validation against real-world threat actor tactics … option to claim cash back on everyday healthcare expenses such as optical, dental, health and wellbeing and more . The opportunity: The CERT Incident Responder is responsible for leading digital forensics and incident response (DFIR) readiness. While also advancing the organisation's Adversarial Exposure Validation (AEV)- including ...

security strategy and play a critical role in shaping client security roadmaps. This position focuses on strategic leadership, proactive risk management, and ensuring robust incident response processes. You will act as a trusted advisor to clients and internal teams, driving security initiatives that align with business objectives … regulatory requirements. Responsibilities: Develop and maintain client cyber security roadmaps to ensure long-term resilience and compliance. Coordinate and oversee incident response efforts, ensuring timely containment and remediation of threats. Liaise with clients and stakeholders to communicate risks, strategies, and progress effectively. Prioritise remediation efforts based on risk ...

role is responsible for executing physical tasks within the data center, supporting remote teams, and ensuring operational continuity through proactive monitoring, hardware handling, and incident response. Shift Pattern: 24x7 Support ? 12-hour rotational shifts Key Responsibilities:- CRU Handling: Assist with Customer Replaceable Unit (CRU) replacements and installations. Cabling & Patch … Monitoring: Monitor telephony and email channels for support requests and alerts. Environmental Monitoring: Use native tools to monitor temperature, humidity, and other environmental parameters. Incident Response: Support incident management processes and escalate issues as needed Qualifications & Skills: Basic understanding of data center infrastructure, cabling standards, and cooling ...

delivering technology change/improvement projects and managing external support agreements. The Cyber Security Analyst is required to focus on the detection, investigation and response to cyber security events and incidents. Other tasks involve BAU security tasks, supporting cyber security projects and assisting with regulatory compliance. Daily tasks will … involve the following: * Endpoint monitoring and analysis. * Incident readiness and handling as part of the Computer Security Incident Response (CSIRT) team. * Monitor and administer Security Information and Event Management (SIEM). * Malware analysis and forensics research. * Understanding/differentiation of intrusion attempts and false positives. * Investigation tracking ...

also conduct proactive threat hunting and maintain detailed risk profiles for users, systems, and applications to support a strong security posture. Endpoint Detection and Response (EDR) You’ll administer endpoint security and compliance, performing daily health checks and resolving any issues that arise. Working closely with Infrastructure teams … define classification policies, and monitor for potential data leaks. Your work will help protect sensitive information and prevent unauthorised data exfiltration across the organisation. Incident Response You will form an important part of the incident response team when security incidents occur—analysing threats, assessing business impact ...

Network Security Engineer, where you will play a key role in safeguarding our clients’ organisations’ network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing … Location – Stevenage (Onsite Shift work) Salary - £50k (Plus £2k bonus and shift allowance of £8k) Keywords: Network Security Engineer, SOC, Security Operations Center, Firewalls, Incident Response, Security Incidents, Networking Principles, Virtual Private Networks, Security Protocols, Vulnerabilities, Threats. Only apply for this role if you currently hold the specific ...

cyber-resilience strategy and protect the systems and data that support essential public services. This is a key leadership role overseeing cyber security governance, incident response, regulatory compliance (PSN, PCI-DSS, Cyber Essentials Plus), and the secure operation of cloud and hybrid environments. Youll work closely with senior … design across all ICT services. What youll do: Lead the local authoritys cyber security framework, policies, and standards Own vulnerability management, security monitoring, and incident response Ensure compliance with NCSC, PSN, PCI-DSS, GDPR and other national frameworks Manage SIEM, Microsoft security tooling (Sentinel/Defender/ ...

have the freedom to make a real impact—defining strategy, driving continual improvement, and mentoring talented analysts to deliver world-class detection and response capabilities. As the SOC Operations Manager, you will: Lead and develop a skilled SOC team, inspiring a culture of continuous learning and technical excellence. Oversee … enhance detection and automation capabilities. Drive continuous improvement through ITIL-aligned processes and adherence to CREST standards. Oversee vulnerability management, threat intelligence, and incident response plans. Communicate security posture, risks, and incident outcomes clearly to senior stakeholders. Ensure operational readiness and contribute to maintaining industry accreditations. Have ...

security incidents on critical client infrastructure. In-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Provide Incident Response support. Maintain, improve and develop team knowledge of SOC tools, security operations and triage. Prepare reports for managed clients to both technical … technical audiences and continuously improve their content and presentation. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. What you will bring : Experience in Security Operations Centre. Demonstrable experience of Managing Microsoft Sentinel or Splunk implementations. Knowledge and experience with Mitre ...

multiple customers.You will oversee and mentor a skilled team of analysts, fostering a culture of continuous learning, champion best practices in threat detection and incident management, and play a key role in safeguarding our organisation’s digital environment. Communications with key business partners is key regarding risks, threats … with NIST Cybersecurity, MITRE ATT&CK, Splunk, Sentinel and ISO27001 is vital What you will be doing: Lead, mentor, and develop SOC analysts and incident responders. Provide technical direction, conduct performance reviews, and foster continuous improvement. Oversee full lifecycle of security incidents from detection to resolution. Ensure compliance with ...

with the best standard technologies. The SOC Analyst reports to the SOC Manager. The SOC Analyst conducts a range of analysis and assists the incident response team with investigations that need to be escalated to an embedded member of staff. The SOC Analyst key responsibilities are: Effective Tier … threat hunting in collaboration with the CTI function Assist IR in HR and InfoSec related investigations Ensure the timely triage and remediation of any incident or request tickets raised to the SOC Participate in the activity of adding/removing URLs from the AcceptList and BlockList Attend routine security ...

standards. Working with our Crypto custodians to ensure accurate transfer of information and maintaining records. Coordinate crypto change windows (key loads/rollovers), support incident response related to crypto assets, and drive continuous improvement of crypto processes. Ensure that Key Material is ordered from NCSC/ ...

remediation management Solid understanding of Confidentiality, Integrity, Availability and Safety (CIA+S) and practical experience in applying that understanding in management of risk and response to events and changes Experience of process involved in gaining and maintaining accreditation for secure/sensitive systems using structured Risk analysis and treatment approaches … Experience of process involved in continuous assurance for information security management systems, e.g. NIST, ISO Experience of developing and managing a Cyber Incident Response capability Experience of developing Security Awareness training including Threat Modelling, table top war gaming Experience in tracing through and evaluating responses to security requirements ...

Network Security Engineer, where you will play a key role in safeguarding our organisations' network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing ...

Network Security Engineer, where you will play a key role in safeguarding our organisations' network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing ...

focus on safety, compliance, and innovation. Description Lead implementation of OT security tools and controls. Assess and improve OT network architecture and protocols. Drive incident response and post-incident analysis. Support vulnerability and asset management frameworks. Contribute to risk assessments aligned with IEC62443 and NCSC CAF. Deliver ...

high-performance security operations environment, protecting critical infrastructure and ensuring the resilience of complex enterprise networks. You’ll work within a 24/7 Incident Response function, combining hands-on engineering with real-time threat detection, investigation, and remediation. Key Responsibilities: Monitor, investigate and triage security events within ...

complete minor repairs Keep accurate inventories and security mark equipment Monitor and maintain network security, ensuring safe and appropriate use Assist with cyber incident response and promote cyber safety in line with NCSC/DFE guidelines Ensure compliance with GDPR, RPA, and Copyright Licensing Authority regulations ...

complete minor repairs Keep accurate inventories and security mark equipment Monitor and maintain network security, ensuring safe and appropriate use Assist with cyber incident response and promote cyber safety in line with NCSC/DFE guidelines Ensure compliance with GDPR, RPA, and Copyright Licensing Authority regulations ...

complex environments (e.g Splunk, Elastic, Sentinel). Experience managing business continuity and disaster recovery for cyber systems. Strong understanding of security operations lifecycle, from incident response through to capability planning. Experience in supplier management, product lifecycle, budgeting, and resource coordination. Working knowledge of security vetting processes and handling ...

complex environments (e.g Splunk, Elastic, Sentinel). Experience managing business continuity and disaster recovery for cyber systems. Strong understanding of security operations lifecycle, from incident response through to capability planning. Experience in supplier management, product lifecycle, budgeting, and resource coordination. Working knowledge of security vetting processes and handling ...