1 to 25 of 40 Incident Response Jobs in the East of England

days per week onsite) Competitive Salary Role details: Our client, a prominent organisation within the defence and security sector, is seeking a skilled Incident Responder to join their team in Stevenage or Bolton. This role is focused on leading digital forensics and incident response activities, while also … advancing adversarial exposure validation through red and purple team exercises. The successful individual will be critical in enhancing threat detection, response, and control strategies against real-world cyber threats within a high-security environment. Key Responsibilities: Lead digital forensics and incident response (DFIR) activities, maintaining lab readiness ...

days per week onsite) Competitive Salary Role details: Our client, a prominent organisation within the defence and security sector, is seeking a skilled Incident Responder to join their team in Stevenage or Bolton. This role is focused on leading digital forensics and incident response activities, while also … advancing adversarial exposure validation through red and purple team exercises. The successful individual will be critical in enhancing threat detection, response, and control strategies against real-world cyber threats within a high-security environment. Key Responsibilities: Lead digital forensics and incident response (DFIR) activities, maintaining lab readiness ...

BRISTOL OR STEVENAGE - Sole British Citizen We are seeking a proactive CERT Incident Responder to lead our Digital Forensics and Incident Response (DFIR) readiness and drive our Adversarial Exposure Validation (AEV) program. This role is a unique hybrid of defensive response and proactive testing, ensuring … Techniques, and Procedures (TTPs). This is an ideal "next step" role for an experienced Cyber Analyst with a deep passion for high-stakes incident response, digital forensics, and threat mitigation. Compensation & Logistics Salary: £50,000 - £60,000 (depending on experience). Working Pattern: Dynamic (hybrid) working; minimum ...

delivery of cyber security across Total IT not just the strategy, but the execution. You will take full accountability for client security roadmaps, incident response, technical controls, and the day today running of our cyber capability. This role blends hands - on technical leadership with operational delivery. Youll … person who ensures this gets done. Responsibilities: Own client cyber security roadmaps: creation, prioritisation , scheduled review, and delivery. Lead and continually improve our incident response function including triage, containment, communications, and lessons learned. Drive remediation by working closely with Service Desk, Projects, and clients. Maintain robust security reporting ...

security incidents for our customers using Microsofts leading security technologies. Youll work closely with senior analysts and engineers, playing a key role in incident response while also contributing to the continuous improvement and evolution of our SOC services. About The Role As a Security Operations Analyst, you will … Provide day-to-day monitoring and initial response for SOC customers in line with Intercitys Security Incident Response Framework. Investigate alerts generated by Microsoft Sentinel and Microsoft Defender for 365, identifying true positives and responding appropriately. Analyse multiple security data sources to detect malicious activity and support ...

BRISTOL OR STEVENAGE - Sole British Citizen We are seeking a proactive CERT Incident Responder to lead our Digital Forensics and Incident Response (DFIR) readiness and drive our Adversarial Exposure Validation (AEV) program. This role is a unique hybrid of defensive response and proactive testing, ensuring ...

mentor and escalation point for Tier 1 and Tier 2 analysts during live operations Support alignment between SOC operations, threat intelligence, and incident response functions Capture operational metrics relating to alert handling efficiency, response delays, and quality issues Identify procedural gaps and contribute to the improvement … playbooks, SOPs, and workflows Assist the incident response function with investigations requiring escalation to embedded internal stakeholders The ideal candidate would have: A strong career background in Cyber Security within an operational SOC environment Experience mentoring, coaching, or providing quality assurance to SOC analysts The ability to lead ...

British Citizen/p p style="" br style=""//p p style="" We are seeking a proactive span style=" font-weight: 600;" CERT Incident Responder/span to lead our Digital Forensics and Incident Response (DFIR) readiness and drive our Adversarial Exposure Validation (AEV) program. This … role is a unique hybrid of defensive response and proactive testing, ensuring our detection controls are validated against real-world threat actor Tactics, Techniques, and P.../p p style="" br style=""//p p style="" br style=""//p p style="" br style=""// ...

Apply industry-recognized standards and frameworks such as NIST, ISO 27001, CIS Controls, in assessments and recommendations. Leverage past penetration testing, vulnerability management, and incident response experience to identify and contextualize threats effectively. Partner with and provide direct insights to CISOs and senior security leadership, contributing to overall … Burp Suite). Solid understanding of risk assessment methodologies and ability to communicate technical risks in business terms. Hands-on background in penetration testing, incident response, or vulnerability management with a move into risk analysis preferred. Experience collaborating with or reporting to CISOs and senior security stakeholders. Excellent ...

asset inventory covering PLCs, HMI's, SCADA systems, historians, and associate infrastructure. Identify asset ownership, criticality, and operational constraints. Ensure asset records support incident response, risk management, and audit requirements. OT Control Network Integration & Data Onboarding Support the onboarding of OT control networkenvironments into enterprise cyber monitoring. Liaise … able to apply cyber controls proportionately in OT environments, explaining trade-offs between confidentiality, integrity, availability and safety and challenge IT-centric controls Incident Response Support (OT) Must be able to provide rapid, accurate OT context during incidents, explain "do-not-touch" systems, and support triage decisions without ...

operations, and external security partners, you'll design and implement robust security controls while continuously improving resilience and reliability. You'll take ownership of incident response activities, proactively monitor threats, and drive improvements across vulnerability management and security tooling. Alongside day-to-day operational security, you'll contribute … firewalls, SIEM platforms, endpoint protection, and vulnerability management tools Experience securing both cloud-based and on-premise environments A solid background in security incident response and investigation Experience working with third-party security vendors or managed service providers The ability to communicate technical security concepts clearly ...

incidents on critical client infrastructure. Perform in-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerability Provide Incident Response support when required, providing guidance on containment, eradication and recovery activities. Maintain and, where appropriate, improve and develop team knowledge … Work as part of a team to ensure that corporate data and technology platform components are safeguarded from known threats. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Input into threat intelligence activities when required. Represent the SOC within Stakeholders meetings ...

with the best standard technologies. The SOC Analyst reports to the SOC Manager. The SOC Analyst conducts a range of analysis and assists the incident response team with investigations that need to be escalated to an embedded member of staff. The SOC Analyst key responsibilities are: Effective Tier … threat hunting in collaboration with the CTI function Assist IR in HR and InfoSec related investigations Ensure the timely triage and remediation of any incident or request tickets raised to the SOC Participate in the activity of adding/removing URLs from the AcceptList and BlockList Attend routine security ...

software systems, supporting automation, environment configuration, performance monitoring and operational improvements. Information Security Contribute to protecting systems and data by supporting security monitoring, incident response, vulnerability assessment and policy or control implementation. Service Desk/Service Management Provide first line technical support by triaging incidents, resolving service requests ...

role is responsible for meeting regulatory standards including IL4, CMMC 2.0 Level 2, ITAR, and UK Cyber Essentials+. This role leads security architecture reviews, incident readiness, and also serves as the technical lead for network design, implementation, and optimization. This includes responsibility for network segmentation, secure connectivity, and inter … control enforcement, and secure network transport. WHAT YOU WILL DO Own and manage vulnerability management program across cloud and containerized workloads. Oversee threat detection, incident response, and forensic analysis coordination with external SOC provider. Own and manage network design, segmentation, and secure interconnectivity across AWS, Azure ...

role is responsible for meeting regulatory standards including IL4, CMMC 2.0 Level 2, ITAR, and UK Cyber Essentials+. This role leads security architecture reviews, incident readiness, and also serves as the technical lead for network design, implementation, and optimization. This includes responsibility for network segmentation, secure connectivity, and inter … control enforcement, and secure network transport. WHAT YOU WILL DO Own and manage vulnerability management program across cloud and containerized workloads. Oversee threat detection, incident response, and forensic analysis coordination with external SOC provider. Own and manage network design, segmentation, and secure interconnectivity across AWS, Azure ...

Role IT Support Analyst – 24/7, 365 Security & Incident Desk Remote (Stevenage‐based contract) Rotating shifts to cover 24/7 operations (timings to be confirmed). Night shift example: 21:00 – 06:00 Salary: £30,000 basic + 1.5x out‐of‐hours uplift + weekend enhancement + … second‐line or specialist engineering teams where required, ensuring accurate handover. Maintain clear, timely, and accurate records in ServiceNow. Follow defined processes for incident response, escalation, and communication. Support 24/7 coverage through rotating shifts and at‐short‐notice shift flexibility. Contribute to continuous improvement of call ...

Network Security Engineer, where you will play a key role in safeguarding our organisations' network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing ...

will: Monitoring, triaging and investigating security alerts in highly secure environments Analysing threats using SIEM, endpoint telemetry, network traffic and logs Supporting live incident response, escalation and containment activities Enhancing detections, rules and playbooks aligned to MITRE ATT&CK Producing clear, high-quality incident reports for both ...

procurement questionnaires, and customer compliance requests. Oversee international data transfer mechanisms and ensure compliance with global data protection requirements. Play a key role in incident response, breach assessment, and regulatory notification procedures. About You You will excel in this role if you have: Essential Experience Strong working knowledge ...

excellence across the platform. Shape the technology roadmap, contributing to architectural decisions and cloud migration strategies. Manage operational risk, security posture, monitoring, alerting and incident response for Home Finance systems. Use data and insights to guide prioritisation, engineering improvements and product decisions. Support the Engineering Manager with talent ...

ready to make it your core focus. This role suits someone who has been actively involved in security monitoring , threat detection , vulnerability management , or incident response, and now wants to deepen their expertise in a dedicated cyber security position. The role: You’ll play a key role ...

oversight, procedural assurance, and ongoing mentorship. This role ensures each analyst team is aligned with evolving cyber threat detection standards, works in sync with response and intelligence functions, and delivers consistent high-quality casework across shifts. This is a senior operational role that builds upon the responsibilities … values innovation and diversity, this is the place to make an impact. In addition to Senior SOC Analyst responsibilities (alert triage, threat detection, ticket response, and tooling operation), the SOC Shift Lead will provide: Shift Continuity & QA Operational assurance and standard enforcement across all active shifts. Review, assess ...

decisions about service boundaries, data models, caching strategies, and API design that balance immediate delivery needs with long-term scalability. Establish monitoring, alerting, and incident response practices using Grafana and Uptime Kuma or equivalent observability tools. Frontend Engineering Build polished, responsive, and accessible interfaces using TypeScript, React ...

decisions about service boundaries, data models, caching strategies, and API design that balance immediate delivery needs with long-term scalability. Establish monitoring, alerting, and incident response practices using Grafana and Uptime Kuma or equivalent observability tools. Frontend Engineering Build polished, responsive, and accessible interfaces using TypeScript, React ...