1 to 25 of 34 Incident Response Jobs in the Midlands

play a critical role in strengthening and maturing Reapit’s cloud security posture. Your work will span hands on security engineering, deep incident response, proactive threat detection, and collaboration with global teams. Design, implement, and enhance secure Cloud infrastructure, services, and applications in collaboration with DevOps teams. Conduct … detail and high quality documentation. Work in a self managing, proactive manner — anticipating security needs, identifying gaps, and driving improvements without close supervision. Incident Response & Threat Detection Respond to SOC alerts. Working with our outsourced SOC, Lead and participate in global incident response activities, including investigation ...

capability across a modern hybrid estate.This is a hands-on leadership role where you'll combine technical depth with stakeholder engagement, driving security operations, incident response, and continuous improvement across infrastructure, cloud, and workplace environments. The Role You'll take ownership of cybersecurity operations, leading a small engineering … team and working closely with an outsourced SOC/MSSP to ensure robust monitoring, response, and continuous improvement. Responsibilities Leading technical incident response (containment, eradication, recovery) and post-incident analysis Owning and improving security controls across endpoints, identity, networks, and cloud platforms Driving vulnerability management, patching ...

capability across a modern hybrid estate.This is a hands-on leadership role where you'll combine technical depth with stakeholder engagement, driving security operations, incident response, and continuous improvement across infrastructure, cloud, and workplace environments. The Role You'll take ownership of cybersecurity operations, leading a small engineering … team and working closely with an outsourced SOC/MSSP to ensure robust monitoring, response, and continuous improvement. Responsibilities Leading technical incident response (containment, eradication, recovery) and post-incident analysis Owning and improving security controls across endpoints, identity, networks, and cloud platforms Driving vulnerability management, patching ...

security operations tooling (SIEM, DLP, IAM, endpoint protection) to safeguard systems and data Develop, implement, and monitor KPIs and dashboards to measure detection effectiveness, incident response performance, data protection posture, and compliance Own and support Microsoft Purview capabilities including Information Protection, Data Loss Prevention, Data Lifecycle Management … risk, compliance, data governance, and IT teams to maintain robust security controls, support audit readiness, and strengthen operational resilience Support and participate in security incident response and investigations, ensuring rapid containment, remediation, and recovery. What we are looking for in our ideal Security Operations Engineer : Proven experience ...

across the business. The Role Youll lead day-to-day cyber security operations, working closely with IT and business stakeholders to ensure robust monitoring, incident response, and risk management processes are in place. This is a hands-on role with both operational and strategic elements. Key Responsibilities Overseeing … cyber operations, including threat monitoring and incident response Managing vulnerabilities and supporting remediation activities Supporting the development and delivery of cyber security strategy Collaborating with internal teams and third-party providers Driving awareness, training, and continuous improvement initiatives About You Experience in cyber security operations, SOC, or incident ...

Cyber Security Manager/Senior Engineer is responsible for security operations, risk management, incident response, policy development and user awareness. The role will manage external 3rd party and internal virtual resources. Client Details The client is a well-established, multi-site professional services organisation operating at national scale. … matters, providing clear guidance to leadership and technical teams Lead engagement with a third-party Security Operations Centre (SOC), ensuring effective monitoring, detection and response Oversee incident management, including coordination, post-incident reviews and continuous improvement actions Own and manage key security platforms, including security awareness ...

smoothly in production. You will contribute to the operation of managed Kubernetes platforms (AKS/EKS), supporting best practices in monitoring, automation, and incident response, while continuing to develop your expertise in cloud-native technologies. About Synalogik Synalogik develops technology that enables organisations to work effectively with complex … supported, and then get the satisfaction of seeing them in products used in Tier 1 businesses. Key Responsibilities Site Reliability Engineering Participate in incident response, troubleshooting, and post-incident reviews Help reduce operational toil through automation and process improvements Contribute to improving system availability, performance, and scalability ...

using Linux, containers and modern automation and CI/CD tooling to improve reliability, performance and security. The position combines hands-on engineering, incident response and continuous improvement of the platform and its supporting infrastructure. Responsibilities Design, implement and support scalable, resilient cloud-based solutions … part of a collaborative engineering team. Contribute to the design and implementation of observability and resilience practices to improve system reliability. Participate in incident response, troubleshooting and root cause analysis to enhance system stability and prevent recurrence. Work with CI/CD pipelines (e.g. GitLab CI or GitHub ...

infrastructure, implementing and overseeing risk management processes, ensuring that appropriate controls and countermeasures are in place to mitigate all identified risks. Lead the incident response efforts, including preparing for, detecting, and responding to cyber security incidents, ensure that an effective incident response plan is in place … regularly tested and managing post incident analysis and reporting to prevent future occurrences. Manage and mentor the cyber security team, fostering a culture of continuous learning and development, ensuring that the team has the necessary skills and tools to protect the organisation effectively, and oversee recruitment, training, and performance ...

effectively enforced and adhered to across the organisation. Hands-On DeliveryRemain hands-on in the day-to-day operation of cyber security, including: Incident response and investigation. Security tooling, monitoring, and vulnerability management. Supplier and third-party risk assessment. Lead and participate in cyber incident response ...

Cisco 9500, Cisco 3850, Network Operations Centre (NOC), TAC, NMC, Layer 2, Layer 3, OSPF, BGP, VLAN, STP, QoS, CCNA, CCNP, Network Monitoring, Incident Management, Shift Operations, 24x7 Support Location: Small Heath, Birmingham, West Midlands, B10 0HQ Type: Temporary Contract Hours: 8-Hour Shifts … deep technical expertise across Cisco Catalyst switching technologies including Catalyst 3850, Catalyst 9300 and Catalyst 9500 platforms. Purpose: To provide 24x7 operational support, monitoring, incident management and technical troubleshooting across critical Cisco network infrastructure, ensuring maximum network availability, performance and service reliability. Technology Stack: * Cisco Catalyst 3850/ ...

pragmatic cyber security strategy aligned to business priorities, whilst establishing and maintaining security policies, standards, and governance frameworks. You will oversee security operations, including incident detection, response, and continuous improvement, and manage key third-party security service providers, ensuring performance and accountability. Risk management activities will … following experience: Proven interim experience in a Cyber Security Manager/Lead/Security Consultant role. Strong understanding of security operations, threat detection, and incident response practices. Experience working with SIEM, EDR, and monitoring technologies in enterprise environments. Demonstrable knowledge of security frameworks, controls, and governance models. Experience ...

strategy and operating model (build vs. buy vs. MSSP); maximize value from SIEM, SOAR, IAM, PAM, EDR, DLP, DSPM, and CTI platforms. Security Operations & Incident Response Accountable for SOC performance (24×7 detection, response, threat hunting), DFIR, purple-team/assurance, ransomware preparedness, and crisis playbooks. Maintain … executive incident communications, regulator notifications, and post-incident improvements. Act as escalation point for any security related service failures or major incidents. Threat and Vulnerability Management Support the TVM team in continuously reducing vulnerability levels in the organisation. Recommend procedural improvements and reporting to drive constant improvement. Drive ...

guide immediate containment steps (e.g.asset isolation, password reset). Escalation: Escalate confirmed or high severity incidents to the Level 2 SOC (outsourced) or internal incident response teams, ensuring complete and accurate handoff documentation. Incident Documentation: Create and maintain detailed case notes, timelines, and evidence within the case ...

monolith to microservices on EKS. Define standards for containers, runtime environments, observability, tenancy, security, and infrastructure automation. Lead SRE practices including SLI/SLOs, incident management, DR/BCP planning, post-mortems, and operational resilience. Own platform security, secure SDLC, CI/CD pipelines, IaC, and software supply chain … networking, KMS, RDS, and multi-account architecture. Hands-on Kubernetes, CI/CD, Terraform, and cloud security experience. Strong understanding of SRE, observability, incident response, and disaster recovery. Experience operating within regulated environments such as ISO 27001, SOC 2, or GxP. Comfortable balancing strategic leadership with hands ...

close collaboration with internal teams and customer stakeholders. Role Scope This role is strictly operational and execution-focused: Daily operational tasks and support activities Incident response, troubleshooting, and escalation No people management or project leadership responsibilities Strong focus on compliance with processes, schedules, and customer requirements Key Responsibilities … Cloud Run, including networking and connectivity issues. Execute infrastructure changes using Infrastructure as Code (Terraform) following approval processes. Maintain accurate documentation, operational runbooks, and incident records. Operational Expectations This position requires strict adherence to customer and operational requirements: 100% on‐site work, Monday to Friday ...

scope to take on more senior responsibilities as the team grows. The Role: *Linux system administration across Ubuntu and Debian environments *On-call incident response, monitoring and system optimisation *Automating provisioning and deployments using Ansible *Supporting cloud-based SaaS infrastructure and security best practices *Maintaining technical documentation ...

/EventBridge/Step Functions Proven experience designing and delivering microservices and event-driven architectures Strong experience supporting production systems, including monitoring, debugging and incident response Experience defining and embedding engineering standards and delivery best practices Strong understanding of API design, systems integration and distributed system principles Experience ...

communication and stakeholder engagement. Participate in the senior management and IT on-call rota, contributing to the provision of 24-hour support and major incident response as required. Undertake any other duties commensurate with the seniority and scope of the role. Any other reasonable duties as required. Person ...

partnering with a well-established, global organisation looking for a Senior Security Analyst to play a key role in strengthening their detection and response capability across a large and diverse environment. This position sits at the intersection of incident response, automation and detection engineering, which means … security processes. Key Areas include: Build and refine detection logic across SIEM, EDR and related tooling Create automated SOAR workflows and playbooks to streamline response Lead investigations into complex or high severity incidents Carry out deep-dive forensic work Track and evolve security metrics to demonstrate improvements in detection ...

join their established SRE team. This role focuses on supporting Kubernetes-based platforms across Azure and AWS, ensuring reliability, scalability, and observability. Responsibilities include incident response, system performance improvement, and maintaining operational documentation. The position offers flexible hybrid work options and ample annual leave. Ideal candidates have ...

where applicable Cybersecurity & Compliance Support secure OT operations aligned with IEC 62443/ISO 27001 Assist with patching, secure configuration, and vulnerability management Support incident response for cyber/operational events Asset & Service Support Maintain OT asset inventory and documentation Support backup, recovery, and disaster recovery processes Provide ...

improving a large-scale cloud-hosted SaaS environment, supporting both day-to-day operations and strategic infrastructure initiatives. The position involves a mix of incident response, monitoring, automation, systems administration, and tooling development. You'll work closely with development and implementation teams to ensure platform stability, scalability ...

cyber resilience, policy, compliance and regulatory alignment. Oversee the SOC (Security Operations Centre) partnership, ensuring contractual performance and alignment with risk posture. Lead organisational incident response planning, acting as the senior escalation decision-maker. Own disaster recovery and business continuity strategy for technology (technical execution sits with ...

maintain Prometheus-based monitoring solutions Develop and manage metric exporters for application and system-level data Optimise Prometheus scraping configurations and retention policies Alerting & Incident Response Define and maintain alert rules based on SLIs/SLOs and performance baselines Ensure alerts are actionable, with minimal false positives Participate … necessarily lead) in on-call rotations and incident postmortems Observability Dashboards Design and maintain Grafana dashboards for real-time operational insights Collaborate with engineering and product teams to create tailored visualisations Provide self-service dashboard capabilities for end users System Performance & Reliability Monitor infrastructure (servers, containers, databases, services ...