1 to 25 of 104 Incident Response Jobs in the North of England

Role Overview In response to ongoing growth, we seek an experienced Cyber Incident Responder to join our team. The ideal candidate will possess at least 2 years’ experience in responding to and investigating cyber incidents. Deep technical knowledge in incident response, digital forensics, M365, cloud environments … National security clearance to SC level. Applicants must have been continuously resident in the United Kingdom for the last 5 years. Responsibilities Perform emergency incident response for customers, including containment and gathering of forensic evidence. Investigate forensic evidence from compromised devices and networks to determine incident root … Experience in collecting forensic evidence from compromised systems. Understanding of the Cyber Kill Chain, MITRE ATT&CK, and other information security frameworks. Knowledge of incident handling, threat hunting, and intelligence. Experience in cloud-based infrastructure, including Microsoft Azure, Office 365, Amazon AWS, and Google Cloud. Strong client-facing skills more »

Cyber Incident Responder | Manchester | £40,000-£60,000 Are you a junior or mid-level Cyber Incident Response professional with a passion for dealing with incidents and uncovering the truth behind them. We have an exciting opportunity for a Cyber Incident Responder to join our client … ports on devices, laptops, and various other systems. As a key member of the team, you will play a vital role in providing comprehensive incident response services to our clients. This role will give you the opportunity to work for some top clients and expand your skills in … Stay up-to-date with the latest cyber threat landscape and emerging attack vectors to continually enhance investigation methodologies. Requirements: Proven experience in Cyber Incident Response for 1-2 years, as well as preferably digital forensics Knowledge of cloud based environments such as Azure and AWS Understanding of more »

About the role It's an exciting time to join the Cybersecurity Incident Response team here at AXA, with significant investment planned in all UK&I businesses to transform & deliver new digital services to our customers and streamline and automate our business processes. To help us manage our … to the need of AXA in a manner that is admissible in court and in line with relevant standards Act as a forensic and incident handler providing design input into the IT project lifecycle Work with the security analysts to provide recommendations on security mechanisms Support the maintenance, testing … and execution of the AXA UK Security Incident Management framework Provide cyber threat intelligence to in scope UK entities Due to the number of applications we expect to receive for this role, we reserve the right to close this advert earlier than the listed closing date to ensure we more »

a comprehensive cybersecurity and information security strategy that aligns with business objectives, Lead, mentor, and oversee a small global team responsible for security operations, incident response, and threat detection, fostering a culture of continuous improvement, innovation, and excellence, Collaborate with the Group IT team to ensure the organisation … is protected against cyber threats and maintain an effective incident response plan, Play a pivotal role in ensuring the security of Tunstall's SaaS products, Identify, review, select, and manage our relationships with appropriate third-party security partners for our products, Work closely with product development teams to … prioritise security risks associated with both internal and external factors, Develop and maintain a risk management framework to mitigate risks effectively, Establish and enhance incident response plans and conduct drills, Evaluate and manage security risks associated with third-party vendors and partners, including those providing security solutions, Establish more »

Evaluate new security technologies and solutions to enhance the organization's security posture. • Ensure proper configuration and tuning of security tools to maximize effectiveness. • Incident Response and forensics – developing and maintaining an incident response plan. • Provide leadership and mentorship to junior members of the security team. … information security strategy. • Experience overseeing day-to-day operations of the outsourced SOC team. • Define and enforce SOC processes and procedures to ensure effective incident detection, response, and remediation. • Experience Coordinating with internal teams and external stakeholders to address security incidents and vulnerabilities. • Experience Conducting regular threat assessments more »

base that spans multiple industry verticals. Utilising industry-leading detection technology, our team of experienced SOC team members work to provide assurance detection and incident response capabilities to organisations of all sizes. The Role: The client is looking for a Senior Security Analyst to join their CREST certified … Security Operations Centre and Incident Response team based in Doncaster, United Kingdom. This role is UK office hours (Mon - Fri 9am-5:30pm) with requirements to work in the office two days per week. There is also the potential to be on-call in this role as the … SIEM, IDS and threat Intelligence Technologies. Provide advice and guidance to client targets of cyber attacks and malicious activity to a high standard. Provide incident reporting capabilities ensuring that all information is provided in a timely, accurate and effective manner. Provide analytical support to other SOC team members during more »

The client provides services to all business sectors, including law firms, insurance providers and law enforcement agencies. The client is looking for a Cyber Incident Responder to work within their incident response team. This role will focus on helping clients who have been impacted by cyber incidents … recover their technical estate and resume business activities. Job Title: Cyber Incident Responder (DIFR) Salary: £40,000 £45,000 per annum. Location: North Manchester,Manchester Interview Stage: 2 Stage Process. The main responsibilities for the role will be:- Perform emergency incident response for customers including containment(credential … server logs, firewall logs, intrusion detection system alerts, traffic logs and host system logs to determine what data has been impacted during a cyber incident using opensource tools and industry standard forensics software. Conduct forensic acquisitions from relevant servers and workstations Analyse malware to understand and communicate its impact more »

Operations Officer (COO) and to The Boards as directed on the status of the ISMS. Responsible for the development and continual improvement of the Incident Response Procedures and facilitating annual testing of the procedures. Lead on incident response in the event of a information or cyber more »

security and infosec roadmap. Support the privacy aspects of key processes including supplier risk assessments. Provide advice and support as part of the security incident response team during the invocation of the incident response plan. 🏡 Skills and experience you’ll need to succeed: Here at awaze more »

to vulnerability management reduction across all IT Systems and you will work with the SOC to assist in the coordination and management of cyber incident response activities. The ideal candidate will have come from a Cloud Infrastructure background, have moved into Cyber Security, and will hold a current … hands-on approach to vulnerability management reduction across all IT Systems Work with the SOC to assist in the coordination and management of cyber incident response activities. Provide guidance and support to employees on a range of cyber security issues. Ensure compliance with defined Policies. Essential Skills & Experience … due to the volume of applications received, we are unable to communicate feedback to all candidates. In the event you have not received a response within 14 days of your application, it is unlikely that your application will be progressed on this occasion. Please continue to review our website more »

candidate will bring a combination of technical expertise, strategic vision, and leadership skills to oversee all aspects of network operations, including system monitoring, maintenance, incident response, and customer support. As the Head of Network Operations, you will play a pivotal role in enhancing our network's performance and … charging experience for users. Coordinate with internal teams and external partners to enhance network capabilities, including software updates, hardware upgrades, and new installations. Manage incident response protocols, ensuring swift and effective resolution of any network disruptions or customer issues. Drive the adoption of best practices in network management more »

and appropriate response. Coordinate with internal stakeholders and external partners to mitigate security risks effectively. Develop and maintain SOC procedures, documentation, and playbooks for incident response. Mentor junior SOC analysts and provide technical guidance on complex security issues. Continuously assess and improve SOC processes and technologies to enhance threat … detection and response capabilities. Participate in incident response exercises and cybersecurity drills to ensure readiness and effectiveness. Qualifications and Skills: Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience). Proven experience working in a Security Operations Center, with a focus … on incident detection, analysis, and response. Strong understanding of cybersecurity principles, threat intelligence, and attack vectors. Proficiency in using SIEM tools, such as Splunk, ArcSight, or ELK Stack, for log analysis and correlation. Experience with network security technologies, including firewalls, IDS/IPS, and endpoint protection. Certifications such as more »

information security within a fast-paced environment and may be involved in SOX control responsibilities. Day to Day of the role: Assist with security incident management and response activities. Manage and respond to security alerts from systems and end-users. Perform security checks, reconciliation, compliance checks, and investigate … scanning, and risk management. Ability to create formal documents such as reports or procedures. Detailed knowledge of Microsoft O365 environment, Threat Intelligence analysis, Security Incident Response, and Disaster Recovery principles. Strong interpersonal skills, analytical mindset, and ability to communicate in non-technical language. Good organisational skills and ability more »

standards, including Cyber Essentials, ISO 27001, 27002, Data Protection Act, and GDPR. In-depth knowledge of the Microsoft O365 environment, threat intelligence analysis, Security Incident Response processes, disaster recovery, and business continuity principles. Familiarity with security testing principles, vulnerability scanning, risk identification, resolution, and reporting. Experience in formal … document creation, such as reports or procedures. Key Responsibilities include but not limited to: Assist with security incident management and response activities, emphasizing cyber threats. Conduct daily, weekly, and monthly security checks, reconciliation, and compliance checks. Handle security alerts and inquiries from systems and end users. Complete client more »

for management Collaborate with IT Teams to integrate security controls into infrastructure and applications Monitor security alerts and incidents, investigate security breaches, and implement incident response procedures Analyse security incidents to identify root causes and recommend corrective actions Provide security guidance and support to IT teams and business more »

MCAS alerts. ▪ Investigate on L3 requests/tickets. ▪ Manage EDR: fine-tune detection rules, monitor and add exclusions where required, investigate open cases, perform incident response. ▪ Identify threats and conduct risk assessments to address cyber security risks. ▪ Support Sec Awareness campaigns. ▪ Ensure Security Awareness training is effective and helps more »

client base that spans multiple industry verticals. Utilising industry-leading detection technology, the team of experienced SOC members work to provide assurance detection and incident response capabilities to organisations of all sizes. They are now looking for a Security Analyst to join their CREST certified Security Operations Centre … SIEM, IDS and threat Intelligence Technologies. Provide advice and guidance to client targets of cyber-attacks and malicious activity to a high standard. Provide incident reporting capabilities ensuring that all information is provided in a timely, accurate and effective manner. Provide analytical support to other SOC team members during more »

base that spans multiple industry verticals. Utilising industry-leading detection technology, our team of experienced SOC team members work to provide assurance detection and incident response capabilities to organisations of all sizes. The Role: The client is looking for an Security Analyst to join their CREST certified Security … SIEM, IDS and threat Intelligence Technologies. Provide advice and guidance to client targets of cyber attacks and malicious activity to a high standard. Provide incident reporting capabilities ensuring that all information is provided in a timely, accurate and effective manner. Provide analytical support to other SOC team members during more »

to discern emerging threats, dissect attack patterns, and decipher threat actor behaviors. Craft actionable intelligence reports, alerts, and recommendations to facilitate swift and effective response measures. Collaborate closely with interdisciplinary teams to devise proactive strategies and countermeasures against identified threats. Stay abreast of the latest cybersecurity trends, threat landscapes … or a related field, coupled with advanced certifications such as CISSP, CISM, or GIAC for added merit. Demonstrate proven expertise in threat intelligence analysis, incident response, or cybersecurity operations. Exhibit an in-depth comprehension of cyber threats, vulnerabilities, and attack methodologies. Showcase proficiency in utilizing threat intelligence platforms more »

maximum operational uptime of mission critical IT systems needed by the organisation in its daily operations. Security Operations has four key areas of focus: incident response; network monitoring and intrusion detection; security testing and vulnerability management. Team members will be expected to work across all of these security … knowledge of forensic tools, techniques, and methods. Experience of working with security frameworks (e.g. ISO/IEC 27001, PCI DSS, Cyber Essentials, etc.) and incident management best practice (e.g. NIST, NCSC, etc.). Salary/Package This is a (grade 7) position offering a competitive salary (depending on experience more »

in the development and implementation of security policies and procedures. Collaborate with IT teams to ensure compliance with industry standards and regulations. Participate in incident response activities and contribute to security incident management. Stay up-to-date with emerging threats and security trends. Skills and Attributes: Strong more »

vulnerabilities. Conduct proactive threat hunting activities to detect and disrupt potential threats before they impact our organization. Collaborate with internal stakeholders, including SOC analysts, incident responders, and IT teams, to integrate threat intelligence into security operations and incident response workflows. Develop and deliver threat intelligence briefings, reports more »

business ensuring security and monitoring requirements are determined and implemented through onboarding or continuous improvement activities Qualifications & Experience: Professional experience of working in an Incident Response Team or a similar environment Knowledge of SIEM platforms such as Azure Sentinel, Microsoft Defender, Splunk, ArcSight, QRadar, or LogRhythm. Strong analytical more »

C2M2) * Excellent communication skills * Experience of writing Defence/Government documentation Responsibilities include: * Develop and integrate security event monitoring and incident management services. * Respond to security incidents as they occur as part of an incident response team. * Implement metrics and dashboards to give visibility of the Enterprise more »

support in equal measure. Role To create, administer & maintain policies, standards and templates, following ISO27001, CIS and NIST best practises; creation and upkeep of Incident Response Plans, Disaster Recovery, Business Continuity, along with the planning and execution of tabletop exercises to test the robustness of these policies. Plan … group. Coordinated analysis of identified vulnerabilities and patch releases to ensure a risk-based approach is taken for remediation. Investigate security alerts and provide incident response. Monitor and maintain identity and access management. Liaise with stakeholders, up to C-level in relation to cyber security issues and provide future more »