Role Overview In response to ongoing growth, we seek an experienced Cyber Incident Responder to join our team. The ideal candidate will possess at least 2 years’ experience in responding to and investigating cyber incidents. Deep technical knowledge in incidentresponse, digital forensics, M365, cloud environments … National security clearance to SC level. Applicants must have been continuously resident in the United Kingdom for the last 5 years. Responsibilities Perform emergency incidentresponse for customers, including containment and gathering of forensic evidence. Investigate forensic evidence from compromised devices and networks to determine incident root … Experience in collecting forensic evidence from compromised systems. Understanding of the Cyber Kill Chain, MITRE ATT&CK, and other information security frameworks. Knowledge of incident handling, threat hunting, and intelligence. Experience in cloud-based infrastructure, including Microsoft Azure, Office 365, Amazon AWS, and Google Cloud. Strong client-facing skills more »
Cyber Incident Responder | Manchester | £40,000-£60,000 Are you a junior or mid-level Cyber IncidentResponse professional with a passion for dealing with incidents and uncovering the truth behind them. We have an exciting opportunity for a Cyber Incident Responder to join our client … ports on devices, laptops, and various other systems. As a key member of the team, you will play a vital role in providing comprehensive incidentresponse services to our clients. This role will give you the opportunity to work for some top clients and expand your skills in … Stay up-to-date with the latest cyber threat landscape and emerging attack vectors to continually enhance investigation methodologies. Requirements: Proven experience in Cyber IncidentResponse for 1-2 years, as well as preferably digital forensics Knowledge of cloud based environments such as Azure and AWS Understanding of more »
About the role It's an exciting time to join the Cybersecurity IncidentResponse team here at AXA, with significant investment planned in all UK&I businesses to transform & deliver new digital services to our customers and streamline and automate our business processes. To help us manage our … to the need of AXA in a manner that is admissible in court and in line with relevant standards Act as a forensic and incident handler providing design input into the IT project lifecycle Work with the security analysts to provide recommendations on security mechanisms Support the maintenance, testing … and execution of the AXA UK Security Incident Management framework Provide cyber threat intelligence to in scope UK entities Due to the number of applications we expect to receive for this role, we reserve the right to close this advert earlier than the listed closing date to ensure we more »
Manchester, North West, United Kingdom Hybrid / WFH Options
Tunstall Healthcare (UK) Ltd
a comprehensive cybersecurity and information security strategy that aligns with business objectives, Lead, mentor, and oversee a small global team responsible for security operations, incidentresponse, and threat detection, fostering a culture of continuous improvement, innovation, and excellence, Collaborate with the Group IT team to ensure the organisation … is protected against cyber threats and maintain an effective incidentresponse plan, Play a pivotal role in ensuring the security of Tunstall's SaaS products, Identify, review, select, and manage our relationships with appropriate third-party security partners for our products, Work closely with product development teams to … prioritise security risks associated with both internal and external factors, Develop and maintain a risk management framework to mitigate risks effectively, Establish and enhance incidentresponse plans and conduct drills, Evaluate and manage security risks associated with third-party vendors and partners, including those providing security solutions, Establish more »
Liverpool, England, United Kingdom Hybrid / WFH Options
Hays
Evaluate new security technologies and solutions to enhance the organization's security posture. • Ensure proper configuration and tuning of security tools to maximize effectiveness. • IncidentResponse and forensics – developing and maintaining an incidentresponse plan. • Provide leadership and mentorship to junior members of the security team. … information security strategy. • Experience overseeing day-to-day operations of the outsourced SOC team. • Define and enforce SOC processes and procedures to ensure effective incident detection, response, and remediation. • Experience Coordinating with internal teams and external stakeholders to address security incidents and vulnerabilities. • Experience Conducting regular threat assessments more »
Doncaster, England, United Kingdom Hybrid / WFH Options
Lorien
base that spans multiple industry verticals. Utilising industry-leading detection technology, our team of experienced SOC team members work to provide assurance detection and incidentresponse capabilities to organisations of all sizes. The Role: The client is looking for a Senior Security Analyst to join their CREST certified … Security Operations Centre and IncidentResponse team based in Doncaster, United Kingdom. This role is UK office hours (Mon - Fri 9am-5:30pm) with requirements to work in the office two days per week. There is also the potential to be on-call in this role as the … SIEM, IDS and threat Intelligence Technologies. Provide advice and guidance to client targets of cyber attacks and malicious activity to a high standard. Provide incident reporting capabilities ensuring that all information is provided in a timely, accurate and effective manner. Provide analytical support to other SOC team members during more »
The client provides services to all business sectors, including law firms, insurance providers and law enforcement agencies. The client is looking for a Cyber Incident Responder to work within their incidentresponse team. This role will focus on helping clients who have been impacted by cyber incidents … recover their technical estate and resume business activities. Job Title: Cyber Incident Responder (DIFR) Salary: £40,000 £45,000 per annum. Location: North Manchester,Manchester Interview Stage: 2 Stage Process. The main responsibilities for the role will be:- Perform emergency incidentresponse for customers including containment(credential … server logs, firewall logs, intrusion detection system alerts, traffic logs and host system logs to determine what data has been impacted during a cyber incident using opensource tools and industry standard forensics software. Conduct forensic acquisitions from relevant servers and workstations Analyse malware to understand and communicate its impact more »
Operations Officer (COO) and to The Boards as directed on the status of the ISMS. Responsible for the development and continual improvement of the IncidentResponse Procedures and facilitating annual testing of the procedures. Lead on incidentresponse in the event of a information or cyber more »
Manchester, England, United Kingdom Hybrid / WFH Options
Awaze
security and infosec roadmap. Support the privacy aspects of key processes including supplier risk assessments. Provide advice and support as part of the security incidentresponse team during the invocation of the incidentresponse plan. 🏡 Skills and experience you’ll need to succeed: Here at awaze more »
Greater Cheshire West and Chester Area, United Kingdom Hybrid / WFH Options
psd group
to vulnerability management reduction across all IT Systems and you will work with the SOC to assist in the coordination and management of cyber incidentresponse activities. The ideal candidate will have come from a Cloud Infrastructure background, have moved into Cyber Security, and will hold a current … hands-on approach to vulnerability management reduction across all IT Systems Work with the SOC to assist in the coordination and management of cyber incidentresponse activities. Provide guidance and support to employees on a range of cyber security issues. Ensure compliance with defined Policies. Essential Skills & Experience … due to the volume of applications received, we are unable to communicate feedback to all candidates. In the event you have not received a response within 14 days of your application, it is unlikely that your application will be progressed on this occasion. Please continue to review our website more »
Manchester, England, United Kingdom Hybrid / WFH Options
Be.EV
candidate will bring a combination of technical expertise, strategic vision, and leadership skills to oversee all aspects of network operations, including system monitoring, maintenance, incidentresponse, and customer support. As the Head of Network Operations, you will play a pivotal role in enhancing our network's performance and … charging experience for users. Coordinate with internal teams and external partners to enhance network capabilities, including software updates, hardware upgrades, and new installations. Manage incidentresponse protocols, ensuring swift and effective resolution of any network disruptions or customer issues. Drive the adoption of best practices in network management more »
and appropriate response. Coordinate with internal stakeholders and external partners to mitigate security risks effectively. Develop and maintain SOC procedures, documentation, and playbooks for incident response. Mentor junior SOC analysts and provide technical guidance on complex security issues. Continuously assess and improve SOC processes and technologies to enhance threat … detection and response capabilities. Participate in incidentresponse exercises and cybersecurity drills to ensure readiness and effectiveness. Qualifications and Skills: Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience). Proven experience working in a Security Operations Center, with a focus … on incident detection, analysis, and response. Strong understanding of cybersecurity principles, threat intelligence, and attack vectors. Proficiency in using SIEM tools, such as Splunk, ArcSight, or ELK Stack, for log analysis and correlation. Experience with network security technologies, including firewalls, IDS/IPS, and endpoint protection. Certifications such as more »
information security within a fast-paced environment and may be involved in SOX control responsibilities. Day to Day of the role: Assist with security incident management and response activities. Manage and respond to security alerts from systems and end-users. Perform security checks, reconciliation, compliance checks, and investigate … scanning, and risk management. Ability to create formal documents such as reports or procedures. Detailed knowledge of Microsoft O365 environment, Threat Intelligence analysis, Security IncidentResponse, and Disaster Recovery principles. Strong interpersonal skills, analytical mindset, and ability to communicate in non-technical language. Good organisational skills and ability more »
Leeds, Horsforth, West Yorkshire, United Kingdom Hybrid / WFH Options
Headway Recruitment
standards, including Cyber Essentials, ISO 27001, 27002, Data Protection Act, and GDPR. In-depth knowledge of the Microsoft O365 environment, threat intelligence analysis, Security IncidentResponse processes, disaster recovery, and business continuity principles. Familiarity with security testing principles, vulnerability scanning, risk identification, resolution, and reporting. Experience in formal … document creation, such as reports or procedures. Key Responsibilities include but not limited to: Assist with security incident management and response activities, emphasizing cyber threats. Conduct daily, weekly, and monthly security checks, reconciliation, and compliance checks. Handle security alerts and inquiries from systems and end users. Complete client more »
Halifax, West Yorkshire, United Kingdom Hybrid / WFH Options
Jenrick Commercial
for management Collaborate with IT Teams to integrate security controls into infrastructure and applications Monitor security alerts and incidents, investigate security breaches, and implement incidentresponse procedures Analyse security incidents to identify root causes and recommend corrective actions Provide security guidance and support to IT teams and business more »
MCAS alerts. ▪ Investigate on L3 requests/tickets. ▪ Manage EDR: fine-tune detection rules, monitor and add exclusions where required, investigate open cases, perform incident response. ▪ Identify threats and conduct risk assessments to address cyber security risks. ▪ Support Sec Awareness campaigns. ▪ Ensure Security Awareness training is effective and helps more »
Doncaster, South Yorkshire, Yorkshire, United Kingdom
Forward Role
client base that spans multiple industry verticals. Utilising industry-leading detection technology, the team of experienced SOC members work to provide assurance detection and incidentresponse capabilities to organisations of all sizes. They are now looking for a Security Analyst to join their CREST certified Security Operations Centre … SIEM, IDS and threat Intelligence Technologies. Provide advice and guidance to client targets of cyber-attacks and malicious activity to a high standard. Provide incident reporting capabilities ensuring that all information is provided in a timely, accurate and effective manner. Provide analytical support to other SOC team members during more »
Doncaster, England, United Kingdom Hybrid / WFH Options
Lorien
base that spans multiple industry verticals. Utilising industry-leading detection technology, our team of experienced SOC team members work to provide assurance detection and incidentresponse capabilities to organisations of all sizes. The Role: The client is looking for an Security Analyst to join their CREST certified Security … SIEM, IDS and threat Intelligence Technologies. Provide advice and guidance to client targets of cyber attacks and malicious activity to a high standard. Provide incident reporting capabilities ensuring that all information is provided in a timely, accurate and effective manner. Provide analytical support to other SOC team members during more »
to discern emerging threats, dissect attack patterns, and decipher threat actor behaviors. Craft actionable intelligence reports, alerts, and recommendations to facilitate swift and effective response measures. Collaborate closely with interdisciplinary teams to devise proactive strategies and countermeasures against identified threats. Stay abreast of the latest cybersecurity trends, threat landscapes … or a related field, coupled with advanced certifications such as CISSP, CISM, or GIAC for added merit. Demonstrate proven expertise in threat intelligence analysis, incidentresponse, or cybersecurity operations. Exhibit an in-depth comprehension of cyber threats, vulnerabilities, and attack methodologies. Showcase proficiency in utilizing threat intelligence platforms more »
maximum operational uptime of mission critical IT systems needed by the organisation in its daily operations. Security Operations has four key areas of focus: incidentresponse; network monitoring and intrusion detection; security testing and vulnerability management. Team members will be expected to work across all of these security … knowledge of forensic tools, techniques, and methods. Experience of working with security frameworks (e.g. ISO/IEC 27001, PCI DSS, Cyber Essentials, etc.) and incident management best practice (e.g. NIST, NCSC, etc.). Salary/Package This is a (grade 7) position offering a competitive salary (depending on experience more »
Newcastle Upon Tyne, Tyne and Wear, North East, United Kingdom Hybrid / WFH Options
Reed Technology
in the development and implementation of security policies and procedures. Collaborate with IT teams to ensure compliance with industry standards and regulations. Participate in incidentresponse activities and contribute to security incident management. Stay up-to-date with emerging threats and security trends. Skills and Attributes: Strong more »
vulnerabilities. Conduct proactive threat hunting activities to detect and disrupt potential threats before they impact our organization. Collaborate with internal stakeholders, including SOC analysts, incident responders, and IT teams, to integrate threat intelligence into security operations and incidentresponse workflows. Develop and deliver threat intelligence briefings, reports more »
Manchester, Clifton, City and Borough of Salford, United Kingdom Hybrid / WFH Options
Advania UK
business ensuring security and monitoring requirements are determined and implemented through onboarding or continuous improvement activities Qualifications & Experience: Professional experience of working in an IncidentResponse Team or a similar environment Knowledge of SIEM platforms such as Azure Sentinel, Microsoft Defender, Splunk, ArcSight, QRadar, or LogRhythm. Strong analytical more »
Northallerton, North Yorkshire, Yorkshire, United Kingdom
Henderson Scott
C2M2) * Excellent communication skills * Experience of writing Defence/Government documentation Responsibilities include: * Develop and integrate security event monitoring and incident management services. * Respond to security incidents as they occur as part of an incidentresponse team. * Implement metrics and dashboards to give visibility of the Enterprise more »
Oldham, Greater Manchester, North West, United Kingdom
Edgewell uk
support in equal measure. Role To create, administer & maintain policies, standards and templates, following ISO27001, CIS and NIST best practises; creation and upkeep of IncidentResponse Plans, Disaster Recovery, Business Continuity, along with the planning and execution of tabletop exercises to test the robustness of these policies. Plan … group. Coordinated analysis of identified vulnerabilities and patch releases to ensure a risk-based approach is taken for remediation. Investigate security alerts and provide incident response. Monitor and maintain identity and access management. Liaise with stakeholders, up to C-level in relation to cyber security issues and provide future more »