1 to 25 of 58 Incident Response Jobs in the North of England

global consultancy is seeking an experienced Cyber Incident Response Team Lead to lead the delivery of effective, intelligence-led incident response services for clients operating in complex threat environments. The role blends technical leadership, team management, and the ongoing enhancement of detection and response capabilities. … Cyber Incident Response Team Lead will oversee cyber incidents from identification through containment, eradication, and recovery, coordinating technical teams and stakeholders throughout. They will conduct proactive threat hunting to identify undetected malicious activity and enhance detection through the development and tuning of behavioural analytics and use cases within ...

Senior Security Engineer (Incident Response SIEM SOAR AWS) Remote UK to £115k Are you a tech savvy Senior Security Engineer with strong Incident Response experience? You could be progressing your career in a senior, hands-on Senior Security Engineer role as part of a friendly … strengthening EDR/XDR and DLP configurations, defining new automatic detections of security events in the SIEM, improving automatic security alerts triage and Incident Response playbooks, defining the runbooks to be used during Incident Response and leading the execution of Table Top Exercises (TTX) with different ...

Information Security Operations Manager to lead and mature a Security Operations (SOC) function. This is a hands-on, operational role focused on improving detection, response, and incident readiness - not a compliance or GRC-led position. You'll manage a small SOC team, own the relationship with a Managed … Detection & Response (MDR) provider, and drive continuous improvement across security operations, tooling, and processes. Key Responsibilities Lead and develop a small SOC team (2 SOC Analysts and an interim resource) Own and optimise the clear day-to-day relationship with an MDR provider Improve SOC maturity, playbooks, and incident ...

Senior Security Engineer (Incident Response SIEM SOAR AWS) Remote UK to £115kApplying for this role is straight forward Scroll down and click on Apply to be considered for this position. Are you a tech savvy Senior Security Engineer with strong Incident Response experience? You could ...

ANALYST ROLE: As a Cyber Resilience Analyst, you'll be responsible for defining, maintaining, and testing the organisation's resilience plans, covering Business Continuity, Incident Response, and Disaster Recovery. You'll work closely with IT teams and stakeholders across the wider business to ensure resilience strategies are practical … robust, and effective. The role plays a key part in analysing the impact of cyber incidents on business systems, supporting incident reviews, and ensuring lessons learned are fed back into improved resilience planning. You'll also work alongside project and change teams to ensure new systems and developments ...

Head of IT Security to build and lead a multi-disciplinary security function that protects the entire organisation. From setting strategy to refining incident response, your impact will be felt across the business. The RoleAs the Head of IT you will build and lead a multi-disciplinary security … function that protects the entire organisation. From setting strategy to refining incident response, you will strengthen how to defend, detect, and respond, and be a leader who's ready to take the security function to the next level.This is a role for a visionary, a builder, a mentor ...

money stops flowing . As Ticketing Operations Manager, you will: Protect revenue by ensuring maximum uptime across all payment and ticketing channels Lead major incident response for payment and ticketing failures Own operational performance across systems used by millions of customers Manage and develop a high-performing operations … incident management team This is a senior operational leadership role with real accountability and influence. Key Responsibilities Lead the day-to-day operational management of all customer-facing ticketing and payment systems, including: Mobile ticketing apps Smartcards EMV/contactless payments Ticket vending machines Take ownership of major incident ...

role suits someone who thrives in complexity, owns outcomes, and embraces the challenge of stabilising today while architecting tomorrow. Whether youre resolving a critical incident, strengthening our cyber posture, or driving our cloud migration roadmap, your impact will be felt across the organisation. Salary The spot salary for this … progression opportunities and structured support. About you Proven experience leading IT Operations in complex, multi-system environments. Strong understanding of security frameworks, threat detection, incident response and operational cyber maturity. Experience with IaaS, PaaS, SaaS and hybrid cloud strategies. Technical depth across infrastructure, networking and enterprise systems. Experience ...

protect the firm's data and Technology infrastructure. * VPN Administration - Administer and maintain Virtual Private Networks (VPN) to ensure secure remote access for employees. * Incident Response - Investigate and resolve potential security issues, participate in incident response initiatives, and respond to security-related alerts promptly. * Vulnerability Management ...

fundamental part of your role, where you will detect, analyse, and respond to any cyber security incidents or breaches. This includes managing the incident response process, documenting actions taken, and reporting findings to minimise the impact on our operations. You will also assess and manage the cyber security … guidelines and standards. Conduct continuous monitoring of the Trusts IT systems to detect, analyse, and respond to cybersecurity incidents and breaches. Manage the incident response process, including documentation and reporting, to mitigate risks and minimize the impact of security breaches. Assess and manage cybersecurity risks associated with ...

Specialist to support the delivery of security services across a varied client base. This is a client-facing role combining technical delivery, advisory, and incident response within an MSP environment. The successful candidate will help assess risk, implement security controls, support compliance, and respond to cyber threats across … teams to improve overall security posture Essential Experience Background in cyber security within an MSP or multi-client environment Strong understanding of threat detection, incident response, and vulnerability management Hands-on experience securing Microsoft 365/Azure AD Knowledge of EDR, AV, email security, and network security principles ...

working from Sheffield + £550 to £570 per day + Inside IR35 Key Skills: + 3rd/4th Line Support to M365 Copilot + Incident response Job Description: Provide 3rd/4th Line Operational Support for M365 Copilot across HSBC's tenant. Providing incident response via complex troubleshooting, policy/configuration changes and mass deployments throughout the organisation. Key Responsibilities: + Incident & Problem Management: Triage and resolve complex M365 escalations/Multi User Incidents (usage, access errors, unexpected results). Root cause analysis across M365 Admin Centre, Entra, Conditional Access, SharePoint/OneDrive ...

both technical and non-technical stakeholders. You will be part of a global Cyber Technical Services team, collaborating closely with Threat Intelligence and Incident Response specialists across National Security and Defence programmes. What You'll Be Doing as a Security Testing Consultant (SC) Deliver end-to-end security … place Develop and improve scripts, tools, and techniques to enhance testing capability Share knowledge and collaborate with colleagues across cyber, threat intelligence, and incident response teams Support testing across National Security, Defence, and Critical Infrastructure environments Essential Skills & Experience Proven experience working as a Security Testing Consultant ...

KPIs, SLAs and operational targets are met and continuously improved Managing, mentoring and developing SOC analysts to maintain a high-performing team culture Overseeing incident response processes, ensuring issues are escalated, handled and closed effectively Supporting the refinement of SOC processes, reporting, documentation and operational standards Acting … performance and process management A commercially minded approach, comfortable working with KPIs, reporting and wider business objectives Good understanding of SOC tools, processes and incident response workflows Strong communication skills with the ability to work effectively across technical and non-technical teams Exposure to or collaboration with service ...

Security Practices, Level 3) equips you with the practical skills employers in Greater Manchester are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … security principles. Threat Intelligence: Develop expertise to identify risks and analyze threats. Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls. Incident Response: Prepare for and respond to live cyber security incidents. Ethics & Law: Understand legislation and ethical conduct within the cyber security sector. Professional Skills ...

overseas. The below job description will outline this position of: Duty Engineer Typically, this person will provide 24/7 operational and incident response support across secure Defence ICT environments, ensuring high availability, resilience, and compliance of critical MOD systems. The Duty Engineer will apply strong technical expertise … Linux system administration, patching, and security hardening • Develop and maintain automation using PowerShell, Ansible, and GitLab • Support vulnerability remediation, audits, and compliance readiness • Deliver incident response, root cause analysis, and service restoration in line with SLAs and KPIs Qualifications and Requirements for the Duty Engineer: • CCNA (or equivalent ...

compliance with relevant legislation, regulatory requirements, and sector guidance. Work closely with senior leaders, service owners, and technical teams to ensure effective security monitoring, incident detection, response, and recovery. Provide oversight and assurance for third-party and supplier security risk management. Build strong working relationships across the institution … embed a culture of shared responsibility for data protection and cyber security. Lead LSSTs cyber incident management and business continuity arrangements, ensuring institutional preparedness. Provide expert guidance on incident response processes and support local response arrangements. Coordinate and lead the institutional response to significant cyber ...

Clearance - Manchester Based or ability to travel to Manchester.- Experience as in a Site Reliability Engineering role SITE RELIABILITY ENGINEER ESSENTIAL SKILLS- Reliability, incident response/incident management experience - Experience with Monitoring and Observability tools such as Prometheus, Grafana and OpenSearch- Automation tools (Go, Bash)- Experience with ...

worldwide team that is empowered to operate the activities within their assigned function. Daily activities will focus heavily on request, event and incident management and direction will be provided by the Information Security Manager. Norton Rose Fulbright is committed to the professional development of its staff. There will … such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security Hub), and cloud compliance frameworks (e.g., CIS, CSA CCM) is highly ...

Implement and manage comprehensive monitoring, logging, and alerting systems (e.g., Prometheus, Grafana, ELK Stack) to provide deep insights into system behavior and ensure rapid incident detection. Lead Incident Management: Participate in our on-call rotation, acting as a key player in incident response and resolution. ...

security threats and best practice around emerging AI technologies. Educate the wider security team on AI-related risks, vulnerabilities, and use cases. Threat Detection & Response Support monitoring, detection, and incident response within cloud environments. Help mature vulnerability management processes and security playbooks. Compliance & Risk Ensure cloud services ...

globally recognised leader in technology services and digital transformation with hiring a Senior Security SME to take ownership of advanced security engineering, escalated incident response, and threat hunting across a Microsoft-centric SIEM and XDR environment. This is a hands-on L3 role focused on Microsoft Sentinel … optimising Microsoft Sentinel, including log onboarding, connectors, parsers, and data normalisation Monitoring and optimising Sentinel and Defender licensing and ingestion costs Designing automated response and SOAR workflows using Sentinel playbooks Leading complex incident investigations and advanced threat response Proactive threat hunting using KQL and developing custom detections ...

detect, analyse, and respond to security threats in real-time. Proactively identify vulnerabilities and risks through regular assessments and penetration testing and lead incident response efforts for cloud-related security breaches, ensuring minimal downtime and data loss. Develop automated workflows for vulnerability management, incident detection, and response. ...

crisis scenarios. Drive operational excellence Oversee 24/7 monitoring to ensure strong network performance and quick issue resolution. Lead security detection, escalation, and response processes to keep threats at bay. Own incident and crisis management Build and refine SOC incident response playbooks. Lead high-impact ...

across IT projects, platforms, and operational environments Act as the security lead for assigned IT projects, ensuring alignment with security policies and standards Oversee incident response, investigations, and post-incident reviews for IT security events Ensure compliance with information security frameworks, regulatory requirements, and internal controls Work ...