1 to 25 of 34 Incident Response Jobs in the Thames Valley

agreed service catalogue. You will integrate Threat Intelligence into core cyber security functions, including threat management, threat modelling, vulnerability management, and cyber incident response, supporting rapid response to emerging and zero-day threats. The role will also contribute to the ongoing maturation of the Threat Defence … provided. Essential Experience: Proven experience delivering a Threat Intelligence function and working closely with Information Security teams, including SOC, CIRT/CERT/CSIRC, incident response, and cyber defence operations. Demonstrable experience supporting the development and delivery of cyber defence strategies, including threat management, metrics, reporting, and intelligence ...

strengthening the organisation's security posture. Role Overview: You'll lead on security engineering initiatives, own key security platforms, drive automation and support incident response and threat detection activities. You'll also contribute to strategic security projects and ensure secure, scalable and resilient solutions across the business. … using Terraform and Ansible. Maintain secure baselines for Windows, Linux and Kubernetes. Automate IAM workflows and integrate identity governance into CI/CD. Support incident response, threat detection and Red/Blue team exercises. Maintain security documentation and participate in on-call rotations. Qualifications & Experience: Degree in Computer ...

investigation and analysis, acting as the escalation point for complex or high-severity incidents. They conduct root cause analysis, guide L1 analysts, and support incident containment and remediation efforts. Accenture are partnering with scaled UK AI compute pioneers to lead the charge on next-generation infrastructure. To support this … Responsibilities Investigate escalated incidents to determine attack vectors, scope, and potential impact. Correlate events across multiple data sources to build a comprehensive incident narrative. Execute containment, eradication, and recovery activities in coordination with IT/OT stakeholders. Lead response for medium to high-severity incidents and document detailed ...

with the organisation. As part of our Blue Team, you’ll use the latest intelligence and tooling to analyse information systems to ensure effective incident detection and response. Job Description If you are looking to make your mark on a rapidly growing SecOps team with some very exciting clients … attention to detail, and a strong background in cybersecurity topics such as threat hunting, attacker tactics and techniques, monitoring and alerting, threat intelligence, and incident readiness and response. Key responsibilities of the role are summarised below: Detection engineering - Develop, maintain, and enhance security detection content primarily for the Splunk ...

architecture, secure development lifecycle practices and appropriate technical controls Strengthen capabilities across core security domains including identity and access management, privileged access, vulnerability management, incident response, disaster recovery, data protection, security awareness and supplier security Work closely with stakeholders at all levels of the organisation, including operational teams … Culture, Business Infrastructure & Operations and Finance, to support audits, evidence gathering, control improvement and the effective adoption of security requirements across the organisation Lead response to significant information security incidents, acting as a senior decision‐maker during crisis situations and driving post‐incident learning and improvement Build ...

/IPS, and network threat detection. The role ensures network security configurations are effective, aligned to security policy, and support SOC detection and incident response activities. Accenture is a leading global professional services company, providing a broad range of services in strategy and consulting, interactive, technology and operations … Analyse IDS/IPS alerts and support SOC investigations. Tune firewall and IPS/IDS policies to reduce false positives and improve detection. Support incident response by providing network-level analysis and containment guidance. Review network traffic patterns to identify anomalous or malicious behaviour. Ensure firewall and network ...

malicious activity using telemetry, SIEM data, and threat intelligence, develop hypotheses based on MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs), and support incident management and response activities when threats are identified. We are open to experienced SOC Analysts where threat hunting, investigations, and proactive detection have formed … tradecraft Experience working with Indicators of Compromise (IOCs) and threat intelligence feeds Solid experience across the security event life cycle, including detection, investigation, and incident management Hands-on experience with EDR/XDR technologies such as Microsoft Defender, CrowdStrike, SentinelOne, or Carbon Black Strong knowledge of networking fundamentals ...

Responsibilities Proactively monitor security alerts, dashboards, and event queues for a portfolio of clients, identifying sophisticated threats and anomalies. Perform advanced analysis of incident data, logs, and artefacts, validating genuine security incidents and leading initial containment. Take ownership of escalated alerts from Level 1 analysts, performing in-depth investigation … managing the incident response process through to resolution or escalation to senior technical leads. Collaborate with other SOC team members, mentoring and providing guidance to junior analysts to build team capability. Support forensic data collection and evidence management during incident investigations; contribute expertly to incident post ...

stability of software applications and systems. - Provides operational support and leadership for production systems in a \"you-build-it-you-run-it\" culture, including incident response, post-incident learning, and continuous reliability improvements. - Leads evaluation sessions with external vendors, startups, and internal teams to drive outcomes-oriented ...

Catalogues, High-Level and Detailed Solution Designs, Data Flow Diagrams, and evidence of GDS alignment Ensure integration solutions support real-time monitoring, alerting, and incident management (e.g., via ServiceNow and Power BI dashboards), in line with GDS requirements for operational monitoring and incident response Work with security … teams to ensure all integrations meet protective monitoring and incident notification requirements, following GDS security and privacy standards Support test assurance activities, including integration testing, defect triage, and resolution, ensuring quality is built in from the discovery phase as per GDS guidance Provide technical leadership and guidance to project ...

Evaluate, select, and integrate security technologies including: Identity and Access Management (IAM) Security Information and Event Management (SIEM) Endpoint Detection and Response (EDR) Data Loss Prevention (DLP) Web Application Firewalls (WAF) Encryption and key management solutions Collaborate with engineering, DevOps, and IT teams to embed security-by-design … support Secure Software Development Lifecycles (SSDLC) Lead initiatives around incident response strategy, detection engineering, mitigation planning, and digital forensics readiness Monitor emerging cyber threats, vulnerabilities, and regulatory changes, providing expert guidance to stakeholders Produce high-quality architectural documentation supporting audit, governance, and compliance requirements Required Experience & Skills Proven ...

solutions Collaborate with engineering, DevOps, and IT teams to embed security by design and ensure secure software development lifecycles (SSDLC) Lead strategic initiatives in incident response planning, detection and mitigation strategies, and digital forensics Monitor advancements in threat intelligence and regulatory requirements, advising stakeholders on appropriate countermeasures Produce ...

global team have experience advising clients on hundreds of incidents. Leveraging this experience, they feedback practical lessons learned into clients cyber risk management and incident response programmes. What you will do The Identity and Access Senior Architect will be part of the Digital Trust team, and will ...

client and regulatory requirements. Our integrated approach combines secure by design principles relying on Identity and Access Management, Technical Assurance, continuous monitoring and incident response through Security Operations, and proactive risk management through GRC. Working closely with the Markets Innovation Group (MIG) and Fuse, the firms legal tech ...

seamless and high-quality experience for end users. Take accountability of the on-call rota , ensuring appropriate coverage, managing participation, and leading rapid incident response to maintain service availability. Continuously assess and improve team processes and procedures , fostering a culture of innovation and engineering excellence to optimise performance … team that consistently meets objectives and drives continuous improvement. Regularly conducts performance reporting and analysis , tracking key metrics such as system availability, uptime, and response times to inform decision-making and improvement initiatives. What you’ll need to succeed Essential: Experience in a leadership role , including mentoring, developing team ...

deep visibility into system health Enhance and scale CI/CD pipelines supporting continuous delivery across multiple system layers Play a critical role in incident response and root cause analysis , directly improving system reliability Influence how systems are secured, accessed, and managed across the organisation About ...

vital services. What you'll be doing: Overseeing Security Operators during shifts, ensuring continuous security monitoring Performing initial investigations of potential threats using Security Incident and Event Management (SIEM) tools Monitoring SIEM systems for faults and anomalies Contributing to routine security incident management by identifying, prioritising, and escalating … customer services through proactive security measures What you'll bring: Proven experience in cyber security, with a solid understanding of security monitoring and incident response Technical leadership skills and the ability to guide and support team members Strong communication skills to clearly articulate findings and escalate issues effectively ...

acting as a subject matter expert Advise and collaborate with stakeholders across the business on maintaining secure business systems Contribute to production support and incident response activities as required Maintain up-to-date product security documentation Desired Qualifications and Experience Degree in cybersecurity, computer science, engineering or related ...

regulatory review Coaching cross-functional teams on DevOps best practices and enabling developer productivity through self-service tooling Contributing to root cause analysis, incident response and continuous improvement of infrastructure reliability What we are looking for: Proven experience building and maintaining DevOps infrastructure for safety critical or regulated ...

configuration changes Assist with backup, disaster recovery and business continuity Operate and maintain core cyber security controls Monitor alerts and suspicious activity; support incident response Perform vulnerability assessments and support remedial actions Assist with security audits, compliance work and risk assessments Maintain security documentation, policies and audit evidence ...

monitoring and gain deep, hands-on exposure to modern Microsoft Security Tooling within complex client environments. The Role Working alongside a senior team of incident responders and engineers, you will be at the front line of defense for a diverse client base. Detection & Analysis: Monitor and investigate sophisticated threats … root cause" of security incidents. Continuous Improvement: Assist in tuning detection rules and reducing "noise" to ensure the SOC is always one step ahead. Incident Response: Support the end-to-end investigation and reporting of live security breaches. Technical Profile What you need: SOC Foundation: 1–2 years ...

summary : Worked for large-scale, mission critical environments in Telecom domain. Implement service mesh architectures using Istio for traffic management, security, and observability. Lead incident response, root cause analysis, and continuous improvement activities. Core application skills as a platform engineer: OpenShift, Kubernetes, Prometheus, Grafana, RabbitMQ, Redis, MongoDB, PostgreSQL ...

when working with managed service providers and third-party vendors Collaborate with enterprise security teams to align OT and IT security initiatives Support OT incident response, including coordination with SOC teams where applicable Mentor junior team members and contribute to capability development Track and report on OT security ...

observability tools Understanding of cloud cost management and resource optimisation principles Comfort with troubleshooting and supporting development teams Understanding of service reliability and incident response practices ** Please note that we are unfortunately unable to provide visa sponsorship for this position. Applicants must have the right to work ...

technology stack Assist in automation efforts, including simple SOAR playbooks and scripts Work with analysts to improve alert quality and operational workflows Support incident response with tooling, data access, and containment actions Maintain documentation and contribute to continuous improvement initiatives Act as a flexible engineering resource across ...