1 to 25 of 49 Incident Response Jobs in the Thames Valley

Join Centrica's IT Security Team as a Cyber Security Incident Response Manager! ?? Are you ready to drive the UK's energy transformation? Centrica is looking for a skilled Cyber Security Incident Response Manager to join our IT Security team. You'll handle cyber incident … investigations, e-Discovery, network forensics, and cyber breach inquiries. Location: Hybrid working with occasional travel to Windsor. Key Accountabilities: Carry out forensic analysis and incident response investigations Build and manage forensic and incident infrastructure. Lead cyber forensic investigations. Support weekly security operations calls. Oversee resilience planning and … and remediate vulnerabilities. Analyse security reports and manage alerts. Stay updated on security policies and regulations. Experience Required: Expert in Security Operations and Security Incident Response. Expert in cyber incident investigations, e-Discovery, network forensics, and cyber breach inquiries Proficiency in SIEM, SEM, and log monitoring. Scripting/ More ❯

Join Centrica's IT Security Team as a Cyber Security Incident Response Manager! ?? Are you ready to drive the UK's energy transformation? Centrica is looking for a skilled Cyber Security Incident Response Manager to join our IT Security team. You'll handle cyber incident … investigations, e-Discovery, network forensics, and cyber breach inquiries. Location: Hybrid working with occasional travel to Windsor. Key Accountabilities: Carry out forensic analysis and incident response investigations Build and manage forensic and incident infrastructure. Lead cyber forensic investigations. Support weekly security operations calls. Oversee resilience planning and … and remediate vulnerabilities. Analyse security reports and manage alerts. Stay updated on security policies and regulations. Experience Required: Expert in Security Operations and Security Incident Response. Expert in cyber incident investigatio... More ❯

leadership and capabilities. We’re looking for a Level 3 SOC Analyst to join our client's team, offering expertise in security analysis and incident response to help drive the success of their Cyber Security Operations Center (CSOC). In this role, you will investigate and validate potential … mentor and uplift analyst skills and act as a key escalation point. The role will involve collaborating with global security teams, including CERT and Incident Management, to enhance overall security capabilities. Key Responsibilities: Advanced Incident Response: Handle escalated security incidents that L1 and L2 analysts cannot resolve … Security Reporting and Advisories: Contribute to or lead the delivery of cyber security reports and advisories to key stakeholders. Residual Risk Assessment: Deliver post-incident analysis, technical lessons learned, and reporting to assess residual risk. Advanced SIEM Tuning: Refine and tune SIEM tools to reduce false positives and detect More ❯

By combining advanced technology and expert human insight, we provide a portfolio of comprehensive services, including 24/7 Managed Security Operations Centre (SOC), Incident Response, Penetration Testing, Cyber Risk Assessments, CISO/CIO as a service, and Training. Our certified security experts and consultants offer tailored solutions … seen as a subject matter expert when leading engagements. • Security Assessment & Recommendations on behalf of our clients: Conduct regular security assessments, risk analyses, and incident response guidance. Recommend and prioritise remediation efforts based on findings. • Security Solutions Design: Architect and design cybersecurity solutions for a wide range of … GDPR, ISO 27001, NIST, Cyber Essentials and NIS Directive. Offer guidance on data protection and cybersecurity practices in line with local and international standards. • Incident Response: Assist in developing and maintaining an incident response plan; provide expertise when responding to and investigating security incidents. Deliver tabletop More ❯

a robust threat-informed defence strategy. You'll also work collaboratively across teams to enhance our threat intelligence capabilities, inform vulnerability management, and strengthen incident response readiness. Your role will involve maintaining threat actor profiles, managing intelligence feeds, supporting compliance, and shaping threat intelligence processes to align with … a Senior Cyber Threat Intelligence Analyst: Cyber Threat Assessment: Support and lead cyber threat assessments and provide recommendations to technical, managerial, and executive stakeholders. Incident Response Support: Act as part of the incident response team where appropriate and deliver cyber intelligence insights during security events. Threat More ❯

a robust threat-informed defence strategy. You'll also work collaboratively across teams to enhance our threat intelligence capabilities, inform vulnerability management, and strengthen incident response readiness. Your role will involve maintaining threat actor profiles, managing intelligence feeds, supporting compliance, and shaping threat intelligence processes to align with … a Senior Cyber Threat Intelligence Analyst: Cyber Threat Assessment: Support and lead cyber threat assessments and provide recommendations to technical, managerial, and executive stakeholders. Incident Response Support: Act as part of the incident response team where appropriate and deliver cyber intelligence insights during security events. Threat More ❯

a robust threat-informed defence strategy. You'll also work collaboratively across teams to enhance our threat intelligence capabilities, inform vulnerability management, and strengthen incident response readiness. Your role will involve maintaining threat actor profiles, managing intelligence feeds, supporting compliance, and shaping threat intelligence processes to align with … a Senior Cyber Threat Intelligence Analyst: Cyber Threat Assessment: Support and lead cyber threat assessments and provide recommendations to technical, managerial, and executive stakeholders. Incident Response Support: Act as part of the incident response team where appropriate and deliver cyber intelligence insights during security events. Threat More ❯

a robust threat-informed defence strategy. You'll also work collaboratively across teams to enhance our threat intelligence capabilities, inform vulnerability management, and strengthen incident response readiness. Your role will involve maintaining threat actor profiles, managing intelligence feeds, supporting compliance, and shaping threat intelligence processes to align with … a Senior Cyber Threat Intelligence Analyst: Cyber Threat Assessment: Support and lead cyber threat assessments and provide recommendations to technical, managerial, and executive stakeholders. Incident Response Support: Act as part of the incident response team where appropriate and deliver cyber intelligence insights during security events. Threat More ❯

and strategies to senior leadership and board members. Establish, build and maintain strong partnerships with specialist cybersecurity organisations to enhance our cybersecurity posture and incident response capabilities. Security Operations & Engineering Develop, implement, and oversee enterprise-wide security operations to detect, prevent, and respond to cyber threats. Lead and … enhance Security Information and Event Management (SIEM) and Threat Intelligence capabilities. Lead security incident response and forensic investigations, ensuring robust incident handling and mitigation. Report on cybersecurity KPIs and manage significant IS risks and their appropriate Risk Treatment Plans. Risk & Compliance Management Define and enforce IT security … frameworks: ISO 27001, NIST, CIS, SOC 2, GDPR, GXP, etc. Experience in cloud security Proficient in threat modeling, penetration testing, vulnerability management, and security incident response. Demonstrated ability to build security teams and drive cybersecurity initiatives from scratch. Experience in supporting organisations through security accreditation processes. Strong ability to More ❯

leadership and capabilities. We’re looking for a Level 3 SOC Analyst to join our client's team, offering expertise in security analysis and incident response to help drive the success of their Cyber Security Operations Center (CSOC). In this role, you will investigate and validate potential … mentor and uplift analyst skills and act as a key escalation point. The role will involve collaborating with global security teams, including CERT and Incident Management, to enhance overall security capabilities. Key Responsibilities: Advanced Incident Response: Handle escalated security incidents that L1 and L2 analysts cannot resolve More ❯

continuous. “People first” culture The Latest, cutting-edge technology You will join a 24/7 SOC team, involved in the highest level of Incident Response activities, proactive threat hunting and development of detection and use-case capabilities. You’ll be working alongside the engineering team to help … or similar experience. Microsoft SC-200 Certs are desirable. Excellent communication skills A strong knowledge of sophisticated threat actor methodologies, along with experience in incident response and forensic investigations. This business has a clear picture of where they want to be, have the right individuals steering the ship … and exceptional tech talent leading the way. Impressive customers, flexible working and a company who truly care. Responsibilities: Leading escalated Cyber Incident Management, including Major Incidents and 2nd/3rd line analysis for ongoing investigations. Carrying out proactive threat hunts, RCAs, creation of detection capabilities Monitor/hunt security More ❯

continuous. "People first" culture The Latest, cutting-edge technology You will join a 24/7 SOC team, involved in the highest level of Incident Response activities, proactive threat hunting and development of detection and use-case capabilities. You'll be working alongside the engineering team to help … or similar experience. Microsoft SC-200 Certs are desirable. Excellent communication skills A strong knowledge of sophisticated threat actor methodologies, along with experience in incident response and forensic investigations. This business has a clear picture of where they want to be, have the right individuals steering the ship … and exceptional tech talent leading the way. Impressive customers, flexible working and a company who truly care. Responsibilities: Leading escalated Cyber Incident Management, including Major Incidents and 2nd/3rd line analysis for ongoing investigations. Carrying out proactive threat hunts, RCAs, creation of detection capabilities Monitor/hunt security More ❯

Incident Assurance Manager - RAN/Mobile telecoms 3-Month Contract Reading/Home Join a leading telecom service provider as an Incident Assurance Manager. You'll play a key role in ensuring service stability by overseeing critical incident management processes and coordination across multiple partners and teams. … Responsibilities of the Incident Assurance Manager include: Manage end-to-end incident processes, ensuring swift resolution and minimal business disruption. Coordinate major incident response across partners and tech teams. Lead post-incident reporting and ensure key stakeholders are informed. Enhance incident workflows through automation … and streamlined escalation paths. The successful Incident Assurance Manager will have: Proven experience in IT Operations or Service Management (ITIL environment). Strong stakeholder management, communication, and coordination skills. Ability to stay calm under pressure and solve problems proactively. Experience with ITSM tools (e.g., BMC Remedy). Knowledge of More ❯

Incident Assurance Manager - RAN/Mobile telecoms 3-Month Contract Reading/Home Join a leading telecom service provider as an Incident Assurance Manager. You'll play a key role in ensuring service stability by overseeing critical incident management processes and coordination across multiple partners and teams. … Responsibilities of the Incident Assurance Manager include: Manage end-to-end incident processes, ensuring swift resolution and minimal business disruption. Coordinate major incident response across partners and tech teams. Lead post-incident reporting and ensure key stakeholders are informed. Enhance incident workflows through automation … and streamlined escalation paths. The successful Incident Assurance Manager will have: Proven experience in IT Operations or Service Management (ITIL environment). Strong stakeholder management, communication, and coordination skills. Ability to stay calm under pressure and solve problems proactively. Experience with ITSM tools (e.g., BMC Remedy). Knowledge of More ❯

Communication: Act as a key point of contact for security-related matters, effectively communicating complex technical concepts to both technical and non-technical stakeholders. Incident Response: Lead the response to security incidents, coordinating with relevant teams to contain and remediate issues quickly and effectively. Continuous Improvement: Drive More ❯

our existing suite of tools and controls to keep pace with changing threats. Collaborate with the managed SOC provider to ensure timely and effective response to security incidents. Assist in the development and maintenance of the organisation’s incident response plan. Collaborate in assessing and closing out More ❯

our existing suite of tools and controls to keep pace with changing threats. Collaborate with the managed SOC provider to ensure timely and effective response to security incidents. Assist in the development and maintenance of the organisation's incident response plan. Collaborate in assessing and closing out More ❯

cross-functional teams. What you will be doing as a Senior Cyber Security Analyst Investigate security alerts from our SIEM tool and provide appropriate incident response actions. Liaise with technology and business stakeholders about cyber security issues/incidents providing clear descriptions and actions. Support the Cyber Security More ❯

a technical expert and a mentor—guiding junior analysts, tuning tools for maximum detection capability, and reporting on risks with precision. Key Responsibilities Lead Incident Investigations – Take ownership of high-severity security incidents, ensuring complete and accurate triage Advanced Threat Analysis – Perform deep-dive analysis to uncover root causes … residual risks, and stealthy attack vectors Mentor and Guide – Support junior analysts with expertise and foster knowledge-sharing across the SOC EDR-Centric Response – Work extensively with EDR tools (primary alert source) to detect and analyse modern threats Fine-Tuning & Reporting – Tune SIEM and SOAR systems for accuracy, and … deliver clear, actionable incident reports Technical Threat Intelligence – Stay ahead of emerging attack vectors, especially those identified via EDR; apply this insight to investigations and tuning efforts What You’ll Bring 4+ years’ experience in SOC (Level 2 or above), with strong incident response capabilities Proven ability More ❯

the technical implementation of ISO27001 and Cyber Essentials+ (CE+) Manage and enhance the Security Operations Center (SOC) , with one analyst reporting to you Oversee incident response , manage security incidents from detection to resolution Work closely with the compliance manager on vulnerability management Architect secure solutions, validate baseline configurations More ❯

operational requirements. Provide mentorship, coaching, guidance, support to ensure team success, and fostering a culture of passion and commitment for reliability and customer service. Incident Management and Continuous Learning: Ensure that incident response times are minimised, with clear processes for resolving issues rapidly and effectively. Track and … time to repair (MTTR) and mean time to detect (MTTD). Foster a culture of continuous learning, encouraging your team to learn from each incident and share these insights across our facilities operations to prevent future occurrences. This role comes with an on-call element, which will require the More ❯

the technical implementation of ISO27001 and Cyber Essentials+ (CE+) Manage and enhance the Security Operations Center (SOC) , with one analyst reporting to you Oversee incident response , manage security incidents from detection to resolution Work closely with the compliance manager on vulnerability management Architect secure solutions, validate baseline configurations More ❯

AWS Lambda and serverless design. Compliance Standards: Expertise in GDPR, HIPAA, SOC2, ISO 27001. Advanced Security Practices: Knowledge of zero-trust architecture and security incident response. Why Apply? Influence: Leadership role with the power to shape key architectural decisions. Innovation: Work on cutting-edge cloud technologies and large-scale More ❯

AWS Lambda and serverless design. Compliance Standards: Expertise in GDPR, HIPAA, SOC2, ISO 27001. Advanced Security Practices: Knowledge of zero-trust architecture and security incident response. Why Apply? Influence: Leadership role with the power to shape key architectural decisions. Innovation: Work on cutting-edge cloud technologies and large-scale More ❯

and extensive hands-on experience with SOAR platforms such as Splunk Phantom, Siemplify, IBM Resilient or similar tools. Knowledge of advanced threat detection and response methodologies alongside tools such as SIEM and Soar. Comprehensive understanding of cybersecurity principles including security operations, incident response and threat intelligence. Strong More ❯