Incident Response Jobs

1 to 25 of 147 Incident Response Jobs

Cyber Response & Recovery - Manager

London, United Kingdom
KPMG
The incident response manager role will be working in the Cyber Response Services (CRS) Team within our Risk Consulting practice. Cyber security is one of the areas which KPMG has identified for tremendous investment and growth. Our clients face a challenging cyber threat and look to us … a broad range of cyber-security incidents as well as perform digital forensics (disk, volatile memory, network packets, logfiles) and help advance KPMG’s incident response processes and methodologies.In this role we are looking for a person who can demonstrate strong technical background, significant experience in incident response and digital forensics and is looking to grow into an incident response leadership role as part of a growing team. You will be expected to lead a number of incident response case managers and practitioners, as well as have the opportunity to work more »
Salary: £ 70 K
Posted:

Cyber Incident Responder - Remote

Ely, Cambridgeshire, East Anglia, United Kingdom
Hybrid / WFH Options
GRC International Group Plc
We are recruiting for an experienced cyber security professional to join us as a cyber incident responder on a remote basis. The successful candidate will play a vital part in delivering our cyber incident response service, which will include: Leading and supporting cyber incident response triage and investigations to determine likely cause, impact and response required; Providing support and advice during containment, eradication and recovery of cyber security incidents; Project managing service delivery, including determining and coordinating the involvement of other parties to ensure an efficient, effective and managed response; Supporting clients … to develop their cyber incident response capabilities, including developing suitable cyber incident response policies, plans and playbooks; Undertaking cyber incident response readiness assessments and tabletop exercises to review and enhance clients cyber incident response capability; and Establishing a network of external partners more »
Employment Type: Permanent, Work From Home
Salary: £65,000
Posted:

Security Operations Manager

London, United Kingdom
Matchtech Group PLC
operations team and the quality of third party services and deliverables, reviewing performance.Take the lead management responsibility for all cyber security event monitoring and incident response services received from all partner organisations with a focus on our Managed Security Service relationship (MSS).Manage the search for cyber threats … that may go undetected in our environment that have evaded our automated security tools and defences.Accountable for Cyber Security incident response management including the establishment, maintenance and improvement of cyber security incident response plans, procedures, and playbooks.Promote security orchestration, automation, and response (SOAR) solutions for … systems and operational playbooks to enable efficient discovery of security events and response actions.Ideal experience:Minimum 5 years+ experience leading Cyber Security Operations teams.Practical experience of incident response governance (lifecycles, frameworks, incident handling) and developing incident response playbooks/processes, Security Orchestration, Automation and more »
Salary: £ 70 K
Posted:

Cyber Security Senior Analyst (Incident Response)

London, England, United Kingdom
Jobleads-UK
Cyber Security Senior Analyst (Incident Response) About Cognita We're looking for a Senior Cyber Security Analyst to join the Group IT Team as Cognita is embarking on an IT transformation project to revolutionise our organisation's incident response and detection strategies. This role is critical … as optimising tools such as MS Defender and Sentinel over time. The goal is to strengthen Cognita's security posture and ensure robust, efficient incident handling. Please note this is a hybrid role with 2 days a week on-site at head office. About the role: As the Cyber … and effective resolution of threats. You should be proficient in configuring and deploying MS Defender, leading the setup of MS Sentinel, and crafting robust incident response documentation. Your focus on automation streamlines incident management, while your role as a security SME provides critical input on projects, ensuring more »
Posted:

Cyber Incident response Senior Manager

London, United Kingdom
Berkeley Square IT Ltd
line leadership. The successful candidate is expected to manage a broad range of cyber-security incidents as well as and help advance my clients incident response processes and methodologies. Responsibilities Manage and co-ordinate cyber security incidents for their clients, working closely with the head of cyber response. … Digital forensics of relevant incident data (disk, volatile memory, network packets, log files). Maintaining a current view of the cyber threat, and being able to advise clients on the threat landscape and attacks which may be relevant to them. In order to be a good match for this … position you should have a strong background in cyber-security and incident response. For example: You should be able to guide a client through an unstructured incident response process (such as an advanced network intrusion) managing resources and defining objectives at each stage of the incident more »
Employment Type: Permanent
Salary: £90000 - £100000/annum + Excellent Benefits
Posted:

Senior Product Security Incident Response Engineer (1 year relevant experience required)

Newton, England, United Kingdom
ARM
The Arm Product Security Incident Response Team (PSIRT) is looking for a highly motivated, experienced addition to their team, to help deliver on Arms commitment to coordinated vulnerability disclosure (CVD) and navigate the ever-changing landscape of product security. Growth in this area has created an opportunity join … PSIRT and is responsible for managing security vulnerabilities and incidents related to Arms products and services. We continuously monitor for threats, assess vulnerabilities, coordinate incident response, and facilitate remediation. We also prioritise risks and maintain transparent communication with partners and the community regarding security issues. Arm is committed … through investments into culture and process. Responsibilities: ● Day-to-day handling of suspected and confirmed vulnerabilities in Arms portfolio of products using the established incident response process ● Support Arms engineering teams with analysis of reported vulnerabilities, including impact and severity assessments ● Lead the development of Arms vulnerability monitoring more »
Posted:

Senior Product Security Incident Response Engineer (1 year relevant experience required)

cambridgeshire, east anglia, united kingdom
ARM
The Arm Product Security Incident Response Team (PSIRT) is looking for a highly motivated, experienced addition to their team, to help deliver on Arms commitment to coordinated vulnerability disclosure (CVD) and navigate the ever-changing landscape of product security. Growth in this area has created an opportunity join … PSIRT and is responsible for managing security vulnerabilities and incidents related to Arms products and services. We continuously monitor for threats, assess vulnerabilities, coordinate incident response, and facilitate remediation. We also prioritise risks and maintain transparent communication with partners and the community regarding security issues. Arm is committed … through investments into culture and process. Responsibilities: ● Day-to-day handling of suspected and confirmed vulnerabilities in Arms portfolio of products using the established incident response process ● Support Arms engineering teams with analysis of reported vulnerabilities, including impact and severity assessments ● Lead the development of Arms vulnerability monitoring more »
Posted:

Cyber Security Senior Analyst (Incident Response)

London, England, United Kingdom
Jobleads-UK
Cyber Security Senior Analyst (Incident Response) About the role: As the Cyber Security Senior Analyst, you will be dedicated to the proactive monitoring and strengthening of our technical security framework. You will have experience in managing cyber incidents on a global scale ensuring swift and effective resolution of … threats. You should be proficient in configuring and deploying MS Defender, leading the setup of MS Sentinel, and crafting robust incident response documentation. Your focus on automation streamlines incident management, while your role as a security SME provides critical input on projects, ensuring secure cloud infrastructure and … is essential, as is experience with Logic Apps and the ability to lead security incidents internationally. Candidates should have 3-5 years in an incident response/SOC role, with a track record of integrating MS products with third-party services, creating automated workflows, and producing high-quality more »
Posted:

Lead Vulnerability Management Engineer (1 year relevant experience required)

cambridgeshire, east anglia, united kingdom
ARM
The Arm Product Security Incident Response Team (PSIRT) is looking for a highly motivated, experienced addition to their team, to help deliver on Arms commitment to coordinated vulnerability disclosure (CVD) and navigate the ever-changing landscape of product security. Growth in this area has created an opportunity join … PSIRT and is responsible for managing security vulnerabilities and incidents related to Arms products and services. We continuously monitor for threats, assess vulnerabilities, coordinate incident response, and facilitate remediation. We also prioritise risks and maintain transparent communication with partners and the community regarding security issues. Arm is committed … through investments into culture and process. Responsibilities: ● Day-to-day handling of suspected and confirmed vulnerabilities in Arms portfolio of products using the established incident response process ● Support Arms engineering teams with analysis of reported vulnerabilities, including impact and severity assessments ● Lead the development of Arms vulnerability monitoring more »
Posted:

Staff Product Security Engineer (1 year relevant experience required)

cambridgeshire, east anglia, united kingdom
ARM
The Arm Product Security Incident Response Team (PSIRT) is looking for a highly motivated, experienced addition to their team, to help deliver on Arms commitment to coordinated vulnerability disclosure (CVD) and navigate the ever-changing landscape of product security. Growth in this area has created an opportunity join … PSIRT and is responsible for managing security vulnerabilities and incidents related to Arms products and services. We continuously monitor for threats, assess vulnerabilities, coordinate incident response, and facilitate remediation. We also prioritise risks and maintain transparent communication with partners and the community regarding security issues. Arm is committed … through investments into culture and process. Responsibilities: ● Day-to-day handling of suspected and confirmed vulnerabilities in Arms portfolio of products using the established incident response process ● Support Arms engineering teams with analysis of reported vulnerabilities, including impact and severity assessments ● Lead the development of Arms vulnerability monitoring more »
Posted:

Security Operations Manager, SOC, CSIRT, MITRE, Mainly Remote

Central London, London, United Kingdom
Hybrid / WFH Options
Carrington Recruitment Solutions Limited
Security Operations Manager, SOC, CSIRT, MITRE, MSSP, Professional Services, Part Remote SOC Manager, Security Operations Centre Manager, Incident Response Manager, Operational Security Manager required to work for a Professional Services company based in Central London. However, this is a hybrid role and you would only be expected to … having an ability to step up into a role like this. Also, someone with a visionary approach to a modern Security Operations Centre and Incident Response. If you have experience with the likes of adoption of integrated toolsets and AI within Security, it would be a huge bonus. We … need the following experience: Incident Response Incident Response Planning (CSIRT) Protective Monitoring (logging to MITRE framework) Scripting/Use Cases exposure MS Sentinel Managing MSSP Solid People Management skills This is a great opportunity and salary is dependent upon experience. Apply now for more details. more »
Employment Type: Permanent, Work From Home
Salary: £95,000
Posted:

Pen Test Analyst

Portsmouth, Hampshire, United Kingdom
ARM
. * Assist in the development and maintenance of security policies, procedures, and guidelines. * Participate in audits and assessments to ensure compliance with security requirements. Incident Response: * Assist in the investigation and response to security incidents and breaches. * Provide expertise in identifying attack vectors and mitigating threats during … incident response activities. * Develop and maintain incident response procedures and playbooks. Qualifications: Education: * Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. * Relevant certifications (e.g., OSCP, CEH, GPEN) are preferred. Experience: * Min 2yrs+ of experience in penetration testing or security assessments. * Proven more »
Employment Type: Permanent
Salary: £55000 - £65000/annum
Posted:

Pen Test Lead

Portsmouth, Hampshire, United Kingdom
ARM
and security analysts. * Conduct performance reviews and develop training plans for team members. * Foster a collaborative and innovative environment within the pen testing team. Incident Response: * Assist in the investigation and response to security incidents and breaches. * Provide expertise in identifying attack vectors and mitigating threats during … incident response activities. * Develop and maintain incident response procedures and playbooks. Qualifications: Education: * Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Experience: * Min 5yrs+ experience in pen testing, with at least 2yrs in a leadership or senior role. * Proven experience in more »
Employment Type: Permanent
Salary: £62500 - £72500/annum
Posted:

Security Analyst - 24x7 Environment

M2, Manchester, United Kingdom
Hybrid / WFH Options
UBDS
tools such as Microsoft Sentinel, Microsoft Defender for Cloud and other leading security software Analyse and investigate security breaches and other cybersecurity incidents. Execute incident response processes to contain and respond to Security Incidents including documenting and reporting Conduct deep packet inspection and analyse events, including phishing and … most appropriate manner and fit for purpose in line with agreed quality SLAs, KPIs and industry best practice. Provide coverage for a (24x7) Security Incident Response function across multiple client environments. About You Exposure and hands on experience with SIEM and Threat & Vulnerability technologies, ideally Microsoft Sentinel & Defender … for Cloud. Experience of Security Incident Handling & Security Incident Response Knowledge of Security including types and methods of cyber-attack and underlying network protocols. Strong documenting and reporting skills. Excellent time management Experience in escalating incidents to, and in driving incident resolution with, technology vendors and more »
Employment Type: Permanent
Posted:

Claims Adjuster, Cyber

London Area, United Kingdom
CFC
are seeking a conscientious and hardworking claims professional with experience in cyber and technology claims. This role will work with the CFC Claims and Incident Response team, along with a number of incident response vendors including forensic, legal, and PR ensure that CFC delivers a cost … effective, but high quality response to our Insureds. The role will also involve working with Underwriting, Finance, IT and Products teams whilst being subject to all relevant legal and statutory (FCA and Lloyd’s) requirements and obligations. About the Role: The Cyber Claims Adjuster will work closely with CFC … s internal Incident Response Team to guide clients and triage incidents with the appropriate external response partners to deliver high quality response to cyber incidents. Proactively handle cyber and technology claims on behalf of CFC’s capacity providers from first notification of loss to settlement within more »
Posted:

Security Engineering Manager - Remote - £70-90K

London, United Kingdom
Hybrid / WFH Options
Hydrogen Group
to bolster security capabilities. Demonstrated proficiency in managing keys and certificates, including the development of frameworks and procedures for their governance. Solid background in incident response and management, including the formulation and execution of incident response plans and procedures. Bonus Skills (Not Essential): Experience with Azure … Development Pipeline or similar pipelines Incident response expertise Familiarity with relevant security regulations, standards, and frameworks (eg, ISO 27001, NIST, PCI DSS) Benefits: 38.5 days annual leave (including bank holidays), up to five well-being days, 20 weeks paid family leave, market-leading pension, free private medical cover more »
Employment Type: Permanent
Salary: GBP 90,000 Annual
Posted:

Response Consultant

United Kingdom
DMA Recruitment
Role: Response Consultant Location: Bristol, Barnsley, Dundee, or Remote Salary: £34,000 to £38,000 per year (dependent on experience) Do you have experience in the response and incident management industry? If so, this could be the perfect opportunity for you! About: A dynamic environmental incident response, consultancy, and training organisation, supporting clients globally in the transport, chemical, shipping, and oil & gas industries, responding to oil, chemical, and HNS incidents. Role Overview: Continually growing and looking for talented Response Consultants to join the team! You will manage and deliver consultancy and training projects … including: - Developing oil spill contingency plans - Conducting environmental risk assessments - Performing readiness audits - Leading incident management exercises You'll also support real-time incident responses, provide technical guidance, interface with clients, and drive business development. Responsibilities: - Manage and deliver consultancy projects - Develop contingency plans and risk assessments - Conduct more »
Employment Type: Permanent
Salary: £35,000
Posted:

Incident Management Analyst - Insurance - Hybrid

City of London, London, United Kingdom
Hybrid / WFH Options
I3 Resourcing Limited
Incident Management Analyst - Insurance - Hybrid Incident Management Analyst Incident, Problem, Change Insurance City, London/Hybrid (2-3 days in the office per week) Permanent Up to £60,000 + benefits + bonus A great opportunity has arisen for an Incident Management Analyst to join a … well respected global Life Insurer and take the responsibility for co-ordinating and managing the response to incidents within the organization. You will join the existing Service Operations team and ensure the incidents are managed efficiently. This role is a hybrid role requiring knowledge of change and problem management … operational and service excellence with sound experience of being able to execute service owned processes. Main Duties Assist in the development of the Technology Incident Management Process and act as first point of call for incidents. Accountable for end-to-end incident resolution using the incident management more »
Employment Type: Permanent, Work From Home
Salary: £55,000
Posted:

SOC Manager, CSIRT, MITRE, MSSP, Professional Services, Part Remote

Central London, London, United Kingdom
Hybrid / WFH Options
Carrington Recruitment Solutions Limited
and established SOC Manager, rather than someone just having an ability to step up into a role like this. We need the following experience: Incident Response Incident Response Planning (CSIRT) Protective Monitoring (logging to MITRE framework) Scripting/Use Cases exposure MS Sentinel Managing MSSP Solid more »
Employment Type: Permanent, Work From Home
Salary: £95,000
Posted:

SOC Manager, CSIRT, MITRE, MSSP, Part Remote

W1A, Manchester Square, Greater London, United Kingdom
Hybrid / WFH Options
Carrington Recruitment Solutions
and established SOC Manager, rather than someone just having an ability to step up into a role like this. We need the following experience: Incident Response Incident Response Planning (CSIRT) Protective Monitoring (logging to MITRE framework) Scripting/Use Cases exposure MS Sentinel Managing MSSP Solid more »
Employment Type: Permanent
Salary: £85000 - £95000/annum Excellent benefits
Posted:

Cyber Security Intelligence & Communications Specialist

Slough, Berkshire, United Kingdom
Hybrid / WFH Options
RDK Consulting
team to support threat detection engineering activities Develop and maintain the information sharing platforms (Teams and SharePoint) Act as a member of the EMEA incident response team, under the direction of the regional Head of Cyber Security, with responsibility for incident related research, incident tracking activities … and communication Work with the EMEA Head of Cyber Security to develop incident classification and reporting methods using ServiceNow as the central incident tracking and reporting tool Work with the EMEA branch to identify and document processes to a level sufficient to support the implementation of automated incident response using the Splunk SOAR application Participation in the EMEA information security daily status meetings Work to develop an understanding of the global environment and the key teams Skills and Experience Experience in a cyber security awareness role disseminating information to a diverse target audience. Demonstrate the ability more »
Employment Type: Permanent, Contract
Salary: £450 - £550/day
Posted:

Microsoft Security Consultant

Manchester, North West, United Kingdom
MECS Communications Ltd
Active Directory, including user authentication, access controls, and privilege management. * Managing and maintaining endpoint security solutions, including endpoint protection platforms (EPP), endpoint detection and response (EDR), and mobile device management (MDM) using Microsoft Intune. * Developing and enforcing Data security/Application security policies, standards, and procedures across the organisation. … Ensure compliance with relevant regulations and industry standards. * Working with the Managed SOC and Operational teams, develop and maintain incident response plans. Lead incident response activities, including detection, investigation, containment, and recovery. Staying updated on emerging threats and security trends. * Collaborating with cross-functional teams, including more »
Employment Type: Permanent
Salary: £65,000
Posted:

SOC Analyst - Lv3

Crawley, West Sussex, South East, United Kingdom
Hybrid / WFH Options
Matchtech
using industry best practices. Log Management: Manage log sources within the SIEM solution and create alert use cases to identify patterns of anomalous activity. Incident Response: Lead the response to high-severity security incidents, providing senior-level response activities and ensuring effective remediation and recovery actions. … Security Orchestration, Automation, and Response (SOAR): Support and develop the SOAR platform, creating new workflows for automated responses to common attack types. Digital Forensics: Conduct forensic analysis on serious security incidents using data from multiple sources to ensure threats are contained and eradicated effectively. Cyber Crisis Scenario Testing: Participate … important security and performance metrics. Job Requirements: Extensive experience in a SOC Level 2 or 3 role with evidence of advanced threat hunting and incident response. Experience in log correlation, forensics investigations, and compliance with regulatory frameworks. Proficiency in security technologies including SIEM, SOAR, EDR, IDS/IPS, and more »
Employment Type: Permanent, Work From Home
Salary: £55,000
Posted:

IT Operations Centre Analyst

Manchester, North West, United Kingdom
Certes IT Service Solutions
their IT Operations Centre to their OLA's. with other teams and service owners. This role involves proactively identifying and resolving technical issues, coordinating incident response, ensuring the smooth operation of IT services, managing CMDB updates and change monitoring. As the IT Operations Analyst you will work closely … components, including servers, networks, databases, and storage systems. Experience with monitoring tools, such as Nagios, SolarWinds, Zabbix, or similar. Familiarity with ITIL processes, including incident management, problem management, change management, configuration management, and service capacity management. Proficient in event management techniques and tools. Familiarity with networking protocols, including TCP … technologies. Respond promptly to system alerts and incidents, troubleshoot issues, and take appropriate actions to mitigate disruptions and minimize downtime, following ITIL event and incident management processes. Coordinate incident management activities, including incident response, escalation, and resolution, adhering to defined procedures and operating level agreements (OLAs more »
Employment Type: Contract
Rate: £475 - £476 per day
Posted:

SIEM CYBER SECURITY CONTROLLER - SIEM, DV, SOC, CYBER

Worcestershire, United Kingdom
Adecco
and Analysis: Continuously monitor and analyze security events to detect potential threats and vulnerabilities. Utilize advanced analytical tools and techniques to identify security incidents. * Incident Response: Lead the incident response process, including the investigation, containment, eradication, and recovery from security incidents. * Threat Intelligence: Integrate threat intelligence more »
Employment Type: Permanent
Salary: £47000 - £57000/annum Benefits
Posted:
Incident Response
10th Percentile
£45,000
25th Percentile
£50,000
Median
£62,500
75th Percentile
£80,313
90th Percentile
£97,500