1 to 25 of 482 Incident Response Jobs in the UK

Cybersecurity Incident Response Lead

Hiring Organisation
Jobleads-UK
Location
Greater London, England, United Kingdom
Overview Executive level position reporting to the Director of Cyber Threat Management & Incident Response, this is a hands‐on senior security position working within the Information Security group and with the internal IT department. This position’s core focus is to ensure consistent, measurable end‐to‐end triage … successful candidate will work to assess, develop, and deploy detection capabilities and processes ensuring enterprise systems and data are protected, serving as the Incident Response Lead for European and Pacific regions of the organisation. We are looking for candidates who have a passion for cyber security, threat detection ...

Senior Manager, Cybersecurity Incident Response

Hiring Organisation
Jobleads-UK
Location
Cambridge, England, United Kingdom
Overview: Interested in defending a global tech company from the latest cyber threats? Arm is seeking a passionate, experienced Senior Manager of Cybersecurity Incident Response to join our growing Cyber Defence Operations (CDO) team, protecting Arm against current and future cyber‐attacks! Situated within Arm’s Enterprise Security … function, this role will lead Arm’s global incident response team across the US, UK and India, including acting as a senior technical and operational leader for major cyber incidents. CDO enables Arm to be successful, delivering scalable and defendable security services that not only provide ...

Head of Threat Defence, Paddington

Hiring Organisation
Morson Edge
Location
London, United Kingdom
Employment Type
Permanent, Work From Home
ownership of a threat defence strategy and service. The role will focus on leading a team responsible for security operations, incident detection and response and threat intelligence which will be delivered through partnership with outsourced providers and IT. We're looking for a motivated and experienced individual … This role will have line management responsibilities for 3 of the team: a Threat Intelligence Lead, a TD Service Operations Lead and a Cyber Incident Response Lead. The role requires DV clearance and a minimum of 2 days per week in the Paddington Office. Occasional travel to other ...

Cyber Digital Forensics & Incident Response Manager

Hiring Organisation
Capgemini
Location
Highland, United Kingdom
Employment Type
Full Time
Onsite 2-3 Days Per Week Work Location either Manchester or inverness An excellent opportunity has arisen within our Team for a Digital Forensics & Incident Response (DFIR) Manager. DFIR (Digital Forensics and Incident Response) is a specialist cyber security capability which is responsible for delivering rapid … high‐impact incident response and investigation during significant cyber events, such as Malware or Ransomware attacks or Cyber security breaches. The Digital Forensics and Incident Response Manager is a leadership position within Capgemini’s Cyber Defence Centre’s (CDC’s) team, this role will oversee ...

Cyber Operations Manager

Hiring Organisation
Prime Personnel
Location
South West London, London, United Kingdom
Employment Type
Permanent, Work From Home
lead and line-manage London-based cyber security team (x3/x4), assure the local delivery of globally-prioritised work, and act as Incident Commander and first point of escalation for cyber security in London. The role additionally leads the Endpoint, Platform and Incident Response capability, owning … global prioritisation of that backlog against enterprise cyber risk. Previous Experience Required: Led or coordinated cyber security incident response as an Incident Commander or equivalent, working with MDR providers and cross-functional stakeholders (IT, Legal, Compliance). A strong, hands-on technical background in operational cyber security ...

Cyber Operations Manager

Hiring Organisation
Prime Personnel UK
Location
SW1E, Victoria, Greater London, United Kingdom
Employment Type
Permanent
Salary
£95000 - £110000/annum + Benefits & Bonus
lead and line-manage London-based cyber security team (x3/x4), assure the local delivery of globally-prioritised work, and act as Incident Commander and first point of escalation for cyber security in London. The role additionally leads the Endpoint, Platform and Incident Response capability, owning … global prioritisation of that backlog against enterprise cyber risk. Previous Experience Required: Led or coordinated cyber security incident response as an Incident Commander or equivalent, working with MDR providers and cross-functional stakeholders (IT, Legal, Compliance). A strong, hands-on technical background in operational cyber security ...

Head of Cyber, Band 8b

Hiring Organisation
Gloucestershire Hospitals NHS Foundation Trust
Location
Gloucester, GL1 2EL, United Kingdom
Salary
£66582.00 to £77368.00
participation in the regional "Defend as One" model. The role combines governance, assurance and hands-on leadership of proactive and preventative tactics, threat intelligence, incident response, vulnerability management, strategy and cultural change to build cyber resilience across the Integrated Care System (ICS). Main duties … within large, complex or multi-organisation environments. They will possess deep technical and governance expertise across areas such as threat detection, vulnerability management and incident response, with the ability to translate complex technical risk into clear, articulate, actionable information for senior executives and boards with assurance and confidence. ...

Senior Cloud Security Engineer

Hiring Organisation
Jobleads-UK
Location
Metropolitan Borough of Solihull, England, United Kingdom
play a critical role in strengthening and maturing Reapit’s cloud security posture. Your work will span hands on security engineering, deep incident response, proactive threat detection, and collaboration with global teams. Design, implement, and enhance secure Cloud infrastructure, services, and applications in collaboration with DevOps teams. Conduct … detail and high quality documentation. Work in a self managing, proactive manner — anticipating security needs, identifying gaps, and driving improvements without close supervision. Incident Response & Threat Detection Respond to SOC alerts. Working with our outsourced SOC, Lead and participate in global incident response activities, including investigation ...

Senior Cyber Security Analyst

Hiring Organisation
Hays Technology
Location
Bolton, Greater Manchester, United Kingdom
Employment Type
Permanent
Salary
£45000 - £55000/annum plus bonus and benefits
Senior Cyber Security Analyst to help strengthen its security posture and safeguard critical systems. This is an excellent opportunity for someone passionate about incident response and proactive threat management within a dynamic, fast-paced environment. The ideal candidate will have a positive go-getter attitude, and will have … experience of incident response, using MS security tools and ideally an understanding of Tanium. Key Responsibilities Working with the Head of Cyber to mature the incident response capability Using your understanding of the contemporary threat environment to assist with your vulnerability investigations and response Lead ...

Head of Cyber Defence

Hiring Organisation
IDEX Consulting Ltd
Location
London, South East, England, United Kingdom
Employment Type
Full-Time
Salary
Salary negotiable
leader responsible for developing and executing enterprise-wide cyber defence strategies to protect critical business systems, data, and infrastructure. Leads security operations, threat detection, incident response, and cyber resilience initiatives while ensuring alignment with organisational risk management objectives. Key Responsibilities Lead and manage the Cyber Defence function, overseeing … security operations, threat intelligence, vulnerability management, and incident response capabilities. Develop and implement cyber defence strategies, policies, and procedures to protect against evolving cyber threats. Direct Security Operations Centre (SOC) activities, ensuring effective monitoring, detection, investigation, and response to security incidents. Oversee threat intelligence programmes, identifying emerging ...

Network Security Manager

Hiring Organisation
Pearson Whiffin IT & Digital
Location
Dartford, Kent, South East, United Kingdom
Employment Type
Permanent
Salary
£95,000
Cyber & Network Security Manager We are seeking an experienced Cyber & Network Security Manager to lead the delivery of all security operations, drive cyber incident response, and provide enterprise-wide oversight of network security. This is an operational leadership role at the centre of the cyber defence function. … Security Operations Centre (SOC) services. Act as the senior operational escalation point for cyber security incidents and major security events. Own and coordinate cyber incident response activities, ensuring effective containment, eradication, recovery, and lessons learned. Develop, maintain, and test cyber incident response plans, procedures, and playbooks. ...

Network Security Manager

Hiring Organisation
Airband Community Internet
Location
Droitwich Spa, England, United Kingdom
Security Manager will work closely with Network Engineering, Systems, NOC, Infrastructure, Field Operations and third-party security providers to ensure effective threat detection, incident response, vulnerability management and continuous security improvement Responsibilities Cyber Security Strategy & Governance Define, implement, and maintain Airband’s cyber and information security strategy, policies … security controls are implemented across service provider infrastructure, including routing, switching, peering, transit and customer edge environments. Develop and maintain DDoS detection, mitigation and response capabilities to protect critical network services and customer connectivity. Maintain working knowledge and operational application of service provider security principles including BCP38 anti-spoofing ...

Head of Security Operations

Hiring Organisation
Jobleads-UK
Location
Wolverhampton, England, United Kingdom
will be accountable for the effective operation, continuous improvement and resilience of the Bank's security operations capability, covering Security Operations Centre monitoring and response, Identity and Access Management services, security analysis, operational security controls and supplier-delivered security services. The Head of Security Operations is a senior leadership … India offices, supported where appropriate by third-party managed security service providers. The team provides 24x7 or extended-hours security monitoring and response, identity and access management operations, vulnerability and threat analysis, security tooling administration, control assurance support, reporting, and operational support. Your responsibilities will include... Security Operations Leadership ...

Global Cybersecurity Incident Response Lead

Hiring Organisation
Jobleads-UK
Location
Cambridge, England, United Kingdom
Limited in Cambridge is seeking a Senior Manager of Cybersecurity Incident Response to lead their global incident response team. You will oversee major cyber incidents, ensuring effective response and coordination across regions. The role requires strong leadership in a high-stakes environment, with responsibilities including … development of incident response strategies and team growth. Ideal candidates have an in-depth understanding of the cybersecurity landscape and a background in technical incident response. #J-18808-Ljbffr ...

Cyber Security Specialist

Hiring Organisation
LHH
Location
Wokingham, England, United Kingdom
energy operations within a Critical National Infrastructure (CNI) environment. This role is responsible for real-time security monitoring, alert triage, investigation, and early-stage incident response. You will work with industry-standard security monitoring and incident/event management platforms to identify suspicious activity, validate alerts, and escalate … helping tune detections, and strengthening operational procedures and documentation. Key Responsibilities Monitoring and Triage Monitor security events and alerts using industry-standard SIEM and incident/event management platforms (e.g., Elastic, Microsoft Sentinel, Splunk). Perform rapid triage to determine alert validity, severity, scope, and potential business or operational ...

Cyber Operations Director

Hiring Organisation
Jobleads-UK
Location
Greater London, England, United Kingdom
actor profiling, indicators of compromise (IOCs), tactics, techniques and procedures (TTPs), and emerging threat trends, to support threat hunting, detection engineering, vulnerability management, and incident response activities Partner with CSOC, Incident Response, CISO functions and broader Intelligence functions to provide actionable intelligence during cyber incidents, enhance … intelligence requirements, ensuring alignment with business objectives, risk management priorities, and the evolving threat landscape Skills Deep expertise in Cyber Threat Intelligence, cybersecurity operations, incident response, and risk management, with extensive knowledge of threat actor methodologies, MITRE ATT&CK, cyber kill chain frameworks, and threats relevant ...

Cyber Threat Intelligence Director

Hiring Organisation
Jobleads-UK
Location
Greater London, England, United Kingdom
Accountabilities Manage security monitoring systems, including intrusion prevention and detection systems, to alert, detect, and block potential cyber security incidents, and provide a prompt response to restore normal operations with minimized system damage. Identify emerging cyber security threats, attack techniques and technologies to detect/prevent incidents, and collaborate … actor profiling, indicators of compromise (IOCs), tactics, techniques and procedures (TTPs) and emerging threat trends, to support threat hunting, detection engineering, vulnerability management and incident response activities. Partner with CSOC, Incident Response, CISO functions and broader Intelligence functions to provide actionable intelligence during cyber incidents, enhance ...

Cyber Incident Response Consultant - Multiple Levels

Hiring Organisation
IBEX RECRUITMENT LTD
Location
United Kingdom
Employment Type
Permanent, Work From Home
tier global consulting firm with one of the UK's largest and most respected cyber practices, housing over 200 specialists. Their Cyber Incident Response team is on the front line, helping organisations prepare for, respond to, and recover from the threats that keep boards awake at night. They … roles require at least eligibility for UK Security Check (SC) clearance. Existing clearance is highly advantageous. What You'll Do Lead and execute live incident response investigations, from forensic acquisition and root cause analysis to threat containment and eviction. Perform host-based and network forensics across Windows, Linux ...

Cyber Incident Response Consultant - Multiple Levels

Hiring Organisation
17918
Location
London, United Kingdom
tier global consulting firm with one of the UK's largest and most respected cyber practices, housing over 200 specialists. Their Cyber Incident Response team is on the front line, helping organisations prepare for, respond to, and recover from the threats that keep boards awake at night. They … roles require at least eligibility for UK Security Check (SC) clearance. Existing clearance is highly advantageous. What You'll Do Lead and execute live incident response investigations, from forensic acquisition and root cause analysis to threat containment and eviction. Perform host-based and network forensics across Windows, Linux ...

FINEX Cyber Incident Response Leader

Hiring Organisation
WTW
Location
Greater London, United Kingdom
Employment Type
Full Time
platform for the LGBTQ+ business community. Please do not contact the recruiter directly. Description Join WTW’s Cyber team as a trusted advisor and incident leader, supporting clients through high-impact cyber events such as ransomware, data breaches and non-malicious system outages. This is a high-visibility, client … brokers, claims and advisory functions within FINEX and across other Willis business units such as Industry focused teams. The Role Lead and coordinate cyber incident response for clients across complex and time-critical situations Provide clear, confident guidance on insurance coverage during live incidents Manage and collaborate with ...

Solicitor

Hiring Organisation
CyberClan
Location
United Kingdom
carefully selected team of experts are capable of solving complex cyber security challenges – keeping data secure and businesses running as usual. CyberClan’s Global Incident Response Teams are available 24/7/365 to leap into action, responding to all cyber-attacks with proven defensive methodology … business operations. Role Overview: This role supports the CERT/Sales team with reviewing insurance policies, assisting with claims assessments, and contributing to breach response efforts. Ideal for someone with early in house or private practice experience who’s ready to grow into a broader commercial legal role. This ...

Global Incident Response Lead — Cybersecurity

Hiring Organisation
Jobleads-UK
Location
Greater London, England, United Kingdom
Creative Artists Agency is looking for an experienced executive-level Incident Response Lead based in Greater London. This key position collaborates closely with the Director of Cyber Threat Management and focuses on incident response, threat detection, and security measures across the organization. The ideal candidate will … have a strong technical background, particularly in cloud environments, and will be responsible for mentoring junior staff while leading response strategies during security incidents. A minimum of 8 years in IT, with 5 years in incident response, is essential. #J-18808-Ljbffr ...

Cyber Security Operations Specialist

Hiring Organisation
Anson Mccade
Location
City of London, London, United Kingdom
Employment Type
Permanent
Salary
£75,000
operations. This is a technical role suited to an experienced analyst with strong engineering instincts, hands-on coding capabilities, and a deep understanding of incident response, detection engineering, and adversary tradecraft. This position includes approximately one week per month of on-call availability for high-priority incident … ideal for someone who has likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible ...

Cyber Security Operations Specialist

Hiring Organisation
Anson Mccade
Location
Glasgow, Lanarkshire, Scotland, United Kingdom
Employment Type
Permanent
Salary
£75,000
operations. This is a technical role suited to an experienced analyst with strong engineering instincts, hands-on coding capabilities, and a deep understanding of incident response, detection engineering, and adversary tradecraft. This position includes approximately one week per month of on-call availability for high-priority incident … ideal for someone who has likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible ...

Cyber Security Engineer

Hiring Organisation
Anson Mccade
Location
Edinburgh, Midlothian, Scotland, United Kingdom
Employment Type
Permanent
Salary
£75,000
operations. This is a technical role suited to an experienced analyst with strong engineering instincts, hands-on coding capabilities, and a deep understanding of incident response, detection engineering, and adversary tradecraft. This position includes approximately one week per month of on-call availability for high-priority incident … ideal for someone who has likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible ...