1 to 25 of 33 Incident Response Jobs in the West Midlands

Join Ofwats Corporate Enablers as a Head of Security Operations & Incident Response *Office Location: Birmingham (B5 4UA) with hybrid working * About Us We are Ofwat, the Water Services Regulation Authority, a non-ministerial government department responsible for regulating the water sector in England and Wales. Our work has … needed; holding water companies to account. Come and work at the source of everyday life. The Role As the Head of Security Operations and Incident Response, you will be responsible for the Security Strategy in Ofwat, our security operations, and overseeing the monitoring and response to security … team and be the primary point of contact for the leadership team and business stakeholders for any security event, ensuring comprehensive monitoring and effective response to cyber security threats across all networks, assets, and users. You will also be responsible for managing incidents related to personnel, technical, and physical More ❯

Compliance, and Identity function in Birmingham. This is a critical hands-on position focused on improving the organisation's security posture through proactive monitoring, incident response, vulnerability management, and supplier collaboration. The role will be part of a wider security team and reports to the Lead IT Security … Manager. Key Responsibilities: Lead day-to-day Security Operations activities including incident response and threat detection. Plan and support vulnerability assessments and penetration testing. Support live cyber incident investigations and remediation actions. Provide risk mitigation recommendations and technical input on audit actions. Help manage a third-party … Security Operations Centre and escalate complex incidents. Create and maintain playbooks for incident response and drive security capability improvements. Experience Required: Experience working across a wide IT security landscape, including networks, infrastructure, and software. Hands-on experience in SOC environments and live incident remediation. Knowledge of IT More ❯

Compliance, and Identity function in Birmingham. This is a critical hands-on position focused on improving the organisation's security posture through proactive monitoring, incident response, vulnerability management, and supplier collaboration. The role will be part of a wider security team and reports to the Lead IT Security … Manager. Key Responsibilities: Lead day-to-day Security Operations activities including incident response and threat detection. Plan and support vulnerability assessments and penetration testing. Support live cyber incident investigations and remediation actions. Provide risk mitigation recommendations and technical input on audit actions. Help manage a third-party … Security Operations Centre and escalate complex incidents. Create and maintain playbooks for incident response and drive security capability improvements. Experience Required: Experience working across a wide IT security landscape, including networks, infrastructure, and software. Hands-on experience in SOC environments and live incident remediation. Knowledge of IT More ❯

and security laws. The DMD is also responsible for ensuring a strong, functional internal and external client satisfaction program, oversight of the organization's incident response program, and ensuring business continuity while driving key projects and managing staff. A key aspect of this role is coordinating with internal … management. The DMD is responsible for ensuring Digital Solutions has embedded a successful client experience program that meets established goals and objectives, including prompt response to requests, established service criteria, implementation of service recovery model, training, and mentoring of DS staff as required. Provides oversight and direction to the … Digital Solutions department and UMass Chan IT and Information Security teams to ensure alignment on technical strategies, cybersecurity protocols, and compliance with institutional policies. Incident Response and Business Continuity: Lead efforts in business continuity, incident response, and disaster recovery, ensuring swift resolutions and developing protocols for More ❯

carefully selected team of experts are capable of solving complex cyber security challenges - keeping data secure and businesses running as usual. CyberClan's Global Incident Response Teams are available 24/7/365 to leap into action, responding to all cyber-attacks with proven defensive methodology. We … mentor junior staff and handle multiple projects simultaneously. Extensive travel may be required on short notice. Reporting to the Global Head of Digital Forensics & Incident Response, the successful candidate will join the Post Breach Remediation team, collaborating with cross-functional teams within the organization. Essential Functions Provide reliable … operations after a disaster. Own customer issues from troubleshooting to resolution or escalation. Identify and escalate urgent issues. Meet or exceed customer expectations regarding response quality, timeliness, and overall experience. Act as the point of contact for escalations, ensuring prompt resolution. Innovate beyond standard practices to rescue production environments. More ❯

cybersecurity team. The ideal candidate will be responsible for designing, implementing, and maintaining our customers Elastic SIEM infrastructure to ensure robust security monitoring and incident response capabilities. Embedded with an existing Customer SOC, you will provide Engineering support and expertise for the customers Elastic SIEM implementation, working alongside … real-time monitoring and analysis of security events. Data Integration : Integrate various data sources into Elasticsearch, ensuring data quality and consistency through ETL processes. Incident Response : Investigate and respond to security incidents, leveraging Elastic SIEM capabilities to identify and mitigate threats. Performance Optimization : Monitor and optimize the performance More ❯

Join Ofwats Corporate Enablers as a Head of Security Operations & Incident Response *Office Location: Birmingham (B5 4UA) with hybrid working * About Us We are Ofwat, the Water Services Regulation Authority, a non-ministerial government department responsible for regulating the water sector in England and Wales. Our work has … needed; holding water companies to account. Come and work at the source of everyday life. The Role As the Head of Security Operations and Incident Response, you will be responsible for the Security Strategy in Ofwat, our security operations, and overseeing the monitoring and response to security … team and be the primary point of contact for the leadership team and business stakeholders for any security event, ensuring comprehensive monitoring and effective response to cyber security threats across all ... More ❯

using the Protective Monitoring platform and Internet resources to identify cyber-attacks/security incidents. Categorise all suspected incidents in line with the Security Incident policy. Recognise potential, successful, and unsuccessful intrusion attempts and compromises through reviews and further analysis of relevant event detail and incident summary information. … Write high-quality security incident tickets using existing knowledge resources and independent research. Assist with remediation activities or support customer stakeholders to inhibit cyber-attacks, clean up IT systems, and secure networks against repeat attacks. Produce security incident review reports to present information about incidents and provide security … recommendations. Understand Threat Intelligence and its application in an operational environment. Conduct Threat Hunting to identify attacks that may not have been captured. Support incident response to national-scale incidents in a coaching capacity. Assist in the development and implementation of SOC Use Cases. Collaborate with other teams More ❯

and be a key player in ensuring the organisation's overall cybersecurity posture remains strong. You will also be involved in proactive security measures, incident response, and disaster recovery planning. This role is office-based at our Coventry site, with travel to other UK sites as required, sometimes … including firewalls, VPNs, IDS/IPS, and endpoint protection. Conduct vulnerability assessments and penetration testing. Apply patches and updates to mitigate security threats. Lead response efforts in cyber-attacks or security breaches, including containment and remediation. Perform root cause analysis and recommend mitigation strategies. Collaborate on incident handling More ❯

settle in and provide ongoing mentorship as you grow in your role. You’ll gain hands on experience in cyber security, threat detection and incident response and gain a deeper understanding of operational and defensive strategies. This will support you with any opportunities for professional development and growth.We More ❯

settle in and provide ongoing mentorship as you grow in your role. You’ll gain hands on experience in cyber security, threat detection and incident response and gain a deeper understanding of operational and defensive strategies. This will support you with any opportunities for professional development and growth.We More ❯

to maintain rigorous standards Conduct regular risk identification and develop mitigation strategies across systems, processes, and vendors Develop and maintain security policies, standards, and incident response protocols Support business continuity and disaster recovery planning for seamless resilience Lead and oversee internal/external security audits to ensure transparency More ❯

Cyber Security/Security Operations Centre Analyst• Evidence of experience working in at least one of the following fields: malware analysis, intrusion detection and incident response• Evidence of experience of line management; OR of tasking of, or delegation to, team members. These criteria will be assessed at CV More ❯

Cyber Security/Security Operations Centre Analyst • Evidence of experience working in at least one of the following fields: malware analysis, intrusion detection and incident response • Evidence of experience of line management; OR of tasking of, or delegation to, team members. These criteria will be assessed at CV More ❯

Officer: Support in the management of the Security Operations, establishing and delivering methods and tools to provide value and reduce risk across proactive monitoring, incident response, threat management and vulnerability management. Maintain operational security processes and ensure that all requests for support are dealt with, investigating security breaches … the Security, Compliance & Identity function to develop and enhance the team profile to develop enduring relationships with stakeholders and teams. Develop and maintain security incident playbooks and guidance. Benefits of working as a Senior IT Security Officer : a competitive pension scheme, with up to 12 per cent employer contributions More ❯

need. From a technical standpoint you'll need some, but potentially not all of the following: Solid experience in cyber operations, with exposure to incident response, vulnerability management, and security reporting Hands-on knowledge of tools such as: Microsoft Defender, Azure, Purview CrowdStrike Firewalls (e.g., Palo Alto, FortiGate More ❯

Key responsibilities and accountabilities: Design and recommend security architectures, solutions, and controls to protect client critical assets and data. Develop and help customers implement incident response plans, which outline steps to take in case of a security breach. Perform security assessments for customers, including penetration testing, to identify More ❯

identify, own, and solve security challenges end-to-end. Strong technical skills across areas like threat detection, vulnerability management, identity and access control, and incident response. Familiarity with a range of security tools and platformssuch as SIEM, EDR, firewalls, and cloud security solutions. A clear understanding of security frameworks More ❯

applications, and technologies.* Keeping up to date with the latest cybersecurity threats, trends, and technologies, and proactively recommend improvements to our security posture.* Supporting incident response efforts, including investigation, containment, and recovery, and provide guidance to junior security team members.* Assisting in the development and delivery of cybersecurity More ❯

networking - routing, firewalls, switches, VPNs, proxies. Experience with cloud infrastructure - ideally Azure (GCP is a bonus). Strong understanding of IT security principles and incident response. Good organisational, communication, and interpersonal skills. Degree-qualified or equivalent industry experience. IT Manager responsibilities: The company operates a broad range of internal More ❯

v4, Agile, and other best practices for optimizing IT service management. Strong understanding of day-to-day SOC operations and industry-leading approaches to incident response and monitoring. Knowledgeable in firewalls, network security groups, access control mechanisms, and other essential security controls. Proven ability to enhance security posture More ❯

cloud security best practices. Familiarity and competency with Identity and Access Management (IAM). Troubleshooting and Debugging: Strong troubleshooting and debugging skills. Experience in incident response. Experience working to an Agile methodology Ability to write technical documentation Configuration control (Git) Experience with Terraform Desirable Skills Containers and Orchestration: Understanding More ❯

cloud security best practices. Familiarity and competency with Identity and Access Management (IAM). Troubleshooting and Debugging: Strong troubleshooting and debugging skills. Experience in incident response. Experience working to an Agile methodology Ability to write technical documentation Configuration control (Git) Experience with Terraform Desirable Skills Containers and Orchestration: Understanding More ❯

Reliability Engineering (SRE) team. Oversee system availability, data integrity, and performance monitoring. Drive compliance with security and regulatory requirements. Manage on-call rotations and incident response processes. Optimize cloud infrastructure and containerized deployments. Partner with engineering teams to improve deployment and automation strategies. Own budgeting decisions related to More ❯

supporting cloud platforms – primarily Azure (GCP is a bonus) Familiarity with supporting software development environments and DevOps tooling Strong understanding of IT security and incident response Degree-qualified or equivalent professional experience Infrastructure Team Lead responsibilities: Take ownership of the company’s hybrid infrastructure: on-prem and cloud More ❯