25 of 25 Incident Response Jobs in the West Midlands

Principal Cyber Security Incident Response Analyst £60,000 - £70,000 Full Time/Permanent West Midlands/Hybrid (1-2 days a month in the office ideally) The Role I am looking for a driven and experienced Principal Cyber Security Incident Response Analyst to join … large nationally recognised brand head quartered in the West Midlands. As a Principal Cyber Security Incident Response Analyst, you will play a pivotal role in protecting critical systems, assets, and people from cyber security threats. You'll be part of a world-class team, working at the forefront ...

CSIRT Lead/Senior CSIRT/CSIRT Manager/Principle CSIRT/CSIRT Analyst/Cyber Security/Incident Management/Cyber Security Incident Response Team/Computer Security Incident Response Team/Hybrid Home/remote/Warwickshire/Permanent role … within the CSIRT. Develop and maintain CSIRT documentation and reporting. Extensive experience in a Cyber Security Operations Centre (CSOC) Proven experience leading Cyber Incident Response activities. In-depth knowledge of cyber threat landscape and attack vectors. Expertise in incident detection, analysis, and resolution. Proficiency in relevant cybersecurity ...

CSIRT Lead/Senior CSIRT/CSIRT Manager/Principle CSIRT/CSIRT Analyst/Cyber Security/Incident Management/Cyber Security Incident Response Team/Computer Security Incident Response Team/Hybrid Home/remote/Warwickshire/Permanent role £60 000 + ...

role in protecting a large-scale, high-availability environment, acting as an escalation point for complex security incidents. Your day will include: Leading incident response activities: investigating alerts, conducting threat hunting, and managing escalations. Tuning and configuring Splunk SIEM to reduce false positives and enhance detection accuracy. Handling … malware analysis, forensic reviews and sensitive internal cases. Correlating logs across multiple systems and using threat intelligence to strengthen detection capabilities. Producing clear, concise incident reports for senior stakeholders, including non-technical audiences. Supporting junior analysts with guidance, best practice coaching and career development (no formal line management). ...

procedures, controls, and governance Identification, analysis, and prioritisation of cyber risks and vulnerabilities across on-prem, cloud, and third-party environments Advisory support for incident response planning, crisis management exercises, and resilience improvements Support to SOC operations, including process improvement and escalation protocols Supplier and third-party security … Strong hands-on background in cybersecurity governance, risk management, and security operations Proven experience delivering cybersecurity assessments, audits, and improvement programmes Demonstrable experience with incident response, crisis management, and cyber resilience planning Experience assessing supplier and third-party cybersecurity risk across the supply chain Strong understanding of recognised ...

environments. You'll work across servers, networks, storage, and security tools, contributing to infrastructure projects as well as cyber initiatives such as vulnerability management, incident response, and enhancing security controls. You'll also collaborate with group security teams and help ensure systems remain resilient and up to date. … etc.) Palo Alto deployment/configuration experience is a must Good understanding of firewalls, network protocols, and intrusion prevention Ability to manage vulnerability scanning, incident response, and remediation Confident communicator with solid documentation skills The role also covers an office in Birmingham and they might be occasional travel ...

strategy (anycast, BGP policy, routing integration) and partner with networking, DNS, and edge platform teams. Set operational standards: SLOs/SLAs, on-call health, incident response (including incident commander duties), runbooks, and post-incident learning. Drive automation at scale: CI/CD strategy, test frameworks, progressive ...

strategy (anycast, BGP policy, routing integration) and partner with networking, DNS, and edge platform teams. Set operational standards: SLOs/SLAs, on-call health, incident response (including incident commander duties), runbooks, and post-incident learning. Drive automation at scale: CI/CD strategy, test frameworks, progressive ...

ensuring environments are scalable, cost-optimised and aligned to modern engineering standards. Provide leadership on cyber and information security, including vulnerability management, threat monitoring, incident response and embedding secure-by-design practices. Own and develop IT Service Management, ensuring effective incident, request, problem, change and release processes … cyber security, IT service operations and enterprise applications in a complex environment Track record of establishing and improving ITIL-aligned service delivery and major incident/problem/change practices. Deep knowledge of Microsoft technologies (Azure, Entra ID/AD, M365), enterprise networking, endpoint management and platform engineering. Experience ...

Experience working in or with UK central government or ALBs. Familiarity with ITSM processes and operational resilience planning. Understanding of cloud security principles and incident response. Experience supporting transition to cloud-native services and DevSecOps. Knowledge of continuous integration/continuous deployment (CI/CD) tooling. Participation in service ...

Experience required: Significant experience in information and cyber security governance, risk, and compliance roles, in a global context Deep knowledge of cyber security operations, incident response, threat intelligence, and vulnerability management. In-depth knowledge of regulatory requirements, security frameworks and industry standards (e.g., ISO 27001, NIST, ITIL). ...

dashboarding, along with experience migrating workloads to Elasticsearch. In addition to migration duties, the candidate will maintain and enhance existing Splunk infrastructure, provide incident support, manage upgrades, and ensure observability platforms remain secure and performant. This role demands a technically strong individual with excellent stakeholder communication and problem-solving … configure alerting and monitoring using Kibana, Elasticsearch Watcher, or third-party tools. Ensure migration plans include validation, rollback procedures, and knowledge transfer. Platform Operations & Incident Response: Maintain Splunk infrastructure in both Production and Non-Production environments. Support Splunk SRE and Application teams in incident investigation and resolution. ...

Related Technical Investigations Hands-On Technical Experience of Conducting Vulnerability Scanning & Evaluating Results Commercial Awareness & (Ideally) Experience of PCI DSS (Current Version) Experience with Incident Response Procedures & Investigations Strong Verbal & Written Communication Skills High Attention to Detail Strong Team Player Searches: Vulnerability Management Analyst/VM Analyst/ ...

practices. Understanding of cloud security best practices and competency with Identity and Access Management (IAM). Excellent troubleshooting and debugging skills, with experience in incident response. Experience working in an Agile methodology. Ability to write comprehensive technical documentation and manage configuration control (Git). Experience with Terraform is highly ...

certificate-based authentication Contribute to AD design and secure environment management Mentor junior staff and act as a key escalation point Participate in incident response and root cause analysis Required Skills & Experience: 5+ years in a Network Engineer or Infrastructure Engineer role Strong knowledge of TCP/ ...

Service, Functions, container platforms (ACA/AKS) CI/CD: GitHub Actions or Azure DevOps with full automation Observability: logging, metrics, dashboards and alerting Incident Response: diagnosing and resolving complex platform issues Why Join: Shape a secure, scalable Azure platform in a regulated financial services environment Own complex ...

Gateway (SWG), Cloud Access Security Broker (CASB) and Data Loss Prevention (DLP) technologies. You will work cross functionally to architect scalable security solutions, lead incident response efforts and drive continuous improvement across cloud security posture. Cloud Security Architect: Duties Work to understand product requirements and build Internet Security ...

performance of the SIEM infrastructure. Security Engineering: Contribute to security engineering projects, transitions, and transformations. Work closely with security operations and associated security incident response systems Stay informed about emerging threats and security best practices. Skills Required: 3 years + experience working in a Cyber Security Engineer/ ...

infrastructure, ensuring high availability, performance, and security across multiple services. Establish and maintain infrastructure-as-code practices, deployment pipelines, and containerised services. Own monitoring, incident response, cost optimisation, and operational readiness during peak usage periods. What’s in it for you: Company performance based bonus 25 days + ...

portals). Define controls, evidence artefacts, and reporting for internal audit and regulatory assurance. Create runbooks for policy changes, exceptions, break‐glass procedures, and incident response around retention/records. Contribute to RACI, data classification schemas, and control testing. Required Skills 8–10+ years in Microsoft 365/ ...

. Manage OPEX and CAPEX budgets and optimise long-term plans. Cybersecurity & Risk Management: Maintain and enhance cybersecurity posture and disaster recovery capabilities. Lead incident response and business continuity planning. Digital Transformation: Partner with business teams to design and implement digital products and services that improve customer engagement. ...

. Manage OPEX and CAPEX budgets and optimise long-term plans. Cybersecurity & Risk Management: Maintain and enhance cybersecurity posture and disaster recovery capabilities. Lead incident response and business continuity planning. Digital Transformation: Partner with business teams to design and implement digital products and services that improve customer engagement. ...

CloudFormation and AWS CDK . Pipeline Excellence: Assist in CI/CD development ( GitLab, Jenkins, CodePipeline ). Reliability: Contribute to observability (metrics, logs) and incident response. Security: Implement security controls and secrets management. Code: Automate tasks primarily using TypeScript . Must-Haves: 2-4 years in DevOps/ ...

CloudFormation and AWS CDK . Pipeline Excellence: Assist in CI/CD development ( GitLab, Jenkins, CodePipeline ). Reliability: Contribute to observability (metrics, logs) and incident response. Security: Implement security controls and secrets management. Code: Automate tasks primarily using TypeScript . Must-Haves: 2-4 years in DevOps/ ...

excellent service. This is a field based role covering Birmingham and surrounding areas. Purpose of this role Field based role facilitating the maintenance and incident response for events on the OFNL network. Your key responsibilities are The Fibre Field Engineer primary role is to maintain and perform repair ...