76 to 100 of 207 Remote Incident Response Jobs

guidelines. Coordinate risk assessments, ensuring mitigation actions are documented, tracked and successfully implemented. Maintain accurate documentation and evidence to support all compliance activities. Support incident response processes and contribute to post incident reviews from a compliance standpoint. Stay informed on evolving cybersecurity regulations, frameworks and best practice. ...

guidelines. Coordinate risk assessments, ensuring mitigation actions are documented, tracked and successfully implemented. Maintain accurate documentation and evidence to support all compliance activities. Support incident response processes and contribute to post incident reviews from a compliance standpoint. Stay informed on evolving cybersecurity regulations, frameworks and best practice. ...

Work closely with developers to improve deployment processes, performance and reliability Monitor system performance and availability using tools such as Prometheus and Grafana Lead incident response and contribute to post-incident reviews Automate repetitive processes and reduce manual intervention Improve system resilience, scalability and fault tolerance Support ...

Evaluate, select, and integrate security technologies including: Identity and Access Management (IAM) Security Information and Event Management (SIEM) Endpoint Detection and Response (EDR) Data Loss Prevention (DLP) Web Application Firewalls (WAF) Encryption and key management solutions Collaborate with engineering, DevOps, and IT teams to embed security-by-design … support Secure Software Development Lifecycles (SSDLC) Lead initiatives around incident response strategy, detection engineering, mitigation planning, and digital forensics readiness Monitor emerging cyber threats, vulnerabilities, and regulatory changes, providing expert guidance to stakeholders Produce high-quality architectural documentation supporting audit, governance, and compliance requirements Required Experience & Skills Proven ...

spend and implement FinOps best practices Maintain CI/CD pipelines – Implement and maintain reliability and observability aspects of GitHub workflows and deployment pipelines Incident response – Lead incidents, run blameless post-mortems, and drive continuous improvement Enable developers – Mentor teams on SRE and observability practices, helping them quickly … resolve issues Leverage AI tooling – Use AI‐assisted development tools (e.g. GitHub Copilot) to accelerate infrastructure work, and explore AI‐driven approaches to incident detection, root cause analysis, and remediation What We're Looking For Essential 3+ years in an SRE, Platform, or DevOps engineering role AWS services: CloudWatch ...

alerts to identify, investigate, and respond to potential threats. Administer and optimise EDR solutions (CrowdStrike) to ensure comprehensive endpoint protection across the organisation. Lead incident response activities, including investigation, containment, remediation, and post-incident analysis. Vulnerability & Risk Management Manage the vulnerability management programme, including scanning, prioritisation ...

systematic approach to diagnosing complex technical issues Strong analytical skills to interpret data, identify patterns, and draw actionable conclusions Be involved in investigating incident response activities and postmortem analyses using Dynatrace, Grafana or provide insights. Has the ability to troubleshoot and resolve data quality issues on time, ensuring … using Cloud solutions such as Azure & AWS and containerized environments (Kubernetes, OpenShift) to implement cloud-native monitoring Have good knowledge of ITSM/incident management tools integration. Interacts with and influences colleagues and has working level contact with customers Applies methodical approach to issue definition and resolution Demonstrates effective ...

similar, Industry certifications such as CompTIA Security+, GIAC, CISM, CISSP or other relevant certification preferred Strong understanding of network and end point security, incident response, threat intelligence, and vulnerability management Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS Strong knowledge ...

similar, Industry certifications such as CompTIA Security+, GIAC, CISM, CISSP or other relevant certification preferred Strong understanding of network and end point security, incident response, threat intelligence, and vulnerability management Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS Strong knowledge ...

Gitlab pipeline, Terraform and DevSecOps practices.* Drive architectural decisions and mentor engineers in performance tuning, resilient design, and secure coding practices.* Contribute to incident response and postmortems, continuously improving system reliability.What You'll bring:* Experience in managing engineers, with 3+ years in deep expertise in distributed systems.* Proven ...

that supports precision medicine Key Responsibilities Design and develop threat-led detections using threat intelligence and threat-hunting outputs Create novel analytic techniques for incident detection Collaborate with an MSP SOC to maintain and tune the detection catalogue Build automated reporting dashboards using Microsoft Sentinel workbooks Support security initiatives … Employment Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Keywords: Cyber Threat Engineer, Detection & Response Engineer, SIEM Engineer, Security Detection Engineer,T hreat Hunting Engineer, Security Automation Engineer, SOC Engineer, Incident Response Engineer, Cloud Security Engineer, Network Security ...

that supports precision medicine Key Responsibilities Design and develop threat-led detections using threat intelligence and threat-hunting outputs Create novel analytic techniques for incident detection Collaborate with an MSP SOC to maintain and tune the detection catalogue Build automated reporting dashboards using Microsoft Sentinel workbooks Support security initiatives … Employment Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Keywords: Cyber Threat Engineer, Detection & Response Engineer, SIEM Engineer, Security Detection Engineer,T hreat Hunting Engineer, Security Automation Engineer, SOC Engineer, Incident Response Engineer, Cloud Security Engineer, Network Security ...

Cyber Security Analyst (SOC) Role: Cyber Security Analyst (SOC) Specialism(s): Security Operations, Security Alerts, Security Incident Management, SIEM, Defender, Cofense, Azure, Email Security, Conditional Access Policies, User Authentication, EDR, Playbooks Security Assessment, Vulnerability Analysis, Risk Analysis, SOAR Type: Contract, Daily Rate Pay Rate: £300 - £400 per day (Inside … incidents and initiatives o Undertake on-going analysis of emerging threats using TTP's and existing knowledge o Support the production of alert/incident 'playbooks' Required Skills & Experience * 3-4+ years' experience in a Security Operations/SOC-based role * Hands-on experience with Microsoft security stack ...

principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and non-technical stakeholders Excellent analytical, documentation, and problem-solving capability Knowledge ...

data protection controls are consistently applied and reviewed. Proactively identify, communicate, and mitigate operational and security risks. Operational Excellence Undertake proactive monitoring, alerting, and incident response processes. Participate in the on‐call rota. Contribute to improvements in tooling, automation, and operational processes to reduce toil and increase reliability. ...

efficiently at scale Support the identification, investigation, triage, and remediation of application and platform vulnerabilities in collaboration with engineering teams Contribute to security incident response activities, including root cause analysis, remediation support, and continuous improvement initiatives Work with platform and engineering teams to improve monitoring, logging, alerting ...

/CD pipelines with blue-green, canary, and rolling deployments, including automated, zero-downtime database releases. Implement comprehensive monitoring, logging, alerting, and automated incident workflows with clear reporting. Strengthen cloud security posture (IAM, secrets, vulnerability scanning) and embed DevSecOps practices while maintaining PCI-DSS compliance. Drive reliability through SLIs …/SLOs, incident response, disaster recovery testing, and capacity planning for peak events. Optimise performance and cost across hybrid environments through right-sizing, forecasting, and resource governance. Apply AI-driven tooling for anomaly detection, operational optimisation, and compliance automation. Collaborate cross-functionally, maintain documentation, and promote DevOps best ...

facing (typically 3+ years in platform work) Hands‐on configuration and scripting skills (JavaScript, Business Rules, UI Policies) Deep subject matter knowledge in Security Incident Response and/or Vulnerability Response Strong communication skills across technical and non‐technical audiences Comfortable managing priorities across complex, multi‐stakeholder ...

production environments, ensuring operational stability, security, and performance across customer-facing services. Working within a collaborative Managed Services function, you'll be involved in incident response, platform maintenance, monitoring, operational improvements, and change management activities across cloud infrastructure environments. This position would suit someone who enjoys … backups, certificate renewals, and capacity management Ensure cloud platforms remain secure, stable, and highly available Participate in an on-call escalation rota when required Incident & Problem Management Respond to operational incidents and service disruptions Troubleshoot and restore services within agreed SLAs Produce root cause analysis documentation and implement preventative ...

join its Cybersecurity Operations Group. This role plays a critical part in protecting a complex global technology environment through continuous monitoring, threat detection, and incident response. The successful candidate will work closely with security and IT stakeholders, contributing to the organisation's defensive capabilities while remaining at the forefront … attack techniques. Hands-on experience with security technologies such as EDR, XDR, SIEM, SOAR, IDS, and IPS. Experience in vulnerability analysis, security alert analysis, incident response, and email threat analysis. Ability to read and understand scripting and query languages such as PowerShell, Python, SQL, or KQL (desirable). ...

join its Cybersecurity Operations Group. This role plays a critical part in protecting a complex global technology environment through continuous monitoring, threat detection, and incident response. The successful candidate will work closely with security and IT stakeholders, contributing to the organisation’s defensive capabilities while remaining at the forefront … attack techniques. Hands-on experience with security technologies such as EDR, XDR, SIEM, SOAR, IDS, and IPS. Experience in vulnerability analysis, security alert analysis, incident response, and email threat analysis. Ability to read and understand scripting and query languages such as PowerShell, Python, SQL, or KQL (desirable). ...

Help implement robust observability metrics, logs & traces using our observability tool Guide the team in building automated, self-healing systems Own and evolve our incident response processes, including on-call practices and post-mortem culture Mentor engineers across the org on best practices in reliability, operational readiness … visualization, logging, and tracing Understanding of automation, SDLC, CI/CD pipelines, deployment automation, and blue/green or canary releases Proven experience with incident management, disaster recovery planning, root cause analysis, and post-incident reviews Benefits Hybrid working - 1+ days a week in the London office Wellbeing ...

secure identity and access management across Azure, Entra ID, and Microsoft 365. Help improve secrets management, patching, vulnerability management, auditability, backup and recovery, and incident readiness. Work with internal stakeholders on security remediation and infrastructure compliance priorities. Monitoring, support, and operational readiness Improve monitoring, logging, alerting, dashboards, and operational … healthtech, regulated SaaS, or another compliance-driven environment. Experience with frameworks such as Cyber Essentials, SOC 2 or ISO 27001 Experience with observability tooling, incident response processes, and production support improvement. Experience managing or supporting Windows servers and mixed environments. Experience with SQL Server, database administration, or performance ...

Egress and MFA solutions. Produce technical documentation and support continuous improvement initiatives across IT systems and services. Assist with information security compliance, audits and incident response activities aligned to Cyber Essentials and ISO27001 standards. Participate in an out-of-hours on-call rota and provide occasional support across ...

development activities Support vulnerability management, encryption, monitoring, and access control Ensure systems align with GDPR, ISO27001, and accessibility standards including WCAG 2.2 AA Maintain incident response and business continuity processes DevOps & Infrastructure Manage CI/CD pipelines and automated release processes using Bitbucket Optimise and maintain AWS infrastructure ...