5 of 5 Contract Incident Response Jobs in Cheshire

maintains observability capabilities across applications, infrastructure, and cloud platforms. The role ensures reliable log ingestion, actionable monitoring, and high-quality telemetry to support operations, incident response, and platform assurance. Key Responsibilities Monitoring & Observability Implement and manage monitoring platforms such as Splunk, Elastic, Azure Monitor, Log Analytics, or similar … Ensure consistent, compliant log ingestion from Servers, applications, and cloud services. Optimise data retention, indexing, and storage efficiency. Operational Support & Assurance Support troubleshooting and incident response through log analysis and metrics insights. Conduct platform tuning, optimisation, and capacity reviews. Identify monitoring gaps and implement improvements to strengthen observability. ...

Site Defender (KSD), WAF, and Bot Manager Implement and manage security policies, rulesets, and traffic routing configurations Monitor web traffic, identify threats, and support incident response activities Tune WAF and bot protection rules to minimise false positives and enhance effectiveness Support CDN configuration, caching strategies, and performance optimisation ...

Defender, WAF, and Bot Manager. Implement and fine-tune security policies, rulesets, and traffic routing configurations. Monitor web traffic, identify threats, and assist with incident response activities. Optimise WAF and bot rules to reduce false positives and enhance protection effectiveness. Support CDN configuration, caching strategies, and performance optimisation. ...

Manager, and CDN Lead end-to-end implementation of Akamai security policies and custom rules Perform threat analysis, log monitoring, and security incident response for web traffic Implement and manage rate limiting, bot mitigation, DDoS protection, and zero-trust controls Partner with engineering and application teams to embed ...

detection content delivered via CI/CD and Tanium telemetry ingestion. Aid in correlating endpoint, device discovery, and telemetry insights to support investigations and incident response. Work with SMEs to assess gaps, document findings, and ensure operational closure of identified EDR issues. Support cyber incident response activities … Enhance playbooks and operational procedures to reflect new Tanium-driven capabilities. Skills & Experience Required Experience in Cyber Operations, SOC Level 2/3, or Incident Response. Strong understanding of endpoint telemetry, EDR, and detection technologies (Tanium experience desirable). Experience triaging and analysing alerts from SIEM, EDR, and endpoint ...