15 of 15 Contract Incident Response Jobs in the South East

you will investigate and respond to cyber security incidents that could impact critical systems and services across the UK. You will play a key part in identifying threats, supporting incident response, and helping to continually improve the organisation’s cyber defence capabilities. The role also involves mentoring apprentice analysts and joining an out-of-hours on-call rota … user reports. Analyse systems, files, network traffic, and cloud environments to determine the extent of incidents. Support technical responses to incidents, including containment, eradication, and recovery. Contribute to post-incident reviews and develop lessons learned. Create and improve incident response playbooks and knowledge base articles. Work closely with wider Cyber Defence functions to strengthen security operations. Act … years’ experience investigating and responding to cyber incidents. Hands-on use of SIEM tools (Splunk preferred, Microsoft Sentinel or equivalent acceptable). Experience with EDR solutions to support incident investigation. Understanding of threat actor tools, techniques, and procedures (TTPs). Strong analytical and problem-solving skills. Excellent written and verbal communication skills. Desirable skills: Advanced Splunk experience or certification. More ❯

hybrid Security Operations Centre (SOC) model, leading the investigation and resolution of cybersecurity incidents, and co-ordinating with the Universitys third-party SOC provider to ensure effective threat detection, incident response, and continuous monitoring across the University. - Conduct proactive threat hunting activities to detect advanced threats and anomalous behaviour within the University's network, and provide solutions to … support incident response, vulnerability management, and strategic security decisions. - Collaborate with third-party providers to scope, co-ordinate, and review network security assessments, and ensure that findings and recommendations are effectively prioritised, communicated, documented and implemented to improve the Universitys security posture. - Support the network vulnerability management process by identifying, assessing, and prioritising security vulnerabilities, and working with More ❯

IT Services and IT Consulting Banking Employment Type Contract Job Functions Information Technology Skills Microsoft Azure IT Integration Architecture Frameworks Technology Security Architecture Reviews Financial Services Architecture Network Security Incident Response Security Robert Half Ltd acts as an employment business for temporary positions and an employment agency for permanent positions. Robert Half is committed to diversity, equity and More ❯

We are currently recruiting for Defence Associate Security Analysts with knowledge of Cyber security threats using SPLUNK and EDR (Endpoint Detection and Response) to join a great project for 3 months, that is ran by a Central Government Authority. The best thing about this opportunity is that you will have a great work-life balance with remote working , thus … be able to organise your time up to your liking (2-3 days/week in London office) Essential Experience: Experience of investigating and responding to cyber incidents, coordinating incident response in large org5+ years' experience SPLUNK and EDR (Endpoint Detection and Response) Analytical, problem solving oriented MOD/DEFENCE - highly desirable SC Clearance - Candidates holding active … Central Government Contrac t so you can improve prospects for future contracting Interviews will start as soon good candidates are available, if you are interested do not delay the response and forward you updated CV today. If you would like to discuss further about this opportunity or others in the UK Public Sector, please reach out (extension 8144) and More ❯

to cross-functional teams during AI/ML system design and deployment. Contribute to regulatory compliance efforts (EU AI Act, GDPR, ISO 27001, NIST AI RMF, etc.). Support incident response teams in handling AI/ML-related security events. Your Profile Wed love to hear from you if you have: Strong experience as a Security Architect , with More ❯

and CyberArk vault management. Strong background in information security principles, access controls, and risk management. Proven ability to lead complex IAM projects and influence cross-functional stakeholders. Experience in incident response, decision-making under pressure, and stakeholder communication. Familiarity with regulatory frameworks and control environments (eg, ISO, NIST, GDPR). Preferred Qualifications CyberArk certifications (eg, Defender, Sentry, Guardian More ❯

mapping adversary behaviours and detection Develop and update threat profiles, attack surface assessments, and adversary emulation plans Present high-quality threat briefings, risk assessments, and operational recommendations Participate in incident response, providing context, attributions, and support as required Required Skills & Experience: Extensive experience in threat intelligence, cybersecurity operations, or penetration testing Proven ability to work collaboratively with Red More ❯

Active SC or DV - Must be a Sole British National Length: Initial 6 months IR Status: Inside, Market Rates New contract opportunities across the Public Sectors. The Roles Involve: Incident Response : Enhance coordination, assess impact, inform guidance, and develop playbooks. Threat Intelligence : Deliver tailored intelligence, monitorTTPs, and manage tooling (OpenCTI, MISP, sandboxes). Vulnerability Management : Identify and triage … vulnerabilities, support remediation, and improve disclosure schemes. Requirements : Proven experience in SOC environments and incident response. Deep understanding of threat actors and intelligence platforms. Expertise in vulnerability scanning and remediation. Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of More ❯

platforms (primarily Azure), ensuring compliance, security, and cost-effectiveness. Automate infrastructure provisioning and configuration using Infrastructure as Code (IaC) tools. Mentor junior engineers, contribute to DevOps practices, and support incident response and service improvement initiatives. Technical Skills Azure Tenant Ansible Containerisation (Docker/Podman) Powershell Python Linux Hypervisor (Proxmox) PKI zScaler DNS IP management GitHub CI/CD More ❯

liaison for tenants on IT network-related matters Coordinate service delivery with external IT contractors and internal teams Manage network access and provisioning for new and existing tenants Support incident response and troubleshoot connectivity issues Monitor network performance and escalate issues where necessary Ensure service level agreements are met and maintain strong relationships with providers Contribute to planning More ❯

JavaScript, Glide API), platform configuration, and integration methods (REST/SOAP). Demonstrable recent, practical development experience , not just solution design or consultancy oversight. Strong ITSM development experience (e.g., incident, change, problem, catalogue, workflows, scripting) Event Management (ITOM) or Scoped application development Delivered customisation, scripting, integrations, and technical problem-solving directly , rather than relying on managed suppliers Provide specific … or relevant module-specific certifications (e.g., ITSM, ITOM) are a plus. Relevant qualifications in ITIL or Agile methodologies. Customer Service Management (CSM)/Application Portfolio Management (APM)/Security Incident Response (SIR) experience Previous delivery experience with integrations such as GitHub, or Entra ID. Understanding of security and governance requirements in public sector IT environments. Job Role/ More ❯

OTel), Grafana, and Splunk. Optimise infrastructure with Karpenter for autoscaling and cost efficiency. Ensure robust AWS networking (VPC, Transit Gateway, PrivateLink, Route 53) and enforce security best practices. Drive incident response, monitoring, and performance tuning. Key Technologies: AWS (EKS, Fargate, EC2, S3), Terraform, CloudFormation, GitLab, ArgoCD, Docker, Kubernetes, Helm, Cassandra, OTel, Grafana, Splunk, Karpenter, Python, Bash. Desirable: Experience More ❯

Infrastructure as Code) Work with virtualisation (VMware/vSphere, etc.) Configure/manage SAN/storage, Fibre Channel, zoning, LUN provisioning Participate in vulnerability assessments, patches, security hardening, and incident response Required Skills & Experience NPPV3 clearance, either current or active within the last 12 months (non-negotiable) Strong track record with Windows 11 deployment (imaging, upgrade, Autopilot, Intune More ❯

Assist in the configuration and management of proxy systems, access policies, and routing rules Supporting the implementation and configuration of Access Policies, routing and management of Web Proxies Support incident response and planned changes in a complex, multi-layered network Collaborate with senior engineers and architecture teams to deliver stable, secure, and scalable services Please note, the below More ❯

Focus Manage Nvidia GPU clusters and related infrastructure Implement failover, resilience, and resource optimization strategies Oversee capacity planning and workload scheduling Monitor performance using Nvidia and HPE tools Manage incident response, node failures, and access/security controls Required Skills & Experience Strong understanding of L1/L2 processes and troubleshooting workflows Experience with cloud, APIs, and distributed systems More ❯