17 of 17 Contract Incident Response Jobs in the South East

Security Lead - Incident Response & Threat Management 4 Months Contract £400 to £500 a day Inside IR35 Remote working *Active Security Clearance is Needed* A well-established consultancy firm is urgently looking for an experienced Security Lead with a strong background in Incident Response and Threat Management … high-profile client. This role requires a professional with active SC Clearance and a deep understanding of SecOps analyst support. Core Responsibilities Incident Management: Directing the full incident response lifecycle, including the triage, investigation, and total resolution of security events. Threat Intelligence: Utilising Recorded Future, OpenCTI ...

responsible for the leadership, governance and performance of Security Operations Centre capabilities supporting a secure defence programme. The role ensures effective monitoring, detection and response across classified environments, working closely with incident response and threat teams. Key Responsibilities Own SOC operating model, processes and performance management Ensure … effective monitoring and detection across secure environments Oversee SOC analysts, tooling and service providers where applicable Drive continuous improvement of detection use cases and response workflows Coordinate closely with incident response and vulnerability teams Provide senior-level reporting on security posture and operational effectiveness Ensure SOC activities ...

Clearance Hybrid work model OUTSIDE IR35 Job Requirements Spec: - end-to-end technical leadership, architecture, and delivery oversight of Network Detection & Response (NDR) and Extended Detection & Response (XDR) solutions using Darktrace and Microsoft Defender - secure, scalable, and successful implementation of advanced detection technologies that enhance organisational threat visibility … improve incident response capability, and support a modern security operations function. - close collaboration with cybersecurity, infrastructure, networking, SOC analysts, service owners, and senior stakeholders to align technical designs with security strategy, operating models, and business needs. - definition of the target architecture for Darktrace NDR and Microsoft Defender ...

engineering teams - ensuring applications are designed, built and maintained with robust security at their core. You will lead threat modelling, manage vulnerability backlogs, support incident response, and help uplift security maturity across development squads. Key Responsibilities Define and implement product security policies, tooling and standards across the SDLC … tracking remediation Liaise on bug bounty findings and ensure timely fixes Conduct root cause analysis for security incidents and systemic issues Act as Incident Commander or Investigation Lead during security events Partner with CI/CD teams to integrate SAST, DAST, SCA and other security controls Collaborate with product ...

Support Security Teams Assist other Group Security teams by providing vulnerability-specific intelligence. Contribute to building a shared knowledge repository for all teams. 9. Incident Support Assist in analysing and resolving security incidents, focusing on vulnerability-related aspects. Use post-incident reviews to pre-empt vulnerabilities and improve … communication skills for reporting and stakeholder engagement. Ability to collaborate with cross-functional teams, including SOC, IT, and external vendors. Problem-Solving Experience in incident response and remediation strategies for vulnerabilities. Creative thinking for implementing counterintuitive solutions (e.g., gamification, predictive analytics). Leadership and Mentorship Proven ability ...

building a shared knowledge repository for all teams. 9.Incident Support oAssist in analysing and resolving security incidents, focusing on vulnerability-related aspects. oUse post-incident reviews to pre-empt vulnerabilities and improve resilience. Technical Expertise: oStrong understanding of vulnerability management processes, tools, and frameworks (e.g., Rapid7, Nessus, Qualys, OpenVAS … communication skills for reporting and stakeholder engagement. oAbility to collaborate with cross-functional teams, including SOC, IT, and external vendors. Problem-Solving: oExperience in incident response and remediation strategies for vulnerabilities. oCreative thinking for implementing counterintuitive solutions (e.g., gamification, predictive analytics). Leadership and Mentorship: oProven ability ...

Analyst, you will play a key role in delivering effective SOC services across multiple platforms and projects. You will provide hands on monitoring and incident response while also supporting the development of people, processes and security controls. Key responsibilities include: Leading and mentoring a small team … Manager to evolve SOC capability Senior SOC Analyst essential skills Proven experience in a SOC or similar security operations environment Strong knowledge of SIEM, incident management and threat intelligence Understanding of cloud technologies and modern networking Experience with IDAM, JML processes and ITSM frameworks Ability to lead, support ...

platform technologies, guiding architectural decisions and mentoring engineers. Evaluating and adopting new technologies to strengthen platform innovation and long-term scalability. Supporting governance, incident response, and strategic platform planning across hybrid environments. Main Skills Needed Proven background in platform engineering, DevOps, or infrastructure development. Hands-on experience with ...

Pharmaceuticals/Life Sciences Chemicals Soft Skills Strong stakeholder communication with engineering and plant teams Ability to work independently within isolated OT environments Calm, incident-response mindset focused on safety and uptime Preferred Qualifications Oracle OCP/OCM Microsoft Certified: Database Administrator Knowledge of IEC 62443, NIST ...

Enhancing observability using Prometheus, Grafana, and related monitoring stacks Implementing and running chaos engineering practices using tools such as Gremlin, Litmus, or similar Improving incident response, on-call processes, and overall platform resilience Collaborating with engineering teams to strengthen CI/CD pipelines and cloud-native architectures What ...

operations are effective, resilient and aligned with wider security, engineering and programme objectives. Key Responsibilities Provide management oversight of cyber operational activities, including monitoring, incident response and vulnerability management Define and maintain cyber operations governance, processes and reporting Act as the senior point of coordination for cyber incidents … Skills & Experience Active SC Clearance or above Proven experience in cyber operations management, security operations oversight or cyber assurance roles Strong understanding of cyber incident management, threat monitoring and operational security controls Experience operating in complex, regulated or safety-critical environments Ability to manage and assure cyber services delivered ...

delivering and maintaining resilient network infrastructure. This role will suit someone comfortable working in regulated environments, owning network design through to BAU support and incident response. Key Responsibilities Design & Implementation Plan, configure, and deploy network solutions including LAN, WAN, WLAN and VPNs to meet business and security requirements. Maintenance … infrastructure projects and resolve escalated issues. Upgrades & Patching Carry out regular upgrades and patching of network hardware and software to maintain compliance and stability. Incident Response Respond quickly and effectively to network outages and security incidents, supporting root cause analysis and remediation. Required Skills & Experience Strong knowledge ...

CSAS reviews. Maintenance of platform security and Secure by design documentation. Development and maintenance of platform security standards and policies (Including SecOps) Development of incident response plans in line with Services policy Ongoing cyber and security threat assessment to the CITADEL platform and customer systems. ...

such as ISO 27005 and NIST . Review third-party and cloud service provider integrations to ensure appropriate technical and contractual security controls. Support incident response planning and vulnerability management. Define ITHC scope, coordinate penetration testing activities, and prepare pre-assessment documentation. If this is of interest please ...

maintaining Kibana dashboards for operational visibility Ability to triage SIEM alerts, investigate incidents, and determine root causes Familiarity with security operations workflows and incident response processes Experience writing detection logic using EQL, KQL, or similar query languages If you are an Elastic SIEM Specialist with lots of Defence ...

Review & Supplier Reset Conduct a rapid but thorough review of the current outsourced IT model (including Aura). Address poor service levels, slow response times, and lack of value for money. Redesign the sourcing strategy: renegotiate, replace, or re-tender providers as required. Deliver cost transparency, improved SLAs … business meets an appropriate level of security maturity for a PE-backed organisation preparing for exit. Put in place pragmatic, proportionate controls and incident response capability. Data & Analytics Capability Improve access to reliable management information and analytics. Enable data-driven decision-making across the executive team. Define ...

join our global network operations team. This role is critical in ensuring the reliability, scalability, and performance of our network infrastructure. You will lead incident responses, troubleshoot complex issues, and drive automation initiatives to maintain world-class network services. Required Skills: Minimum 10 years’ hands-on experience in network …/Nautobot Prometheus/VictoriaMetrics Salt Networking (either one of the following) EVPN Segment routing (significant MPLS depth can be considered) Key Responsibilities Lead Incident Management: Own and resolve critical network incidents, manage outages, and provide expert guidance during high-pressure situations. Advanced Troubleshooting: Diagnose and resolve complex issues ...