1 to 25 of 37 Contract Incident Response Jobs in the UK excluding London

title: Cyber Incident Response Consultant (Contractor) Contract: Six Months (possibility of extension) Location: Basingstoke (X3 days onsite; X2 working remote) Role Overview We are seeking an experienced Cyber Incident Response Consultant to support our cybersecurity function on a contract basis. The consultant will be responsible … collaborating with organisation stakeholders in developing, updating, and enhancing a comprehensive set of tactical and operational cyber incident response documents, including the Incident Response Plan, Communication Plan, Incident Response Playbooks, and Containment & Eradication procedures. This engagement is focused on delivering high-quality, actionable documentation ...

title: Cyber Incident Response Consultant (Contractor) Contract: Six Months (possibility of extension) Location: Basingstoke (X3 days onsite; X2 working remote) Role Overview We are seeking an experienced Cyber Incident Response Consultant to support our cybersecurity function on a contract basis. The consultant will be responsible ...

Case Development: Develop and refine detection rules based on threat intelligence and attack patterns Continuously improve detection efficacy and reduce false positives Security Monitoring & Incident Response: Monitor systems for anomalies and malicious activity Contribute to threat hunting and incident response playbooks Provide expert guidance on securing ...

visibility and enhance the overall security posture. Key Responsibilities: Implement, configure and optimise core security tooling across the environment Enhance threat detection, monitoring and response capabilities Investigate security alerts and support incident response activities Improve integration and automation between security platforms Support vulnerability management and remediation processes … management platforms such as Tenable Knowledge of OT/ICS security platforms such as Claroty is beneficial Experience supporting security monitoring, detection engineering and incident response Strong understanding of enterprise infrastructure and cloud security Reasonable Adjustments: Respect and equality are core values to us. We are proud ...

security operations at a pivotal moment in a regulated organisations cyber journey. This role puts you right at the centre of strengthening detection, response, and operational resilienceshaping how a modern security operations capability performs day to day. You will be based in London 2 days per week, working from … external security providers Exposure to advanced security tooling including Microsoft Sentinel and wider Microsoft security technologies The chance to drive operational improvements across incident response, detection, and governance A highly competitive day rate within a financially regulated environment where cyber security is taken seriously What youll be getting ...

practical learning, and shaping the next generation of defence cyber capability. Key Responsibilities Training Delivery & Subject Matter Expertise Deliver high-quality cyber security and incident response training to learners with varying experience levels. Translate real-world cyber operations, threat analysis, and incident handling into clear, practical instruction. … competence. Key Skills & Experiences Live SC Clearance Strong hands-on knowledge of cyber threats, network security, risk management, and compliance frameworks. Deep understanding of incident response methodologies, detection, investigation techniques and tooling. Ability to communicate complex technical concepts in a clear, engaging and learner-friendly manner. Experience designing ...

expertise and a passion for delivering safe, secure, and reliable critical infrastructure services. You will play a key role in ensuring operational continuity, driving incident response, supporting service delivery, and maintaining compliance across complex datacentre environments. Responsibilities: Data Centre Operations: Ensure full compliance with datacenter policies, safety standards … tasks and projects in collaboration with cross-functional technical teams. Manage operational programs and contribute to Root Cause Analysis (RCA) processes. Lead or support incident response efforts for critical infrastructure failures, ensuring rapid recovery and minimal downtime. Identify risks in the critical environment and implement mitigation strategies. Manage ...

Security Practices, Level 2) equips you with the practical skills employers in Greater Manchester are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … security principles. Threat Intelligence: Develop expertise to identify risks and analyze threats. Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls. Incident Response: Prepare for and respond to live cyber security incidents. Ethics & Law: Understand legislation and ethical conduct within the cyber security sector. Professional Skills ...

Certificate in Cyber Security Practices, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills ...

incidents on critical client infrastructure. Perform in-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerability Provide Incident Response support when required, providing guidance on containment, eradication and recovery activities. Maintain and, where appropriate, improve and develop team knowledge … Work as part of a team to ensure that corporate data and technology platform components are safeguarded from known threats. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Input into threat intelligence activities when required. Represent the SOC within Stakeholders meetings ...

deployment pipelines. Ensure repeatable, reliable, and secure deployment processes aligned with best practices. Operational Excellence & SRE Support Contribute to SRE practices including monitoring, incident response, latency management, and service reliability improvements. Support observability initiatives by integrating monitoring, logging, and alerting tools. Troubleshoot platform issues across Red Hat, Kubernetes … maintaining strong communication with technical teams and stakeholders. This role is for a UK based Utility company and hence demands a highly experienced Major Incident Manager. severity incidents. functional technical teams to diagnose and resolve issues. Incident Activities dive reviews to identify root cause and preventive actions. ...

with the best standard technologies. The SOC Analyst reports to the SOC Manager. The SOC Analyst conducts a range of analysis and assists the incident response team with investigations that need to be escalated to an embedded member of staff. The SOC Analyst key responsibilities are: Effective Tier … threat hunting in collaboration with the CTI function Assist IR in HR and InfoSec related investigations Ensure the timely triage and remediation of any incident or request tickets raised to the SOC Participate in the activity of adding/removing URLs from the AcceptList and BlockList Attend routine security ...

experience and Windows Server knowledge. Key Responsibilities: Technically Proficient Implementing Security Controls Administration of SIEM tools and Security Controls (Sentinel, Defender, DarkTrace) Incident Response Security Operations Centre Vulnerability Management & Reporting Continuous Improvement Training & Awareness Secure Architecture Support Compliance and Framework Alignment Essential Skills: Experience with Microsoft Sentinel, Microsoft ...

Site Defender (KSD), WAF, and Bot Manager Implement and manage security policies, rulesets, and traffic routing configurations Monitor web traffic, identify threats, and support incident response activities Tune WAF and bot protection rules to minimise false positives and enhance effectiveness Support CDN configuration, caching strategies, and performance optimisation ...

configured to best practice and delivering maximum protection. You'll conduct vulnerability scanning, oversee patching cycles, perform cloud security assessments, refine playbooks, support incident response and collaborate with project and change teams to ensure new deployments and business initiatives are delivered securely. This is a hands-on, high ...

report regularly to the business. Escalate when service levels are not meeting expectations Contribute to managing suppliers. Specifically the Digital Shopfloor Bundle supplier: challenge incident response time (MTTR), incident quantity (repeat incidents) and quality of support . Support the transition to the new Shopfloor Bundle contract ...

perspective Identify vulnerabilities, weaknesses, and control gaps Drive hardening across Azure, networks, and hybrid workloads Strengthen segmentation, firewall policy, identity security, and logging Support incident-driven remediation and resilience improvements Required Experience Strong hands-on infrastructure/platform engineering background Azure & hybrid cloud security expertise Network security & segmentation (firewalls … Experience with enterprise security controls & remediation Ability to perform deep technical analysis Clear stakeholder communication Security Analyst (Contract) Focus: Detection, Response & Optimisation Key Responsibilities Advanced Microsoft Defender analysis & optimisation Write, tune, and troubleshoot KQL queries Investigate alerts and support incident response workflows Liaise with SOC & technical teams ...

Deliverables: Deployment of cloud resources in-line with architectural designs, to support workstream requirements. Support and Maintenance of all XXX ClientCloud hosting environments, encompassing incident response, support requests, ClientCert impact assessments, remediation and access management Development of in-house scripts and tooling for automation and streamlining of support ...

report regularly to the business. Escalate when service levels are not meeting expectations Contribute to managing suppliers. Specifically the Digital Shopfloor Bundle supplier: challenge incident response time (MTTR), incident quantity (repeat incidents) and quality of support Support the transition to the new Shopfloor Bundle contract and service ...

Defender, WAF, and Bot Manager. Implement and fine-tune security policies, rulesets, and traffic routing configurations. Monitor web traffic, identify threats, and assist with incident response activities. Optimise WAF and bot rules to reduce false positives and enhance protection effectiveness. Support CDN configuration, caching strategies, and performance optimisation. ...

production-like environments and reliable test data to support automated testing. Introducing or improving contract, performance, resilience and security testing within delivery pipelines. Supporting incident response and operational readiness by ensuring services are well monitored and resilient. Working collaboratively with engineers, platform teams and release specialists to remove ...

Manager, and CDN Lead end-to-end implementation of Akamai security policies and custom rules Perform threat analysis, log monitoring, and security incident response for web traffic Implement and manage rate limiting, bot mitigation, DDoS protection, and zero-trust controls Partner with engineering and application teams to embed ...

SQL. Experience with Agile ways of working. Experience with a Microsoft Azure based environment. Experience in the financial Services sector. High level support with incident response and troubleshooting. Eagerness to learn and improve interpersonal skills. Junior C# Developer Key Responsibilities: Triaging and resolving technical queries. Build and maintain ...

SQL. Experience with Agile ways of working. Experience with a Microsoft Azure based environment. Experience in the financial Services sector. High level support with incident response and troubleshooting. Eagerness to learn and improve interpersonal skills. Junior C# Developer Key Responsibilities: Triaging and resolving technical queries. Build and maintain ...

detection content delivered via CI/CD and Tanium telemetry ingestion. Aid in correlating endpoint, device discovery, and telemetry insights to support investigations and incident response. Work with SMEs to assess gaps, document findings, and ensure operational closure of identified EDR issues. Support cyber incident response activities … Enhance playbooks and operational procedures to reflect new Tanium-driven capabilities. Skills & Experience Required Experience in Cyber Operations, SOC Level 2/3, or Incident Response. Strong understanding of endpoint telemetry, EDR, and detection technologies (Tanium experience desirable). Experience triaging and analysing alerts from SIEM, EDR, and endpoint ...