6 of 6 Contract Incident Response Jobs in the West Midlands

an initial 6-month contract. *Inside IR35* Job Description: Establish goals and priorities by working closely with your team to identify the most critical focus areas. These include: Improving incident response times Reducing false positives and other extraneous alerts Enhancing threat detection capabilities Oversee your staff's activities and ensure they focus on the right priorities Oversee SOC … activities by reviewing your team's performance metrics, incident reports and other key indicators Lead incident response efforts when a security incident occurs, the SOC team has to respond as quickly as possible Lead these efforts by establishing clear incident response procedures and protocols and conveying them to the team Analyse incident reports … to understand your organization's security posture by reviewing incident reports, SOC managers identify patterns and trends that may indicate weaknesses or vulnerabilities in their security defences Serve as the point of contact (POC) for security incidents within the company. You are the primary liaison between the SOC team, other internal stakeholders, and external parties such as vendors, clients More ❯

difference. We have a great opportunity for a SOC Manager to join the team. As SOC Manager you will: * Oversee SOC activities by reviewing your team's performance metrics, incident reports and other key indicators * Lead incident response efforts when a security incident occurs, the SOC team has to respond as quickly as possible * Lead these … efforts by establishing clear incident response procedures and protocols and conveying them to the team * Analyse incident reports to understand your organization's security posture by reviewing incident reports, SOC managers identify patterns and trends that may indicate weaknesses or vulnerabilities in their security defences * Serve as the point of contact (POC) for security incidents within … are previously identified by the Level 2 security analyst who are monitoring the security consoles from various SOC entry channels (SIEM, Tickets, Email and Phone) End to end security incident management. You will play a key role in providing the highest level of technical expertise and handling the most complex security incidents. Key Responsibilities: * Manage service and process improvements More ❯

are seeking an experienced SOC Manager to lead and enhance a Security Operations Centre (SOC) for a major client in the technology sector. You will be responsible for improving incident response, strengthening threat detection, and overseeing the performance and development of the SOC team. Key Responsibilities: Establish SOC goals and priorities, including improving incident response, reducing … false positives, and enhancing threat detection. Lead incident response efforts and coordinate resolution with internal and external stakeholders. Analyse incident trends to identify vulnerabilities and inform security strategy. Act as the primary point of contact for security incidents. Manage end-to-end security incident investigations and reporting. Mentor SOC analysts and ensure adherence to operational best … knowledge of Authentication, Endpoint Security, Firewalls, DLP, IAM, PKI, EDR, SOAR, and related SOC technologies. Experience with SIEM platforms such as Google Chronicle, Splunk ES, or QRadar. Expertise in incident management, intrusion analysis, and security device configuration. Experience with log source integration, parser writing, and correlation rule development. SOC automation and cloud operations experience (e.g., AWS). Excellent leadership More ❯

an experienced SOC Engineer to support a high-profile critical national infrastructure project. This role is ideal for professionals with a strong background in security operations, threat detection, and incident response, who thrive in fast-paced environments and understand the importance of protecting sensitive systems. This is a remote-first opportunity, with occasional travel to the customer site … SIEM use cases, dashboards, and alerting mechanisms. Respond to security incidents, conduct root cause analysis, and provide remediation recommendations. Collaborate with engineering and infrastructure teams to improve detection and response capabilities. Maintain documentation for incident handling, playbooks, and operational procedures. Support compliance efforts and contribute to audit readiness. Stay current with emerging threats, vulnerabilities, and security technologies. Required … Skills & Experience Proven experience in a SOC or similar security operations role. Strong knowledge of SIEM platforms (e.g., Splunk, Sentinel, QRadar). Familiarity with threat intelligence, malware analysis, and incident response frameworks. Understanding of network protocols, Windows/Linux systems, and cloud environments. Excellent analytical, communication, and problem-solving skills. Active SC Clearance or eligibility to obtain it. More ❯

Splunk architecture, data ingestion, alerting, and dashboarding, along with experience migrating workloads to Elasticsearch. In addition to migration duties, the candidate will maintain and enhance existing Splunk infrastructure, provide incident support, manage upgrades, and ensure observability platforms remain secure and performant. This role demands a technically strong individual with excellent stakeholder communication and problem-solving skills. Key Responsibilities: Migration … Collaborate with Elastic teams to configure alerting and monitoring using Kibana, Elasticsearch Watcher, or third-party tools. Ensure migration plans include validation, rollback procedures, and knowledge transfer. Platform Operations & Incident Response: Maintain Splunk infrastructure in both Production and Non-Production environments. Support Splunk SRE and Application teams in incident investigation and resolution. Proactively monitor system health and More ❯

stack - M365, Azure, Atlassian, Telephony, IT Service tools Manage/Develop Identity and Access Management solutions Identity/Automate tasks - streamline workflows Implement/Manage monitoring tools Troubleshoot and Incident Response: Investigate, Resolve issues Security: Implement security measures Documentation: create documentation for systems procedures CI/CD Support: Implementation of Continuous Integration/Deployment pipelines Provide tech config More ❯