23 of 23 Permanent Incident Response Jobs in the East of England

BRISTOL OR STEVENAGE - Sole British Citizen We are seeking a proactive CERT Incident Responder to lead our Digital Forensics and Incident Response (DFIR) readiness and drive our Adversarial Exposure Validation (AEV) program. This role is a unique hybrid of defensive response and proactive testing, ensuring … Techniques, and Procedures (TTPs). This is an ideal "next step" role for an experienced Cyber Analyst with a deep passion for high-stakes incident response, digital forensics, and threat mitigation. Compensation & Logistics Salary: £50,000 - £60,000 (depending on experience). Working Pattern: Dynamic (hybrid) working; minimum ...

delivery of cyber security across Total IT not just the strategy, but the execution. You will take full accountability for client security roadmaps, incident response, technical controls, and the day today running of our cyber capability. This role blends hands - on technical leadership with operational delivery. Youll … person who ensures this gets done. Responsibilities: Own client cyber security roadmaps: creation, prioritisation , scheduled review, and delivery. Lead and continually improve our incident response function including triage, containment, communications, and lessons learned. Drive remediation by working closely with Service Desk, Projects, and clients. Maintain robust security reporting ...

delivering technology change/improvement projects and managing external support agreements. The Cyber Security Analyst is required to focus on the detection, investigation and response to cyber security events and incidents. Other tasks involve BAU security tasks, supporting cyber security projects and assisting with regulatory compliance. Daily tasks will … involve the following: * Endpoint monitoring and analysis. * Incident readiness and handling as part of the Computer Security Incident Response (CSIRT) team. * Monitor and administer Security Information and Event Management (SIEM). * Malware analysis and forensics research. * Understanding/differentiation of intrusion attempts and false positives. * Investigation tracking ...

Network Security Engineer, where you will play a key role in safeguarding our clients’ organisations’ network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing … Location – Stevenage (Onsite Shift work) Salary - £50k (Plus £2k bonus and shift allowance of £8k) Keywords: Network Security Engineer, SOC, Security Operations Center, Firewalls, Incident Response, Security Incidents, Networking Principles, Virtual Private Networks, Security Protocols, Vulnerabilities, Threats. Only apply for this role if you currently hold the specific ...

both technical and non-technical stakeholders. You will be part of a global Cyber Technical Services team, collaborating closely with Threat Intelligence and Incident Response specialists across National Security and Defence programmes. What You'll Be Doing as a Security Testing Consultant (SC) Deliver end-to-end security … place Develop and improve scripts, tools, and techniques to enhance testing capability Share knowledge and collaborate with colleagues across cyber, threat intelligence, and incident response teams Support testing across National Security, Defence, and Critical Infrastructure environments Essential Skills & Experience Proven experience working as a Security Testing Consultant ...

asset inventory covering PLCs, HMI's, SCADA systems, historians, and associate infrastructure. Identify asset ownership, criticality, and operational constraints. Ensure asset records support incident response, risk management, and audit requirements. OT Control Network Integration & Data Onboarding Support the onboarding of OT control networkenvironments into enterprise cyber monitoring. Liaise … able to apply cyber controls proportionately in OT environments, explaining trade-offs between confidentiality, integrity, availability and safety and challenge IT-centric controls Incident Response Support (OT) Must be able to provide rapid, accurate OT context during incidents, explain "do-not-touch" systems, and support triage decisions without ...

aligned with industry best practices. The successful candidate will work closely with security operations, infrastructure, and application teams to ensure tooling supports threat detection, incident response, and compliance requirements. Key Tools and Experience: McAfee EPO ForcePoint Zscaler Pulse VPN IPSEC/SSL Nagios Key Responsibilities: Administer and maintain … performance and ensure data quality, coverage, and alerting accuracy. Collaborate with internal teams to ensure tools are aligned with business and security objectives. Support incident response activities by ensuring tooling provides actionable insights and forensic data. Document configurations, procedures, and tool usage guidelines. Participate in tool evaluations ...

have the freedom to make a real impact—defining strategy, driving continual improvement, and mentoring talented analysts to deliver world-class detection and response capabilities. As the SOC Operations Manager, you will: Lead and develop a skilled SOC team, inspiring a culture of continuous learning and technical excellence. Oversee … enhance detection and automation capabilities. Drive continuous improvement through ITIL-aligned processes and adherence to CREST standards. Oversee vulnerability management, threat intelligence, and incident response plans. Communicate security posture, risks, and incident outcomes clearly to senior stakeholders. Ensure operational readiness and contribute to maintaining industry accreditations. Have ...

multiple customers.You will oversee and mentor a skilled team of analysts, fostering a culture of continuous learning, champion best practices in threat detection and incident management, and play a key role in safeguarding our organisation’s digital environment. Communications with key business partners is key regarding risks, threats … with NIST Cybersecurity, MITRE ATT&CK, Splunk, Sentinel and ISO27001 is vital What you will be doing: Lead, mentor, and develop SOC analysts and incident responders. Provide technical direction, conduct performance reviews, and foster continuous improvement. Oversee full lifecycle of security incidents from detection to resolution. Ensure compliance with ...

doing: Monitoring and triaging security alerts across highly secure environments Investigating threats using SIEM, network traffic, endpoint telemetry, and logs Supporting live incident response and escalation activities Enhancing detection rules, playbooks, and tooling aligned to MITRE ATT&CK Producing clear, high-quality incident reports for technical ...

identify automation opportunities and build powerful tools that make our clients systems smarter and teams more efficient. From scripting to deployment, monitoring to incident response, this role will shape the future of how our client delivers IT.This position is also responsible for monitoring and maintaining infrastructure, ensuring systems … Role & Responsibilities: Automation Development : Identify inefficiencies and build automation solutions using tools like PowerShell, Python, and Bash to streamline operations and reduce manual effort. Incident & Problem Management : Automate detection, triage, and resolution processes, and contribute to root cause analysis with preventive automation. Change & Configuration Management : Design automated workflows ...

play a key role in shaping how IT is delivered across the organisation. From scripting and deployment through to monitoring, patching, and incident response, your work will directly influence the stability, security, and scalability of our infrastructure. The Role You'll be responsible for monitoring and maintaining … quick fixes. A major focus of the role is automation. You'll proactively identify inefficiencies and design automated workflows that reduce manual effort, improve response times, and enhance operational consistency. You'll also collaborate closely with Infrastructure Operations, Service Desk, and Field Services teams to embed automation into everyday ...

missed Collaborating closely with SOC Analysts, Security Architects, Engineers, and Programme teams Translating threat intelligence, vulnerabilities, and adversary techniques into effective detections Supporting incident response by improving alert fidelity and reducing noise Helping define and maintain SOC standards, detection strategy, and engineering best practice What you’ll bring ...

Network Security Engineer, where you will play a key role in safeguarding our organisations' network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing ...

cloud (Azure) infrastructure, with a strong emphasis on security, resilience and availability. You will play a key role in infrastructure upgrades, new solution design, incident response and disaster recovery planning, working across multiple UK sites with occasional wider travel. Key Responsibilities Design, implement and support on-premise ...

developing your team.In this SOC Shift Leader role you’ll help shape how the SOC operates, improve processes, and work closely with intelligence and incident response teams on real-world defence threats. You’ll be at the heart of protecting national security, using tools like Microsoft Sentinel, Defender ...

ready to make it your core focus. This role suits someone who has been actively involved in security monitoring , threat detection , vulnerability management , or incident response, and now wants to deepen their expertise in a dedicated cyber security position. The role: You’ll play a key role ...

cloud-native AWS architectures Build DevOps automation to support SRE practices Establish AI/ML development standards and frameworks Set observability, monitoring, and incident response standards Promote best practices in web, event-driven, and cloud-native technologies Provide technical expertise and oversee code reviews People Leadership Manage ...

system designs, supplier solutions, and internal services to ensure secure, robust architectures. Support the Trust's management of cyber threats, including vulnerability management, incident response, patching oversight, and threat-led risk assessments. Deliver and contribute to cyber security projects using recognised project management principles. Monitor and report ...

oversight, procedural assurance, and ongoing mentorship. This role ensures each analyst team is aligned with evolving cyber threat detection standards, works in sync with response and intelligence functions, and delivers consistent high-quality casework across shifts. This is a senior operational role that builds upon the responsibilities … values innovation and diversity, this is the place to make an impact. In addition to Senior SOC Analyst responsibilities (alert triage, threat detection, ticket response, and tooling operation), the SOC Shift Lead will provide: Shift Continuity & QA Operational assurance and standard enforcement across all active shifts. Review, assess ...

including TCP/IP, DNS, DHCP, routing, switching and firewalls Technical leadership Act as the senior technical escalation point for infrastructure services Lead major incident response and complex problem resolution Provide mentoring and technical guidance to engineering and service teams Role-model secure engineering, strong documentation and operational ...

including TCP/IP, DNS, DHCP, routing, switching and firewalls Technical leadership Act as the senior technical escalation point for infrastructure services Lead major incident response and complex problem resolution Provide mentoring and technical guidance to engineering and service teams Role-model secure engineering, strong documentation and operational ...

teams-capturing requirements, configuring/developing solutions, and supporting live services. Key responsibilities Support, upgrade and improve internal business applications and services (availability, quality, incident response). Gather requirements from stakeholders and translate into clear technical deliverables. Configure/develop solutions and coordinate delivery with internal teams ...