12 of 12 Permanent Incident Response Jobs in Hertfordshire

will be responsible for safeguarding the organisation's Operational Technology (OT) environments from cyber threats. This role involves implementing OT security measures, monitoring the OT network for threats, leading incident response efforts, validating security controls, and ensuring the resilience of OT systems. What you'll be doing: Implement and manage OT security controls, measures, and technologies to protect … critical assets and systems. Conduct risk assessments, vulnerability management, and security testing. Develop and implement incident response plans and ensure compliance with regulations. Conduct proactive threat hunting and reactive incident response. Provide regular reports on security status, including incidents, vulnerabilities, and overall health of OT systems. Collaborate with cross-functional teams, including network engineers, system administrators, and … external cybersecurity teams. What you'll need: At least 3 years of experience in OT security engineering, incident response, or a related field. Ability to manage multiple assessments and projects simultaneously. Strong understanding of industrial control systems (ICS) and SCADA systems. Strong problem-solving skills and attention to detail. Proven experience with OT and IT security technologies, including More ❯

Hands and Feet Support (FSO) role is responsible for executing physical tasks within the data center, supporting remote teams, and ensuring operational continuity through proactive monitoring, hardware handling, and incident response. Shift Pattern: 24x7 Support ? 12-hour rotational shifts Key Responsibilities:- CRU Handling: Assist with Customer Replaceable Unit (CRU) replacements and installations. Cabling & Patch Panel Management: Perform structured cabling … support via email and telephone. Monitoring: Monitor telephony and email channels for support requests and alerts. Environmental Monitoring: Use native tools to monitor temperature, humidity, and other environmental parameters. Incident Response: Support incident management processes and escalate issues as needed Qualifications & Skills: Basic understanding of data center infrastructure, cabling standards, and cooling systems. Experience with Nlyte or … with hardware components and structured cabling. Strong communication skills for coordinating with remote teams and vendors. Ability to work in a 24x7 shift environment. Experience with monitoring tools and incident response is a plus Benefits A supportive, diverse, and global team with a brilliant culture. Competitive compensation and benefits that includes up to 20 days’ vacation per year More ❯

to uncover anomalies. You’ll also conduct proactive threat hunting and maintain detailed risk profiles for users, systems, and applications to support a strong security posture. Endpoint Detection and Response (EDR) You’ll manage and maintain endpoint security and compliance, performing daily health checks and resolving any issues that arise. Working closely with Infrastructure teams, you’ll ensure endpoint … implement and configure DLP solutions, define classification policies, and monitor for potential data leaks. Your work will help protect sensitive information and prevent unauthorised data exfiltration across the organisation. Incident Response You will form a key part of the incident response team when security incidents occur—analysing threats, assessing business impact, and be part of the … response lifecycle from containment to recovery. You’ll document incidents thoroughly, follow established playbooks, and help improve them over time. Automation will be key to streamlining investigations and enriching threat intelligence. Testing and Validation You’ll take part in cyber crisis simulations, penetration testing, and table-top exercises to ensure our defences are robust and response plans are More ❯

understanding of cybersecurity fundamentals, including malware, phishing, and network attacks Familiarity with endpoint protection, firewalls, and email security systems Knowledge of scripting or automation (e.g., PowerShell, Python) Experience with incident response frameworks and ITIL ticketing systems (e.g. ServiceNow, Jira) Nice to have Any MS365 certifications and CW PSA (nice to have) Relevant security certifications such as CompTIA Security+ … and improving SOC runbooks, playbooks, and standard operating procedures Collaborate with IT teams and other stakeholders to remediate security issues Participate in continuous improvement initiatives to enhance detection and response capabilities Contribute to periodic reporting on incident trends and metrics More ❯

Security Administrator (Triage & Incident Response) 📍 Hemel Hempstead | £38,000 – £40,000 | Office-Based Are you ready to be on the front line of cybersecurity? We’re looking for a proactive, analytical, and curious Security Analyst to join our growing team in Hemel Hempstead. If you thrive in fast-paced environments, love solving problems, and want to make a … real impact in protecting an organisation from cyber threats — this role is for you. 🚀 Why You’ll Love It Here 💡 Hands-On Experience: Get immersed in real-world incident response and security operations — no two days are the same. 📈 Grow Your Skills: We invest in your continuous development through training, mentoring, and career progression. 🤝 Team First Culture: Work … outcomes clearly and consistently. Support vulnerability management, patching, and threat monitoring. Maintain and improve SOC playbooks and standard operating procedures. Collaborate across teams to remediate security risks. Contribute to incident trend reporting and ongoing security improvements. Stay sharp by keeping up with emerging threats and tools. 🧠 What You Bring 2–5 years’ experience in a Security Analyst, SOC, or More ❯

and analysing security threats for multiple customers.You will oversee and mentor a skilled team of analysts, fostering a culture of continuous learning, champion best practices in threat detection and incident management, and play a key role in safeguarding our organisation’s digital environment. Communications with key business partners is key regarding risks, threats and SOC performance. Familiarity with NIST … Cybersecurity, MITRE ATT&CK, Splunk, Sentinel and ISO27001 is vital What you will be doing: Lead, mentor, and develop SOC analysts and incident responders. Provide technical direction, conduct performance reviews, and foster continuous improvement. Oversee full lifecycle of security incidents from detection to resolution. Ensure compliance with SLAs and escalation protocols. Maintain and enhance incident response plans … environment, driving operational excellence and continuous improvement. Ability to harness data analysis to detect threats, identify trends, and deliver actionable security insights. Strong track record in threat detection, incident management, and escalation handling. Hands-on experience managing SIEM and SOAR platforms such as Splunk, Microsoft Sentinel, or Elastic. Skilled in coaching analysts, building high-performing teams, and managing effective More ❯

Implement security scanning and compliance checks within deployment pipelines • Collaborate with development teams to optimize application performance and reliability • Maintain and improve backup, recovery, and disaster recovery procedures • Support incident response and root cause analysis for production issues • Manage configuration management and secrets management solutions • Optimize cloud resource utilization and cost management • Cover on-call rotation for production More ❯

our forward thinking team as a Network Security Engineer, where you will play a key role in safeguarding our organisations' network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing and maintaining robust security solutions More ❯

our forward thinking team as a Network Security Engineer, where you will play a key role in safeguarding our organisations' network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing and maintaining robust security solutions More ❯

with ISO 27001 other relevant frameworks and standards (NIST CSF, IEC 62443, CIS, GDPR etc.) Maintain the department’s information security procedures, including but not limited to information security incident response and business continuity management, conducting tabletop exercises to evaluate effectiveness. Manage the information security awareness training program to ensure all employees develop and maintain an awareness about More ❯

are crucial tasks. Collaboration: Working closely with internal IT teams to integrate security measures and promote IT security awareness among senior management. Operational Oversight: Overseeing penetration testing, vulnerability scans, incident responses, data loss prevention, phishing tests, and system audits. Vendor Management: Conducting security evaluations of third party vendors and service providers, advising on application security initiatives. Let's talk More ❯

you'll do Lead the design, build, deployment, and operation of critical software systems. Architect and deliver the shift to an event-driven microservices environment. Improve automation, monitoring, and incident response capability. Partner with Product and stakeholders to define and execute the roadmap. Mentor and develop engineers, driving a culture of quality and accountability. What you'll bring More ❯