alerts - Analyse and respond to security events - Conduct root cause analysis and forensic investigations - Collaborate with IT and security teams to resolve incidents - Maintain incidentresponse procedures and documentation Desirable Skills: - Experience with Microsoft technologies (Windows Server, Active Directory, Azure) - Knowledge of Elasticsearch and Linux - Familiarity with SIEM more »
incidents, acting as the "security lead" within a resolver group. Ensure that the Head of Security Operations and other senior stakeholders are appraised of incident impact, developments, and outcomes. Recognise when external assistance is required to support or guide incidentresponse and escalate promptly. Develop - and guide … the development of - runbooks and processes, ensuring they're fit-for-purpose and followed. Prepare incident reports and gather reporting metrics for cyber events and incidents. Analyse security event trends to tune rules and thresholds to improve the fidelity of detections and alerts. What you ll need: Extensive experience more »
and accountabilities 1. Design and recommend security architectures, solutions, and controls to protect client critical assets and data. 2. Develop and help customers implement incidentresponse plans, which outline steps to take in case of a security breach. 3. Perform security assessments for customers, including penetration testing, to more »
Keep customers informed about the status of their tickets and any delays. Assist in the recruitment and onboarding of new team members. Manage the incidentresponse process during out-of-hours. Work with other departments to resolve major incidents. Identify and implement improvements to service desk processes. Maintain more »
across various platforms Manage high-priority support tickets, ensuring timely resolution through in-depth troubleshooting and analysis Provide expertise as a key member of incidentresponse teams, focused on delivering rapid solutions Mentor and provide guidance to junior support staff members Projects (50%): Identify opportunities to enhance operational more »
Manchester, Clifton, City and Borough of Salford, United Kingdom Hybrid / WFH Options
Advania UK
business ensuring security and monitoring requirements are determined and implemented through onboarding or continuous improvement activities Qualifications & Experience: Professional experience of working in an IncidentResponse Team or a similar environment Knowledge of SIEM platforms such as Azure Sentinel, Microsoft Defender, Splunk, ArcSight, QRadar, or LogRhythm. Strong analytical more »
Oldham, Greater Manchester, North West, United Kingdom
BluetownOnline Ltd
databases, storage solutions, and backup systems Ability to translate business requirements into efficient IT solutions Proficiency in cybersecurity practices, including threat detection, prevention, and incidentresponse Professional work ethic with a client-driven focus and attention to detail Familiarity with IT project management methodologies and tools Capacity to more »
Active Directory, including user authentication, access controls, and privilege management. * Managing and maintaining endpoint security solutions, including endpoint protection platforms (EPP), endpoint detection and response (EDR), and mobile device management (MDM) using Microsoft Intune. * Developing and enforcing Data security/Application security policies, standards, and procedures across the organisation. … Ensure compliance with relevant regulations and industry standards. * Working with the Managed SOC and Operational teams, develop and maintain incidentresponse plans. Lead incidentresponse activities, including detection, investigation, containment, and recovery. Staying updated on emerging threats and security trends. * Collaborating with cross-functional teams, including more »