1 to 25 of 77 Permanent Incident Response Jobs in the North of England

Senior Incident Response Specialist - Manchester £50-85k DOE Hybrid Manchester (1 day/week with flexibility) Must either hold SC Clearance or be eligible for SC Clearance We are seeking an experienced Incident Response Specialist to deliver high-quality cyber incident response and forensic investigation services across our client's customer and internal environments. In this role, you will lead cyber incident investigations, conduct forensic analysis across endpoint, network, and cloud environments, and work closely with security operations teams to identify, contain, and remediate threats. You will also ...

Cyber Services and Capabilities Employment Type: Full Time Location: GBR Manchester Hardman Boulevard Role Purpose: To manage and service NCC Group clients within the Incident Response space. The Managing Consultant plays a critical role within the DFIR team of experienced consultants, delivering high‐quality incident response and proactive services to clients. The role involves leading and contributing to detailed technical analysis, managing incident response activities, and ensuring effective communication and coordination throughout an engagement. With a strong focus on technically supporting clients during live incidents, the Managing Consultant is also expected to contribute ...

UBDS group is seeking a highly skilled Senior Digital Forensics and Incident Response (DFIR) Consultant to lead and support complex cyber incident investigations and response activities. The primary focus of this role is the delivery of DFIR services to external clients, ensuring high-quality, timely … professional incident response and forensic capabilities. In addition, the role will support internal cyber security operations and improvement initiatives as required. This role will work closely with Security Operations Centre (SOC) and Infrastructure Operations Centre (IOC) engineers to identify, contain, and remediate cyber threats, while enhancing both client ...

Information Security Incident Manager Location: Leeds (Hybrid – 2 days per week on site). Contract: Permanent, Full Time. Salary: £70,000 - £80,000 (DOE). Job Overview The Information Security Incident Manager will lead the organisation’s response to cyber security incidents, strengthening overall resilience. The role … commands major cyber incidents, coordinating technical and business teams, ensuring effective governance, preparedness, and regulatory compliance. Responsibilities Lead the organisation’s cyber incident response, coordinating technical, operational, and business activities from containment to recovery. Act as Cyber Incident Commander for major incidents, setting priorities, directing response ...

Senior Cyber Security Analyst to help strengthen its security posture and safeguard critical systems. This is an excellent opportunity for someone passionate about incident response and proactive threat management within a dynamic, fast-paced environment. The ideal candidate will have a positive go-getter attitude, and will have … experience of incident response, using MS security tools and ideally an understanding of Tanium. Key Responsibilities Working with the Head of Information Security to mature the incident response capability Using your understanding of the contemporary threat environment to assist with your vulnerability investigations and response ...

cyber security challenges, and wants to make a real impact within a large-scale enterprise environment. Key Responsibilities Lead and coordinate cyber operations and incident response activities across the organisation. Support the enhancement of cyber containment and response capabilities. Manage and respond to complex cyber security incidents … governance, and security control initiatives. Skills & Experience Required To be successful in this role, you should have: Strong hands-on experience in Cyber Security Incident Response or Cyber Operations. Deep technical expertise in one or more incident response related domains, including: SOC Operations Malware Analysis Endpoint ...

Security Operations Team This is an excellent opportunity for a CyberSecurity Analyst looking to join a mature cyber security operation and continue developing their incident response, threat detection and cyber defence skills within a highly respected technology organisation. An established international technology and cyber security services provider … excellent opportunity for a cyber security professional looking to further develop their experience within a mature Security Operations environment, gaining exposure to incident response, threat detection, vulnerability management and modern Microsoft security technologies. Working within a highly regulated customer environment, you will help monitor, investigate and respond ...

excellent opportunity for a cyber security professional looking to further develop their experience within a mature Security Operations environment, gaining exposure to incident response, threat detection, vulnerability management and modern Microsoft security technologies. Working within a highly regulated customer environment, you will help monitor, investigate and respond … critical business systems and infrastructure. The Role As a SOC Analyst, you will be responsible for monitoring and responding to cyber security events, supporting incident investigations and helping to maintain a strong security posture across customer environments. Key Responsibilities Monitor and investigate security alerts and events across cloud, endpoint ...

operations. This is a technical role suited to an experienced analyst with strong engineering instincts, hands-on coding capabilities, and a deep understanding of incident response, detection engineering, and adversary tradecraft. This position includes approximately one week per month of on-call availability for high-priority incident … ideal for someone who has likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible ...

operations. This is a technical role suited to an experienced analyst with strong engineering instincts, hands-on coding capabilities, and a deep understanding of incident response, detection engineering, and adversary tradecraft. This position includes approximately one week per month of on-call availability for high-priority incident … ideal for someone who has likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible ...

Join us as a Site Reliability Engineer In this role, you’ll support improvements to availability, performance, efficiency, change management, monitoring, security, incident response, and capacity planning for our products and services You’ll enjoy significant stakeholder interaction, working in collaboration with engineers to ensure a principled approach … ensure services are observable, scalable, and resilient. You’ll also participate in the 24/7 support and on-call rotation, gaining experience in incident response and platform operations. In this role, we’ll expect you to be involved as well in the operation of AWS-based Kubernetes ...

experience. This is a senior, hands-on role working across firewalling, on-premise and cloud security, secure infrastructure, network security, workload segmentation, hardening, monitoring, incident response and security architecture. The environment is highly secure and regulated, with a strong focus on enterprise firewalling, Elastic/Elasticsearch, VMware-based … Server environments, Active Directory, Group Policy and endpoint configurations Implementing, auditing and remediating against CIS Benchmarks, STIGs and security hardening standards Supporting vulnerability management, incident response, root cause analysis and remediation planning Embedding security into DevSecOps/CI/CD practices, including automated security testing and policy ...

UBDS Group is looking for a highly skilled Senior Digital Forensics and Incident Response (DFIR) Consultant located in Manchester. This role focuses on delivering DFIR services to clients while supporting internal cybersecurity operations. You will lead incident response activities, conduct forensic investigations, and work closely with ...

Group plc is seeking a DFIR Managing Consultant to lead incident response engagements and manage a team of DFIR consultants. The role requires extensive experience in incident response and digital forensics, providing critical guidance during complex situations. Key responsibilities include coordinating teams, delivering thorough investigations ...

Group is seeking a DFIR Managing Consultant in Manchester to lead incident response engagements. The role involves managing a team of skilled consultants, providing hands-on support during cyber incidents, and ensuring effective communication. Candidates should have extensive experience in incident response and digital forensics, strong ...

relax and recharge Free secure on-site parking Dress Down Fridays Free VDU eye test What you’ll be doing: Leading the investigation and response to security incidents, acting as the escalation point for complex or high-severity events. Monitoring and optimising security tooling, including SIEM and endpoint protection … platforms, to improve detection and response capabilities. Conducting threat hunting, root cause analysis, and forensic investigations to identify risks and control weaknesses. Developing and maintaining incident response processes, playbooks, and detection rules aligned to best practice frameworks. Translating threat intelligence into actionable controls to strengthen detection ...

integration and performance testing for all components Ensure solutions are reliable, reproducible and stable across releases Support continuous improvement of testing practices Monitoring and Incident Response Implement observability and monitoring tooling Track system performance and detect anomalies Support incident response, troubleshooting and root cause analysis ...

mapping Risk advisory and assurance Business resilience Data privacy and GDPR ISO 27001 assessments Supply chain assurance PCI 3DS, PCI P2PE, PCI SSF audits Incident response readiness and planning Card production and PIN audits Cyber maturity assessments Incident response planning Gold/Silver/Bronze tabletops ...

leading global financial institution seeking a Lead Cyber Operations Analyst to join their Cyber Security team. This role will focus on leading cyber incident response activities, managing security monitoring capabilities, driving threat detection and containment, and supporting the bank's wider cyber defence strategy. Key Requirements: * Strong experience … within Cyber Operations, SOC or Incident Response environments * Hands-on expertise with SIEM technologies (Splunk, Sentinel, QRadar etc.) * Knowledge of threat detection, malware analysis, endpoint, network or cloud security * Scripting experience (Python, PowerShell or similar) * Strong understanding of cyber risk, controls and security governance * Excellent stakeholder management ...

working with a big banking client based in the Knutsford, and they’re looking for a Lead Cyber Operations Analyst with strong experience in Incident response to join their team. The ideal candidate: Hands on expertise with incident response and managing cyber security incidents. Experience ...

plus core services. LAN/WAN network security & patch management. VM management (VMware/Proxmox). Cyber Security & Firewall management. AWS cloud administration. IT Incident response & DR. What youll need: A minimum of 5+ years experience in IT Infrastructure/Networking/Service Delivery or equivalent roles. … patching, software deployment and lifecycle management). Working knowledge of identity and security controls (e.g., MFA, Conditional Access, RBAC/least privilege) and supporting incident response activities. Experience working within a Service Desk/ticketing environment, managing workload to SLAs and owning incidents/requests through to resolution. ...

effectively enforced and adhered to across the organisation. Hands-On DeliveryRemain hands-on in the day-to-day operation of cyber security, including: Incident response and investigation. Security tooling, monitoring, and vulnerability management. Supplier and third-party risk assessment. Lead and participate in cyber incident response ...

activities. Monitor compliance across endpoint and network security solutions. Configure, maintain and support anti-malware, device control and Data Loss Prevention (DLP) technologies. Support incident response activities, security investigations and remediation of security breaches. Maintain backup and recovery procedures for network and security systems. Configure, manage and troubleshoot … WildFire. Experience with IDS, IPS, DLP, DDoS mitigation and security monitoring technologies. Strong experience supporting Cisco ISE and posture compliance environments. Experience with security incident response and vulnerability remediation. Strong troubleshooting and analytical skills. Excellent communication and stakeholder management abilities. Desirable Experience Relevant certifications such as CCNP, CCIE ...

senior levels, influencing senior stakeholders with effective articulation of business and operational risk in clear and pragmatic terms. Lead and participate in cyber incident response exercises and real incidents Own cyber risk management and contribute to the enterprise risk register. Ensure compliance with relevant standards and frameworks (e.g. … OT. Support audits, assessments, and regulatory or customer assurance activities. Remain hands-on in the day-to-day operation of cyber security, including: Incident response and investigation. Security tooling, monitoring, and vulnerability management. Supplier and third-party risk assessment. Experience required Experience owning a cyber security strategy encompassing ...

Certificate in Cyber Security Practices, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you ll gain hands-on experience that prepares you for today s fast-growing cyber security and IT roles. … Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills ...