19 of 19 Permanent Incident Response Jobs in Scotland

operations. This is a technical role suited to an experienced analyst with strong engineering instincts, hands-on coding capabilities, and a deep understanding of incident response, detection engineering, and adversary tradecraft. This position includes approximately one week per month of on-call availability for high-priority incident … ideal for someone who has likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible ...

operations. This is a technical role suited to an experienced analyst with strong engineering instincts, hands-on coding capabilities, and a deep understanding of incident response, detection engineering, and adversary tradecraft. This position includes approximately one week per month of on-call availability for high-priority incident … ideal for someone who has likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible ...

support). Monitor, analyse, and investigate network traffic and emerging threats, including active DDoS activity. Support customer maintenance, upgrades, and technical communications. Contribute to incident response and post-incident reviews that sharpen our detection and mitigation playbooks. Work within ITIL processes (Incident, Change, Problem, Service Requests … A+, Network+, Security+, CySA+, or CyberOps. If youre early in your career and hungry to build deep expertise in network security, traffic analysis, and incident response, this role was designed for you. Bright Purple is an equal opportunities employer: we are proud to work with clients who share ...

reports directly to the Chief Information Officer (CIO). You will be accountable for shaping cyber strategy, overseeing governance and risk management, and leading incident response capabilities, while providing assurance on organisational cyber resilience at executive and board level. This role involves Develop and deliver a cyber security … strategy and roadmap aligned to organisational priorities and relevant government resilience frameworks. Oversee cyber security operations, including incident response, threat monitoring, vulnerability management, and third-party security services. Act as the senior cyber authority, offering expert guidance and clear assurance on cyber risk, compliance, and resilience to senior ...

Senior Network Security Engineer Scotland/Hybrid Salary up to £80,000 You will own incidents end-to-end across Incident, Major Incident, Change, Problem, and Service Request workflows (ITIL-aligned), leading real-time response to live DDoS attacks and complex network events as they unfold. … cybersecurity, or infrastructure Degree in Computer Science or a related field Strong networking fundamentals TCP/IP, routing, Layer 13 troubleshooting Proven experience in incident response and customer-facing technical roles The temperament to own and resolve incidents under real pressure Excellent communication skills clear, calm, customer-ready ...

Participate in code and configuration reviews, promoting engineering best practices Embed security into delivery pipelines, including image scanning, dependency management and secrets handling Support incident response, post-incident reviews and continuous service improvement Work collaboratively with engineering and product teams to support predictable, low-risk releases Experience ...

using Infrastructure as Code - Lead and enhance Cloud Security operations, including but not limited to identity and access management, vulnerability management, logging, monitoring, and incident response. - Initiate and monitor actions to investigate patterns and trends to resolve problems and determine future preventative measures. - Use information security practices and available ...

Spacelabs Privacy and Security Program is a shared service model with responsibility for Cybersecurity and Privacy by Design, Compliance, Security Testing and Incident Response. As a Spacelabs Senior Cybersecurity Engineer you are responsible for cybersecurity and privacy functions for our Products. The role collaborates with Spacelabs Project Teams … security inquiries complaint and vulnerability reports provide consistent cybersecurity and privacy guidance to Spacelabs and Customer Lead Cybersecurity and Privacy Complaint Event and Incident Invest Requirements: 10+ years of Cybersecurity and Privacy Compliance 5-10 years of Cloud Security Experience (AWS preferred) 5 years experience leading product cyber security ...

mitigating risk • Support and manage security controls across Azure Active Directory and Microsoft 365 • Provide clear recommendations on security risks and remediation activities • Support incident response, problem management and change processes • Maintain and optimise cloud security tooling and platforms • Lead post-incident reviews and drive continuous improvement ...

Spacelabs? The Spacelabs Privacy and Security Program is a shared service model with responsibility for Cybersecurity and Privacy by Design, Compliance, Security Testing and Incident Response. As a Spacelabs SR Cloud Cybersecurity Engineer, you are responsible for cybersecurity and privacy functions for our Products. This role collaborates with Spacelabs … security inquiries complaint and vulnerability reports provide consistent cybersecurity and privacy guidance to Spacelabs and Customer Lead Cybersecurity and Privacy Complaint Event and Incident Investigations for assigned projects. Qualifications Min Knowledge & Experience required for the position: 10+ years of Cybersecurity Engineering 5-10 years of Cloud Security Experience ...

complex enterprise environment, alongside contributing to security governance, compliance, and best practice delivery. You will play a key role in strengthening detection and response capability across cloud and on-prem infrastructure, while supporting both BAU operations and ongoing transformation projects. Key Responsibilities of the Cyber Security Engineer: Deploy, configure … security operations context Strong understanding of security frameworks such as ISO27001 and NIST Experience across both BAU security operations and project delivery Strong incident response experience, including investigation, escalation, and root cause analysis Ability to produce clear technical documentation (SOPs, playbooks, and standards) Strong communication and stakeholder management ...

insights into real security improvements 🧠 What you’ll bring: • SOC/security environment experience • Strong knowledge of SIEM, EDR, networking & OS (Windows/Linux) • Incident response experience end-to-end • Analytical mindset + clear communication skills ✨ Bonus points for: Microsoft Security (Sentinel, Defender), cloud security, scripting, MITRE ...

such as CISSP, CISA, CISM Significant knowledge of cyber security practices including risk management principles, architectural requirements, security engineering, threat intelligence, vulnerability management, and incident response. Experience leading cyber risk reviews. Able to deliver clear gap analysis against cyber security policy, standards and technology risk requirements, using industry best … Enterprise environments and good knowledge of Cloud, primarily Microsoft Azure. Excellent stakeholder management skills Previous experience as part of a security operations or incident response organization would be beneficial. Good knowledge of threat modelling techniques with some experience in developing threat models. Please note: You must have full ...

configuration of security firewalls, wireless infrastructure and identity services Oversight of IP‐based telephony systems Maintenance of configuration management records, disaster recovery documentation, incident response arrangements and change control processes Horizon scanning of the cyber security and infrastructure landscape, maintaining a cyber risk register and recommending improvements Installation ...

strengthen cyber defences and system resilience. Ensure compliance with recognised security standards and best practice. Oversee risk assessments, penetration testing, patch management and incident response planning. Report cyber risks and mitigation strategies to senior leadership and Governors. Guide the Executive on incident management planning and lead ...

advancing the organisation's SRE capability. The role involves leading technical design discussions, engaging with senior stakeholders, and applying software engineering, automation, and incident response best practices to ensure the reliability, availability, and scalability of critical systems and platforms. Responsibilities include: Ensure system availability, performance, and scalability through ...

route management, drift detection, and session visibility Collaborate with LOB teams to onboard routes and migrate traffic from legacy ingress infrastructure Participate in incident response, runbook development, and production readiness reviews Champion software engineering best practices - code review, testing, documentation, and observability-first design ...

This is a field based role covering Scotland and the North of England Purpose of this role Field based role facilitating the maintenance and incident response for events on the OFNL network. Your key responsibilities are The Fibre Field Engineer primary role is to maintain and perform repair ...

agentic data engineering: You'll shape how AI and automation can support data engineering workflows, from discovery and documentation to pipeline development, testing, monitoring, incident response, and faster delivery of trusted data products. Scaling data delivery: You'll strengthen how data is moved, transformed, maintained, and served ...