1 to 25 of 241 Permanent Incident Response Jobs in the UK excluding London

Cyber Operations Manager

Hiring Organisation
Prime Personnel
Location
South West London, London, United Kingdom
Employment Type
Permanent, Work From Home
lead and line-manage London-based cyber security team (x3/x4), assure the local delivery of globally-prioritised work, and act as Incident Commander and first point of escalation for cyber security in London. The role additionally leads the Endpoint, Platform and Incident Response capability, owning … global prioritisation of that backlog against enterprise cyber risk. Previous Experience Required: Led or coordinated cyber security incident response as an Incident Commander or equivalent, working with MDR providers and cross-functional stakeholders (IT, Legal, Compliance). A strong, hands-on technical background in operational cyber security ...

Head of Cyber, Band 8b

Hiring Organisation
Gloucestershire Hospitals NHS Foundation Trust
Location
Gloucester, GL1 2EL, United Kingdom
Salary
£66582.00 to £77368.00
participation in the regional "Defend as One" model. The role combines governance, assurance and hands-on leadership of proactive and preventative tactics, threat intelligence, incident response, vulnerability management, strategy and cultural change to build cyber resilience across the Integrated Care System (ICS). Main duties … within large, complex or multi-organisation environments. They will possess deep technical and governance expertise across areas such as threat detection, vulnerability management and incident response, with the ability to translate complex technical risk into clear, articulate, actionable information for senior executives and boards with assurance and confidence. ...

Cyber Security Analyst

Hiring Organisation
StepChange Debt Charity
Location
Leeds, West Yorkshire, Yorkshire, United Kingdom
Employment Type
Permanent
technology environments? Could you play a key role in strengthening our organisations security posture by supporting day-to-day cyber operations, vulnerability management, and incident response? Can you help drive continuous improvement in our cybersecurity capabilities as a Cyber Security Analyst, working closely with teams to enhance resilience … processes are still evolving, and where proactive thinking and initiative are key. Your role Youll support operational security activities including monitoring, alert triage, and incident response, working alongside internal teams and third-party providers to investigate and resolve security events. Youll play a key role in vulnerability management ...

Senior Cyber Security Analyst

Hiring Organisation
Hays Technology
Location
Bolton, Greater Manchester, United Kingdom
Employment Type
Permanent
Salary
£45000 - £55000/annum plus bonus and benefits
Senior Cyber Security Analyst to help strengthen its security posture and safeguard critical systems. This is an excellent opportunity for someone passionate about incident response and proactive threat management within a dynamic, fast-paced environment. The ideal candidate will have a positive go-getter attitude, and will have … experience of incident response, using MS security tools and ideally an understanding of Tanium. Key Responsibilities Working with the Head of Cyber to mature the incident response capability Using your understanding of the contemporary threat environment to assist with your vulnerability investigations and response Lead ...

Network Security Manager

Hiring Organisation
Pearson Whiffin IT & Digital
Location
Dartford, Kent, South East, United Kingdom
Employment Type
Permanent
Salary
£95,000
Cyber & Network Security Manager We are seeking an experienced Cyber & Network Security Manager to lead the delivery of all security operations, drive cyber incident response, and provide enterprise-wide oversight of network security. This is an operational leadership role at the centre of the cyber defence function. … Security Operations Centre (SOC) services. Act as the senior operational escalation point for cyber security incidents and major security events. Own and coordinate cyber incident response activities, ensuring effective containment, eradication, recovery, and lessons learned. Develop, maintain, and test cyber incident response plans, procedures, and playbooks. ...

Head of Security Operations

Hiring Organisation
Jobleads-UK
Location
Wolverhampton, England, United Kingdom
will be accountable for the effective operation, continuous improvement and resilience of the Bank's security operations capability, covering Security Operations Centre monitoring and response, Identity and Access Management services, security analysis, operational security controls and supplier-delivered security services. The Head of Security Operations is a senior leadership … India offices, supported where appropriate by third-party managed security service providers. The team provides 24x7 or extended-hours security monitoring and response, identity and access management operations, vulnerability and threat analysis, security tooling administration, control assurance support, reporting, and operational support. Your responsibilities will include... Security Operations Leadership ...

Principal Security Engineer

Hiring Organisation
MrQ
Location
St Albans, Hertfordshire, UK
Operate as a strategic partner to the IT Ops Specialist. Jointly shape how security and IT operations integrate shared tooling decisions, aligned processes, unified incident response, single view of risk. Stakeholder Influence: Present security posture, risk appetite and investment cases to senior leadership. Translate technical risk into business … MITRE ATT&CK. Continuously reduce false positives and expand coverage. Automation: Engineer automation for security operations at scale — scripting (Python, Bash, PowerShell) for response orchestration, access reviews, compliance checks, vulnerability reporting, threat intel enrichment. Integration & Evaluation: Ensure all security tooling integrates with existing infrastructure and identity platforms. Lead POCs ...

Cyber Security Specialist

Hiring Organisation
LHH
Location
Wokingham, England, United Kingdom
energy operations within a Critical National Infrastructure (CNI) environment. This role is responsible for real-time security monitoring, alert triage, investigation, and early-stage incident response. You will work with industry-standard security monitoring and incident/event management platforms to identify suspicious activity, validate alerts, and escalate … helping tune detections, and strengthening operational procedures and documentation. Key Responsibilities Monitoring and Triage Monitor security events and alerts using industry-standard SIEM and incident/event management platforms (e.g., Elastic, Microsoft Sentinel, Splunk). Perform rapid triage to determine alert validity, severity, scope, and potential business or operational ...

Security Operations Technical Lead

Hiring Organisation
AJ BELL BUSINESS SOLUTIONS LIMITED
Location
Salford, Greater Manchester, North West, United Kingdom
Employment Type
Permanent
that security operations activities are executed efficiently, consistently and in line with defined SLAs and operational standards, through hands-on technical leadership across SOC, Incident Response, Threat Intelligence, Insider Risk and Vulnerability Management. This role acts as a senior technical escalation point, supporting complex investigations and driving improvements … detection, response, automation and operational processes. The role holder is expected to lead through expertise, supporting analysts and ensuring Security Operations operates with discipline, quality and continuous improvement. The key responsibilities of the role are: Act as the primary technical escalation point for security events and incidents identified ...

Cyber Incident Response Consultant - Multiple Levels

Hiring Organisation
IBEX RECRUITMENT LTD
Location
Southampton, UK
tier global consulting firm with one of the UK's largest and most respected cyber practices, housing over 200 specialists. Their Cyber Incident Response team is on the front line, helping organisations prepare for, respond to, and recover from the threats that keep boards awake at night. They … roles require at least eligibility for UK Security Check (SC) clearance. Existing clearance is highly advantageous. What You'll Do Lead and execute live incident response investigations, from forensic acquisition and root cause analysis to threat containment and eviction. Perform host-based and network forensics across Windows, Linux ...

Cyber Incident Response Consultant - Multiple Levels

Hiring Organisation
IBEX RECRUITMENT LTD
Location
Stoke-on-Trent, Staffordshire, UK
tier global consulting firm with one of the UK's largest and most respected cyber practices, housing over 200 specialists. Their Cyber Incident Response team is on the front line, helping organisations prepare for, respond to, and recover from the threats that keep boards awake at night. They … roles require at least eligibility for UK Security Check (SC) clearance. Existing clearance is highly advantageous. What You'll Do Lead and execute live incident response investigations, from forensic acquisition and root cause analysis to threat containment and eviction. Perform host-based and network forensics across Windows, Linux ...

Cyber Security Operations Specialist

Hiring Organisation
17918
Location
Glasgow, Lanarkshire, United Kingdom
operations. This is a technical role suited to an experienced analyst with strong engineering instincts, hands-on coding capabilities, and a deep understanding of incident response, detection engineering, and adversary tradecraft. This position includes approximately one week per month of on-call availability for high-priority incident … ideal for someone who has likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible ...

Cyber Security Engineer

Hiring Organisation
17918
Location
Birmingham, Warwickshire, United Kingdom
operations. This is a technical role suited to an experienced analyst with strong engineering instincts, hands-on coding capabilities, and a deep understanding of incident response, detection engineering, and adversary tradecraft. This position includes approximately one week per month of on-call availability for high-priority incident … ideal for someone who has likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible ...

Cyber Security Engineer

Hiring Organisation
17918
Location
Bonnyrigg, Midlothian, United Kingdom
operations. This is a technical role suited to an experienced analyst with strong engineering instincts, hands-on coding capabilities, and a deep understanding of incident response, detection engineering, and adversary tradecraft. This position includes approximately one week per month of on-call availability for high-priority incident … ideal for someone who has likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible ...

Cyber Security Engineer

Hiring Organisation
17918
Location
Leeds, West Yorkshire, United Kingdom
operations. This is a technical role suited to an experienced analyst with strong engineering instincts, hands-on coding capabilities, and a deep understanding of incident response, detection engineering, and adversary tradecraft. This position includes approximately one week per month of on-call availability for high-priority incident … ideal for someone who has likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible ...

Senior Security Platform Engineer

Hiring Organisation
NTT Global Data Centers EMEA UK ltd
Location
Hemel Hempstead, Hertfordshire, South East, United Kingdom
Employment Type
Permanent
tasks specialized at threat hunting, SIEM/SOAR, Network Security and other operational security tasks such as performance and availability monitoring, log monitoring, security incident detection and response, security event reporting, and content maintenance (tuning). What we are looking for Key Responsibilities: Serves as a senior member … optimization of enterprise security platforms, overseeing lifecycle management including break-fix, patching, version upgrades, and integration with broader security ecosystems. Directs complex security incident response efforts across multiple vectorsendpoint protection, EDR, malware analysis, network and computer forensicsensuring rapid containment and root cause analysis. Designs and executes advanced vulnerability ...

Cyber Security Analyst

Hiring Organisation
Hays
Location
Newport, Gwent, Wales, United Kingdom
Employment Type
Permanent, Work From Home
Salary
£45,000
will require knowledge and understanding of attack and exploitation techniques and adversarial TTP's. Help to provide resilience to our threat monitoring and response capabilities. Handle security incident response with internal teams and other third parties to ensure that the incident response life cycle … Good knowledge and understanding of SOC processes and procedures. Basic experience using SIEM systems such as MS Sentinel, LogRhythm, AlienVault, Splunk Good understanding of incident response stages and handling. Basic knowledge and experience using leading endpoint detection and threat management products and managing their operation. Good knowledge ...

Cyber Security Engineer

Hiring Organisation
Job Board Direct
Location
Omagh, County Tyrone, Northern Ireland, United Kingdom
Employment Type
Permanent, Work From Home
This position offers an exciting opportunity to work in a fast-paced environment, handling cutting-edge technology and complex challenges in cybersecurity. Key Responsibilities: Incident Response (IR): Investigate and respond to security incidents, ensuring rapid containment, eradication, and recovery. Conduct root cause analysis of security breaches and create … detailed incident reports. Collaborate with stakeholders to refine and enhance the incident response plan and playbooks. Security Operations Center (SOC): Monitor and analyse security alerts and logs from various tools such as SIEM, IDS/IPS, and endpoint detection systems. Identify and escalate potential security threats ...

Cyber Security Engineer, Cloud Security, SIEM, Incident Response, COR7555

Hiring Organisation
Corriculo Ltd
Location
Oxford, Oxfordshire, England, United Kingdom
Employment Type
Full-Time
Salary
£55,000 - £70,000 per annum
Cyber Security Engineer, Cloud Security, SIEM, Incident Response, COR7555 An exciting opportunity has arisen for a Cyber Security Engineer to join a growing technology company based in Oxfordshire, working on a hybrid basis.This is a hands-on role focused on strengthening cyber security across cloud platforms, applications … business systems. Working closely with the CIO and development teams, the Cyber Security Engineer will play a key role in improving cloud security, incident response, vulnerability management, security monitoring and secure development practices, helping to enhance the organisation's overall cyber resilience.The company develops innovative software solutions ...

IT Security Manager

Hiring Organisation
IT Talent Solutions
Location
Godalming, Surrey, United Kingdom
Employment Type
Permanent
Salary
£55000 - £72000/annum + Bens
high-performing cyber security team Own and deliver the IT security strategy, policies, and best practices Oversee day-to-day security operations (SIEM, EDR, incident response, vulnerability management) Ensure compliance with frameworks such as ISO 27001, NIST, CIS Controls and GDPR Manage risk assessments, remediation planning, and continuous … Collaborate with engineering and infrastructure teams to embed Secure by Design principles Manage third-party security vendors and services Lead audits, compliance activities, and incident response planning Drive security awareness and foster a strong security culture across the business Key Skills & Experience Proven experience in a cyber security ...

IT Cyber Security Manager - Space Agency

Hiring Organisation
Standard 8
Location
Guildford, Surrey, England, United Kingdom
Employment Type
Full-Time
Salary
£65,000 - £70,000 per annum
security team Delivering the organisation's security roadmap and controls framework Acting as the senior escalation point for security-related issues Overseeing security operations, incident response and vulnerability management Supporting secure Azure and AWS environments Managing and optimising security tooling including SIEM, EDR and related platforms Reviewing projects … design principles across technology initiatives Managing third-party security providers and key supplier relationships Leading risk assessments, audit activities and compliance initiatives Maintaining incident response and business continuity capabilities Delivering security awareness and guidance across the wider business What We're Looking For You'll combine strong technical ...

Senior Security Engineer

Hiring Organisation
Richmond Square Consulting Limited
Location
Manchester, North West, United Kingdom
Employment Type
Permanent
experience. This is a senior, hands-on role working across firewalling, on-premise and cloud security, secure infrastructure, network security, workload segmentation, hardening, monitoring, incident response and security architecture. The environment is highly secure and regulated, with a strong focus on enterprise firewalling, Elastic/Elasticsearch, VMware-based … Server environments, Active Directory, Group Policy and endpoint configurations Implementing, auditing and remediating against CIS Benchmarks, STIGs and security hardening standards Supporting vulnerability management, incident response, root cause analysis and remediation planning Embedding security into DevSecOps/CI/CD practices, including automated security testing and policy ...

IT Security Manager

Hiring Organisation
4Square Recruitment Ltd
Location
Guildford, Surrey, England, United Kingdom
Employment Type
Full-Time
Salary
£65,000 - £75,000 per annum
against evolving cyber threats while ensuring security controls remain practical, effective, and aligned with business needs. You will oversee security operations, risk management, governance, incident response, and security awareness activities. Working closely with IT, senior stakeholders, third-party suppliers, and wider business teams, you will help maintain … will manage security risks, vulnerabilities, audits, and assessments, ensuring appropriate remediation plans are in place and tracked through to completion. You will oversee incident response processes, investigating security events and coordinating effective responses to minimise business impact. You will work with internal teams and external suppliers to ensure ...

Site Reliability Engineer

Hiring Organisation
Connells Limited
Location
Milton Keynes, Buckinghamshire, South East, United Kingdom
Employment Type
Permanent, Work From Home
hands-on role in ensuring it is reliable, scalable, and observable. You will help establish and mature SRE practices, focusing on: Monitoring and observability Incident response Post-incident review Reliability testing and capacity planning Toil reduction Enabling development velocity We offer a hybrid working arrangement with … Milton Keynes office. Key Responsibilities: Support teams using ConnellsX and respond to incidents in a structured, blameless way Investigate root causes and drive post-incident actions to completion Define SLIs, contribute to SLOs, and monitor error budgets Build dashboards, alerts, and runbooks to improve visibility Automate repetitive tasks ...

Remote Head of DevOps

Hiring Organisation
1inch
Location
Bristol, UK
secrets management and infrastructure provisioning. Service Reliability: Define and implement SLIs, SLOs, and SLAs to ensure the stability and performance of critical services. Observability & Incident Management: Oversee the full monitoring stack and establish formal incident response and post-mortem processes. Security & Compliance: Enforce "security by design … problem-solving. Skills: Platform Engineering: Building developer-centric tools to increase engineering velocity. Cloud Governance: Managing multi-provider cloud footprints and resource optimisation. Incident Response: Leading high-pressure incident resolution and system recovery. Mentorship: Coaching senior engineers and developing future technical leaders. Process Design: Crafting standardised, scalable ...