1 to 25 of 302 Permanent Incident Response Jobs

in all vendor and project activities. - Develop and maintain frameworks for security assessments. - Stay updated on emerging security threats and industry trends. - Participate in incident response and investigations. - Collaborate with procurement to evaluate and manage vendor security. - Review vendor documentation to assess security posture. - Apply risk management principles more »

IT skills A minimum of 5 years’ experience in a related SOC Incident management/Analyst role Network Security System Administration Malware Analysis Security Information and Event Management (SIEM) Incident Response Tools more »

for applications & infrastructure on a Sailpoint based project. Responsibilities: Applications deployment to AWS & Azure Managing code & configuration using Git Developing CI/CD pipelines Incident responses Monitoring of production systems Being part of/leading builds across systems Required skills. Active HO SC Expert in Azure & AWS environments Skilled more »

security controls. Manage platform aspects of DR plans. Improve maintenance and patching procedures. Promote automation, tooling, and documentation. Participate in on-call cover and Incident Response. Contribute to change management. Qualifications: 3+ years' experience in datacentre, public cloud, or hybrid infrastructure. Experience with Windows Server and Azure-based services. more »

and maintaining our security information and event management (SIEM) system. Your focus will be on leveraging Elasticsearch and related technologies to enhance threat detection, incident response, and overall security posture. What you’ll be doing • Data Ingestion and Enrichment: o Configure Elasticsearch pipelines for data ingestion from various … of the SIEM infrastructure. • Security Engineering: o Contribute to security engineering projects, transitions, and transformations. o Work closely with security operations and associated security incident response systems o Stay informed about emerging threats and security best practices. • Keep abreast of relevant technologies in the area. This may entail more »

incorporated into the business Risk Register. Participate in supplier reviews, serving as the subject matter expert in cybersecurity. Provide support during the Bank's incident response process involving suppliers. Contribute to the continuous monitoring of key third-party relationships. Enhance awareness of third-party cybersecurity risks through local more »

previously built user - facing privacy and security capabilities knows how to ensure the integrity and protection of data , i.e. encryption , access controls , threat detection , incident response, GDPR, etc has worked on large corporate accounts , and is confident with the longer-lifecycle enterprise selling process is excited by the more »

The ideal candidate will have a strong background in Sentinel, Infrastructure as Code (IAC), and Security Operations (SecOps). Key Responsibilities Security Monitoring and Incident Response Implement and manage security monitoring solutions using Microsoft Sentinel. Develop and maintain incident response playbooks and procedures. Lead incident response efforts, including investigation, containment, and remediation. Develop and maintain secure IAC templates using tools such as Terraform, CloudFormation, or ARM. Conduct security reviews and audits of IAC templates to identify and mitigate risks. Perform regular security assessments, vulnerability management, and penetration testing. Risk Management and Compliance Identify more »

and digital deployments. Continuously adjust cyber capabilities based on evolving cyber threat landscapes. Support and potentially lead NOC/SOC operational teams. Oversee Cyber incident response, conduct post-incident reviews (PIRs), root-cause analysis (RCAs), and implement mitigating solutions. Manage capacity for cyber platforms proactively. Design data more »

play a crucial role in implementing and managing their cybersecurity infrastructure. Your responsibilities will include: - Implementing and managing Azure Sentinel SIEM for threat detection, incident response, and security monitoring. - Configuring and maintaining Microsoft Defender for endpoint protection and threat detection. - Developing and maintaining KQL (Kusto Query Language) scripts more »

be beneficial but equivalent experience or demonstratable equivalent knowledge will also be accepted. Cyber, Security, Information Security leadership, Technology, Management, Risk Management and Governance, Incident Response, Security Remediation, Security Policy Creation, Third Party Risk Management, Attack Surface Management Creation exposure and experience essential. The role holder will possess more »

and Configuration for Microsoft Cloud Services: Configure cloud services and Defender for Cloud for integration with Rapid7 InsightIDR SIEM to enhance security monitoring and incident response capabilities. Integrate SIEM for monitoring Entra ID sign-in, audit, and risk log categories. Work with Security Operations to build and test more »

Cyber Security Engineering Manager, you will help to deliver improvements across a number of our cyber security domains including; Security Data & Analytics, Security Automation, Incident Response and Threat Detection. Additionally, you will work closely with our Cyber Security Operation Centre and with other security functions as well as … of the Cyber Security Operations team, this role will support: Security Platform Optimisation, covering endpoint, network, cloud and logging technologies Security Orchestration Automation and Response, building security automation playbooks and integration's Security Data & Analytics, onboarding data and developing detection logic and analytics Essential Criteria: Demonstrable experience working in more »

the century, and now they are rapidly expanding out their team. This role involves working closely with external clients, providing security event monitoring and incident response services using the Microsoft 365 stack. They are looking for someone with hands-on experience with the Microsoft 365 suite, as this … my client are a Microsoft Gold Partner, they want to invest heavily into this engineer and help them gain multiple Microsoft certifications! Roles & Responsibilities Incident responses for customers/clients Give triage and trigger escalation/assignment as appropriate Look into event alerts, and work with the customers on more »

on a brand new end-to-end programme of work. Technical responsibilities: Experience designing and setting up Security Operations function/environments Experience reviewing incident response plans and advising on improvements Working experience with EDR platforms such as Sentinel or the likes of are crucial Strong knowledge of more »

Role : Head of Incident Management & Service Operations Location : West London – hybrid Salary : £110,000 – 125,000 + car allowance + bonus + benefits We have a great opportunity with one of our FTSE100 clients looking for a Head of Head of Incident Management & Service Operations to join them … during an exciting period of transformation. You’ll oversee the operational aspects of IT services with a particular focus on incident management. You’ll be responsible for leading and managing the processes, teams, and technologies that ensure effective incident resolution, the delivery of high-quality IT services, and … across service operations. The role: Define the IT Operation Centre standards and patterns for managing incidents, problems, events, change and release management Ensure major incident management procedures are ready-to-deploy Lead on root cause analysis activities for major incidents Be the driver of problem resolution Provide insight into more »

within a new Site Reliability Engineering (SRE) Function, focusing on enhancing system reliability across key areas such as availability, performance, latency, efficiency, capability, and incident response. Key Responsibilities: Collaborate with engineers to deliver change in a safe, secure, and principled approach. Be accountable for the daily health of both … or similar operations environment. Familiarity with AWS, Kubernetes, and moving systems from data centers to cloud environments. A solid understanding of full-stack development, incident management, and a data-driven approach to problem-solving. Why Our Client? This is more than just a job. It's an opportunity to more »

and seeking an experienced DFIR Analyst to expand their skills and join our experienced team. Overview: We are seeking a skilled Digital Forensic and Incident Response Analyst with a robust background in system administration and networking with a security focus. The ideal candidate will possess expertise in investigating … mitigate security threats promptly. Utilise knowledge of system administration and networking to lead mitigation and containment strategies during an active incident. Lead Investigations and response to incidents related to DDoS attacks, good understanding of WAF and Firewall capabilities. Maintain internal incident response plans, playbooks, and procedures for … assessments via agent based, forensic collectors and log queries. Deliver training and paper-based assessments to clients. Qualifications: Proven experience in digital forensics and incident response. Strong background in system administration and networking. Familiarity with threat intelligence sources and the ability to translate intelligence into actionable responses. Proficiency in more »

the senior point of contact and advisor for managers and employees on all IT related topics including client devices, datacentre, cloud & office infrastructure. Providing Incident Response, Changes, and Project-Based Work, as well as guidance to L2 engineer. Day to day responsibilities include: Installing and maintaining the companies … Ensuring the companies operating environments are safe and secure Updating any software and hardware where necessary Documenting all reported malfunctions and actions taken in response Experience and skills needed: Ability to support, design and implement infrastructure technologies and solutions such as: computing, storage, networking, cloud computing, including IaaS, PaaS more »

for applications & infrastructure on a Sailpoint based project. Responsibilities: Applications deployment to AWS & Azure Managing code & configuration using Git Developing CI/CD pipelines Incident responses Monitoring of production systems Being part of/leading builds across systems Required skills Active HO SC Expert in Azure & AWS environments Skilled more »

Nessus Scanner, Nessus Manager, Tenable.io have strong communication skills and a solid understanding of IT Security concepts to include vulnerability & patch management, security operations, Incident Management and Incident response. with integrating Cybersecurity data using enterprise or custom tools data aggregation and analysis tools, including Splunk to provide support … in an IT operations and maintenance, including ticket work information updates, issue response, and remediation by understanding and analysing vulnerability scan results, system audits, log events and troubleshoot software issues. knowledge and experience with log monitoring and correlations and correlating events from multiple security tools like log correlation engines … Net flow, host monitoring solutions troubleshooting/problem solving skills. of dealing with incident, problem and change management processes. working experience of Windows and Linux operating systems. understanding of networking technologies; switches, routers, firewalls, proxies, IDS, IPS. Based across 23 countries, GlobalLogic is a leader in digital engineering. We more »

network aspects of DR plans. Promote a culture of automation, tooling, and documentation. Simplify and optimize network solutions. Participate in on-call cover and Incident Response. Manage change control processes. Work with customers, partners, and vendors to shape solutions. Qualifications: 3+ years' experience in enterprise or datacentre networking. Hands more »

service for all environmental legal matters. Their expertise spans strategic and operational compliance advice, responsible investment and environmental governance, climate change planning and adaptation, incident response and regulatory investigations, enforcement and prosecution support, transactional support including deal structure and due diligence, major infrastructure projects, green claims and sustainable more »

Best Practice Working with various other Security personnel Mitigating Information and Cyber based risks Identifying potential threats and risks Assisting with resolution of incidents Incident response and threat hunting Working with threat management frameworks Threat intelligence and continuous improvement Security monitoring and traffic analysis Vulnerability management You will … will be a requirement to cover 7am-7pm on a shift basis to ensure that full coverage is achieved. The ideal candidate will have: Incident response and security monitoring Understanding of threat modelling Investigation experience into Information and Cyber security incidents Broad technical understanding covering Windows, Linux, Unix more »

new tools and techniques to enhance the security posture Administer and mature tool configurations, optimize performance, and feature utilization Integrate tools to automate critical response tasks. Evaluate TVM tool and patches, updates, and perform maintenance Develop detailed documentation on TVM implementation, configuration, and processes Plan, develop, and implement new … security devices or services for TVM as needed Identify, create and mature cybersecurity operations processes. Assist with forensic investigations and incident response team (CIRT) activities.as needed Assist with security awareness activities (communications, posters, events, assessments) as needed Participate in incident runbook development Escalate pertinent findings in a … management expertise Experience executing attack defense tactics with security technologies including DNS, SMTP, firewall, and endpoint solutions. Experience and participation as needed with security incident and investigations Assist as needed with security awareness content such as communications, posters, presentations Experience with security management/configuration cloud tools and services more »