76 to 100 of 299 Permanent Incident Response Jobs

and no two days will be the same! As a DFIR Consultant, you will engage in client- facing projects and offer a multitude of incident response services. This is an excellent opportunity for ambitious DFIR professionals who are looking to grow and develop professionally in a fast- paced … environment. Key Responsibilities: Assistance in detection, containment, forensic investigation, and remediation. Your tasks will involve performing forensic analysis, implementing incident response procedures, and analysing malware. Collaborating with members in the DFIR team globally. Leading client engagements and strengthening relationships with existing clients. You will work with clients to … proactively prevent and detect future cybersecurity incidents. Communicate effectively with stakeholders at all levels, whilst providing recommendations. Conduct threat hunting, help clients develop incident response plans, facilitate tabletop and purple team exercises as well as provide other tactical security services related to incident response. About you: Consultancy more »

to travel easily? Do you have a modern understanding of legislative and implementation of ERP procedures and application of those things in crisis and incident response scenarios? Are you passionate about delivering high-quality training to diverse audiences and eager to help businesses worldwide prepare for crises when … on the resilience spectrum that include crisis management, crisis leadership and business continuity? If so, read on, as Kenyon International, leaders in Crisis Management, Incident Response and Emergency Planning, are looking for Associates based in the UK or Europe to help us make a real difference. You will … passport • Have a modern understanding of legislative and implementation of airport/aviation ERP procedures and the application of those things in crisis and incident response • Have good IT skills and be able to deliver online training independently via Teams and Zoom • Have previous training and/or more »

into the SIEM solution Create alert use cases to correlate suspicious activities across assets and environments to identify patterns of anomalous activity Improve security incident response playbooks and processes, lead responses to escalated alerts and high-severity incidents, and provide senior-level response activities such as incident … event correlation and enrichment. Identify, analyze, and report on serious cyber incidents. Perform forensic analysis on data from multiple sources, present reasoned action and response activities to contain and eradicate threats from the Business's network systems. Participate in regular cyber-attack simulations to test organizational resilience and improve … maintenance, and configuration of security tools to aid effective threat prevention, detection, and response. Develop creative solutions to automate security event monitoring, detection, and response, and review security event use cases and log correlation. Key experience and qualifications for success: Knowledge of adversarial tactics, techniques, procedures (TTPs) and industry more »

and mitigate threats and vulnerabilities using internal and external resources. Proactively identify solutions for threats that evade current security measures. Develop and manage automated response playbooks for incident response and isolation. Contribute to documentation and testing of security incident response playbooks. Increase organisational awareness of more »

and mitigate threats and vulnerabilities using internal and external resources. Proactively identify solutions for threats that evade current security measures. Develop and manage automated response playbooks for incident response and isolation. Contribute to documentation and testing of security incident response playbooks. Increase organisational awareness of more »

proactive approach will be essential in preventing potential breaches and ensuring system integrity. Be responsible for deploying and fine-tuning our Endpoint Detection and Response (EDR) platform. Developing our cyber incident response plan Organising and running a cyber incident response exercise Establishing security monitoring processes … Establishing an effective vulnerability management process Experience: Experience of IT, Network, Security Engineering or an equivalent technical discipline. Experience with Managed Detection and Response (MDR) providers Experience with EDR platforms such as SentinelOne and CrowdStrike. Experience with Vulnerability Management. more »

Define and implement data security controls, including access controls, encryption, and authentication mechanisms, to protect sensitive data from unauthorized access, disclosure, or misuse. 6. Incident Response: Develop and maintain incident response plans and procedures to address data breaches, security incidents, and other data-related emergencies. Coordinate more »

Alternatively, consulting or advisory experience in Security Operations. Operational level experience in some of these domains (not all): security engineering, alert triaging, rule writing, incident response, security automation, DFIR, threat intelligence, DLP, deception technologies, XDR and vulnerability management In-depth knowledge of at least one SIEM platform or … terms Extensive experience in report writing and presentations Previous experience in cyber project management Part of a large transformation and implementation project Experience with Incident Response or SOAR tool A network of other security professionals and relationships in the industry Qualifications/Certifications: Bachelor degree in Information Security more »

to protect against web-based attacks. Ensure optimal performance and security of web applications through proper configuration and tuning of security controls. Monitoring and Incident Response: Establish and maintain monitoring and alerting mechanisms for web application security. Investigate and respond to security incidents, including coordinating with relevant teams … WAF technologies, providing training and knowledge sharing across the organization. Documentation and Reporting: Create and maintain detailed documentation of security architectures, configurations, processes, and incident reports. Prepare and present security metrics and reports to management and stakeholders. Continuous Improvement: Stay up-to-date with the latest security trends, vulnerabilities … In-depth understanding of security principles, protocols, and technologies (e.g., SSL/TLS, OWASP Top Ten, DDoS mitigation). Experience with security monitoring and incident response tools. Relevant security certifications (e.g., CISSP, CEH, GIAC) are highly desirable. Excellent problem-solving skills and the ability to work independently and more »

implement, and manage cybersecurity measures tailored to OT systems. Ensure the integration of security controls into the OT network and systems. Develop and maintain incident response plans specific to OT environments. Lead and support incident response efforts, including analysis, containment, eradication, and recovery. Ensure compliance with more »

with our risk appetite. - Have experience of developing an Information Security Management system within a fast-paced environment - Be involved in developing and maintaining incident response plans, including guidelines and procedures for responding to security incidents, - Participate in incident response activities as needed. - Provide cybersecurity awareness more »

experience of creating detailed security plans for organisations, specified to their needs and requirements. Outlining various aspects of security, including access control, data protection, incident response, and compliance. Experience of conducting risk assessments and mitigations. Support organisations by implementing measures to mitigate these risks effectively. You have built … incident response plans, including procedures for detecting, analysing, and responding to security incidents. Good working knowledge of security controls and technologies (firewalls, intrusion detection systems, encryption, multi-factor authentication and security monitoring tools) You are passionate about continuous improvement in security practices and can demonstrate how you would more »

within a mature SOC team. In this extremely hands on position you will work directly on the SIEM platform to provide technical expertise across Incident Response, Threat Hunting, vulnerability management and more. In addition to your technical work you will be expected to provide mentorship to the more … working within an internal SOC as an SME as well as being a strong communicator. In this role you will: Work hands on with Incident response, threat hunting, SOC automations and more Interact with the company's MSSP and manage this relationship Provide mentorship and guidance towards junior more »

development. Module Expertise: Serve as a subject matter expert (SME) in ServiceNow functional and operational modules, including Virtual Agent (VA), Human Resources (HR), and Incident Response Management System (IRMS). Provide guidance and support to internal teams on module configuration, workflows, and integrations. Expansion Projects: Lead expansion initiatives … a focus on architecture design and implementation. Strong expertise in ServiceNow functional and operational modules such as Virtual Agent (VA), Human Resources (HR), and Incident Response Management System (IRMS). Proven track record of leading expansion and integration projects within the ServiceNow environment. Hands-on experience with ServiceNow more »

a deep understanding of information security technologies, you will aid in triaging threat intelligence from multiple sources and add contextual information to the security incident, perform additional analysis and based on the business impact will recommend the response actions and escalation path. You will be guided by Threat … L1 and L2 analysts, including objectives setting, performance management/reviews, training & development, and BAU activities including shift cover etc. • Perform advanced event and incident analysis, including baseline establishment and trend analysis. • Support on-call arrangements as part of a Rota, to support L1 Analysts working out of hours … Support Major Incident Response activity, from a Protective Monitoring perspective, including supporting teams in identification, containment, and remediation of security related threat. • Provide timely advice and guidance on the response action plans for events and incidents based on incident type and severity. • Identify, create and implement more »

global leaders with 120 offices spanning 50 countries worldwide Get in touch if you’re looking for your next opportunity! Responsibilities: Assist with security incident management and response activities General day-to-day support on managing and responding to security alerts from systems and end users Perform daily … formal document creation, such as the creation of reports or procedures Detailed knowledge of: Microsoft O365 environment Threat Intelligence analysis and best practice Security Incident Response processes, procedures, and best practices Disaster Recovery and Business Continuity principles Event and log analysis Salary: They offer a great salary up more »

responsibilities Perform analytical duties to include security monitoring, host and network based log analysis, correlation of network threat indicators and PCAP data, analytical triage, incident response Have knowledge of and be able to define and recommend security policy changes to security devices such as firewalls, proxies, email gateways more »

the role and assist with development of other staff. Proactively support business KPIs. Understand & comply with all Information Security & company policies. Interact with strategic incident response & threat intelligence vendors. To undertake other responsibilities, training & tasks as reasonably requested by line management. Undertake periodic assurance reviews & produce associated reporting more »

with North American counterparts to ensure seamless global support coverage. Security Integration : Work with the Information Security team to implement effective security monitoring and incident response mechanisms. Network Design : Design resilient, high-performance network infrastructures, including data centers, LAN/WAN/WLAN/SDWAN, Internet, load balancers … firewalls, and management platforms. System Management : Deploy and support complex virtual environments, including SAN, HPE technologies, Windows, Red Hat Server OS, Citrix, and SQL. Incident Management : Handle the installation, configuration, administration, upgrade, and maintenance of complex systems, audit and change management, and out-of-hours incident escalations. Performance … schedule expenditures, analyse variances, and initiate corrective actions. Security Frameworks : Implement industry-standard information security control frameworks using templates, implementation plans, metrics, and tools. Incident Investigation : Lead investigations for security-related events and incidents. Requirements Essential : Strong technical background in both hands-on and leadership roles within infrastructure and more »

risks on key systems, and collaborating with internal teams, and third parties, to agree, implement and review security controls. You would be contributing to incident response efforts. You’ll be Involved In: Policy Development and implementation: Risk Management Third Part management Incident Preparation Compliance Monitoring and Reporting more »

Cloud Architecture knowledge: GCP - 2+ years Total Experience Cloud – 6+ years Must have Efficient in SRE Best Practices – Dashboards (GCP-Predefined/Custom), Alerting, Incident Generation (Historical and Real-Time)- Must Have Knowledge/Implementation of KPI’s, SLA/SLO/SLI, Error Budget, Custom Metric Creation - Must … Have Incident Management: Experience with incident response and management. Troubleshooting Skills: Ability to diagnose and resolve complex system issues efficiently, Error Handling - Must Have Hybrid/Multi Cloud Connectivity Implementation- Good to Have Auto-remediation/Auto-Healing of services - Must Have Instances, Networks, Disks and Images more »

verbal communication skills Experience configuring and deploying Microsoft technologies such as Microsoft Defender and Azure Experience using and developing playbooks for SOC processes and incident response Strong understanding of IT & networking fundamentals (eg TCP, DNS, TLS) Able to work effectively in a team as well as confident working more »

partners Review and update IT Security procedures to reflect best practice and mitigate current and emerging threats Assigned ownership of IT Security Monitoring and Response related FRB and Internal Audit finding(s) and effective/timely resolution with IT Security Maintain relationships with third-party IT security vendors and … securing systems, networks and infrastructure; operational support, including on-call experience.3+ years’ experience including combination of intrusion detection, malware analysis, forensics and/or incident response, particularly in cloud environments. Working knowledge of cloud environments such as AWS. Monitor, tune and develop technical IT Security controls and frameworks … to ensure appropriate preparation, monitoring and response to threats Ensure a risk-based approach to IT Security is adopted in every part of the business and solutions Work with members of the IT Security team to help design, implement and maintain security Prepare for, identify (hunt) and remediate cyber more »

systems architecture, to ensure uptime and availability, remotely and onsite where required. Act as key contact and escalation point for client infrastructure and cyber incident and support requests and alerts via phone, email, service tickets and Teams based support channels, demonstrating patience, empathy, and technical expertise. Leverage monitoring tools … software updates as part of the remediation process. Monitor, manage and configure cyber defence tools, covering solutions such as email hygiene, endpoint detection and response, secure cloud gateways, multi-factor authentication and advanced identity management. Monitor and manage client firewalls, intrusion detection and intrusion prevention tools. Monitor and administer … of client and internal systems and processes, using designated documentation tools such as IT Glue and Lucid Chart. Maintain accurate and up to date incident records using professional service automation tool. Operate as part of the out of hours on-call rota to respond to ticket escalation and system more »

challenge the appropriateness of risk treatment plans and outcomes from security programs. Promote innovation and the adoption of emerging technologies in application security. Manage incident response preparedness across 12 departments, including playbook creation, testing, and incident simulations. Independently report on organisational risk management and oversee budgets up … ll Bring: Experience in designing Application Security and Resiliency strategies. Technical knowledge in: Application security and redundancy Threat assessment Information risk assessment & risk management Incident management Disaster recovery testing Expertise in configuring and supporting security tools and managing resilience-related activities. Proficiency in implementing resilient IT controls, disaster recovery more »