51 to 75 of 298 Permanent Incident Response Jobs

in the Microsoft Stack and SIEM tools will be crucial in maintaining and enhancing our client's security posture. Key Responsibilities: Security Monitoring and Incident Response: Monitor and analyse security events using SIEM tools Investigate security incidents and breaches, and implement containment and remediation actions Develop and maintain … incident response procedures Client Interaction and Training: Provide security training to clients on tools such as Lookpoint and Check Point Conduct regular security awareness sessions to ensure clients are up-to-date with best practices and threat landscapes Offer guidance and support to clients on implementing security measures … not required) Experience: Proven experience as a SOC Analyst or in a similar role within managed services Strong experience with SIEM tools and security incident management Proficiency with the Microsoft Stack, including Azure, M365, and Defender Experience with technologies outside SIEM, such as Palo Alto, Fortinet or Check Point more »

looking for: 2+ years in Pre-Sales or similar role within an MSP/Reseller organisation. Previous experience being part of or working with incident response teams would be beneficial Good understanding of incident response stages and handling preferred o Knowledge and/or experience using more »

to protect against web-based attacks. Ensure optimal performance and security of web applications through proper configuration and tuning of security controls. Monitoring and Incident Response: Establish and maintain monitoring and alerting mechanisms for web application security. Investigate and respond to security incidents, including coordinating with relevant teams … WAF technologies, providing training and knowledge sharing across the organization. Documentation and Reporting: Create and maintain detailed documentation of security architectures, configurations, processes, and incident reports. Prepare and present security metrics and reports to management and stakeholders. Continuous Improvement: Stay up-to-date with the latest security trends, vulnerabilities … In-depth understanding of security principles, protocols, and technologies (e.g., SSL/TLS, OWASP Top Ten, DDoS mitigation). Experience with security monitoring and incident response tools. Relevant security certifications (e.g., CISSP, CEH, GIAC) are highly desirable. Excellent problem-solving skills and the ability to work independently and more »

working through the implications within hardware and software changes and upgrades, cyber security risk analysis and information security policies. You will lead in the incident response to any information security breach, working closely with the rest of the IT Team, as well as risk and compliance functions. Previous … architectural principles are applied during design to reduce risk and drives adoption and adherence to policy, standards and guidelines Maintains and manages the Security Incident Response plans and affected processes Responsibility for oversight of information security initiatives, including audit action points Assesses risks to the availability, integrity, and more »

implement, and manage cybersecurity measures tailored to OT systems. Ensure the integration of security controls into the OT network and systems. Develop and maintain incident response plans specific to OT environments. Lead and support incident response efforts, including analysis, containment, eradication, and recovery. Ensure compliance with more »

with our risk appetite. - Have experience of developing an Information Security Management system within a fast-paced environment - Be involved in developing and maintaining incident response plans, including guidelines and procedures for responding to security incidents, - Participate in incident response activities as needed. - Provide cybersecurity awareness more »

we offer a complete end-to-end security services covering our clients security from every angle. Our services include Managed Security, Cyber Security Testing, Incident Response , Security Integration, PCI Compliance and Cyber Risk & Assurance services. What sets Integrity360 apart is our excellent team of people that drive the … concepts, including network, systems, and application security. Familiarity with industry best practices for systems hardening. Expertise in data encryption and data privacy. Proficiency in incident response, business continuity planning, physical security, risk assessments, vulnerability scanning, and penetration testing report reviews. Standards and Best Practices: Solid understanding of industry more »

address potential vulnerabilities and risks. - Implement and maintain security controls and compliance measures based on industry standards and regulatory requirements. - Key member of the incident response efforts, conduct root cause analysis, and recommend corrective actions to prevent future incidents. - Monitor AWS security alerts, events, and incidents, and respond … and infrastructure-as-code (IaC) tools. - Ability to perform security threat modeling and risk assessments to identify and prioritize security risks. - Experience with security incident response and handling, including log analysis and forensics. - Strong communication and interpersonal skills to collaborate effectively with cross-functional teams. - In-depth knowledge … with Company Policies and Security Infrastructure - Familiarity with AWS Security Best Practices and the business Setup - Integration into DevOps Workflow Within 3 months: - Security Incident Handling and Remediation - Security Automation and Tooling - Security Compliance and Auditing - Collaboration with Development Teams Within 6 months: - Threat Modelling and Risk Assessment - Continuous more »

and allow them to offer the best service possible. This is a senior role, so plenty of experience within SecOps is vital, especially within incident response and engaging with the wider business. This role will also see you have direct reports, so experience in a little leadership or … to further enhance capabilities Experience with malware analysis is essential as you will play a senior role in managing this process. Having ownership over incident management and ensuring incidents are closed out in a timely manner or escalated effectively. Risk analysis across multiple teams and technologies is also required … great internal security role, working with a reputable organisation and a talented team. If you have the right experience and are comfortable with your incident response skills then please do go ahead and apply now. more »

fully remote. This role is only 2 days a week (14 Hours Weekly Minimum). The main responsibility is to develop and maintain cyber incident response and recovery plans to guide the organisation's response to cyber incidents, including data breaches, ransomware attacks, and other security breaches. … Project 5- Cloud Security Requirements: In-Depth Knowledge with Azure is essential In-depth knowledge and experience with MS Dynamics is essential Experience with Incident response is essential If you're interested, please reply with a CV and i will get back to you!! Thanks, Ryan more »

experience of creating detailed security plans for organisations, specified to their needs and requirements. Outlining various aspects of security, including access control, data protection, incident response, and compliance. Experience of conducting risk assessments and mitigations. Support organisations by implementing measures to mitigate these risks effectively. You have built … incident response plans, including procedures for detecting, analysing, and responding to security incidents. Good working knowledge of security controls and technologies (firewalls, intrusion detection systems, encryption, multi-factor authentication and security monitoring tools) You are passionate about continuous improvement in security practices and can demonstrate how you would more »

Hi All, I'm working with a global business looking for an Incident Response Lead who has a wide breath of experience working proactively on incidents and confident in collaborating with teams across the business. You will be a fit if you have experience with: Developing playbooks/ more »

Hi All, I'm working with a global business looking for an Incident Response Lead who has a wide breath of experience working proactively on incidents and confident in collaborating with teams across the business. You will be a fit if you have experience with: Developing playbooks/ more »

and maintaining our security information and event management (SIEM) system. Your focus will be on leveraging Elasticsearch and related technologies to enhance threat detection, incident response, and overall security posture. What you’ll be doing • Data Ingestion and Enrichment: o Configure data pipelines for data ingestion from various … for efficient threat detection. • Security Engineering: o Contribute to security engineering projects, transitions, and transformations. o Work closely with security operations and associated security incident response systems o Stay informed about emerging threats and security best practices. • Keep abreast of relevant technologies in the area. This may entail more »

We value continuous learning and encourage our staff to pursue industry certifications while gaining hands-on experience with cutting-edge technologies, service delivery, and incident response protocols. In return, we offer a competitive salary and an enriching work environment. What We're Looking For: Minimum 2 years of … our Helpdesk. Offer Systems, Network & Firewall Support. Respond proactively to NOC and SOC detections in Customer Systems. Conduct onsite visits for Technical Support or Incident Response as needed. Benefits: Embrace a friendly, open-door culture promoting personal and professional growth. Enjoy free on-site parking. Engage in social more »

robustness of IT security operations. The technical stack represents a blend of Azure, M365, IAM, Sentinel, Defender for Cloud and Log Monitoring. Responsibilities Security Incident Response: Assist in identifying, managing and resolving security incidents with the Security Operations Center (SOC). Ensure successful resolution and closure of these … security vulnerabilities. Ability to work effectively with cross-functional teams, particularly bridging IT operations and InfoSec. Scripting experience will be beneficial for automation and incident response tasks. Tech Stack Azure M365 IAM RBAC Sentinel Defender for Cloud (Secure Score) Interested? Apply now to find out more more »

within a mature SOC team. In this extremely hands on position you will work directly on the SIEM platform to provide technical expertise across Incident Response, Threat Hunting, vulnerability management and more. In addition to your technical work you will be expected to provide mentorship to the more … working within an internal SOC as an SME as well as being a strong communicator. In this role you will: Work hands on with Incident response, threat hunting, SOC automations and more Interact with the company's MSSP and manage this relationship Provide mentorship and guidance towards junior more »

implement and co-ordinate an extensive clinical governance programme across ASR, which includes a wide range of projects relating to risk management, Patient Safety Incident Response Framework , Health & Safety, Medical Devices, Clinical Audit, Patient Experience and meeting the regulatory requirements of external standards and inspection to include those … implement and co-ordinate an extensive clinical governance programme across ASR, which includes a wide range of projects relating to risk management, Patient Safety Incident Response Framework , Health & Safety, Medical Devices, Clinical Audit, Patient Experience and meeting the regulatory requirements of external standards and inspection to include those … of the Governance Manager and day to day supervising of staff. This may require the prioritisation of personal workload to allow for an appropriate response to governance requests, including signposting or offering solutions where possible to a range of clinical and non-clinical staff. The post holder will have more »

customization, and development. Expertise: as a subject matter expert (SME) in ServiceNow functional and operational modules, including Virtual Agent (VA), Human Resources (HR), and Incident Response Management System (IRMS). guidance and support to internal teams on module configuration, workflows, and integrations. Projects: expansion initiatives to deploy new … with a focus on architecture design and implementation. expertise in ServiceNow functional and operational modules such as Virtual Agent (VA), Human Resources (HR), and Incident Response Management System (IRMS). track record of leading expansion and integration projects within the ServiceNow environment. experience with ServiceNow customization, development, and more »

development. Module Expertise: Serve as a subject matter expert (SME) in ServiceNow functional and operational modules, including Virtual Agent (VA), Human Resources (HR), and Incident Response Management System (IRMS). Provide guidance and support to internal teams on module configuration, workflows, and integrations. Expansion Projects: Lead expansion initiatives … a focus on architecture design and implementation. Strong expertise in ServiceNow functional and operational modules such as Virtual Agent (VA), Human Resources (HR), and Incident Response Management System (IRMS). Proven track record of leading expansion and integration projects within the ServiceNow environment. Hands-on experience with ServiceNow more »

Cyber Response & Recovery Manager Permanent Hybrid working London based and various places in the UK SC Cleared or SC Eligible Up to £80,000 depending on location + car allowance + 12% discretionary bonus Our client is a global consultancy and are currently looking for a Cyber Response … candidate would have: Good knowledge of Information Security Management System (Infrastructure Security Operations). Understanding of the cybersecurity threat landscape. Experience managing a rapid response team. Good experience with ISMS. Financial Services experience. Strong technical background and experience with incident response and digital forensics. Experience writing and … adapting playbooks. Strong stakeholder management skills. The role: Manage and co-ordinate cyber security incidents for our clients, working closely with the cyber response leadership team (1 Partner and 2 Directors). Digital forensics of relevant incident data (disk, volatile memory, network packets, log files). Maintaining a more »

of a 24/7 operation with four shift teams working in a standard rotation. They are responsible for utilising the SOC's Security Incident and Event Management (SIEM) toolsets to detect and investigate potential Security and Service Incidents occurring within the monitored networks. These roles require a minimum … using the Protective Monitoring platform and Internet resources to identify cyber-attacks/security incidents. Categorise all suspected incidents in line with the Security Incident policy Recognise potential, successful and unsuccessful intrusion attempts and compromises through reviews and further analysis of relevant event detail and incident summary information. … Write up high quality security incident tickets using a combination of existing knowledge resources and independent research. Assist with remediation activities and conduct permitted remediation (or support customer stakeholders) to inhibit cyber-attacks, clean up IT systems and secure networks against repeat attacks. Produce security incident review reports more »

Head Cyber Security Operations, CISO and other stakeholders across Group businesses. Act as Silver commander for Cyber Security Incidents, leading on tactical support in response to a security incident and coordinate response efforts to minimise the impact of cyber threats and avoid/reduce business impact across … all Group businesses. (This may from time to time involve acting as silver commander leading on a cyber security incident outside of typical business hours) Provide reporting on ticket activity and SLA adherence on a weekly basis to the Group IS management team across all Group businesses to Group … for improvement. Stay informed about the latest cybersecurity trends and threats to proactively protect the organisation's digital assets. Develop, maintain, and test cyber incident response plans, playbooks, and procedures to ensure a timely and effective tactical response to cyber incidents across all Group businesses in collaboration more »

with remote working flexibility. Job Title: Lead Security Analyst Job Type: Permanent Location: London, UK(Remote) Job details: Purpose of the Job Leading the Response: Acting swiftly and decisively during security incidents to mitigate risks. Incident Lifecycle Management: Overseeing incidents from the moment of detection, through the containment … and eradication stages, to the final resolution. Post-Incident Analysis: Conducting detailed investigations post-incident to understand the root cause and to develop strategies to prevent recurrence. Continuous Monitoring: Keeping a vigilant eye on the organization's security systems to detect any suspicious activities early. Threat Analysis: Evaluating … manage security incidents by analyzing alerts from diverse sources and collaborating with external monitors to identify and address potential threats. Serve as a primary incident responder, leading the containment and resolution process in line with established protocols to reduce risks. Enhance security procedures to improve the organization's monitoring more »

a deep understanding of information security technologies, you will aid in triaging threat intelligence from multiple sources and add contextual information to the security incident, perform additional analysis and based on the business impact will recommend the response actions and escalation path. You will be guided by Threat … L1 and L2 analysts, including objectives setting, performance management/reviews, training & development, and BAU activities including shift cover etc. • Perform advanced event and incident analysis, including baseline establishment and trend analysis. • Support on-call arrangements as part of a Rota, to support L1 Analysts working out of hours … Support Major Incident Response activity, from a Protective Monitoring perspective, including supporting teams in identification, containment, and remediation of security related threat. • Provide timely advice and guidance on the response action plans for events and incidents based on incident type and severity. • Identify, create and implement more »