24 of 24 Incident Response Jobs in Berkshire

to lead and produce deliverables based on reactive services client engagements. The Principal Consultant will work directly with multiple customers and key stakeholders (Admins, C-Suite, etc) to manage incident response engagements and provide guidance on longer term remediation. Your Impact Weekend Work Schedule is Friday-Monday (10 hr work day/40 hr work week) Perform reactive … incident response functions including but not limited to - host-based analysis functions through investigating Windows, Linux, and Mac OS X systems to identify Indicators of Compromise (IOCs) Examine firewall, web, database, and other log sources to identify evidence of malicious activity Investigate data breaches leveraging forensics tools including Encase, FTK, X-Ways, SIFT, Splunk, and custom Crypsis investigation … tools to determine source of compromises and malicious activity that occurred in client environments Manage incident response engagements to scope work, guide clients through forensic investigations, contain security incidents, and provide guidance on longer term remediation recommendations Ability to perform travel requirements as needed to meet business demands (on average 20%) Mentorship of team members in incident More ❯

they work to address the challenges associated with today’s cyber threat landscape. Your Impact SOC Advisory: 4+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management and demonstrated success with serving large, multinational organisations in designing and implementing an organisation’s security operations program, organisational structures, and capabilities Possess a deep technical knowledge in … Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) : Experience in security operations design, engineering and/or analysis and investigations, ideally in complex environments, with security … Information The Team Unit 42 Consulting is Palo Alto Network's security advisory team. Our vision is to create a more secure digital world by providing the highest quality incident response, cyber risk management, and digital forensic services to clients of all sizes. Our team is composed of recognized experts and incident responders with deep technical expertise More ❯

Job summary The Digital Incident and Problem Lead is a critical member of the DDaT service delivery team, primarily responsible for the resilience, continuity, and recovery of all digital services across the Trust and wider health system. A central function of the role is to develop and maintain a robust business continuity framework in line with best practices. This … service resilience , identifying vulnerabilities and developing effective solutions to ensure continuous service availability for patients. In addition to strategic planning, the Lead is responsible for the practical aspects of incident and problem management. This includes developing and maintaining a comprehensive reporting and monitoring regime to oversee all plans, tests, incidents, and problems, categorized by type and severity. A key … Incidents , with an imperative focus on reducing or avoiding risks to clinical (patient) safety, security, and information governance. The role demands strong leadership, communication skills, and specialist knowledge in incident management and business continuity, preferably in a 24/7/365 digital service environment. Main duties of the job We are seeking a proactive and skilled Digital Incident More ❯

Information The Team Unit 42 Consulting is Palo Alto Network's security advisory team. Our vision is to create a more secure digital world by providing the highest quality incident response, risk management, and digital forensic services to clients of all sizes. Our team is composed of recognized experts and incident responders with deep technical expertise and … experience in investigations, data breach response, digital forensics, and information security. With a highly successful track record of delivering mission-critical cybersecurity solutions, we are experienced in working quickly to provide an effective incident response, attack readiness, and remediation plans with a focus on providing long-term support to improve our clients’ security posture. Our Commitment We More ❯

security posture , addressing vulnerabilities and implementing intrusion detection/prevention systems. Ensure ongoing compliance with ISO 27001, PCI-DSS , and other relevant regulatory standards. Drive a proactive approach to incident response, monitoring, and continuous threat detection . Oversee audit readiness and maintain comprehensive network documentation and asset inventories. People & Stakeholder Leadership Build, develop, and mentor a high-performing … WAN, firewalls, and network segmentation. Experience managing Cisco and Juniper network technologies, including Cisco IOS/NX-OS and JunOS platforms. Strong background in network monitoring, capacity management, and incident response . Hands-on experience with network security frameworks , firewall configuration (Cisco ASA, Palo Alto, Fortinet, etc.) , and telephony (SIP/VoIP) systems. Familiarity with cloud and hybrid More ❯

tailored to SMB/MSP needs. Service delivery leadership: Define and enforce service delivery frameworks, SLAs, and operational playbooks; ensure seamless transition from presales to delivery; oversee service continuity, incident management, change control, and problem management. Platform and technology scope: Digital workplace services (end-user devices, collaboration tools, unified communications, remote/mobile workforce enablement); infrastructure and network (LAN … WAN, data-center design, virtualization, storage, backup); cloud and datacenter (IaaS/PaaS, public, private, hybrid architectures; migration and modernization); cybersecurity (identity, endpoints, network, identity & access management, threat detection, incident response); application support and managed services for critical business applications. Security and compliance: Build security-by-design into solution proposals; incorporate best practices for data protection, vulnerability management … WAN, SD-WAN), cloud connectivity. Cloud and Datacenter: IaaS/PaaS migrations, cloud governance, hybrid architectures, cloud security. Cybersecurity: threat prevention/detection, IAM, endpoint protection, SOC-oriented operations, incident response planning. Solution architecture and proposal skills: ability to translate business needs into standardized reference architectures, bill of materials, and delivery plans; fluent in cost models and ROI More ❯

Data Protection Impact Assessments (DPIAs) for high-risk processing activities. Managing third-party vendor data protection risk, from initial due diligence through to ongoing monitoring. Overseeing personal data breach incident response, ensuring timely containment, investigation, and reporting. Monitoring and maintaining data retention processes, ensuring compliance with legal, regulatory, and business requirements. This role offers the opportunity to work … in data protection and privacy compliance (e.g. GDPR or equivalent frameworks). Strong understanding of data protection risk assessment and mitigation processes. Proven experience in data breach management and incident response coordination. Desirable Skills and Attributes Collaboratively curious — keen to engage with colleagues to find pragmatic, compliant solutions. Trustworthy and ethically minded, with a strong sense of responsibility. More ❯

and remediation plans. Execution and delivery Lead disciplined engineering execution across distributed in-house and outsourced teams. Champion 24/7/365 platform operations with SLAs, capacity planning, incident response and post-mortems Implement structured software release governance, migration frameworks, and robust QA practices. Drive predictable delivery (quarterly planning, dependency/risk management, quality gates). Establish … engineering talent to build a high-performance organisation. Who you are as a leader Builder’s mindset & hands‐on pragmatism: comfortable diving into design reviews, deployment decisions, or an incident bridge. Low‐ego, high‐trust collaborator with the CPO/Product leaders; co‐authors a single message to the org; avoids “two captains” anti‐pattern. High EQ: able to … caching) and resiliency patterns (graceful degradation, bulkheads, back pressure), empowering teams to deliver robust solutions. Experience leading and governing SRE/DevOps practices at scale, including CI/CD, incident management, post-mortems, and capacity & cost management, fostering a culture of operational excellence and continuous improvement. Sponsor and champion security leadership, including secure SDLC, identity/authorization (SAML/ More ❯

networking best practices. Lead major infrastructure initiatives from design through to implementation. Support & Innovation Continuously assess the evolving needs of the business and identify areas for innovation. Ensure rapid incident response and play a key role in the change and incident management process. Contribute to strategic technology decisions with a focus on resilient network design. Professional Experience More ❯

Implement and support security controls, particularly within Azure cloud environments. Evaluate and deploy best-in-class application security tools. Mentor teams and deliver tailored security awareness programmes. Assist with incident response, security training, and supplier/client security assessments. What We’re Looking For Essential Skills & Experience: Proven experience in application security engineering. Strong knowledge of security tools More ❯

and evolve Terraform modules for automated, consistent, and version-controlled deployments. Security & Access Management: Administer Conditional Access Policies, manage application registrations, and enforce secure identity and access practices. Monitoring & Incident Response: Configure and manage tools like Azure Monitor and Log Analytics to proactively detect and resolve issues. Compliance & Documentation: Maintain accurate technical documentation and ensure adherence to security More ❯

for managing and supporting our enterprise messaging infrastructure built on Solace PubSub+, ensuring high availability, optimal performance, and reliability across production and non-production environments. This includes working on incident response, capacity planning, WAN optimization, and system observability using tools like Prometheus and Grafana . Key Responsibilities: Administer and maintain Solace PubSub+ appliances and software brokers across environments More ❯

from initial consulting on a range of areas including Risk Assessments, Vulnerability Management, Accreditations (ISO27001, GDPR), GRC (Governance, Risk, Compliance), Security Architecture Design and Build (technical and Non-technical), Incident Response, Protective Monitoring Services, Penetration Testing and much more. We take clients through a journey to improve their overall security posture and maturity to ensure they feel reassured More ❯

train onboard systems cyber security assessments and risk management Establish and maintain appropriate policies, procedures, and practices in relations to cyber, data and governance practices Manage the information security incident response program Manage implementation and deployment of Information Security Management System (ISMS). Line management of the internal InfoSec specialists. Requirements Extensive experience working with PCI-DSS and More ❯

SOC Specialist | London based 2-3x a week | £85,000 + Benefits Role Brief Join a global Security Operations Center team providing 24/7 threat detection and incident response. As a SOC Specialist, you’ll act as a frontline defender—monitoring alerts, leading investigations, and conducting proactive threat hunts. You'll work with a range of technologies … detection improvements, and collaborate with wider cyber teams. This role is a 9-5 position, with occasional requirement to be on on-call rota Essential Skills Solid grasp of incident response fundamentals Understanding of common attack techniques (phishing, lateral movement, DDoS, etc.) Experience with log and packet (PCAP) analysis Familiarity with Windows and/or Linux investigations Clear More ❯

It’s ideal for someone with a solid foundation in data protection and a keen interest in evolving tech risks. Key highlights: Support global data risk initiatives and cyber incident response Conduct DPIAs and manage Records of Processing Activities Collaborate on ISO 27001 audits and phishing exercises Engage with AI and emerging tech compliance Liaise with Risk Operations More ❯

/IP, subnets, load balancing, DNS). A track record of leading small technical teams, providing guidance and mentorship. Experience in site reliability engineering (SRE) or IT operations, including incident response and troubleshooting. Strong problem-solving and innovation skills, with evidence of delivering technical improvements or new ways of working. More ❯

identity/access, encryption, data protection, secrets, and resilience). • Recommend and review controls for containerised and serverless workloads; guide teams on secure coding and code review practices. • Support incident response planning and playbook development; foster a culture of continuous assurance. Your experience will include: • Leading the development of security architecture and design for complex IT requirements, ensuring More ❯

and revenue forecasting. Deliver against ambitious new business targets, landing deals typically in the £20k–£40k range . Cybersecurity Services You’ll Sell Penetration Testing & Red Teaming Managed Detection & Response (MDR) Security Operations Centre (SOC) services Threat Intelligence & Risk Advisory Incident Response & Crisis Management Cloud & Endpoint Security Solutions What You Bring Proven track record in new business More ❯

performance cloud infra for ML workloads Build and manage GPU clusters, storage systems, and distributed training environments Set up and optimise containerised workflows (Docker, Kubernetes, Terraform) Implement robust monitoring, incident response, and CI/CD practices Collaborate closely with researchers to integrate and scale experiments This person must have experience building ML Infrastructure and cloud architecture from scratch More ❯

BMS, CAFM, etc. Act as Senior Authorised Person (SAP) for High and Low Voltage systems. Manage the Permit to Work (PTW) system and review RAMS for all activities. Lead incident response, root cause analysis, and corrective action processes. Deliver robust Planned Preventative Maintenance (PPM) and reactive maintenance schedules. Monitor site KPIs, service levels, and operational risks, ensuring swift More ❯

data pipelines for real-time and historical treasury data, ensuring accuracy and performance in analytics. Work with operations teams to deploy, monitor, and scale systems, ensuring uptime and quick incident response. Identify technology gaps and inefficiencies, experimenting with new tools and design patterns to enhance speed and quality. Experience: 5-15 years of software engineering experience, ideally in Treasury More ❯

will include: Application Support and Deployment: Deliver high-quality support for our trading applications and ensure seamless deployments. Monitoring Systems: Configure, tune, and optimise monitoring systems for maximum efficiency. Incident Response: Manage and resolve incidents effectively to maintain platform stability and client satisfaction. Client Management: Work closely with clients, providing exceptional service and building lasting relationships. Must-Haves More ❯

infrastructure A thoughtful, pragmatic engineering approach Curiosity about security and detection (no prior experience required) Bonus if you’ve worked with: Event-driven or distributed systems Security tooling or incident response workflows Why Join? Work on hard, meaningful problems in cybersecurity Be part of a fast, technical, remote-first team Competitive salary and meaningful equity Founding Engineer - London More ❯