14 of 14 Incident Response Jobs in Berkshire

energy operations within a Critical National Infrastructure (CNI) environment. This role is responsible for real-time security monitoring, alert triage, investigation, and early-stage incident response. You will work with industry-standard security monitoring and incident/event management platforms to identify suspicious activity, validate alerts, and escalate … helping tune detections, and strengthening operational procedures and documentation. Key Responsibilities Monitoring and Triage Monitor security events and alerts using industry-standard SIEM and incident/event management platforms (e.g., Elastic, Microsoft Sentinel, Splunk). Perform rapid triage to determine alert validity, severity, scope, and potential business or operational ...

control systems remain secure, compliant and operationally robust. You'll work closely with engineers, cybersecurity specialists, and external partners to monitor OT environments, support incident response, maintain asset and patch records, and contribute to risk, compliance and audit activities. The role also supports the ongoing improvement … safe, secure and continuous delivery of energy to millions. Location: UK-based hybrid role, Occasional travel to site. Day to day Support OT cybersecurity incident response, including investigation, evidence gathering, containment, remediation, and technical actions such as system isolation and patching, under CSIRT and GSOC guidance. Operate ...

mature Security Operations Centre, focused on protecting essential services. The Opportunity You'll play a key role in real-time threat detection and response, working across a complex enterprise environment. This position combines SOC operations, threat hunting, and continuous improvement, giving you the chance to influence detection capability … response maturity. What You'll Be Doing Monitoring & Triage Analyse and triage security alerts using SIEM platforms Correlate events and identify patterns across multiple data sources Assess severity, scope, and business impact Investigation & Analysis Conduct detailed investigations across endpoint, network, identity, and log data Build evidence-led timelines ...

malicious activity using telemetry, SIEM data, and threat intelligence, develop hypotheses based on MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs), and support incident management and response activities when threats are identified. We are open to experienced SOC Analysts where threat hunting, investigations, and proactive detection have formed … tradecraft Experience working with Indicators of Compromise (IOCs) and threat intelligence feeds Solid experience across the security event life cycle, including detection, investigation, and incident management Hands-on experience with EDR/XDR technologies such as Microsoft Defender, CrowdStrike, SentinelOne, or Carbon Black Strong knowledge of networking fundamentals ...

Evaluate, select, and integrate security technologies including: Identity and Access Management (IAM) Security Information and Event Management (SIEM) Endpoint Detection and Response (EDR) Data Loss Prevention (DLP) Web Application Firewalls (WAF) Encryption and key management solutions Collaborate with engineering, DevOps, and IT teams to embed security-by-design … support Secure Software Development Lifecycles (SSDLC) Lead initiatives around incident response strategy, detection engineering, mitigation planning, and digital forensics readiness Monitor emerging cyber threats, vulnerabilities, and regulatory changes, providing expert guidance to stakeholders Produce high-quality architectural documentation supporting audit, governance, and compliance requirements Required Experience & Skills Proven ...

solutions Collaborate with engineering, DevOps, and IT teams to embed security by design and ensure secure software development lifecycles (SSDLC) Lead strategic initiatives in incident response planning, detection and mitigation strategies, and digital forensics Monitor advancements in threat intelligence and regulatory requirements, advising stakeholders on appropriate countermeasures Produce ...

seamless and high-quality experience for end users. Take accountability of the on-call rota , ensuring appropriate coverage, managing participation, and leading rapid incident response to maintain service availability. Continuously assess and improve team processes and procedures , fostering a culture of innovation and engineering excellence to optimise performance … team that consistently meets objectives and drives continuous improvement. Regularly conducts performance reporting and analysis , tracking key metrics such as system availability, uptime, and response times to inform decision-making and improvement initiatives. What you’ll need to succeed Essential: Experience in a leadership role , including mentoring, developing team ...

policies, technical controls, governance processes and operational procedures against CAF requirements Assess cyber security capability across areas such as risk management, protective security, monitoring, incident management, supply chain and resilience Produce high quality assessment reports, observations, risk findings and improvement recommendations Contribute to assurance workbooks, delivery documentation and management … communication skills Experience operating within public sector, regulated or complex enterprise environments Understanding of cyber security principles including identity and access management, vulnerability management, incident response, logging and monitoring, resilience and supply chain security Ability to manage multiple priorities and deliver against tight timescales Experience working within blended ...

vital services. What you'll be doing: Overseeing Security Operators during shifts, ensuring continuous security monitoring Performing initial investigations of potential threats using Security Incident and Event Management (SIEM) tools Monitoring SIEM systems for faults and anomalies Contributing to routine security incident management by identifying, prioritising, and escalating … customer services through proactive security measures What you'll bring: Proven experience in cyber security, with a solid understanding of security monitoring and incident response Technical leadership skills and the ability to guide and support team members Strong communication skills to clearly articulate findings and escalate issues effectively ...

summary : Worked for large-scale, mission critical environments in Telecom domain. Implement service mesh architectures using Istio for traffic management, security, and observability. Lead incident response, root cause analysis, and continuous improvement activities. Core application skills as a platform engineer: OpenShift, Kubernetes, Prometheus, Grafana, RabbitMQ, Redis, MongoDB, PostgreSQL ...

cloud infrastructure Conduct regular vulnerability assessments and system patching to ensure all devices and software are secure and up-to-date Actively support the Incident Response process by investigating security alerts and applying essential security controls, such as anti-malware and firewall policies Compliance & Governance: Help to enforce ...

high-availability customer services. This is a production environment where reliability matters. Youll be involved in day-to-day platform operations, upgrades, performance tuning, incident response, lifecycle improvements and automation, while helping modernise the wider estate over time. Non-Negotiables Nutanix (strong hands-on production experience) Nutanix … Nutanix Prism Large-scale virtual machine estates Linux (RHEL or equivalent) Troubleshooting across compute, storage and virtualisation Incident/change/problem management processes Production support in a 24x7 or on-call environment What You'll Work With Nutanix Prism Central/Prism Element AHV clusters Linux server environments ...

compliance activities Contribute to the development and maintenance of the Business Continuity Plan (BCP) Conduct risk assessments and Business Impact Analyses (BIA) Support incident response, disaster recovery, and data breach protocols Maintain GDPR compliance and data protection processes Promote awareness of security and continuity procedures across the business ...

mechanical discipline. Strong working knowledge of critical environments such as data centres, hospitals, or financial facilities. Proven ability to lead shift teams and manage incident response in real time. Up-to-date knowledge of Wiring Regulations, health and safety compliance, and permit-to-work systems. Exceptional communication skills ...