8 of 8 Incident Response Jobs in Bristol

support and enhance a Security Operations Centre for a leading technology provider. This role focuses on detection engineering, SIEM optimisation, and automation, alongside supporting incident response across complex environments. Key Responsibilities Develop and tune SIEM detection rules and use cases (e.g., Splunk, QRadar) Automate SOC workflows and incident response processes (Python/PowerShell) Improve alert quality, reducing false positives and enhancing detection coverage Support and lead incident investigations and escalations Integrate threat intelligence into monitoring and detection Maintain SOC playbooks and support continuous improvement of tooling and processes Skills & Experience Experience in SOC Engineering ...

support and enhance a Security Operations Centre for a leading technology provider. This role focuses on detection engineering, SIEM optimisation, and automation, alongside supporting incident response across complex environments. Key Responsibilities Develop and tune SIEM detection rules and use cases (e.g., Splunk, QRadar) Automate SOC workflows and incident response processes (Python/PowerShell) Improve alert quality, reducing false positives and enhancing detection coverage Support and lead incident investigations and escalations Integrate threat intelligence into monitoring and detection Maintain SOC playbooks and support continuous improvement of tooling and processes Skills & Experience Experience in SOC Engineering ...

endpoint, email, identity, network, cloud and application layers. Manage and integrate a broad ecosystem of third-party cyber security platforms, including managed detection and response services, email security gateways, vulnerability management tools, privileged access management and threat intelligence services. Lead and support cyber security incident response activities … including investigation, containment, remediation and post incident review. Oversee security monitoring, alerting and response processes, working closely with managed service providers where applicable. Conduct and coordinate vulnerability assessment and remediation activities across infrastructure, endpoints, applications and cloud services. Support regulatory, client and internal audits (e.g. ISO 27001), including ...

visibility and enhance the overall security posture. Key Responsibilities: Implement, configure and optimise core security tooling across the environment Enhance threat detection, monitoring and response capabilities Investigate security alerts and support incident response activities Improve integration and automation between security platforms Support vulnerability management and remediation processes … management platforms such as Tenable Knowledge of OT/ICS security platforms such as Claroty is beneficial Experience supporting security monitoring, detection engineering and incident response Strong understanding of enterprise infrastructure and cloud security Reasonable Adjustments: Respect and equality are core values to us. We are proud ...

principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and non-technical stakeholders Excellent analytical, documentation, and problem-solving capability Knowledge ...

hours fall between 07:30 – 18:30 (shift-based coverage) Participation in an on-call rota is required to support high service availability and incident response Why Apply? Work on mission-critical, cutting-edge systems Be part of a collaborative, high-performing engineering environment Influence the design ...

delivery teams and directly with customers to ensure deployed systems are secure and robust, and operating policies are in place to maintain security Support incident response for security events affecting our products and systems Develop and execute on a roadmap to ISO27001 or equivalent certification for our development ...

scalability of all systems and infrastructure. Strengthen cyber‐defence, vulnerability management, regulatory compliance, and operational risk frameworks. Oversee disaster recovery, business continuity planning, and incident response. Work across functions to minimize IT & Operational errors. Boards, Committees, Reporting & Risk Management Represent Technology at relevant boards, committees (operational risk, digital … regulatory reports, ensuring accuracy and timely delivery. Proactively manage technology‐related business risks across the organisation. Client Due Diligence & External Engagement Lead the technology response for client due‐diligence requests, RFPs, and operational reviews. Present LOIM's technology strategy and controls to investors and partners. Foster strong relationships with ...