126 to 150 of 668 Incident Response Jobs in England

a fast-paced and dynamic environment where you can take ownership of projects and work as part of a supportive team. Key responsibilities: Manage security operations, governance, architecture, and incident response functions Integrate "Security-focused architecture" methodologies throughout development and infrastructure processes Create and deploy IT security policies, procedures, and operational standards Implement a security awareness culture while … deliver security consultancy to business units and clients Lead organization-wide information and cybersecurity strategy development Evaluate IT security risks and execute informed risk-based strategic decisions Lead security incident response and oversee compliance monitoring activities Qualifications and Requirements Proven capability to function at both strategic and tactical levels, engaging technical and executive stakeholders Comprehensive IT security leadership More ❯

Participate in the information security risk management process to identify, assess, treat and monitor risks. Manage information security incidents and events to protect information assets. Help develop and implement incident response plans and procedures to ensure that information services are recovered in a timely manner in the event of a security breach. Track vendor and media disclosure of … . Familiarity with security frameworks such as ISO27001, NIST, or CIS Controls. Basic understanding of networking, operating systems, and cloud environments. Awareness of common threat vectors, controls and basic incident response principles. Basic knowledge of Windows operating systems, Active Directory, Entra ID Strong analytical and problem-solving skills. Excellent written and verbal communication. Ability to handle sensitive information More ❯

and application support engineer to manage the operation and maintenance of regulatory reporting systems for financial institutions. This role focuses on ensuring stable system operation through continuous monitoring, rapid incident response (including on-call support), root cause analysis, and documentation. The ideal candidate will have experience in maintaining mission-critical systems and strong skills in SQL-based data … weekend support Location: Central London (Hybrid) Position Overview This position supports the stable operation of regulatory reporting systems used by financial institutions. You will be responsible for system monitoring, incident response, root cause analysis, and providing comprehensive incident reports. The role requires attention to detail and a strong sense of ownership, as you will be supporting systems … and provide both temporary and permanent solutions • Extract and analyse data using SQL (Microsoft SQL Server) • Analyse incidents using logs and DB traces to identify root causes • Prepare detailed incident reports, including root cause and preventative actions • Communicate with clients and internal stakeholders in both English and Japanese Must Requirements • Experience in IT system operations and support for financial More ❯

runbooks. Lead efforts in observability, including metrics instrumentation, logging, and dashboards. Develop self-healing mechanisms for recurring production issues. Continuously reduce manual operational work ("toil") through scripting. Reliability Engineering & Incident Management ( 30%) Monitor health of trading systems with a goal of proactive failure prevention. Own and improve incident response, root cause analysis, and blameless post-mortems. Design … Skills, Knowledge and Expertise Experience, Knowledge & Skills 5+ years in a production-facing engineering role within finance or other mission-critical tech domains. Proven experience with automation, observability, and incident response in distributed systems. Comfort with scripting and systems programming (Python, Bash). Experience with config management and container orchestration tools. Strong communication and debugging skills, especially under More ❯

businesses maintain secure and competitive operations. Key Responsibilities: Support cybersecurity stack administration for SME and hospitality clients using tools including CrowdStrike Falcon, RoboShadow, Microsoft Defender, and ThreatLocker Assist with incident response playbook development and execution, analysing alerts and threat intelligence for effective remediation Contribute to client compliance guidance across Cyber Essentials/CE+, ISO 27001, and PCI DSS … familiarity with security tools including CrowdStrike Falcon, Microsoft Defender, Conditional Access, and MFA Understanding of compliance frameworks such as Cyber Essentials Plus, ISO 27001, and PCI DSS Interest in incident response and real-world security investigations Foundational knowledge of identity security, patch management, and user awareness training Strong written and verbal communication skills with ability to simplify complex More ❯

critical role in designing, developing, and maintaining our security information and event management (SIEM) system. Your focus will be on leveraging Elasticsearch and related technologies to enhance threat detection, incident response, and overall security posture. This role is hybrid (3 days in office) and can be based in one of the following offices: Birmingham, Manchester, Ipswich (Ipswich only … security events. Monitor and manage the performance of the SIEM infrastructure. Security Engineering: Contribute to security engineering projects, transitions, and transformations. Work closely with security operations and associated security incident response systems Stay informed about emerging threats and security best practices. Data Ingestion and Enrichment: Configure Elasticsearch pipelines for data ingestion from various sources, primarily from Kafka Enhance More ❯

seasoned SOC professional looking to make a tangible impact. Apply now to join a team focused on protecting enterprise assets against evolving cyber threats. Key Responsibilities: Lead investigations and response efforts for high-severity security incidents. Conduct proactive threat hunting using Microsoft Sentinel and the Defender suite. Develop and fine-tune analytic rules, workbooks, and automation playbooks in Sentinel. … Perform deep-dive analysis of malware, phishing, and lateral movement techniques. Collaborate with engineering teams to optimise Microsoft security tool integrations. Maintain and enhance incident response procedures and documentation. Skills/Must have: Over 5 years of experience in cybersecurity, including a minimum of 2 years in a Level 3 SOC or equivalent role. Expert-level proficiency with … Identity, and Office 365. Strong knowledge of the MITRE ATT&CK framework, threat intelligence, and adversary TTPs. Solid understanding of Windows, Linux, and core network security principles. Skilled in incident response, digital forensics, and proactive threat hunting. Experience working with SOAR platforms and building automated workflows. Benefits: View to Extension Salary: Up to £575 Per Day More ❯

GPEN, GWAPT); CISCO (CCNA); EC-Council (CEH, LPT). Experience communicating remediation recommendations and strategies to technical staff, executive leadership, legal counsel, and internal and external clients. Experience in incident response remediation or disaster recovery. Excellent written and verbal communication skills, with the ability to develop documentation and explain technical details in a concise manner. Excellent attention to … articulate and present complex concepts to business stakeholders, executive leadership, and technical contributors. Part of Google Cloud, Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. Mandiant's cybersecurity expertise has earned the trust of security professionals and company executives around the world. Our unique combination of renowned frontline experience responding to More ❯

and escalation management. Originate cyber risk management and technology resilience opportunities. Own key client relationships, supported with account, sales and marking plans. Position our cyber threat intelligence, assurance and incident response practices. Provide clear, brand-enhancing, and energetic consulting leadership in EMEA, actively promoting Control Risks as an advisor on cyber and technology risk in the market, leading … management. Business development Originate cyber risk management and technology resilience opportunities. Own key client relationships, supported with account, sales and marking plans. Position our cyber threat intelligence, assurance and incident response practices. Provide clear, brand-enhancing, and energetic consulting leadership in EMEA, actively promoting Control Risks as an advisor on cyber and technology risk in the market, leading More ❯

on OT systems Identify potential operational, safety, or business risks Ensure OT operations are compliant with policies and standards through guidance and controls Respond to OT security incidents: Support incident response processes Partner with stakeholders to develop mitigation strategies for cybersecurity threats Location: Kolding, Amsterdam, Hamburg, London, Stockholm, and Katowice. Company Description: Vattenfall is a European energy company … member of our cybersecurity team, you will bring technical expertise and soft skills to safeguard our digital and operational environments. Your responsibilities include verifying controls, overseeing asset inventories, supporting incident response, and ensuring compliance with international standards like ISO 27001 and IEC 62443, as well as regulations such as KRITIS 2.0, NIS2, and the Swedish Protective Act. Certifications More ❯

security strategy. Responsibilties: Designing and implementing robust security policies, controls, and infrastructure protection strategies. Leading vulnerability management efforts, penetration testing, and remediation plans. Monitoring and investigating security events, managing incident response processes end-to-end. Ensuring compliance with security standards such as ISO 27001 and supporting audits and certifications. Collaborating across teams to embed security into the core … vulnerability scanners, encryption, SAST/DAST tools, OWASP ZAP, etc. Strong understanding of network security protocols and best practices. Scripting and automation experience (e.g. Python). Proven experience with incident response and threat mitigation. Familiarity with security compliance frameworks (ISO 27001, SOC 2, etc.). Security certifications (e.g. Security+, CISSP, or equivalent) are a plus. You'll Thrive More ❯

and management of technologies across backbone, edge, and cloud environments, while supporting the delivery and integration of managed security solutions for customers. The role plays a key part in incident response, vulnerability management, and maintaining robust security standards. By collaborating across engineering, operations, and product teams, it helps embed security into every layer of the network and service … responding to incidents and escalating as appropriate. Assist with vulnerability assessments, patch management validation, and configuration hardening. Document and maintain infrastructure security standards, configurations, and runbooks. Participate in security incident response, root cause analysis, and remediation efforts. Provide input on threat modelling, security testing, and design reviews for internal and external services. Stay current on security threats, tooling More ❯

work plans in collaboration with senior leadership. Programme & Project Management Establish and maintain programme reporting standards and delivery methodologies. Be the project manager for main projects i.e. those enhancing incident response and security operations. Improve processes through structured feedback loops and performance metrics. Partner Engagement & Communication Promote communication between partners, departments, and delivery teams to ensure coordination and … decisions and improve outcomes. Review and manage material changes to CFC processes, ensuring clarity, understanding and agreement. Collaboration Build relationships across cybersecurity domains, including threat intelligence, compliance, engineering, and incident response. Facilitate agreement and knowledge sharing across teams to support cohesive operations. Administrative & Evolving Responsibilities Provide administrative support for security operations and incident response functions. Remain keen More ❯

experience considered if certification is not held). Demonstrated success leading Security Engineering teams and managing large client bases. Strong client relationship and stakeholder management skills. Project management proficiency. Incident response experience (simulated and real-world). Analytical problem-solving ability, with strong risk assessment and mitigation skills. CISSP-ISSEP certification. Other security qualifications desirable (e.g., CISSP, CCSP … CCNA, SABSA). Desirable Skills: Experience with cloud, on-prem, SaaS, PaaS, and IaaS environments. Security incident response background. Coding/scripting ability. Familiarity with Azure Sentinel. Benefits: £5,400 car allowance 25 days annual leave with the option to purchase additional days Private medical insurance Life assurance Pension scheme Generous flexible benefits fund Salary: Up to More ❯

our internal Security Operations Centre (SOC). You will work alongside experienced security professionals to monitor, investigate, & respond to cybersecurity threats. You will build foundational skills in threat detection, incident response, & security operations. Role Your duties will include: Learning to use an array of security tools such as endpoint protection, intrusion detection/protection systems, and vulnerability scanners. … Monitoring security alerts and logs using the available tool set. Assisting with the triage and analysis of potential security incidents. Supporting incident response efforts under the guidance of senior analysts. Helping to document incidents, playbooks, and reports. Supporting security operational projects. Training Cyber Security Technical Professional Integrated Degree Level 6. Workplace assessment and college block delivery (average More ❯

Center, VPC Service Controls, Azure Security Center, Azure AD, and Microsoft Defender for Cloud. Conduct security assessments, vulnerability scans, and penetration testing. Monitor cloud environments for threats and lead incident response efforts. Integrate security into the CI/CD pipeline and ensure secure configurations. Develop and enforce cloud security policies aligned with regulatory and internal frameworks. Provide guidance … Qualifications 6+ years of experience in cloud or information security. Proven experience securing Google Cloud Platform (GCP) environments. Strong understanding of cloud security principles and native controls. Experience with incident response and threat modelling. Relevant certifications such as: Google Professional Cloud Security Engineer Azure Security Engineer Associate (AZ-500) Certified Cloud Security Professional (CCSP) Key Attributes Strong verbal More ❯

Center, VPC Service Controls, Azure Security Center, Azure AD, and Microsoft Defender for Cloud. Conduct security assessments, vulnerability scans, and penetration testing. Monitor cloud environments for threats and lead incident response efforts. Integrate security into the CI/CD pipeline and ensure secure configurations. Develop and enforce cloud security policies aligned with regulatory and internal frameworks. Provide guidance … Qualifications 6+ years of experience in cloud or information security. Proven experience securing Google Cloud Platform (GCP) environments. Strong understanding of cloud security principles and native controls. Experience with incident response and threat modelling. Relevant certifications such as: Google Professional Cloud Security Engineer Azure Security Engineer Associate (AZ-500) Certified Cloud Security Professional (CCSP) Key Attributes Strong verbal More ❯

that transform how a modern cyber team defends a fast-moving, always-on digital environment. You'll be part of a forward-thinking security function that's serious about incident response, proactive defence, and continuously improving how they work. Your mission: Develop scalable automation workflows that improve how we detect, respond to, and recover from threats. Streamline processes … across threat intel, incident response, and vulnerability management by eliminating repetitive manual tasks. Design and fine-tune SIEM detections that surface real signals and support both proactive and reactive actions. Collaborate across multiple cyber disciplines and work with third-party tools and partners to create seamless integrations. Drive process improvement in relation to Cyber Automations and Tooling What More ❯

environment. This fully onsite role (5 days per week) offers exposure to cutting-edge security challenges across multiple domains. This is an opportunity to deep-dive into security engineering, incident response, and automation in a high-impact role. If you're a technically strong, hands-on engineer looking for broad exposure and real security challenges, we want to … hear from you! Responsibilities Owning security projects end to end - from design to execution Engineering, automating, and securing infrastructure, networks, and cloud environments Hands-on engagement in Incident Response, security assessments, and remediation Working across networking, firewalls, and security (Palo Alto, Fortinet, all major cloud providers) Building and automating with Terraform, Ansible, Golang, Python, HashiCorp Leveraging offensive security More ❯

development lifecycle (SDLC) and CI/CD pipelines. Ensure security is prioritised through automation tools, security testing, and vulnerability scanning as part of the continuous delivery process. Security Assessments & Incident Response: Conduct security assessments, vulnerability scans and risk analyses to identify and address potential security weaknesses within cloud environments. Support the security operations team in incident response More ❯

and introduction of new products and services. Collaborate with Care Systems Support and Service Desk for seamless end-to-end service. Act as a conduit and escalation point for incident and security management. Manage the Configuration Management Database (CMDB) and ensure application/infrastructure interdependencies are understood. Perform daily tasks to keep applications running effectively. Manage obsolescence and maintain … relevant registers. Ensure security and compliance of technology products with Enterprise Policy. Lead incident response, communicate with stakeholders, and conduct root cause analysis. Identify and implement service automation options. Conduct regular business continuity tests. Drive continuous improvement at product and service levels. Ensure thorough testing and quality standards for product changes and updates. Manage release processes and develop … adaptability to technology trends. Proficiency in systems administration, troubleshooting, and IT infrastructure support. Experience in change management and maintaining a change log. Familiarity with monitoring tools, security protocols, and incident response. Strong communication skills and ability to work with cross-functional teams. Knowledge of continuous improvement methods. Results-oriented with a focus on adding value. Clear decision-making approach More ❯

including device setup and account management. Manage global laptop deployment and hardware provisioning for employees worldwide. Maintain network connectivity and infrastructure across multiple sites Assist with security investigations and incident response activities Resolve IT issues and provide technical support within office environments Collaborate closely with security, compliance, and other technical teams Coordinate with vendors and suppliers to procure … efficiency Strong understanding of information security frameworks, particularly ISO27001 Experience with enterprise device management and deployment at scale Knowledge of networking fundamentals and troubleshooting Familiarity with security tools and incident response procedures Experience supporting remote and hybrid work environments Strong vendor management and procurement skills Excellent problem-solving and communication abilities Ability to work across multiple time zones More ❯

management. Support audit, forensic, and security event investigations in coordination with InfoSec teams. Regularly review and remediate security vulnerabilities identified by Qualys, Nessus, or other scanning tools. Contribute to incident response planning, patching SLAs, and compliance reporting. Design and maintain logging, audit trails, and syslog/SIEM integrations Authentication, Authorization, and Directory Services Integrate UNIX systems with enterprise … management platforms Implement and enforce secure access controls, sudo policies, and RBAC schemes. Collaborate with IAM and InfoSec teams on audit readiness, access provisioning, and PAM integrations. Monitoring, Reliability & Incident Response Integrate systems with monitoring tools like Dynatrace, vROps, and custom health scripts. Support alerting, auto-remediation, and telemetry for performance and availability. Participate in on-call rotations More ❯

having game-changing technology within their industry, with exciting scope for expansion into further industries. This role is looking for someone to work within the SRE team responsible for incident response and issue resolution. Location: Cambridge Salary: £32,000 £60,000 + excellent benefits (£32,000 for a new Graduate) Requirements for Site Reliability Engineer Graduate Considered: Excellent … degree from a leading international University in a STEM subject A minimum of ABB at A-Level or international equivalent if applying at Graduate level Experience working in an incident response or 3rd line technical support environment Brilliant communication skills this role is a highly interactive role Ideally, you will have knowledge of modern infrastructure and operational tooling More ❯

their industry, with exciting scope for expansion into further industries. This role is looking for a Graduate or experienced SRE professional to work within the SRE team responsible for incident response and issue resolution. Location: Cambridge Salary: £32,000 - £70,000 per annum + excellent benefits including private healthcare (could be more available for an experienced SRE) Requirements … degree from a leading international University in a STEM subject A minimum of AAB at A-Level or international equivalent if applying at Graduate level Any experience working an incident response or technical support environment would be beneficial (could be as intern/year in industry etc) Brilliant communication skills - this role is a highly interactive role Ideally More ❯