176 to 200 of 394 Incident Response Jobs in England

SC), to lead the day-to-day operations of a Security Operations Centre. This is a hands-on leadership role where you'll manage a team of analysts, drive incident response, and ensure the SOC delivers measurable value to a well-known end client within the Energy Sector. Key Requirements: Proven experience working within SOC management, within Energy … with NCSC CAF, ONR SyAPs, and ISO27001 frameworks. Nice to have: Experience in complex, regulated environments, especially Critical National Infrastructure (CNI). Awareness of SOAR platforms and automation in incident response. Immediate availability If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.If this job More ❯

What you’ll be doing: Taking ownership of CrowdStrike EDR , including policy configuration and SIEM tuning. Working with network teams on segmentation, NAC, and firewall controls . Leading on incident response , root cause analysis, and runbook development. Managing and optimising a wide suite of tools: WAF, DDoS, VPN, perimeter firewalls, email/web security, MFA, SSO, PAM, MDM … or similar DLP) Intune, Entra ID, Active Directory Palo Alto firewalls, WAF, Menlo Security Security frameworks and compliance (PCI-DSS, ISO 27001, NIST, CIS) Networking knowledge and experience leading incident response. Relevant certifications such as CPSA, CISSP, or Palo Alto Network Certified Security Ops Professional . More ❯

What you'll be doing: Taking ownership of CrowdStrike EDR , including policy configuration and SIEM tuning. Working with network teams on segmentation, NAC, and firewall controls . Leading on incident response , root cause analysis, and runbook development. Managing and optimising a wide suite of tools: WAF, DDoS, VPN, perimeter firewalls, email/web security, MFA, SSO, PAM, MDM … or similar DLP) Intune, Entra ID, Active Directory Palo Alto firewalls, WAF, Menlo Security Security frameworks and compliance (PCI-DSS, ISO 27001, NIST, CIS) Networking knowledge and experience leading incident response. Relevant certifications such as CPSA, CISSP, or Palo Alto Network Certified Security Ops Professional . More ❯

What you’ll be doing: Taking ownership of CrowdStrike EDR , including policy configuration and SIEM tuning. Working with network teams on segmentation, NAC, and firewall controls . Leading on incident response , root cause analysis, and runbook development. Managing and optimising a wide suite of tools: WAF, DDoS, VPN, perimeter firewalls, email/web security, MFA, SSO, PAM, MDM … or similar DLP) Intune, Entra ID, Active Directory Palo Alto firewalls, WAF, Menlo Security Security frameworks and compliance (PCI-DSS, ISO 27001, NIST, CIS) Networking knowledge and experience leading incident response. Relevant certifications such as CPSA, CISSP, or Palo Alto Network Certified Security Ops Professional . More ❯

our forward thinking team as a Network Security Engineer, where you will play a key role in safeguarding our organisations' network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing and maintaining robust security solutions More ❯

our forward thinking team as a Network Security Engineer, where you will play a key role in safeguarding our organisations' network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing and maintaining robust security solutions More ❯

and the ability to develop effective relationships across all levels of the organisation. Main duties of the job Key areas of responsibility:>Security Architecture Design, Implementation,Monitoring and Support> Incident Response> Risk and Vulnerability Management> Policy and Compliance> Handing User Requests, Audit and System Testing> User Education and Training> Continuous Improvement, Budgeting and Cost Saving> Documentation and Reporting … England. Our core operations focus is the delivery of emergency ambulance 999 services (A&E). We have 92 ambulance stations, two Emergency Operations Centres, and two Hazardous Area Response Teams (HART).Our vision is that together, we will deliver the best care when people in the region need us most.To achieve this, the Trust has a five-year More ❯

London | Hybrid| Remote The ideal candidates will hold active DV clearance and have a proven background in Cyber Security, with the following skills and experience: Experience in SOC operations, incident response, and forensic analysis. Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with More ❯

London | Hybrid| Remote The ideal candidates will hold active DV clearance and have a proven background in Cyber Security, with the following skills and experience: Experience in SOC operations, incident response, and forensic analysis. Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with More ❯

Excellent communication and stakeholder engagement skills. Passion for continuous learning and staying updated on emerging threats. Ability to translate technical risks into business impacts. Familiarity with SIEM tools and incident response processes. Closing date: 24 th October Shortlist date: 25 th October Interview date: TBC More ❯

compliance (GDPR, NCSC Principles, ISO 27001). Configure cloud-native security tools & integrate with SIEM (Splunk, Chronicle). Embed security in CI/CD pipelines with DevOps teams. Support incident response & recovery for cloud-native environments. What You Bring Strong cloud architecture background. Knowledge of UK regulatory frameworks. IaC experience (Terraform/Deployment Manager). Understanding of monitoring More ❯

compliance (GDPR, NCSC Principles, ISO 27001). Configure cloud-native security tools & integrate with SIEM (Splunk, Chronicle). Embed security in CI/CD pipelines with DevOps teams. Support incident response & recovery for cloud-native environments. What You Bring Strong cloud architecture background. Knowledge of UK regulatory frameworks. IaC experience (Terraform/Deployment Manager). Understanding of monitoring More ❯

Automate vulnerability scanning, code analysis, and container hardening Collaborate with developers to design secure architectures and threat models Monitor cloud infrastructure (AWS, Azure, GCP) for misconfigurations and anomalies Lead incident response drills and postmortems Champion DevSecOps culture across engineering and product teams Requirements: 3+ years experience in DevOps, security engineering, or cloud infrastructure Strong scripting skills (Python, Bash More ❯

involved with: Handling Tier II-IV incidents and troubleshooting Change and configuration management Policy optimisation and risk reduction Patch, OS and capacity management Event monitoring and vulnerability management Security incident response and project support What we're looking for 5+ years in network security within large-scale operations Experience with technologies such as Cisco ASA, FirePower, Palo Alto More ❯

and manage security incidents, including malware and ransomware threats. Collaborate with third-party cyber security providers to deploy and maintain security capabilities. Conduct root cause analysis and contribute to incident response planning. Ensure compliance with industry regulations and internal governance frameworks. Stay up to date with the latest Azure and security technologies and best practices. Skills and Knowledge More ❯

and manage security incidents, including malware and ransomware threats. Collaborate with third-party cyber security providers to deploy and maintain security capabilities. Conduct root cause analysis and contribute to incident response planning. Ensure compliance with industry regulations and internal governance frameworks. Stay up to date with the latest Azure and security technologies and best practices. Skills and Knowledge More ❯

in ITOT environments Proficiency in configuring managing and troubleshooting firewalls Cisco Palo Alto etc Experience with intrusion detection/prevention systems as well as with SIEM tools and security incident response Excellent problem solving skills analytical thinking and the ability to communicate effectively with diverse stakeholders CERTIFICATIONS (any of below) Cisco Certified Network ProfessionalExpert in Security Zscaler Digital More ❯

FDA pre/postmarket cybersecurity guidance, and related frameworks Collaborate with Product, Engineering, and Compliance to embed security-by-design across our software lifecycle Lead enterprise risk assessments, incident response, disaster recovery, and business continuity planning Oversee security architecture across cloud infrastructure, mobile apps, and data pipelines Represent security matters to the executive team, Board of Directors, and More ❯

practices. Manage and improve cloud-based production environments, ensuring high availability, performance, and security. Deliver Infrastructure as Code (IaC) solutions for repeatable and auditable deployments. Drive monitoring, alerting, and incident response processes aligned with SRE principles. Partner with application teams to architect AWS-optimised solutions. Mentor junior engineers and foster best practices in cloud operations. Collaborate with leadership More ❯

DPA 2018), Cyber Essentials (Basic & Plus), and ISO 27001, supported by frameworks like NCSC and NIST. Operate around cybersecurity fundamentals: CIA (Confidentiality, Integrity, Availability), proactive threat prevention, and rapid incident response About You You’re naturally aligned with MSP-style work, deeply familiar with security frameworks, and thrive at the intersection of strategy and execution. In addition to More ❯

DPA 2018), Cyber Essentials (Basic & Plus), and ISO 27001, supported by frameworks like NCSC and NIST. Operate around cybersecurity fundamentals: CIA (Confidentiality, Integrity, Availability), proactive threat prevention, and rapid incident response About You You're naturally aligned with MSP-style work, deeply familiar with security frameworks, and thrive at the intersection of strategy and execution. In addition to More ❯

Kubernetes environments, focusing on RBAC, network policies, and runtime security Collaborate with engineering teams to implement security best practices and provide hands-on support for remediation efforts Contribute to incident response efforts, including the investigation, remediation, and post-mortem analysis of security breaches Requirements What skills are essential: Strong, demonstrable hands-on experience in a software or infrastructure More ❯

assessments. Collaborate with internal teams and external partners to enhance security posture. Ideal experience: Background in information security or infrastructure engineering. Strong understanding of network security, threat detection, and incident response. Familiarity with vulnerability testing and security awareness tools. Knowledge of GDPR and ISO27001 frameworks. Relevant certifications (CISSP, CISM, or CompTIA Security+) beneficial. Location: Northampton – full-time, office-based More ❯

container, API, and web application security initiatives, including code reviews. Support threat modelling, vulnerability management, and penetration testing activities. Drive logging integration with SIEM tools, enabling SOC monitoring and incident response. Coach engineering teams on cloud security principles and manage audit-related actions. What You'll Bring Essential Skills: Deep expertise in Azure security controls and cloud-native security More ❯

us achieve our mission! As a participant of our Summer Intern Program, you will spend 10 weeks working in a dynamic, hard-working Technology Risk & Information Security team! Security Incident Response/Threat Intelligence Act as the front line of defence at American Express protecting the brand, employees, assets and card members across the globe against threats …/7/365 Minimize risk of cyber-attacks and focus on detection and response of threats Infrastructure, Application, Network, Cloud, & AI/ML Security Drive risk reduction through the rapid identification and remediation of vulnerabilities across the company Deliver secure network solutions that enable secure operations and highly available products and services for our customers Data Loss Prevention More ❯