176 to 200 of 365 Incident Response Jobs in England

Catalogues, High-Level and Detailed Solution Designs, Data Flow Diagrams, and evidence of GDS alignment Ensure integration solutions support real-time monitoring, alerting, and incident management (e.g., via ServiceNow and Power BI dashboards), in line with GDS requirements for operational monitoring and incident response Work with security … teams to ensure all integrations meet protective monitoring and incident notification requirements, following GDS security and privacy standards Support test assurance activities, including integration testing, defect triage, and resolution, ensuring quality is built in from the discovery phase as per GDS guidance Provide technical leadership and guidance to project ...

modeling, design reviews, and architectural assessments for new and existing systems. Contribute to internal security documentation, best practices, and developer guidance. Participate in security incident response when engineering expertise or automation support is needed. WHAT YOU WILL NEED: 4+ years of experience in security engineering, platform security … continuously improve the security posture of complex systems. Familiarity with some of the following: Cloudflare (DDoS protection, WAF), OSS SIEM tools (Splunk, Elastic, etc), Incident management platforms (e.g. Incident.io, PagerDuty) Familiarity with at least one of the following CI/CD systems (Github Actions, Concourse, CircleCI) Familiarity with maintaining ...

SecurityDrive the secure design and operation of critical technology platforms, collaborating closely with platform owners and engineering teams to embed security throughout the lifecycle.Incident Response and Threat ManagementProvide technical oversight for incident response, threat detection, and vulnerability management. Lead root cause analysis and remediation of complex security ...

maintain, configure, and troubleshoot security platforms. Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks. Participate in incident response efforts, including forensic examination of compromised systems. Author reports include assessment-based findings, outcomes, and propositions for further system security enhancement. Review … Advanced knowledge of security platforms, threats, vulnerabilities and vulnerability management/remediation, identity and access management, network segmentation, encryption, network traffic, system hardening, and incident response. Knowledge of risk assessment tools, technologies, and methods. Experience designing secure networks, systems, and application architectures. Knowledge of current regulatory frameworks and guidance ...

experience and Windows Server knowledge. Key Responsibilities: Technically Proficient Implementing Security Controls Administration of SIEM tools and Security Controls (Sentinel, Defender, DarkTrace) Incident Response Security Operations Centre Vulnerability Management & Reporting Continuous Improvement Training & Awareness Secure Architecture Support Compliance and Framework Alignment Essential Skills: Experience with Microsoft Sentinel, Microsoft ...

Drive adoption of IaC and automated deployment processes Oversee systems integration architecture, ensuring compatibility and performance across cloud, on-premises, and hybrid environments Lead incident response, disaster recovery planning, and BCP/DR testing Monitor platform performance and establish KPIs and SLAs for availability, security, and uptime Lead ...

Oversee risk management, threat assessment and vulnerability programmes Ensure compliance with ISO 27001, ISO 42001, GDPR and other relevant frameworks Manage security operations including incident response, monitoring and investigations Partner with IT, engineering, legal and business teams to embed security best practice Lead internal/external audits, assessments ...

Gitlab pipeline, Terraform and DevSecOps practices.* Drive architectural decisions and mentor engineers in performance tuning, resilient design, and secure coding practices.* Contribute to incident response and postmortems, continuously improving system reliability.What You'll bring:* Experience in managing engineers, with 3+ years in deep expertise in distributed systems.* Proven ...

C#, Angular, SQL Server Stay hands-on when needed: design, code, pair, review PRs, unblock the team Drive quality, reliability and security: testing approach, incident response, post-incident improvements Hire, onboard and develop engineers (including onshore/offshore collaboration) What we need from you 8+ years building ...

principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and non-technical stakeholders Excellent analytical, documentation, and problem-solving capability Knowledge ...

/CD pipelines across backend, frontend, and data services Develop and manage logging, metrics, tracing, and alerting systems Lead efficient on‐call and incident-response processes Monitor and optimise cloud spend Tech Stack Cloud: Azure (AWS a plus) IaC: Terraform Containers: AKS (Kubernetes), Docker CI/CD: GitHub ...

Awareness Assist in delivering compliance and security training Ensure clear communication to employees at all levels Help build a culture of awareness and accountability Incident Coordination Support incident response by gathering information and maintaining records Escalate appropriately to leadership or external advisors Essential Experience Experience in governance ...

CrowdStrike Falcon platform. SIEM Mastery: Work with our SOC partner to architect and optimize Splunk dashboards, alerts, and data models to identify sophisticated threats. Incident Response: Serve as a technical escalation point for high-priority security incidents, utilizing EDR and SIEM tools for rapid containment. Automation: Develop "SOAR … workflows (Security Orchestration, Automation, and Response) to reduce manual intervention and improve response times. Threat Hunting: Proactively search for undetected malicious activity using specialized queries. Training. Build up the Crowdstrike, Splunk and Security Analysis skills within the existing team. Required Experience Experience: 5+ years in a dedicated Cyber ...

CrowdStrike Falcon platform. SIEM Mastery: Work with our SOC partner to architect and optimize Splunk dashboards, alerts, and data models to identify sophisticated threats. Incident Response: Serve as a technical escalation point for high-priority security incidents, utilizing EDR and SIEM tools for rapid containment. Automation: Develop "SOAR … workflows (Security Orchestration, Automation, and Response) to reduce manual intervention and improve response times. Threat Hunting: Proactively search for undetected malicious activity using specialized queries. Training. Build up the Crowdstrike, Splunk and Security Analysis skills within the existing team. Required Experience Experience: 5+ years in a dedicated Cyber ...

procedures aligned to UK Government frameworks Conduct People and Physical Security risk assessments, audits and assurance activities Lead or support personnel security investigations, incident response and post-incident reviews Contribute to the development and delivery of insider risk programmes Provide subject matter expertise and advisory support ...

guide immediate containment steps (e.g.asset isolation, password reset). Escalation: Escalate confirmed or high severity incidents to the Level 2 SOC (outsourced) or internal incident response teams, ensuring complete and accurate handoff documentation. Incident Documentation: Create and maintain detailed case notes, timelines, and evidence within the case ...

/CD pipelines with blue-green, canary, and rolling deployments, including automated, zero-downtime database releases. Implement comprehensive monitoring, logging, alerting, and automated incident workflows with clear reporting. Strengthen cloud security posture (IAM, secrets, vulnerability scanning) and embed DevSecOps practices while maintaining PCI-DSS compliance. Drive reliability through SLIs …/SLOs, incident response, disaster recovery testing, and capacity planning for peak events. Optimise performance and cost across hybrid environments through right-sizing, forecasting, and resource governance. Apply AI-driven tooling for anomaly detection, operational optimisation, and compliance automation. Collaborate cross-functionally, maintain documentation, and promote DevOps best ...

secure identity and access management across Azure, Entra ID, and Microsoft 365. Help improve secrets management, patching, vulnerability management, auditability, backup and recovery, and incident readiness. Work with internal stakeholders on security remediation and infrastructure compliance priorities. Monitoring, support, and operational readiness Improve monitoring, logging, alerting, dashboards, and operational … healthtech, regulated SaaS, or another compliance-driven environment. Experience with frameworks such as Cyber Essentials, SOC 2 or ISO 27001 Experience with observability tooling, incident response processes, and production support improvement. Experience managing or supporting Windows servers and mixed environments. Experience with SQL Server, database administration, or performance ...

workloads Implement observability and monitoring to detect vulnerabilities and security risks Collaborate with engineering, security, and risk teams to strengthen DevSecOps practices Support incident response and SOC activities related to container environments Ensure compliance with industry security standards (eg NIST, CIS, PCI-DSS) Key Requirements Strong experience with ...

workloads Implement observability and monitoring to detect vulnerabilities and security risks Collaborate with engineering, security, and risk teams to strengthen DevSecOps practices Support incident response and SOC activities related to container environments Ensure compliance with industry security standards (e.g. NIST, CIS, PCI-DSS) Key Requirements Strong experience with ...

reliability and reduce manual work Strong understanding of cloud and hybrid infrastructure, with a focus on enhancing observability, logging, and operational tooling Experience in incident response, root cause investigations, and implementing fixes to improve stability and prevent recurrence Preferred Qualifications: Proven track record in DevOps or infrastructure engineering ...

landing zones. Lead the development of CI/CD pipelines and automated infrastructure delivery. Promote strong observability, monitoring and alerting practices. Take part in incident response, root cause analysis and platform stability improvements. Balance build-and-run responsibilities with a focus on long-term platform health. ...

data remain protected against evolving threats. IT Security Analyst Key Skills: * IT security principles and best practices * Risk assessment and mitigation * Security monitoring and incident response * Microsoft security tools (Defender, Purview, etc.) * GDPR and data protection compliance * Patch management and vulnerability management * Networking and infrastructure security * Security frameworks ...

landing zones. Lead the development of CI/CD pipelines and automated infrastructure delivery. Promote strong observability, monitoring and alerting practices. Take part in incident response, root cause analysis and platform stability improvements. Balance build-and-run responsibilities with a focus on long-term platform health. ...

landing zones. Lead the development of CI/CD pipelines and automated infrastructure delivery. Promote strong observability, monitoring and alerting practices. Take part in incident response, root cause analysis and platform stability improvements. Balance build-and-run responsibilities with a focus on long-term platform health. ...