201 to 225 of 499 Incident Response Jobs in England

SIEM: Collaborate with our SOC partner to design and optimise Splunk dashboards and alerts, turning raw data into actionable intelligence to combat sophisticated threats. Incident Response: Act as a technical escalation point for high-priority security incidents, employing EDR and SIEM tools for swift containment. Automate Security Processes … Develop Security Orchestration, Automation, and Response (SOAR) workflows to minimise manual intervention and enhance response efficiency. Conduct Threat Hunting: Utilise specialised queries to proactively identify undetected malicious activities within the environment. Train the Team: Elevate the skill level of the existing team in CrowdStrike, Splunk, and security analysis. ...

monitor SLAs, OKRs, and user satisfaction metrics. Implement and continually improve IT service management processes and tooling. Embed ITIL best practices across incident, problem, and change management. Oversee onboarding and offboarding processes, ensuring timely provisioning and equipment returns. Team Leadership & Growth Line manage IT Managers across … with data protection and licensing requirements. Support health & safety compliance, including DSE standards. Promote security awareness and a strong security‐first culture. Coordinate security incident response and remediation. Vendor & Budget Management Manage IT vendors, suppliers, and service providers. Negotiate contracts and ensure value for money. Own IT procurement ...

monitor SLAs, OKRs, and user satisfaction metrics. Implement and continually improve IT service management processes and tooling. Embed ITIL best practices across incident, problem, and change management. Oversee onboarding and offboarding processes, ensuring timely provisioning and equipment returns. Team Leadership & Growth Line manage IT Managers across … with data protection and licensing requirements. Support health & safety compliance, including DSE standards. Promote security awareness and a strong security‐first culture. Coordinate security incident response and remediation. Vendor & Budget Management Manage IT vendors, suppliers, and service providers. Negotiate contracts and ensure value for money. Own IT procurement ...

seamless and high-quality experience for end users. Take accountability of the on-call rota , ensuring appropriate coverage, managing participation, and leading rapid incident response to maintain service availability. Continuously assess and improve team processes and procedures , fostering a culture of innovation and engineering excellence to optimise performance … team that consistently meets objectives and drives continuous improvement. Regularly conducts performance reporting and analysis , tracking key metrics such as system availability, uptime, and response times to inform decision-making and improvement initiatives. What you’ll need to succeed Essential: Experience in a leadership role , including mentoring, developing team ...

policies, technical controls, governance processes and operational procedures against CAF requirements Assess cyber security capability across areas such as risk management, protective security, monitoring, incident management, supply chain and resilience Produce high quality assessment reports, observations, risk findings and improvement recommendations Contribute to assurance workbooks, delivery documentation and management … communication skills Experience operating within public sector, regulated or complex enterprise environments Understanding of cyber security principles including identity and access management, vulnerability management, incident response, logging and monitoring, resilience and supply chain security Ability to manage multiple priorities and deliver against tight timescales Experience working within blended ...

network infrastructure Oversee LAN, WAN, Wi-Fi, VPN, firewall, and internet connectivity environments Lead network security initiatives including monitoring, patching, access control, and incident response Support and develop cloud and hybrid infrastructure connectivity Manage relationships with third-party vendors, ISPs, and technology partners Provide technical leadership and mentorship … stable and forward-thinking organisation near Oxford, we would love to hear from you. Please send an up to date CV for an immediate response and more information on a fantastic opportunity with a truly great Client. ...

SIEM/SOC platforms and tune detections Support OT asset discovery, inventory, and security assessments Identify vulnerabilities and support remediation planning Assist with OT incident response (log collection, triage, SOC coordination) Work with engineers to ensure secure system changes with minimal disruption Track OT security maturity, control coverage ...

cyber security strategy and governance (aligned to various frameworks e.g. ISO27001, NIST, Cyber Essentials) overseeing security operations (SOC, threat detection, vulnerability management etc.), and incident response plans risk management and compliance, ensuring compliance with various standards and frameworks About you Applicants for the Cyber Security Engineer role will ...

audit logging across production systems • Support cloud security, RBAC, managed identities and secure access controls • Monitor system reliability, performance, latency and throughput • Support incident response, root cause analysis and platform improvements • Work with internal and external teams to support scalable global deployments Requirements • Strong hands-on experience with ...

implement a pragmatic, business aligned security roadmap Lead GRC, security operations and architecture oversight Drive improvements across identity & access management, cloud security and incident response Act as the senior escalation point for security incidents and risk decisions Engage with C-suite and board stakeholders, providing clear, commercially focused ...

implementing security controls, conducting threat modelling and architecture reviews, and defining secure configurations and standards. The role also ensures systems include robust monitoring, detection, incident response, and recovery capabilities, while supporting overall resilience. Additionally, as the Cyber Security Lead you will contribute to Change Advisory Board decisions, assessing ...

analysis. Oversee security operations including vulnerability scanning, penetration testing, and assessments. Manage and optimise security tooling (Firewalls, VPNs, IDS/IPS, EDR). Lead incident response activities, ensuring swift mitigation and root cause analysis. Collaborate across engineering, architecture, and compliance teams to embed security-by-design. What youll ...

CIAM) solutions and data protection initiatives Work alongside Cyber Security Operations Center (CSOC) teams, contributing to threat intelligence, vulnerability assessments, and testing activities Support incident response activities and help strengthen client defence capabilities Assist with SIEM configuration, monitoring, and optimisation, including log pipelines, correlation rules, and alert triage ...

gather requirements, address concerns, and provide updates on projects and system status Contribute to the design, build and operational management of the services Lead incident response, troubleshooting, and root cause analysis to mitigate and prevent future issues Work closely with engineering, support and operations teams to upskill ...

will contribute to infrastructure decisions and service architecture within our Azure environment, support observability, monitoring and alerting for production services, and participate in incident response and root cause analysis when issues arise. You will take end-to-end ownership of features from technical design through to delivery ...

Code, automation frameworks, and database-as-code practices using Redgate Flyway.Take ownership of critical customer systems, ensuring operational resilience, observability, performance optimisation, and rapid incident response.Collaborate closely with Product, Delivery, Operations, and Commercial teams to shape technical solutions, delivery plans, and strategic outcomes.Promote secure-by-design, compliance-by-design ...

Resilience, Continuity & Recovery Manager (DORA) -Incident Manager UK Remote | Permanent Hiring a Senior Resilience, Continuity, Recovery Manager and Incident Manager with strong DORA experience to lead operational resilience, major incident management and recovery planning within a regulated financial services environment. Key experience:* MUST DORA/Operational Resilience … Major Incident Management* Business Continuity & Disaster Recovery* Financial Services/FinTech* ISO 22301/ISO 27001/NIST* Stakeholder & Regulatory Management This role will lead DORA implementation, resilience testing, ICT incident response, third-party risk and enterprise recovery planning across the business. High-impact role with strong ...

Resilience, Continuity & Recovery Manager (DORA) -Incident Manager UK Remote | Permanent Hiring a Senior Resilience, Continuity, Recovery Manager and Incident Manager with strong DORA experience to lead operational resilience, major incident management and recovery planning within a regulated financial services environment. Key experience: * MUST DORA/Operational Resilience … Major Incident Management * Business Continuity & Disaster Recovery * Financial Services/FinTech * ISO 22301/ISO 27001/NIST * Stakeholder & Regulatory Management This role will lead DORA implementation, resilience testing, ICT incident response, third-party risk and enterprise recovery planning across the business. High-impact role with strong ...

Analyst (Cloud) role is within the Security Operations pillar of the CSOC (Cyber Security Operations Centre), providing second line cloud security analytics, monitoring and incident response services across cloud-hosted environments and platforms. Main duties of the job Deputise for Senior Analysts in their absence, supporting oversight … cloud security monitoring and response activity. Act as an escalation point for Tier 1 Junior Analysts for cloud security incidents, alerts and investigations. Offer mentorship and guidance to Tier 1 Junior Analysts to build capability in cloud threat monitoring, investigation and response. Keep up to date with the latest ...

vital services. What you'll be doing: Overseeing Security Operators during shifts, ensuring continuous security monitoring Performing initial investigations of potential threats using Security Incident and Event Management (SIEM) tools Monitoring SIEM systems for faults and anomalies Contributing to routine security incident management by identifying, prioritising, and escalating … customer services through proactive security measures What you'll bring: Proven experience in cyber security, with a solid understanding of security monitoring and incident response Technical leadership skills and the ability to guide and support team members Strong communication skills to clearly articulate findings and escalate issues effectively ...

threats from false positives and applying appropriate containment and mitigation. Act as the escalation point for IT Support on security-related issues. Lead cybersecurity incident investigations, including malware analysis and digital forensics, and produce detailed reports and recommendations. Support and participate in incident response activities and exercises … strengthen readiness. Provide out-of-hours support where reasonable, including response to escalations, system downtime, and security incidents. Identify, assess, and remediate vulnerabilities through proactive assessments and scheduled vulnerability scans. Review and maintain vulnerability and risk records, ensuring timely remediation. Perform routine security checks to maintain system integrity ...

NICE's cyber security subject matter expert, advising senior leaders and technical teams on complex risks, threats and mitigations. Oversee security operations, incident response and threat intelligence, ensuring strong protection and rapid response to cyber incidents. Manage organisational risk and vulnerability management, including compliance with Cyber Essentials ...

NICE's cyber security subject matter expert, advising senior leaders and technical teams on complex risks, threats and mitigations. o Oversee security operations, incident response and threat intelligence, ensuring strong protection and rapid response to cyber incidents. o Manage organisational risk and vulnerability management, including compliance with ...

expected. You will work closely with the 24/7 Security Analyst team, supporting investigations, resolving platform issues, and driving improvements across detection and response capabilities. This role is client-aligned with ~3 days onsite in London . Key Responsibilities Maintain and configure security platforms including SIEM, XDR/… point for platform issues raised by the Security Analyst team Provide engineering support during complex incidents and investigations Implement platform-level changes to support incident response and remediation Support detection engineering including rule deployment, tuning, and validation Resolve data quality, alerting, and detection gaps impacting operational effectiveness Support ...

artefacts produced during the development and engineering process regarding product & solution security. Supporting customer service team in development and deployment of security monitoring and incident response solutions e.g. SIEM as well as security configuration of railway system solutions and implanting and deploying cyber security solutions. Supporting the network … providing mentorship, guidance, support and leadership Representing security engineering at project milestones, driving continuous improvement through lessons learned, and contributing to the analysis and response to security vulnerabilities and incidents. The candidate will also be expected to maintain an appreciation of new technologies, emerging risks, and standards, together with ...