201 to 225 of 365 Incident Response Jobs in England

landing zones. Lead the development of CI/CD pipelines and automated infrastructure delivery. Promote strong observability, monitoring and alerting practices. Take part in incident response, root cause analysis and platform stability improvements. Balance build-and-run responsibilities with a focus on long-term platform health. ...

global team have experience advising clients on hundreds of incidents. Leveraging this experience, they feedback practical lessons learned into clients cyber risk management and incident response programmes. What you will do The Identity and Access Senior Architect will be part of the Digital Trust team, and will ...

CrowdStrike Falcon SIEM Mastery: Work with our SOC partner to architect and optimize Splunk dashboards, alerts, and data models to identify sophisticated threats. Incident Response: Serve as a technical escalation point for high-priority security incidents, utilizing EDR and SIEM tools for rapid containment. Automation: Develop "SOAR" workflows … Security Orchestration, Automation, and Response) to reduce manual intervention and improve response times. Threat Hunting: Proactively search for undetected malicious activity using specialized queries. Training . Build up the Crowdstrike, Splunk and Security Analysis skills within the existing team. Required Experience Experience: 5+ years in a dedicated Cyber ...

improve processes. Ownership & Accountability: Take end-to-end ownership of services from design through production operations. Ensure systems are reliable, observable, and supportable. Lead incident response and post-incident learning within your team. What We're Looking For: Proven experience as a senior engineer or tech lead ...

encompassed in the patch management routine as detailed in the patch management policy. Assist the Head of IT Security with developing and maintaining an Incident Response Plan and Computer Emergency Response Team in relation to severe IT security incidents. Take part in activities that lead to personal ...

ensuring robust coverage against evolving threat landscapes. Key Responsibilities Design and implement detection use cases across SIEM and SOAR platforms using threat intelligence and incident data Develop, map, and maintain detection logic aligned to MITRE ATT&CK frameworks Continuously tune and optimise correlation rules to improve signal-to-noise … engineering teams to ensure efficient data ingestion and parsing Document detection logic, methodologies, and expected outputs for audit and operational use Contribute to post-incident reviews, enhancing detection coverage and response effectiveness Maintain and evolve a repository of use cases, KPIs, and SOC performance metrics Requirements 6+ years ...

assurance, supporting business objectives while reducing cyber and data protection risk. As the Senior Information Security Analyst you will lead security architecture decisions, oversee incident response and vulnerability management, support secure digital transformation, and provide clear, risk-based advice to stakeholders and senior leadership. The position operates with … hybrid environments Microsoft 365 & Cloud Security Microsoft Defender XDR (Endpoint, Identity, Office 365, Cloud Apps) Microsoft Sentinel (SIEM): log ingestion, alert tuning, detection rules, incident workflows Intune & Endpoint Management: device compliance, MDM/MAM, BYOD enforcement Endpoint, Infrastructure & Asset Security Network, DNS & Access Security DNSFilter: DNS-layer protection, malicious ...

seamless and high-quality experience for end users. Take accountability of the on-call rota , ensuring appropriate coverage, managing participation, and leading rapid incident response to maintain service availability. Continuously assess and improve team processes and procedures , fostering a culture of innovation and engineering excellence to optimise performance … team that consistently meets objectives and drives continuous improvement. Regularly conducts performance reporting and analysis , tracking key metrics such as system availability, uptime, and response times to inform decision-making and improvement initiatives. What you’ll need to succeed Essential: Experience in a leadership role , including mentoring, developing team ...

CrowdStrike , this role is key to maximising both investment and capability. You'll act as the senior technical lead-optimising tooling, strengthening detection and response, and upskilling the internal team. This is a hands-on, high-impact role suited to someone who can hit the ground running and elevate … Security Leadership: Own deployment, configuration, and optimisation of CrowdStrike Falcon SIEM Optimisation: Partner with the SOC to enhance Splunk dashboards, alerts, and data models Incident Response: Act as escalation point for high-priority incidents, driving rapid containment Threat Hunting: Proactively identify hidden threats using advanced queries and telemetry ...

configuration changes Assist with backup, disaster recovery and business continuity Operate and maintain core cyber security controls Monitor alerts and suspicious activity; support incident response Perform vulnerability assessments and support remedial actions Assist with security audits, compliance work and risk assessments Maintain security documentation, policies and audit evidence ...

high technical and security standard Deliver and maintain a secure Azure operating model Ensure consistency, resilience, and scalability across Azure environments Operational Leadership & Incident Management Lead and coordinate Major Incident response relating to Azure and associated cloud services Act as a senior escalation point for complex platform … issues Drive post-incident reviews, root cause analysis, and service improvements Vendor & Service Management Provide a high standard of vendor and service management Manage relationships with Microsoft and third-party suppliers Ensure services meet agreed SLAs, security expectations, and value-for-money objectives Lead service reviews and escalation activities ...

compliance activities. Define policies, guardrails and security standards across the organisation. Identify gaps and build business cases for investment and improvement. Operational Security & Incident Response Act as the lead during security incidents or breaches, coordinating response and communication. Work with internal teams and external SOC providers ...

vital services. What you'll be doing: Overseeing Security Operators during shifts, ensuring continuous security monitoring Performing initial investigations of potential threats using Security Incident and Event Management (SIEM) tools Monitoring SIEM systems for faults and anomalies Contributing to routine security incident management by identifying, prioritising, and escalating … customer services through proactive security measures What you'll bring: Proven experience in cyber security, with a solid understanding of security monitoring and incident response Technical leadership skills and the ability to guide and support team members Strong communication skills to clearly articulate findings and escalate issues effectively ...

doing: Providing expert technical guidance to project teams to ensure compliance with customer, regulatory, and internal security standards. Leading the Computer Incident Response Team during security incidents, coordinating response efforts. Collaborating with the Cyber Security Operations Centre to meet UK security needs and communicate effectively with stakeholders. ...

Analyst, you will play a key role in delivering effective SOC services across multiple platforms and projects. You will provide hands on monitoring and incident response while also supporting the development of people, processes and security controls. Key responsibilities include: Leading and mentoring a small team … Manager to evolve SOC capability Senior SOC Analyst essential skills Proven experience in a SOC or similar security operations environment Strong knowledge of SIEM, incident management and threat intelligence Understanding of cloud technologies and modern networking Experience with IDAM, JML processes and ITSM frameworks Ability to lead, support ...

Cybersecurity & IT Security*** Oversee the design and implementation of cybersecurity architecture and controls.* Ensure protection of IT infrastructure, cloud environments, and sensitive data.* Lead incident response, threat intelligence, and vulnerability management programs.* Maintain compliance with global standards (e.g., ISO 27001, NIST, GDPR, HIPAA).**Governance, Risk & Compliance*** Develop … .* Conduct risk assessments, internal audits, and third-party security evaluations.* Report regularly to senior leadership on risk mitigation and compliance status.**Investigations & Incident Management*** Establish and lead an internal investigations function to address security breaches, misconduct, and regulatory violations.* Build and manage a team of investigators and analysts ...

teams and articulating technical issues to non-technical stakeholders. · Strong analytical, organisational, and communication skills. · ITIL Foundation (at a minimum); experience with ITIL principles, incident/problem/change management, and reporting frameworks. · Resilient under pressure and adept at prioritisation. · Familiarity with ITSM tooling. · Eligibility for or existing … experience · Operational delivery in cybersecurity sub-sector · Confidence in uncomfortable and unexpected verbal and in-person communications with clients. · Experience working with security monitoring, incident response, SOC, SIEM/XDR solutions. · Experience using PowerBI What You’ll Bring · A client-first mindset with a commitment to operational excellence. ...

escalate and resolve high-risk vulnerabilities Stay ahead of the curve through continuous learning, certifications, and knowledge-sharing Champion precision: produce top-tier incident reports and maintain robust documentation Our perfect candidate should have a wealth of knowledge spanning various technologies and being able to use these skills … apply. Full UK Driving License Entry-level security certifications (CompTIA Security+, CySA+, etc.) or working toward one Hands-on experience in security incident response, vulnerability assessments, and root cause analysis Skilled in producing incident reports, security metrics, and supporting training Comfortable with internal security audits and refining ...

base articles in line with best practices Automate security tasks and toolchains using scripting (PowerShell, Batch, etc.) Collaborate with external SOC teams Prepare post-incident reports and root cause analyses Manage end-user device (EUD) security via MS Intune, Sophos and NinjaOne Schedule and assess vulnerability scans on critical … driven changes Produce weekly security operations reports Manage Cisco Umbrella web filtering and SSL inspection policies Requirements: Previous hands-on experience in SecOps or Incident Response Recognised Security certifications such as Security+, CEH, or Microsoft security certifications Strong knowledge of Microsoft Windows OS security and hardening Working PowerShell ...

Support ISO 27001 compliance and broader security frameworks Assist with third-party risk assessments and penetration testing Contribute to security policies, controls, and incident response Promote security awareness across the business Experience: 5+ years in cybersecurity or security operations Strong experience with Microsoft security stack (Defender, Sentinel, Entra ...

acting as a subject matter expert Advise and collaborate with stakeholders across the business on maintaining secure business systems Contribute to production support and incident response activities as required Maintain up-to-date product security documentation Desired Qualifications and Experience Degree in cybersecurity, computer science, engineering or related ...

LibreNMS) Background in ISP, NOC, or data centre environments Exposure to network OS such as Arista EOS or MikroTik RouterOS Previous on-call or incident response experience The Package £33,000-£38,000 salary (DOE) On call allowance Hybrid working model Bonus scheme (profit share) Birthday ...

/EDR/XDR, SIEM, email security, and identity management solutions. Awareness of current threat landscape and MSSP service models (SOC, vulnerability management, incident response). ...

observability tools Understanding of cloud cost management and resource optimisation principles Comfort with troubleshooting and supporting development teams Understanding of service reliability and incident response practices ** Please note that we are unfortunately unable to provide visa sponsorship for this position. Applicants must have the right to work ...

Engineer be doing? Maintaining and enhancing secure, multi-classification virtualised and cloud environments across public, private, and hybrid platforms, with senior oversight of monitoring, incident response, change control, and lifecycle management. The role focuses on service improvement, automation, and risk mitigation, alongside providing technical leadership, stakeholder support ...