201 to 225 of 666 Incident Response Jobs in England

advisor for assigned customers, acting as the key technical point of contact Manage and clearly explain security incidents identified by our Security Operations Center (SOC) Provide timely and effective incident response support during cybersecurity events Deliver actionable security guidance to both technical and non-technical stakeholders Troubleshoot security and technical issues across diverse environments. Analyze logs and security … training content to improve customer security posture Mentor junior analysts and engineers, sharing both technical and soft skills. Support the continuous improvement of Arctic Wolf's Managed Detection and Response (MDR) services What We're Looking For: Experience: 5+ years of experience in cybersecurity 3+ years of experience in systems, network, or cloud administration Proven track record in IT More ❯

Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). … SOC2), and risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response: Ability to detect, respond to, and mitigate cyber threats using SIEM, endpoint security, and vulnerability management tools. Networking & Infrastructure Security: Understanding of firewalls, VPNs, SD-WAN, DNS More ❯

doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Provide Incident Response support. Maintain, improve and develop team knowledge of SOC tools, security operations and triage. Prepare reports for managed clients to both technical and non-technical audiences and … continuously improve their content and presentation. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. What you will bring : Experience in Security Operations Centre. Demonstrable experience of Managing Microsoft Sentinel or Splunk implementations. Knowledge and experience with Mitre Att&ck Framework. Solid grasp of client-server applications, multi-tier web applications, relational More ❯

Incident Planning & Business Continuity Manager IPBCM Job Title: Incident Planning & Business Continuity Manager Department: HSSEQ Location: Hemel Hempstead (hybrid with some travel) Join Our Team at BPA: Officially Where it's a Great Place to Work! About BPA: At BPA, we are at the forefront of the hydrocarbon transport and storage industry, proudly owned 50/50 by … teams not only have fulfilling careers but also deliver 'best in class' technical advice and services to our clients. What's the Job About? We're seeking a proactive Incident Planning & Business Continuity Manager to strengthen our emergency preparedness and organisational resilience across COMAH operations and critical national infrastructure. You'll lead the development and implementation of emergency and … continuity plans, coordinate risk assessments, and deliver training and exercises across the organisation. Key Responsibilities: Develop, maintain, and test emergency response and business continuity plans Lead risk assessments, business impact analyses, and recovery strategies Coordinate with emergency services, regulators, and local resilience forums Design and deliver training for incident response and continuity planning Serve as the point More ❯

operational processes. You will work alongside the Client Services and Support Team Manager-who handles frontline support-focusing on the end-to-end service lifecycle, including service design, transition, incident management, change coordination, and operational governance. Key Responsibilities Leadership & Strategy Collaborate with the Head of Operations to develop and implement strategic plans that enhance operational efficiency, service reliability, and … innovation, and continuous improvement. Mentor and develop team members, encouraging professional growth and performance excellence. Operational Management Own and manage daily service operations (excluding frontline support), including change enablement, incident coordination, major incident response, service reviews, and reporting. Oversee resource allocation across projects and functions, ensuring optimal use of team capabilities, staffing, and budget. Monitor and analyse … Governance Drive governance and best practices across the service lifecycle-covering service design, transition, operation, and continual improvement. Act as a coordination lead for high-impact incidents, manage post-incident reviews (RCAs), and implement corrective actions. Continuously evaluate and refine operational processes (e.g., change management, environment readiness, incident/problem workflows). Cross-functional Collaboration Partner with Development More ❯

operational processes. You will work alongside the Client Services and Support Team Manager-who handles frontline support-focusing on the end-to-end service lifecycle, including service design, transition, incident management, change coordination, and operational governance. Key Responsibilities Leadership & Strategy Collaborate with the Head of Operations to develop and implement strategic plans that enhance operational efficiency, service reliability, and … innovation, and continuous improvement. Mentor and develop team members, encouraging professional growth and performance excellence. Operational Management Own and manage daily service operations (excluding frontline support), including change enablement, incident coordination, major incident response, service reviews, and reporting. Oversee resource allocation across projects and functions, ensuring optimal use of team capabilities, staffing, and budget. Monitor and analyse … Governance Drive governance and best practices across the service lifecycle-covering service design, transition, operation, and continual improvement. Act as a coordination lead for high-impact incidents, manage post-incident reviews (RCAs), and implement corrective actions. Continuously evaluate and refine operational processes (e.g., change management, environment readiness, incident/problem workflows). Cross-functional Collaboration Partner with Development More ❯

Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). … SOC2), and risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response: Ability to detect, respond to, and mitigate cyber threats using SIEM, endpoint security, and vulnerability management tools. Networking & Infrastructure Security: Understanding of firewalls, VPNs, SD-WAN, DNS More ❯

Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). … SOC2), and risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response: Ability to detect, respond to, and mitigate cyber threats using SIEM, endpoint security, and vulnerability management tools. Networking & Infrastructure Security: Understanding of firewalls, VPNs, SD-WAN, DNS More ❯

coordination. Maintain and update security documentation, procedures, and controls. Analyse logs, reports, and security data to identify potential threats or vulnerabilities. Investigate and respond to security alerts, assisting in incident response as needed. Stay current with emerging threats, vulnerabilities, and mitigation techniques. Provide support during internal and external audits and compliance initiatives (e.g., ISO 27001, SOC 2). More ❯

a comprehensive cybersecurity strategy, ensuring alignment with business objectives and regulatory requirements (ISO 27001, NIST, GDPR). Proactively monitor, detect, and respond to security threats, vulnerabilities, and breaches, leading incident response and forensic investigations. Conduct regular security audits, penetration testing, and risk assessments, implementing corrective actions to strengthen defences. Oversee firewalls, IDS/IPS, endpoint protection, encryption, and More ❯

threat modelling exercises for internal systems and third-party services. Manage the deployment and maintenance of security solutions (SIEM, firewalls, endpoint protection, DLP, etc.). Oversee the organization's incident response and business continuity plans, including simulations and real-time responses. Conduct regular security audits and work with internal/external auditors to support compliance. Collaborate with IT More ❯

Proactively work with business units and global functions in InfoSec to support internal and external audits and ensure their success, Support other InfoSec teams and local IT teams during incident management and incident response activities, Liaise with Data Protection Officers for the implementation of data protection processes and controls, and during any data privacy issue, Contribute to More ❯

growth and operational maturity Maintain the security risk register, treatment plans, and internal audit programme Collaborate with Compliance and DPO on data protection alignment (e.g. DPIAs, vendor risk, breach response) Operational Security Own incident response procedures, including tabletop exercises and post-mortems Oversee endpoint and cloud security tooling, logging, and alerting (in collaboration with DevOps/IT … assurance Up-to-date ISMS documentation and live security risk register Completion of security training for >95% of staff within policy windows Continuous improvement in internal vulnerability management and response SLAs Measurable maturity improvements in DevSecOps and SaaS infrastructure controls Demonstrated impact on commercial outcomes via faster security assurance for enterprise deals Your Background Proven experience leading security in More ❯

CD pipelines Identify and remediate vulnerabilities in applications and cloud environments Collaborate with development teams to improve secure coding practices Contribute to and maintain security documentation and processes Support incident response activities and post-incident analysis Automate security testing, monitoring, and alerting mechanisms Provide clear and actionable security guidance to technical stakeholders Design pragmatic security solutions aligned More ❯

test disaster recovery solutions. Ensure BC/DR plans align with regulatory requirements (such as DORA, ISO 22301, and other relevant compliance frameworks for fintech firms). Risk Assessment & Incident Management Perform risk assessments to evaluate business continuity threats, vulnerabilities, and their potential impact on operations. Establish crisis management and incident response protocols, ensuring swift and effective … business recovery. Lead post-incident reviews, analyzing incidents to improve response plans and reduce risks. Testing & Training Organize and conduct regular BCM exercises, including tabletop and full-scale BC/DR simulations, to evaluate the effectiveness of continuity plans. Provide training and awareness programs for employees to reinforce business continuity best practices. Maintain thorough documentation of test results More ❯

production estate from both a technical and process perspective. Provide a consistent smooth operation of live systems and drive all on-call support issues. Design and operate a new incident tracking process to ensure root causes are found and remediated in a timely fashion by the development team. Create and maintain high end monitoring and automation tooling. Drive automation … and continuous improvement. RESPONSIBILITIES: Proven experience in a senior or lead SRE role, with a strong track record of building and maintaining highly reliable infrastructure and services. Expertise in incident management, including incident response, resolution, and post-mortem analysis. Proficiency in monitoring, alerting, and observability tools such as Prometheus, Grafana, ELK stack or Datadog. Experience with cloud More ❯

EDR, and zero-trust patterns. Identity & Access Management (IAM) - Own enterprise IAM strategy, including RBAC, least-privilege provisioning, SSO, federation (OIDC/SAML), and privileged-access workflows. Monitoring, Detection & Response - Define audit logging, metrics, and telemetry requirements; integrate with SIEM/SOAR to deliver actionable alerts and playbooks for engineering-led incident response. Threat Modeling & Risk Assessment - Conduct … with InfoSec and Legal to prepare evidence, manage technical controls, and remediate audit findings. InfoSec Partnership - Collaborate proactively with the Information Security team on policy development, threat intelligence sharing, incident response, and compliance initiatives, ensuring organisation-wide alignment. Engineering Partnership & Enablement - Work hand-in-hand with engineering squads to raise security awareness, improve secure coding practices, and foster More ❯

such as ISO27001, Cyber Essentials Plus, PCI/DSS Stay ahead of cyber threats, maintaining and improving security monitoring and risk management processes Support vulnerability management, penetration testing, and incident response Requirements for this role: 3+ years' experience in a senior cyber security role Strong knowledge of security frameworks (NIST, NCSC, CIS, MITRE ATT&CK) Hands-on experience More ❯

on the latest security threats, technologies, and best practices. Lead, manage, and evaluate the security roadmap to assure timely and effective resolution of priority issues. Maintain a robust cyber incident response plan, including coordinating necessary responses to incidents and security investigations. Requirements Extensive practical experience implementing and maintaining an ISO 27001 compliant ISMS. Demonstrable experience with PCI DSS More ❯

standards and regulations. Requirements Proven experience in cybersecurity engineering or a related field. Strong understanding of network security, cryptography, and security frameworks. Experience with penetration testing, vulnerability management, and incident response. Familiarity with security tools such as SIEMs, IDS/IPS, firewalls, and endpoint security solutions. Proficiency in scripting languages (e.g., Python, Bash, PowerShell) for security automation. Knowledge of More ❯

implement remediation plans, drive remediation efforts and identify improvements in the vulnerability management program. Monitor and track the status of identified vulnerabilities and ensure timely resolution. Security Monitoring and Incident Response Leverage Microsoft Defender EDR/XDR and other security tools to monitor, analyse, and respond to security threats. Investigate suspicious activity and determine if incidents have occurred. … Contain and mitigate security incidents to prevent further impact. Develop, implement, and optimise security automation processes to improve detection, response, and mitigation efforts Security Compliance & Governance Ensure security configurations align with compliance frameworks such as ISO 27001, Cyber Essentials Plus, and regulatory requirements Skills and experience Essential 3yrs+ with current IT Security Analyst experience. Proven experience with M365 security More ❯

implement remediation plans, drive remediation efforts and identify improvements in the vulnerability management program. Monitor and track the status of identified vulnerabilities and ensure timely resolution. Security Monitoring and Incident Response Leverage Microsoft Defender EDR/XDR and other security tools to monitor, analyse, and respond to security threats. Investigate suspicious activity and determine if incidents have occurred. … Contain and mitigate security incidents to prevent further impact. Develop, implement, and optimise security automation processes to improve detection, response, and mitigation efforts Security Compliance & Governance Ensure security configurations align with compliance frameworks such as ISO 27001, Cyber Essentials Plus, and regulatory requirements Skills and experience Essential 3yrs+ with current IT Security Analyst experience. Proven experience with M365 security More ❯

Join Barclays as a Joint Operations Centre Senior Incident Manager and become a part of the team responsible for monitoring, assessing, and responding to major incidents that have the potential to impact Barclays' operations, services, and people. In this role, you'll lead command and control communications across a wide range of scenarios - from geopolitical unrest and physical security … hours. This is a hybrid role, with a minimum of 3 days per week required in the office. To be successful in this role, you will need the following: Incident management experience, including leading an incident response team, overseeing shift activity, and guiding team priorities even when acting as an individual contributor. Proficiency in ServiceNow for managing … responding and resolving disruptions that threaten the banks IT services, operations and technological infrastructure through effective decision making and successful resource delegation. Accountabilities Development, implementation and management of major incident management programmes. Execution of responses to reported incidents from various channels including email, phone and monitoring systems, prioritised by its potential impact to the bank's IT systems, and More ❯

To ensure the effective day-to-day delivery of IT services across both shared and in-house environments, with a strong focus on ITIL disciplines - Incident, Problem, Change, and Asset Management - and Cyber Security risk management . The postholder will act as the customer-facing lead for operational IT, ensuring services are reliable, secure, and responsive to user needs. … Key Responsibilities Manage the performance and quality of outsourced, shared service and in-house IT services Own and operate the ITIL processes: Incident , Problem , Change , and Asset Management Act as the operational interface with the other organisation (the shared service provider) Maintain the CMDB and configuration item lifecycle tracking Lead on cyber security risk assessments , patch assurance , vulnerability management … planning Essential Skills and Experience Demonstrable experience managing operational IT services in a mixed shared service/in-house/outsourced environment Deep knowledge of ITIL v4 practices, especially Incident, Problem, Change, and Asset Management Experience with service desk systems and CMDBs Familiarity with cybersecurity operations (e.g., vulnerability scanning, patch management, access reviews) Strong stakeholder engagement and supplier management More ❯

teams Work with our Channel team to help support and enable our Distributors and Resellers You will become an expert in Email Security, Advanced Persistent Threats, Attack Protection, Threat Response, Data Loss Prevention (DLP), and the threat landscape Occasional travel required. What You Bring To The Team Proven hands-on experience, either as a Sales/Systems Engineer, Technical … are recommended Enterprise email solutions such as Exchange, O365, G-Suite, Lotus Dominoorworking knowledge of SMTP IT security related areas such as Vulnerability and Risk Management, Security Operations or Incident Response Data Loss Prevention (DLP), compliance and data privacy Cloud security and shadow IT monitoring Cloud computing Infrastructure (e.g. AWS/Azure) Nice to have Hands on experience More ❯