6 of 6 Incident Response Jobs in Gwent

environments, and enterprise systems. Reporting to the Cyber Resilience Manager, you'll work across technical and governance functions to ensure ongoing protection against an evolving threat landscape, while supporting incident response, architecture design, compliance, and risk management. Key Responsibilities Design and maintain enterprise-wide cloud security architectures aligned to business objectives and compliance requirements Implement security controls across … measures into the software development lifecycle (SDLC) and broader IT processes Engage with architects, IT teams, and external suppliers to embed security into system design Develop and maintain technical incident response plans and support ongoing testing and refinement Monitor industry standards and regulatory changes (e.g., NIS regulations), ensuring ongoing compliance Contribute to internal security awareness and training programmes More ❯

environments, and enterprise systems. Reporting to the Cyber Resilience Manager, you'll work across technical and governance functions to ensure ongoing protection against an evolving threat landscape, while supporting incident response, architecture design, compliance, and risk management. Key Responsibilities Design and maintain enterprise-wide cloud security architectures aligned to business objectives and compliance requirements Implement security controls across … measures into the software development lifecycle (SDLC) and broader IT processes Engage with architects, IT teams, and external suppliers to embed security into system design Develop and maintain technical incident response plans and support ongoing testing and refinement Monitor industry standards and regulatory changes (e.g., NIS regulations), ensuring ongoing compliance Contribute to internal security awareness and training programmes More ❯

to identify incidents ensuring that all events, events of interest, exceptions & incidents are responded to in accordance with established SOC work instructions, including remedial action/recommendations. Complete post incident reporting. Responsible for SOC work instructions, ensuring they are reviewed & amended. Use Case Factory development Playbook design and development Use Case & Playbook validation before going live Maintain currency in … Tactics, Techniques and Procedures (TTPs) SANS SEC401: Security Essentials (or equivalent) SANS SEC503: Network Monitoring and Threat Detection In-Depth (or equivalent) SANS SEC504: Hacker Tools, Techniques, Exploits and Incident Handling (or equivalent) Desirable Knowledge of Reverse Engineering Malware Practical Junior Malware Researcher (PJMR) SANS SEC488: Cloud Security Essentials (or equivalent) CREST Certified Network Intrusion Analyst (CCNIA) (or equivalent … SANS FOR508: Advanced Incident Response, Threat Hunting and Digital Forensics (GCFA) Soft Skills/Qualifications The 3rd Line Analyst is expected to be able to present and write professional reports to key stakeholders All staff are expected to exercise good time management and work as part of a team You will work from Airbus Protect offices, Newport, South More ❯

a critical national infrastructure (CNI) environment. Key parts of the role: Asset Tracking & Documentation Support. Lifecycle Management Assistance Compliance & Reporting Vendor & Supplier Coordination Continuous Improvement Support Cost Management & Optimisation Incident & Problem Management Support Collaboration with Internal Teams What you'll need to succeed Proficiency with asset management software tools such as ServiceNow, CMDB, or similar enterprise solutions. Understanding of … asset lifecycle management processes, including procurement, deployment, tracking, maintenance, and decommissioning of OT assets. Good understanding of incident response stages and handling. Knowledge of industry standards and regulatory requirements related to asset management, such as data protection and environmental compliance, ISO27002, CIS, NCSE CAF, NIST. Familiarity with tracking and managing lifecycle costs, working in partnership with finance and More ❯

ISMS. Develop Reference Architecture and all associated architecture models for Identity Management and Privileged Account Management Consult on and input into the redevelopment and regular testing of the Security Incident Response Plan Inputs to the strategic planning and oversight of a rolling five-year Enterprise Security plan. Provide Security Architecture consultancy into other projects and ongoing programmes of More ❯

principles, communicating widely with other stakeholders. Support the GovAssure process by coordinating the collection of evidence, and the submission of GovAssure returns to Cabinet Office. Assist, where necessary, with incident response processes to identify architectural issues and solutions. Proactively engage with internal and external partners, stakeholders and peers to develop your knowledge and inform your decisions. You will More ❯