18 of 18 Incident Response Jobs in Leeds

Incident Response Analyst Cybersecurity Consultancy (UK-Based, Remote with Travel) We are currently working with an innovative and growing UK-based cybersecurity consultancy to recruit an Incident Response Analyst . This is an exciting opportunity to join a forward-thinking organisation that provides penetration testing and continuous vulnerability management services to a wide range of clients … across sectors. As part of the expanding Incident Response team, the successful candidate will play a critical role in detecting, analysing, and mitigating cyber threats. This role requires strong analytical thinking, problem-solving abilities, and the agility to operate in a fast-paced environment. Key Responsibilities: Conduct initial assessments of security incidents and contribute to incident management. … Participate in live Incident Response operations, including digital forensic investigations. Perform security assessments, threat intelligence gathering, and OSINT analysis. Collaborate across departments to ensure a comprehensive approach to cybersecurity. Engage directly with clients to retrieve relevant logs and access infrastructure for forensic analysis. Thoroughly document incidents, including timelines, affected systems, response actions, and improvement recommendations. Produce clear More ❯

Director of Cyber Security - NIST CSF, Risk Management, Incident Response - Dublin - £150,000 + 40% bonus A leading international gaming and entertainment company are searching for a Director of Cyber Security to drive their Group cyber security strategy and build resilience across their global operations. The Director of Cyber Security's responsibilities will be: Lead implementation of Group … implementing technology security policies and NIST CSF standards. Strengthen cyber governance and risk management, providing timely and accurate risk reporting to senior management and risk committees. Lead Security Monitoring & Incident Response teams, ensuring robust processes across critical business systems. Oversee Platforms & Services Security teams, ensuring assets comply with NIST CSF v2 and Group policies. Manage SEC reporting requirements … experienced cyber security leader looking to drive strategic transformation at a global entertainment company with operations across multiple markets? Please apply! Director of Cyber Security - NIST CSF, Risk Management, Incident Response - Dublin (mostly remote) - £150,000 + 40% bonus Burns Sheehan Ltd will consider applications based only on skills and ability and will not discriminate on any grounds. More ❯

enable holistic analysis at a global level • Establish performance benchmarks, conduct analyses, and prepare reports on all key CMRS goals and metrics • Develop and maintain standard operating procedures, emergency response procedures, and preventive maintenance programs. Ensure standardization and consistency with best-in-class operating practices. • Engage, coach, train, and influence business partners to be an extension of Loss Prevention … on the appropriate escalation path • Effectively address product loss mitigation, physical security considerations, potential and actual work place violence incidents per policy as well as conduct testing of the incident response plans • Reviewing incident reports, documenting periodic trend summaries, and providing updates and recommended actions to management. • Take calculated risks and challenge current practices to develop and … enable holistic analysis at a global level • Establish performance benchmarks, conduct analyses, and prepare reports on all key CMRS goals and metrics • Develop and maintain standard operating procedures, emergency response procedures, and preventive maintenance programs. Ensure standardization and consistency with best-in-class operating practices. • Engage, coach, train, and influence business partners to be an extension of Loss Prevention More ❯

in Leeds office per quarter. Mostly remote working. DGH Recruitment are currently recruiting on behalf of a leading global organisation who are looking for a Threat detection and threat response subject matter expert to join the team on a permanent basis. Responsibilities: - Design, engineer, and manage automations and workflow improvements for security operations analysts to triage and respond to … detected events. - Build and enhance security automation playbooks using SOAR platforms or custom scripts Serve as a technical resource for the security operations team during active response efforts. - Conduct and manage event/incident investigations and post-mortem analysis as needed. - Document and maintain Automation, Detection and Incident Response procedures as required. - Regularly monitor and translate … logs to determine trends and identify security incidents. - Assist in responding to audits, penetration tests and vulnerability assessments. Required Skills/Experience: - Experience with SIEM security telemetry, security monitoring, incident detection, incident response and forensics - Experience in Threat hunting & IR experience in Windows and/or Linux environments, cloud/hybrid environments - Proficient in SIEM management, configuration More ❯

This role offers a chance to make a real impact by ensuring the integrity and resilience of the company’s IT environment against evolving cyber threats. Key Responsibilities: Support incident management and security response efforts, providing expertise to address and resolve security incidents quickly and effectively. Perform regular security checks, including daily, weekly, and monthly monitoring of systems … Act. Experience with Microsoft O365 Security solutions and network security operations. Understanding of security testing principles, including vulnerability scanning, risk identification, and mitigation. Knowledge of security auditing and security incident response processes. Experience with event and log analysis to monitor and assess security risks. Solid understanding of Disaster Recovery (DR) and Business Continuity principles. Excellent communication skills, with … impact in a global organisation, apply now. Keywords: Information Security Consultant, IT Security Consultant, Cybersecurity Specialist, Microsoft O365 Security, Enterprise Security Jobs, Information Security Leeds, IT Risk Management, Security Incident Response, Vulnerability Management, ISO 27001, GDPR Compliance, Security Awareness, Disaster Recovery and Business Continuity. More ❯

performing advanced investigations and, when required, first-line triage to maintain queue health and SLA compliance. You are responsible for high-quality service delivery through detailed analysis, evidence-led response actions, and operational leadership. In addition to handling escalated alerts, you provide line management, oversee ticket quality, contribute to training and onboarding, and drive continual improvement. You work core … business hours with participation in the on-call rota, ensuring consistent service support for customers and operational continuity across teams. Key Responsibilities • Incident Investigation and Response - You take ownership of escalated incidents, performing detailed investigations and, when necessary, stepping into first-line triage to guarantee prompt alert handling and escalation. • Team Leadership - You provide day-to-day leadership … SOC Analysts, conducting performance reviews, appraisals, one-to-one meetings, and development planning. • Quality Assurance - You own QA for the team’s outputs, ensuring consistency, accuracy, and completeness of incident handling and documentation across the team. • Training and Onboarding - You lead knowledge-transfer sessions, support structured onboarding of new team members, and coordinate internal training to drive skill development More ❯

Contribute to daily operational excellence by tracking critical metrics, monitoring OLAs, providing ad-hoc reporting, and evaluating tool performance. Boost Readiness and Resilience: Play a key role in shaping incident response playbooks, disaster recovery plans, and business continuity strategies. Coordinate and Communicate: Collaborate multi-functionally with IT, infrastructure, and compliance teams to ensure timely responses and effective risk … reviews and regulatory requirements. What you'll bring: Deep Security Expertise: A solid background in Cyber Security or Technology, with hands-on experience in detection engineering, threat hunting, or incident response. Tool Proficiency: Strong working knowledge of modern security technologies-think SIEM, EDR, threat intelligence platforms, and anomaly detection systems. You're confident navigating and using these tools to More ❯

systems operate from a cyber resilient architecture, looking at people, processes and technology. The role is part of a small team that supports all functions (Protective Monitoring, Threat Operations, Incident Management and Engineering) within the Cyber Security Operations Centre (CSOC) with the delivery of technical and innovative solutions and the implementation of processes to support day to day output. … Cyber Delivery Unit (CDU). Cyber Improvement Programme. Chief Information Security Office Function (CISO) The post of Security Lead has been awarded a Recruitment and Retention Premia (RRP) in response to current labour market conditions. In recognition of this, the role attracts an additional monthly RRP payment equal to 30% per annum.'Please be aware that RRP is non … to review. Main duties of the job As a Security Lead (Consulting) you will: Support cross-team initiatives and interactions between teams including Engineering, Protective Monitoring, Threat Operations and Incident Management teams within the CSOC. Providing specialist knowledge and expertise in a diverse range of cyber security areas related to Engineering, Protective Monitoring, Threat Operations and Incident Management. More ❯

capacity. Maintain and regularly review all relevant processes and documentation. Essential Skills and Experience: 5+ years in threat intelligence, vulnerability management, or cyber threat research. Strong background in technical incident response and cyber threat analysis. Deep understanding of threats targeting government and CNI environments. Proficient in open-source intelligence (OSINT) gathering and analysis. High-level knowledge of Windows More ❯

years of experience in Threat Intelligence, Vulnerability Management, or cyber research. Strong understanding of adversary TTPs and the threat landscape, especially in CNI/Gov environments. Experience in technical incident response and cloud-based security operations. Proficiency in open-source intelligence (OSINT) and deep technical analysis. Knowledge of Windows/Linux internals, networking, and cloud platforms (e.g. Azure More ❯

working arrangements available. Please consult your recruiter for details. Grade: GG10 - GG11 Referral Bonus: £5,000 Job Description Serve as the point of escalation for intrusion analysis, forensics, and incident response queries. Provide root cause analysis for complex, non-standard findings and anomalies without existing playbooks. Mentor team members and share knowledge proactively. Contribute to the SOC Knowledge More ❯

maintaining security. Continuously assess the program's maturity across brands and implement improvements to process or technology to elevate weaker areas. The role also entails planning for product-related incident response and disaster recovery - ensuring that teams are prepared to handle a security incident. Project and Vendor Management: Oversee Secure by Design project execution and coordinate with project More ❯

optimising policies, and resolving critical incidents across Check Point, Fortinet, and Palo Alto environments. Key Responsibilities Firewall Management : Configure, monitor, and troubleshoot firewalls (rules, NAT, VPNs) for global clients.? Incident Response : Investigate alerts, resolve connectivity/performance issues, and escalate per SLAs.? Security Policies : Implement and audit firewall rulesets to mitigate risks.? Collaboration : Work with SOC and engineering More ❯

to understand problems, analyse requirements & deliver solutions that enhance engineering productivity Write code for low latency, highly available and scalable solutions Contribute to delivering initiatives to improve system observability, incident response processes and operational efficiency Continually update technical knowledge and skills using internal training as well taking time to self-develop utilising external sources Champion a culture of More ❯

met prior to go-live. Incorporates regional needs into global solutions during the design and deployment phases. Leads the creation and communication of regional service performance reports, including availability, incident response, and service volumes. Uses insights from service data to identify trends and drive Continuous Service Improvement (CSI) initiatives within the region. Coordinates regular governance activities with internal … IT teams, vendors, and partners. Maintains strong relationships through structured communication and performance monitoring (e.g. weekly/monthly calls). Oversees effective incident and request management to ensure timely resolution for business stakeholders. Identifies areas for improvement and drives enhancements to incident processes to support a positive user experience. Oversees and reports on the execution of regional CSI More ❯

the Business Group, Operations and Strategy and Policy. UKEF is committed to be a more customer-centric organisation, making it easier for customers to deal with us, offering improved response times, quicker decision-making and improved case-processing. To enable this, UKEF is committed to using digital as a primary means for managing relationships with a wider range of … Scrum or Kanban methodologies. Contribute to the development of internal standards and practices for DevOps, infrastructure, and cloud operations, ensuring alignment with organisational goals and compliance requirements. Participate in incident response and post-mortem analysis, helping to improve system resilience and reduce future risk. Behaviours We'll assess you against these behaviours during the selection process: Changing and More ❯

automation and RPA strategies aligned with value streams and business goals Collaborate with cross-functional teams, including change, engineering, and business leaders Ensure strong platform security, monitoring, compliance, and incident response Key Skills & Experience: Proven expertise in Azure architecture, including AKS, Cosmos DB, SQL Database, and Storage Experience with IaC tools (e.g. Terraform, ARM templates) Strong knowledge of More ❯

Digital Transformation, we are investing in IT services to enhance learning and research capabilities, fostering global collaboration on pressing issues. Your role involves supporting existing services and applications, managing incident responses, and delivering sustainable services that facilitate discovery, usability, management, and preservation of Special Collections metadata and digital collections. You will also support the Library's Digital Library repository More ❯