1 to 25 of 35 Remote Incident Response Jobs in the Midlands

team activities in critical industrial environments? Do you want a role that mixes penetration testing, threat emulation and resilience validation with security architecture and incident response? Would you like to help major UK operators strengthen their cyber resilience across energy, water, renewables and manufacturing? What … professional membership fees covered What will you be doing? Delivering OT-focused red team activities with specialist partners, including penetration testing, adversary simulation and incident response exercises Planning and executing security assessments and incident response exercises in OT/ICS environments Developing and implementing attack scenarios ...

role in protecting a large-scale, high-availability environment, acting as an escalation point for complex security incidents. Your day will include: Leading incident response activities: investigating alerts, conducting threat hunting, and managing escalations. Tuning and configuring Splunk SIEM to reduce false positives and enhance detection accuracy. Handling … malware analysis, forensic reviews and sensitive internal cases. Correlating logs across multiple systems and using threat intelligence to strengthen detection capabilities. Producing clear, concise incident reports for senior stakeholders, including non-technical audiences. Supporting junior analysts with guidance, best practice coaching and career development (no formal line management). ...

security operations. This is a hands-on, strategic position within the Technical Operations team, where you’ll set the direction for security practices, guide incident response, and support the growth of the wider team. Your responsibilities: Lead on security incidents, managing investigations through to resolution Design, implement … maintain robust security controls across infrastructure and applications Drive the creation and execution of incident response plans, ensuring continuous improvements Integrate security practices seamlessly into the DevOps pipeline Manage and optimise monitoring tools to provide real-time threat visibility Carry out regular threat and vulnerability assessments, applying effective ...

SANS courses. Experience in four or more of the following: network protocols, threat intelligence analysis, system and network administration, project management, developing applications, technical incident response processes, source code review, reverse engineering. Experience in working with local business and management teams in managing consulting business generation, scoping … cybersecurity consulting services and support to the clients. Part of Google Cloud, Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. Mandiant's cybersecurity expertise has earned the trust of security professionals and company executives around the world. Our unique combination ...

SANS courses. Experience in four or more of the following: network protocols, threat intelligence analysis, system and network administration, project management, developing applications, technical incident response processes, source code review, reverse engineering. Experience in working with local business and management teams in managing consulting business generation, scoping … cybersecurity consulting services and support to the clients. Part of Google Cloud, Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. Mandiant's cybersecurity expertise has earned the trust of security professionals and company executives around the world. Our unique combination ...

SANS courses. Experience in four or more of the following: network protocols, threat intelligence analysis, system and network administration, project management, developing applications, technical incident response processes, source code review, reverse engineering. Experience in working with local business and management teams in managing consulting business generation, scoping … cybersecurity consulting services and support to the clients. Part of Google Cloud, Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. Mandiant's cybersecurity expertise has earned the trust of security professionals and company executives around the world. Our unique combination ...

environments. You'll work across servers, networks, storage, and security tools, contributing to infrastructure projects as well as cyber initiatives such as vulnerability management, incident response, and enhancing security controls. You'll also collaborate with group security teams and help ensure systems remain resilient and up to date. … etc.) Palo Alto deployment/configuration experience is a must Good understanding of firewalls, network protocols, and intrusion prevention Ability to manage vulnerability scanning, incident response, and remediation Confident communicator with solid documentation skills The role also covers an office in Milton Keynes and they might be occasional ...

bottlenecks using advanced problem-solving and performance tuning techniques. Conduct capacity planning and implement solutions to ensure systems can support current and future workloads Incident Response & Troubleshooting Respond swiftly to production incidents, ensuring minimal downtime and quick restoration of services. Perform root cause analysis and postmortems, implementing lessons … dashboards. Improve observability of services, ensuring issues are identified and addressed before impacting users. Continuously refine monitoring practices to reduce alert fatigue and improve response times. Automation & Tooling Develop automation to eliminate manual, repetitive tasks and improve operational efficiency. Write clear, maintainable, and well-tested code to support automation ...

dashboarding, along with experience migrating workloads to Elasticsearch. In addition to migration duties, the candidate will maintain and enhance existing Splunk infrastructure, provide incident support, manage upgrades, and ensure observability platforms remain secure and performant. This role demands a technically strong individual with excellent stakeholder communication and problem-solving … configure alerting and monitoring using Kibana, Elasticsearch Watcher, or third-party tools. Ensure migration plans include validation, rollback procedures, and knowledge transfer. Platform Operations & Incident Response: Maintain Splunk infrastructure in both Production and Non-Production environments. Support Splunk SRE and Application teams in incident investigation and resolution. ...

dashboards for threat detection. Map detection rules to frameworks like MITRE ATT&CK, STRIDE, and NIST CSF. Collaborate with SOC teams to refine incident response workflows. Governance & Compliance Align SIEM architecture with Secure by Design and Zero Trust principles. Support compliance with ISO 27001, PCI DSS, etc Document ...

performance of the SIEM infrastructure to maintain optimal functionality. Security Engineering: Contribute to various security engineering projects and work closely with security operations and incident response systems. Stay updated on emerging threats and best practises in the cybersecurity landscape. Skills You'll Need to Succeed: Essential: - Strong experience ...

part of an on-call rota, ready to respond if we have a severe, platform-impacting security tooling failure or need second-line security incident response assistance Desirable You have an interest in offensive security, potentially including participation in CTFs and past experience as a red team operator ...

part of an on-call rota, ready to respond if we have a severe, platform-impacting security tooling failure or need second-line security incident response assistance Desirable You have an interest in offensive security, potentially including participation in CTFs and past experience as a red team operator ...

part of an on-call rota, ready to respond if we have a severe, platform-impacting security tooling failure or need second-line security incident response assistance Desirable You have an interest in offensive security, potentially including participation in CTFs and past experience as a red team operator ...

part of an on-call rota, ready to respond if we have a severe, platform-impacting security tooling failure or need second-line security incident response assistance Desirable You have an interest in offensive security, potentially including participation in CTFs and past experience as a red team operator ...

posture around secret management Security review of our public-facing APIs Partner with teams across Wave to define secure guardrails, supporting investigations and incident response Work with our IT Team to fix any non-conformities found during audits by central banks and ISO certification Our stack (prior experience ...

posture around secret management Security review of our public-facing APIs Partner with teams across Wave to define secure guardrails, supporting investigations and incident response Work with our IT Team to fix any non-conformities found during audits by central banks and ISO certification Our stack (prior experience ...

maintain runtime environments, LLM proxies, and AI infrastructure. Implement CI/CD, observability, and automation pipelines that just work. Shape security, GDPR compliance, and incident response for AI systems. Support AI apps from internal assistants to advanced document-processing tools. Who You Are Fluent in cloud-native infrastructure ...

maintain runtime environments, LLM proxies, and AI infrastructure. Implement CI/CD, observability, and automation pipelines that just work. Shape security, GDPR compliance, and incident response for AI systems. Support AI apps from internal assistants to advanced document-processing tools. Who You Are Fluent in cloud-native infrastructure ...

practices. Understanding of cloud security best practices and competency with Identity and Access Management (IAM). Excellent troubleshooting and debugging skills, with experience in incident response. Experience working in an Agile methodology. Ability to write comprehensive technical documentation and manage configuration control (Git). Experience with Terraform is highly ...

practices. Understanding of cloud security best practices and competency with Identity and Access Management (IAM). Excellent troubleshooting and debugging skills, with experience in incident response. Experience working in an Agile methodology. Ability to write comprehensive technical documentation and manage configuration control (Git). Experience with Terraform is highly ...

with platform teams, architects, and suppliers to ensure integration aligns with enterprise architecture and business goals. Maintained operational stability of integration services through monitoring, incident management, and continuous improvement. Provided secure, scalable, reusable integration capabilities for delivery teams and projects. Strong knowledge of enterprise integration patterns and tools (APIs … supporting key enterprise platforms. Advised on integration patterns and best practices (point-to-point vs. platforms). Ensured rigorous version control, monitoring, maintenance, and incident response for integration components. Established and managed inventory and governance processes for integration design, development, and policy compliance. Interested? Please submit your updated ...

with platform teams, architects, and suppliers to ensure integration aligns with enterprise architecture and business goals. Maintained operational stability of integration services through monitoring, incident management, and continuous improvement. Provided secure, scalable, reusable integration capabilities for delivery teams and projects Strong knowledge of enterprise integration patterns and tools (APIs … supporting key enterprise platforms. Advised on integration patterns and best practices (point-to-point vs. platforms). Ensured rigorous version control, monitoring, maintenance, and incident response for integration components. Established and managed inventory and governance processes for integration design, development, and policy compliance. Interested? Please submit your updated ...

with platform teams, architects, and suppliers to ensure integration aligns with enterprise architecture and business goals. Maintained operational stability of integration services through monitoring, incident management, and continuous improvement. Provided secure, scalable, reusable integration capabilities for delivery teams and projects Strong knowledge of enterprise integration patterns and tools (APIs … supporting key enterprise platforms. Advised on integration patterns and best practices (point-to-point vs. platforms). Ensured rigorous version control, monitoring, maintenance, and incident response for integration components. Established and managed inventory and governance processes for integration design, development, and policy compliance. Interested? Please submit your updated ...

critical systems Collaborate with internal teams to improve observability, monitoring and alerting across services Identify and implement operational improvements to existing monitoring, logging and incident response processes Use scripting and automation (primarily Bash and Python) to reduce toil and streamline recurring tasks Contribute to Infrastructure-as-Code practices … Good understanding of monitoring, alerting, logging and observability best practices Excellent communication skills and the ability to own incidents end-to-end, including post-incident reviews ...