23 of 23 Incident Response Jobs in the North West

lead the operational security function responsible for protecting the organisation's information assets, technology services, and users. This role oversees all security operation functions, incident response, threat detection, vulnerability management, and continuous improvement of the organisation's security posture. Working closely with Infrastructure, Cloud, Architecture, Governance, Compliance … manage the daily operations of the internal Security Operations team and primary relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response ...

ensuring the organisation's systems, networks, and data remain protected against evolving cyber threats. As the SecOps Lead, you will manage security monitoring and incident response activities while providing strategic direction for security tools including SIEM and Endpoint Detection & Response (EDR) platforms. You will work closely with … daily operational activities and performance. Define and implement the strategy and operational roadmap for security monitoring, detection, and response. Own and manage the security incident response lifecycle, including investigation, containment, remediation, and post-incident reviews. Lead incident response efforts during high-severity security events ...

operations. This is a technical role suited to an experienced analyst with strong engineering instincts, hands-on coding capabilities, and a deep understanding of incident response, detection engineering, and adversary tradecraft. This position includes approximately one week per month of on-call availability for high-priority incident … ideal for someone who has likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible ...

DDoS protection to keep our platform secure and performant. Drive vulnerability management across cloud infrastructure and application code, ensuring timely prioritisation and resolution. Lead incident response coordinate detection, investigation, containment and post-incident reviews. Maintain and evolve security monitoring, alerting and operational runbooks to ensure consistent coverage. … familiarity is important. Practical understanding of UK GDPR, DPA 2018 and PCI-DSS compliance requirements. Experience building or maturing security governance policies, risk registers, incident response procedures. Ability to communicate security risk and posture clearly to both technical teams and senior leadership. Hands-on comfort with security tooling ...

compliance with security standards, and protecting both organisational and customer data. You will act as an important escalation point for security-related matters, including incident response, while supporting technical teams in maintaining a strong and compliant security posture. Key Responsibilities Review and analyse current security measures to identify … frameworks, and industry best practices Experience across infrastructure and networking environments, both on-premise and cloud-based Hands-on involvement in vulnerability management and incident response Familiarity with security monitoring tools such as firewalls, IDS/IPS, and extended detection solutions Experience working with SIEM, cloud security platforms ...

monitoring across multiple networks and services Oversee and contribute to the analysis, investigation and escalation of security incidents Coordinate closely with Cyber Operations and Incident Response teams to contain and mitigate threats Develop and enhance detection use cases, tooling and operational processes Provide subject matter expertise on threat … previous clearance About the team The Cyber Operations team protects critical systems and sensitive environments from advanced threat actors. Covering Threat Intelligence, Detection, Incident Response and Active Defence, the team operates at the forefront of cyber security, safeguarding the technology and services that support national security and those ...

Security Practices, Level 3) equips you with the practical skills employers in Greater Manchester are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … security principles. Threat Intelligence: Develop expertise to identify risks and analyze threats. Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls. Incident Response: Prepare for and respond to live cyber security incidents. Ethics & Law: Understand legislation and ethical conduct within the cyber security sector. Professional Skills ...

Security Practices, Level 3) equips you with the practical skills employers in Greater Manchester are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … security principles. Threat Intelligence: Develop expertise to identify risks and analyze threats. Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls. Incident Response: Prepare for and respond to live cyber security incidents. Ethics & Law: Understand legislation and ethical conduct within the cyber security sector. Professional Skills ...

/SLOs. You’ll help teams implement pragmatic observability—logging, metrics, and distributed tracing—with actionable alerting, and you’ll contribute to (or lead) incident response and post-incident reviews that drive learning and measurable improvements. Job qualifications We are looking for experience in the following skills … Dynatrace ( or similar tools) , including alerting, dashboards, and root-cause analysis. Exposure to AIOps practices , leveraging automation and intelligence for proactive issue detection and incident reduction. Experience supporting production platforms , including incident management, problem management, and continuous improvement. Ability to mentor junior engineers , influence technical standards ...

monitoring, analysing and responding to security threats, while driving continuous improvement across our security operations capability. You’ll play a key role in incident response, threat intelligence, vulnerability management and ensuring effective use of our security tools and processes to reduce risk across the technology estate. Key responsibilities ...

Lead, mentor, and develop a team of SOC analysts in a 24/7 operational environment across a three-shift rotation • Own and enhance incident detection and response capabilities • Act as senior decision-maker during major incidents and crisis situations • Develop and implement SOC use cases aligned … playbooks • Collaborate with Security Engineering to optimise detection pipelines • Build strong relationships with stakeholders across technology and the wider business • Partner with the Major Incident Manager on critical security events • Support regulatory compliance, audit requirements, and contribute to strategic direction Experience • Proven experience managing SOC or security operations teams ...

C#, Angular, SQL Server Stay hands-on when needed: design, code, pair, review PRs, unblock the team Drive quality, reliability and security: testing approach, incident response, post-incident improvements Hire, onboard and develop engineers (including onshore/offshore collaboration) What we need from you 8+ years building ...

/CD pipelines with blue-green, canary, and rolling deployments, including automated, zero-downtime database releases. Implement comprehensive monitoring, logging, alerting, and automated incident workflows with clear reporting. Strengthen cloud security posture (IAM, secrets, vulnerability scanning) and embed DevSecOps practices while maintaining PCI-DSS compliance. Drive reliability through SLIs …/SLOs, incident response, disaster recovery testing, and capacity planning for peak events. Optimise performance and cost across hybrid environments through right-sizing, forecasting, and resource governance. Apply AI-driven tooling for anomaly detection, operational optimisation, and compliance automation. Collaborate cross-functionally, maintain documentation, and promote DevOps best ...

improve processes. Ownership & Accountability: Take end-to-end ownership of services from design through production operations. Ensure systems are reliable, observable, and supportable. Lead incident response and post-incident learning within your team. What We're Looking For: Proven experience as a senior engineer or tech lead ...

escalate and resolve high-risk vulnerabilities Stay ahead of the curve through continuous learning, certifications, and knowledge-sharing Champion precision: produce top-tier incident reports and maintain robust documentation Our perfect candidate should have a wealth of knowledge spanning various technologies and being able to use these skills … apply. Full UK Driving License Entry-level security certifications (CompTIA Security+, CySA+, etc.) or working toward one Hands-on experience in security incident response, vulnerability assessments, and root cause analysis Skilled in producing incident reports, security metrics, and supporting training Comfortable with internal security audits and refining ...

governance. Implement Zero Trust principles, network segmentation, encryption, key management, and secure access control models. Partner with SecOps teams to ensure monitoring, logging, and incident response capabilities are embedded Develop automation and service optimisation strategies to improve performance, cost efficiency, and availability. Conduct capacity planning, resilience engineering, disaster ...

escalation point for complex infrastructure issues across on-prem and hybrid Azure environments, while supporting cloud services. You’ll lead major incident response, deliver infrastructure improvements, and ensure high availability, security, and resilience in a regulated setting. Your work will span Microsoft ecosystems, VMware, networking, and security, alongside ...

emerging threats and potential vulnerabilities across the company Lead activities such as security testing, threat modelling and vulnerability reviews Build, maintain and regularly update incident response and disaster recovery plans Work closely with teams across the business to ensure security is built into products, projects and processes Promote … knowledge of security tools (e.g. CrowdStrike, Sentinel, Purview, iBoss) Solid understanding of security frameworks (ISO 27001, PCI DSS, SOC 2) Experience in risk assessment, incident management and vulnerability testing Excellent communication skills across technical and non-technical audiences Strong analytical mindset with attention to detail Benefits: 25 days' holiday ...

governance frameworks which lead to outstanding technical controls - processes and quality assurance; training and SOPs; auditing, feedback loops and root cause analysis * Lead an incident response/handle L3 and above level referrals and escalations * Can see technical issues down the road and inform the group risk management ...

clearly. Support digital alarm protocols (E.g. SCAIP, SIP) and network behaviour. Lead small projects or improvements. Help maintain accurate CRM records and documentation. Support incident response with clear communication and organised actions. The following skills and experience will be essential for this role: Experience in technical support ...

Answer customer enquiries in real time - Diagnose and resolve faults across the network - Maintain and monitor equipment and systems, carrying out routine checks and incident response - Document and communicate technical issues clearly, using ticketing/monitoring tools - Liaising with internal teams, stakeholders and third-party suppliers The candidate ...

document findings clearly Contribute to improving diagnostic processes and future troubleshooting approaches Lead projects or workstreams that improve tools, processes, or customer experience Support incident response by coordinating information and reviewing outcomes Suggest and test improvements to workflows, communication, and support processes Contribute to cross-departmental initiatives ...

scalability of all systems and infrastructure. Strengthen cyber‐defence, vulnerability management, regulatory compliance, and operational risk frameworks. Oversee disaster recovery, business continuity planning, and incident response. Work across functions to minimize IT & Operational errors. Boards, Committees, Reporting & Risk Management Represent Technology at relevant boards, committees (operational risk, digital … regulatory reports, ensuring accuracy and timely delivery. Proactively manage technology‐related business risks across the organisation. Client Due Diligence & External Engagement Lead the technology response for client due‐diligence requests, RFPs, and operational reviews. Present LOIM's technology strategy and controls to investors and partners. Foster strong relationships with ...