1 to 25 of 47 Incident Response Jobs in the North of England

lead the operational security function responsible for protecting the organisation's information assets, technology services, and users. This role oversees all security operation functions, incident response, threat detection, vulnerability management, and continuous improvement of the organisation's security posture. Working closely with Infrastructure, Cloud, Architecture, Governance, Compliance … manage the daily operations of the internal Security Operations team and primary relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response ...

ensuring the organisation's systems, networks, and data remain protected against evolving cyber threats. As the SecOps Lead, you will manage security monitoring and incident response activities while providing strategic direction for security tools including SIEM and Endpoint Detection & Response (EDR) platforms. You will work closely with … daily operational activities and performance. Define and implement the strategy and operational roadmap for security monitoring, detection, and response. Own and manage the security incident response lifecycle, including investigation, containment, remediation, and post-incident reviews. Lead incident response efforts during high-severity security events ...

Incident Manager Sheffield (Hybrid – 2 days on site)£55,000 - £65,000 + excellent benefits Elevation Tech & Transformation are exclusively partnering with a key client to appoint an Incident Manager to own and shape the incident management function from the ground up. This is a brand … role within the business a real opportunity to define, build and continuously improve the incident management function. You’ll take full ownership of incident management, establishing best practices, refining processes and setting the standard for how incidents are handled across the organisation. This is a role where ...

security incidents that require deviation from documented remediation methods, or are of a particularly critical nature. They drive efforts to ensure swift and efficient incident resolution and risk mitigation. They are also responsible for creating and utilizing automation workflows to streamline Security Operations incident response. Key Deliverables: • Documented … hypothesis-led cyber threat hunts resulting in improved detection capabilities and improved cyber security controls and safeguards • Critical incident response and management, ensuring appropriate investigation and mitigation activities are taken • Development of new proactive monitoring use cases and corresponding runbooks for incident detection and mitigation • Automation ...

GDPR and guidance from the National Cyber Security Centre. Work with internal teams and suppliers to implement proportionate and effective security controls. Security Operations & Incident Management Act as the primary point of contact for security incidents, leading or coordinating response activities. Take a hands-on role in incident investigation, root cause analysis, and remediation. Ensure that incident response processes are aligned to the operational needs of emergency service environments, including timely escalation and communication. Oversee vulnerability management, security testing, and remediation activities, engaging third parties where required (e.g., CHECK providers). Service Resilience & Operational Security ...

automated deployment processes across environments. Monitoring & Observability: Implement and maintain monitoring solutions for infrastructure and applications. Develop dashboards and alerting systems to ensure proactive incident and security event management. Evaluate and integrate new observability tools as needed. Automation & Tooling: Automate repetitive tasks to improve efficiency and reduce human error. … Azure environments. Ensure scalability, resilience, and security of service-based architectures. Implement cost management strategies to optimise cloud spend without compromising performance or security. Incident Response & Root Cause Analysis: Lead incident response efforts, including security incidents, and conduct post-mortem reviews. Drive continuous improvement through lessons ...

compliance with security standards, and protecting both organisational and customer data. You will act as an important escalation point for security-related matters, including incident response, while supporting technical teams in maintaining a strong and compliant security posture. Key Responsibilities Review and analyse current security measures to identify … frameworks, and industry best practices Experience across infrastructure and networking environments, both on-premise and cloud-based Hands-on involvement in vulnerability management and incident response Familiarity with security monitoring tools such as firewalls, IDS/IPS, and extended detection solutions Experience working with SIEM, cloud security platforms ...

define enterprise-wide security strategy, and ensure resilience across all technology environments during a time of rapid change.You'll oversee governance, architecture, operations, and incident response, while working closely with senior leadership to safeguard critical systems, data, and digital services. Acting as a trusted advisor, you'll translate … drive a global information security strategy aligned to organisational priorities and risk appetite. Lead multidisciplinary teams spanning governance, risk, compliance, architecture, operations, and incident response. Embed recognised frameworks such as ISO 27001, NIST CSF, NIS2, and DORA into policies, processes, and technology platforms. Oversee security operations, including monitoring, threat ...

monitoring across multiple networks and services Oversee and contribute to the analysis, investigation and escalation of security incidents Coordinate closely with Cyber Operations and Incident Response teams to contain and mitigate threats Develop and enhance detection use cases, tooling and operational processes Provide subject matter expertise on threat … previous clearance About the team The Cyber Operations team protects critical systems and sensitive environments from advanced threat actors. Covering Threat Intelligence, Detection, Incident Response and Active Defence, the team operates at the forefront of cyber security, safeguarding the technology and services that support national security and those ...

security team, providing direction, coaching and development. Oversee day-to-day Cyber Security Operations, ensuring effective monitoring, triage and response. Manage and enhance the Incident Response process, coordinating actions during security events and ensuring timely remediation. Own the Threat & Vulnerability Management function, including scanning, prioritisation and mitigation planning. … initiatives, continuous improvement, and long-term security roadmap planning. Profile Proven experience leading or managing a cyber security team. Strong background in security operations, incident response and vulnerability management. Solid understanding of cyber risk management frameworks, processes and governance. Ability to communicate security risks effectively to both technical ...

Security Practices, Level 3) equips you with the practical skills employers in Greater Manchester are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … security principles. Threat Intelligence: Develop expertise to identify risks and analyze threats. Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls. Incident Response: Prepare for and respond to live cyber security incidents. Ethics & Law: Understand legislation and ethical conduct within the cyber security sector. Professional Skills ...

Security Practices, Level 3) equips you with the practical skills employers in Greater Manchester are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … security principles. Threat Intelligence: Develop expertise to identify risks and analyze threats. Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls. Incident Response: Prepare for and respond to live cyber security incidents. Ethics & Law: Understand legislation and ethical conduct within the cyber security sector. Professional Skills ...

Certificate in Cyber Security Practices, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, youll gain hands-on experience that prepares you for todays fast-growing cyber security and IT roles. Our learners … Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills ...

Certificate in Cyber Security Practices, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you ll gain hands-on experience that prepares you for today s fast-growing cyber security and IT roles. … Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills ...

Certificate in Cyber Security Practices, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills ...

reliability and performance of the cloud platforms your squad owns. Use observability tools, metrics, logs and traces to detect and prevent issues. Contribute to incident response, post-incident reviews and problem management activities. Build automation that removes toil and improves operational efficiency. Work collaboratively with engineers, Product ...

scripts, and internal platform tooling. Support self-service capabilities for application and product teams. Operational Support (BAU) Support day-to-day platform operations and incident response. Apply patches, upgrades, and maintenance to platform components. Assist with onboarding new cloud environments and subscriptions/accounts. Documentation & Collaboration Maintain engineering documentation ...

governance framework for all areas of cyber and information security across the Group. Manage third-party providers responsible for cyber monitoring, detection, and incident response, ensuring strong performance, resilience, and effective risk control. Maintain and take ownership of the Group-wide cyber security risk register, including conducting risk … assessments, threat modelling, and defining mitigation strategies. Take the lead on security incident management, ensuring timely response, clear stakeholder communication, and ongoing improvement of processes. Ensure adherence to relevant regulations and industry standards, including ISO 27001, NIST, GDPR, and the UK Data Protection Act. Promote a strong security ...

governance framework for all areas of cyber and information security across the client. Manage third-party providers responsible for cyber monitoring, detection, and incident response, ensuring strong performance, resilience, and effective risk control. Maintain and take ownership of the client-wide cyber security risk register, including conducting risk … assessments, threat modelling, and defining mitigation strategies. Take the lead on security incident management, ensuring timely response, clear stakeholder communication, and ongoing improvement of processes. Ensure adherence to relevant regulations and industry standards, including ISO 27001, NIST, GDPR, and the UK Data Protection Act. Promote a strong security ...

C#, Angular, SQL Server Stay hands-on when needed: design, code, pair, review PRs, unblock the team Drive quality, reliability and security: testing approach, incident response, post-incident improvements Hire, onboard and develop engineers (including onshore/offshore collaboration) What we need from you 8+ years building ...

/CD pipelines with blue-green, canary, and rolling deployments, including automated, zero-downtime database releases. Implement comprehensive monitoring, logging, alerting, and automated incident workflows with clear reporting. Strengthen cloud security posture (IAM, secrets, vulnerability scanning) and embed DevSecOps practices while maintaining PCI-DSS compliance. Drive reliability through SLIs …/SLOs, incident response, disaster recovery testing, and capacity planning for peak events. Optimise performance and cost across hybrid environments through right-sizing, forecasting, and resource governance. Apply AI-driven tooling for anomaly detection, operational optimisation, and compliance automation. Collaborate cross-functionally, maintain documentation, and promote DevOps best ...

workloads Implement observability and monitoring to detect vulnerabilities and security risks Collaborate with engineering, security, and risk teams to strengthen DevSecOps practices Support incident response and SOC activities related to container environments Ensure compliance with industry security standards (e.g. NIST, CIS, PCI-DSS) Key Requirements Strong experience with ...

improve processes. Ownership & Accountability: Take end-to-end ownership of services from design through production operations. Ensure systems are reliable, observable, and supportable. Lead incident response and post-incident learning within your team. What We're Looking For: Proven experience as a senior engineer or tech lead ...

High Voltage private power networks. This role is responsible for operational performance, safety compliance, customer satisfaction, and continuous improvement across HV maintenance and response activities. The position plays a key role in maintaining operational resilience while supporting the continued growth and reputation of the organisation within the HV network … Ensure compliance with HV safety rules, switching protocols, and relevant statutory and industry standards. Plan and allocate resources effectively to support planned maintenance, fault response, service delivery, and project activities. Oversee incident response and network restoration activities, ensuring safe and efficient outcomes. Service Delivery & Performance Drive high ...

performance analysis, and automate improvements where possible. Ensure high availability and data integrity through proactive alerting, backups, and robust disaster recovery planning. Own major incident response, troubleshooting and root-cause analysis, implementing long-term fixes. Maintain security best practice across cloud and on-premise environments, including vulnerability management ...