16 of 16 Remote/Hybrid Incident Response Jobs in the North of England

lead the operational security function responsible for protecting the organisation's information assets, technology services, and users. This role oversees all security operation functions, incident response, threat detection, vulnerability management, and continuous improvement of the organisation's security posture. Working closely with Infrastructure, Cloud, Architecture, Governance, Compliance … manage the daily operations of the internal Security Operations team and primary relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response ...

ensuring the organisation's systems, networks, and data remain protected against evolving cyber threats. As the SecOps Lead, you will manage security monitoring and incident response activities while providing strategic direction for security tools including SIEM and Endpoint Detection & Response (EDR) platforms. You will work closely with … daily operational activities and performance. Define and implement the strategy and operational roadmap for security monitoring, detection, and response. Own and manage the security incident response lifecycle, including investigation, containment, remediation, and post-incident reviews. Lead incident response efforts during high-severity security events ...

security incidents that require deviation from documented remediation methods, or are of a particularly critical nature. They drive efforts to ensure swift and efficient incident resolution and risk mitigation. They are also responsible for creating and utilizing automation workflows to streamline Security Operations incident response. Key Deliverables: • Documented … hypothesis-led cyber threat hunts resulting in improved detection capabilities and improved cyber security controls and safeguards • Critical incident response and management, ensuring appropriate investigation and mitigation activities are taken • Development of new proactive monitoring use cases and corresponding runbooks for incident detection and mitigation • Automation ...

GDPR and guidance from the National Cyber Security Centre. Work with internal teams and suppliers to implement proportionate and effective security controls. Security Operations & Incident Management Act as the primary point of contact for security incidents, leading or coordinating response activities. Take a hands-on role in incident investigation, root cause analysis, and remediation. Ensure that incident response processes are aligned to the operational needs of emergency service environments, including timely escalation and communication. Oversee vulnerability management, security testing, and remediation activities, engaging third parties where required (e.g., CHECK providers). Service Resilience & Operational Security ...

define enterprise-wide security strategy, and ensure resilience across all technology environments during a time of rapid change.You'll oversee governance, architecture, operations, and incident response, while working closely with senior leadership to safeguard critical systems, data, and digital services. Acting as a trusted advisor, you'll translate … drive a global information security strategy aligned to organisational priorities and risk appetite. Lead multidisciplinary teams spanning governance, risk, compliance, architecture, operations, and incident response. Embed recognised frameworks such as ISO 27001, NIST CSF, NIS2, and DORA into policies, processes, and technology platforms. Oversee security operations, including monitoring, threat ...

security team, providing direction, coaching and development. Oversee day-to-day Cyber Security Operations, ensuring effective monitoring, triage and response. Manage and enhance the Incident Response process, coordinating actions during security events and ensuring timely remediation. Own the Threat & Vulnerability Management function, including scanning, prioritisation and mitigation planning. … initiatives, continuous improvement, and long-term security roadmap planning. Profile Proven experience leading or managing a cyber security team. Strong background in security operations, incident response and vulnerability management. Solid understanding of cyber risk management frameworks, processes and governance. Ability to communicate security risks effectively to both technical ...

governance framework for all areas of cyber and information security across the Group. Manage third-party providers responsible for cyber monitoring, detection, and incident response, ensuring strong performance, resilience, and effective risk control. Maintain and take ownership of the Group-wide cyber security risk register, including conducting risk … assessments, threat modelling, and defining mitigation strategies. Take the lead on security incident management, ensuring timely response, clear stakeholder communication, and ongoing improvement of processes. Ensure adherence to relevant regulations and industry standards, including ISO 27001, NIST, GDPR, and the UK Data Protection Act. Promote a strong security ...

governance framework for all areas of cyber and information security across the client. Manage third-party providers responsible for cyber monitoring, detection, and incident response, ensuring strong performance, resilience, and effective risk control. Maintain and take ownership of the client-wide cyber security risk register, including conducting risk … assessments, threat modelling, and defining mitigation strategies. Take the lead on security incident management, ensuring timely response, clear stakeholder communication, and ongoing improvement of processes. Ensure adherence to relevant regulations and industry standards, including ISO 27001, NIST, GDPR, and the UK Data Protection Act. Promote a strong security ...

/CD pipelines with blue-green, canary, and rolling deployments, including automated, zero-downtime database releases. Implement comprehensive monitoring, logging, alerting, and automated incident workflows with clear reporting. Strengthen cloud security posture (IAM, secrets, vulnerability scanning) and embed DevSecOps practices while maintaining PCI-DSS compliance. Drive reliability through SLIs …/SLOs, incident response, disaster recovery testing, and capacity planning for peak events. Optimise performance and cost across hybrid environments through right-sizing, forecasting, and resource governance. Apply AI-driven tooling for anomaly detection, operational optimisation, and compliance automation. Collaborate cross-functionally, maintain documentation, and promote DevOps best ...

services independently Maintain high engineering standards through documentation, tooling, and best practices Participate in a paid on-call rotation to support platform reliability and incident response Skills & Experience Strong Linux systems knowledge (Debian, RHEL/CentOS environments) Experience with containerisation technologies such as Docker and Kubernetes Hands ...

governance. Implement Zero Trust principles, network segmentation, encryption, key management, and secure access control models. Partner with SecOps teams to ensure monitoring, logging, and incident response capabilities are embedded Develop automation and service optimisation strategies to improve performance, cost efficiency, and availability. Conduct capacity planning, resilience engineering, disaster ...

based Managed Security Service Provider, supporting their growing client base across multiple industry verticals. Their SOC delivers around the clock protective monitoring, detection, and incident response capabilities utilising industry-leading technology. This is a hybrid role based in Sheffield, requiring two days per week in the office. There … Monitor and respond to security incidents using industry-leading tooling, providing advice and guidance to clients targeted by cyber-attacks. Produce accurate and timely incident reports for both internal and client-facing audiences. Deploy and configure SIEM, EDR, and Vulnerability Management tools as part of client onboarding. Perform malware ...

team, you will work alongside Tier 1 and Tier 3 Analysts, as well as a SOC Lead, to deliver continuous security monitoring, analysis, and incident response for thier clients. This is an excellent opportunity for a current Tier 2 SOC Analyst looking for their next challenge … line with agreed procedures and SLAs. Classify and prioritise potential incidents according to SOC processes and recognised industry frameworks. Produce clear and concise incident tickets, drawing on internal knowledge bases and independent analysis. Apply relevant threat intelligence to SOC operations, maintaining awareness of current threat trends and defensive monitoring ...

cloud services, Kubernetes support, Terraform (IaC), and GitHub-based workflows. You will be involved in day-to-day operational duties such as proactive monitoring, incident troubleshooting, platform support and processing subscription requests all within established change control processes. This opportunity is perfect for individuals who enjoy automation, cloud infrastructure … Monitor and maintain Azure cloud infrastructure, ensuring platform uptime and performance Support Kubernetes deployments and troubleshoot cloud services as part of L2/L3 incident response Use Terraform to update and maintain Infrastructure as Code modules Participate in CI/CD tasks using GitHub Actions or similar tooling ...

state defences rather than BAU. You will come from a technically strong across cyber defence (vulnerability management, hardening, cloud/email/web security, incident response), who can stay ahead of the threat landscape and decide what controls and products should be in place. You will be delivery ...

degradation, back pressure, fault isolation. Strengthen developer leverage: replay/simulation tools, regression tests, and debugging tooling. Work with cloud infrastructure, deployment, monitoring, and incident response. Collaborate directly with the founder and engineering team on architecture and roadmap. Essential Skills 5+ years professional Python experience; youve shipped and owned ...