1 to 25 of 127 Incident Response Jobs in the North of England

Level 3 Analyst North West/Hybrid CrowdStrike | LogScale SIEM | Incident Response | Threat Hunting The Company A rapidly growing UK-based cyber security provider is expanding its Security Operations Centre following continued demand for advanced MDR, SOC, and Incident Response services. The organisation operates a modern … edge EDR, identity protection, SIEM and automation tooling, with a strong focus on engineering a highly effective, cloud-native SOC environment. CrowdStrike | LogScale SIEM | Incident Response | Threat Hunting The Role This permanent position is ideal for an experienced SOC Level 3 Analyst looking to lead advanced detection engineering ...

Bolton The CERT Incident Responder is responsible for leading digital forensics and incident response (DFIR) readiness. While also advancing the organisation's Adversarial Exposure Validation (AEV)- including Red and Purple Team activities The role ensures detection, response, and control validation against real-world threat actor tactics … option to claim cash back on everyday healthcare expenses such as optical, dental, health and wellbeing and more . The opportunity: The CERT Incident Responder is responsible for leading digital forensics and incident response (DFIR) readiness. While also advancing the organisation's Adversarial Exposure Validation (AEV)- including ...

secure ICT services supporting critical UK Defence systems. Operating within highly regulated, high-availability environments, they deliver resilient infrastructure, operational assurance, and rapid incident response across mission-critical platforms. The engineering teams work at the forefront of secure networking, virtualisation, automation, and monitoring technologies to ensure Defence systems … within secure Defence ICT environments, providing 24/7 operational support for mission-critical systems. The role ensures system availability, resilience, security, and rapid incident resolution in line with contractual SLAs and KPIs, combining deep infrastructure expertise with modern automation and monitoring practices to deliver stable and compliant services. ...

secure ICT services supporting critical UK Defence systems. Operating within highly regulated, high-availability environments, they deliver resilient infrastructure, operational assurance, and rapid incident response across mission-critical platforms. The engineering teams work at the forefront of secure networking, virtualisation, automation, and monitoring technologies to ensure Defence systems … within secure Defence ICT environments, providing 24/7 operational support for mission-critical systems. The role ensures system availability, resilience, security, and rapid incident resolution in line with contractual SLAs and KPIs, combining deep infrastructure expertise with modern automation and monitoring practices to deliver stable and compliant services. ...

policies, and standards. Conduct risk assessments, manage audits, and ensure compliance with GDPR and ISO 27001. Oversee security operations, including monitoring, threat detection, and incident response. Manage security tools and processes: SIEM (Azure Sentinel), firewalls, endpoint protection, and identity management. Ensure secure configuration, patch management, and vulnerability remediation. Lead … incident response and recovery, including investigations and post-incident reviews. Deliver security training and awareness programs across the business. Assess and monitor vendor and third-party security compliance. Skills/Technologies- 3-7+ years in cybersecurity, IT security, or risk management. Strong knowledge of cybersecurity frameworks ...

social engineering assessments and physical security testing Produce detailed scoping documents and executive-level penetration testing reports aligned with CREST and NCSC standards Lead incident response investigations and digital forensic analysis when required Work independently on client-facing assessments whilst collaborating with senior consultants and team leaders Maintain … Certified Testers, and forensic specialists delivers: Penetration Testing & Security Audits: Infrastructure, application, and mobile assessments Compliance Advisory: PCI DSS, GDPR, ISO27001 implementations and certifications Incident Response & Forensics: 24/7 emergency response and digital evidence analysis Specialist Services: SCADA testing, social engineering, business continuity planning Based ...

social engineering assessments and physical security testing Produce detailed scoping documents and executive-level penetration testing reports aligned with CREST and NCSC standards Lead incident response investigations and digital forensic analysis when required Work independently on client-facing assessments whilst collaborating with senior consultants and team leaders Maintain … Certified Testers, and forensic specialists delivers: Penetration Testing & Security Audits: Infrastructure, application, and mobile assessments Compliance Advisory: PCI DSS, GDPR, ISO27001 implementations and certifications Incident Response & Forensics: 24/7 emergency response and digital evidence analysis Specialist Services: SCADA testing, social engineering, business continuity planning Based ...

social engineering assessments and physical security testing Produce detailed scoping documents and executive-level penetration testing reports aligned with CREST and NCSC standards Lead incident response investigations and digital forensic analysis when required Work independently on client-facing assessments whilst collaborating with senior consultants and team leaders Maintain … Certified Testers, and forensic specialists delivers: Penetration Testing & Security Audits: Infrastructure, application, and mobile assessments Compliance Advisory: PCI DSS, GDPR, ISO27001 implementations and certifications Incident Response & Forensics: 24/7 emergency response and digital evidence analysis Specialist Services: SCADA testing, social engineering, business continuity planning Based ...

social engineering assessments and physical security testing Produce detailed scoping documents and executive-level penetration testing reports aligned with CREST and NCSC standards Lead incident response investigations and digital forensic analysis when required Work independently on client-facing assessments whilst collaborating with senior consultants and team leaders Maintain … Certified Testers, and forensic specialists delivers: Penetration Testing & Security Audits: Infrastructure, application, and mobile assessments Compliance Advisory: PCI DSS, GDPR, ISO27001 implementations and certifications Incident Response & Forensics: 24/7 emergency response and digital evidence analysis Specialist Services: SCADA testing, social engineering, business continuity planning Based ...

Title: Incident Management Analyst/Major Incident Analyst Contract Type: Temporary Daily Rate: Circa £450/Day Contract Length: 12 Months Location: Chester Office (4 days in the office) Working Pattern: Full Time Shift: Sunday-Thursday or Tuesday-Saturday (07:00 - 16:00) Are you ready to take … pivotal role in a high-energy environment? Join our dynamic Global Command centre team as an Incident Management Analyst and become a critical player in ensuring the availability and performance of technology services! About the Role: As part of our commitment to operational excellence, you will oversee major incidents ...

protected against current and emerging threats. Maintaining the cyber risk register, you will lead investigations into security breaches, coordinate disaster recovery (DR) and cyber incident response, and support business continuity planning (BCP), including defining Restore Point Objectives (RPOs) and Recovery Time Objectives (RTOs). The role ensures compliance … disaster recovery, business continuity, risk management, internal controls, and security technologies including SIEM, firewalls, EDR, MFA, encryption, Microsoft Purview, and Microsoft Entra. Experience with incident response, cyber forensics, enterprise security architecture, secure-by-design principles, and managing third-party security risks is essential. The ideal candidate will have ...

protected against current and emerging threats. Maintaining the cyber risk register, you will lead investigations into security breaches, coordinate disaster recovery (DR) and cyber incident response, and support business continuity planning (BCP), including defining Restore Point Objectives (RPOs) and Recovery Time Objectives (RTOs). The role ensures compliance … disaster recovery, business continuity, risk management, internal controls, and security technologies including SIEM, firewalls, EDR, MFA, encryption, Microsoft Purview, and Microsoft Entra. Experience with incident response, cyber forensics, enterprise security architecture, secure-by-design principles, and managing third-party security risks is essential. The ideal candidate will have ...

activities. Evaluate security risks of third-party vendors, ensuring alignment with internal security requirements. Maintain documentation, evidence, and metrics to support ongoing audit readiness. Incident Response & Awareness Support the development, testing, and refinement of incident response plans. Assist with investigation and reporting of security incidents. Promote ...

operational edge-cases Oversee full Intune security baselining, including secure device provisioning, compliance models, remediation scripts, endpoint hardening, managed configurations, and integration with incident response Architect and tune the Microsoft Defender XDR stack, including advanced hunting, alert tuning, automation rules, vulnerability management, attack surface reduction, and integration with … governance and access control models covering privileged identity management, entitlement workflows, elevated access justification, and audit-ready forensic traceability Build out logging, monitoring, and incident response capabilities, ensuring telemetry is collected, correlated, enriched, and actionable for both engineering and SOC teams Champion technical evidence collection and audit readiness ...

/OT environments is a must* I'm partnering with a well-established organisation looking for a Senior Security Analyst to take ownership of incident response within an operational technology environment. Acting as the senior escalation point for security incidents, you'll shape detection, response playbooks … autonomously, with a strong understanding of how warehouses operate and how security needs to align with operational processes. Key focus areas: Lead senior-level Incident Response (SIEM/SOAR) Act as escalation point for complex incidents Shape OT-aligned security controls and playbooks Collaborate closely with warehouse ...

contribute to self-healing systems. • Cross-Functional Coordination: Collaborate with Security, Architecture, and Automation SMEs to align infrastructure with business and technical standards. • Incident Response: Take the lead during high-pressure incidents, balancing technical resolution with clear stakeholder communication. • Monitoring & Performance: Proactively monitor systems to prevent customer impact … technologies (e.g., AWS Certified Solutions Architect, DevOps Engineer). • Development & Automation: Experience in software development or automation, with scripting and infrastructure as code. • Monitoring & Incident Response: Ability to proactively monitor systems and lead resolution during high-pressure incidents. Communication Skills (Soft Skills) • Comfortable working with European colleagues, particularly ...

contribute to self-healing systems. • Cross-Functional Coordination: Collaborate with Security, Architecture, and Automation SMEs to align infrastructure with business and technical standards. • Incident Response: Take the lead during high-pressure incidents, balancing technical resolution with clear stakeholder communication. • Monitoring & Performance: Proactively monitor systems to prevent customer impact … technologies (e.g., AWS Certified Solutions Architect, DevOps Engineer). • Development & Automation: Experience in software development or automation, with scripting and infrastructure as code. • Monitoring & Incident Response: Ability to proactively monitor systems and lead resolution during high-pressure incidents. Communication Skills (Soft Skills) • Comfortable working with European colleagues, particularly ...

Level 3 Analyst North West/Hybrid CrowdStrike LogScale SIEM Incident Response Threat Hunting The Company A rapidly growing UK-based cyber security provider is expanding its Security Operations Centre following continued demand for advanced MDR, SOC, and Incident Response services click apply for full ...

KPIs, SLAs and operational targets are met and continuously improved Managing, mentoring and developing SOC analysts to maintain a high-performing team culture Overseeing incident response processes, ensuring issues are escalated, handled and closed effectively Supporting the refinement of SOC processes, reporting, documentation and operational standards Acting … performance and process management A commercially minded approach, comfortable working with KPIs, reporting and wider business objectives Good understanding of SOC tools, processes and incident response workflows Strong communication skills with the ability to work effectively across technical and non-technical teams Exposure to or collaboration with service ...

development, test and production environments to ensure consistency and predictable use Provide operational alignment across DBA and SRE practices including performance tuning, monitoring and incident response Maintain monitoring, alerting and runbooks to support effective detection and resolution of operational issues Implement and oversee backup, failover and disaster recovery … cost optimisation across infrastructure and cloud services Maintain and communicate IT policies covering access management, patching, security, device management and change control Lead incident response and ensure follow up actions drive lasting improvement Build and maintain productive relationships with internal teams and external service providers Key Skills ...

Engineer with strong experience in Node.js/NestJS and AWS, who will: Own day-to-day deployments of our backend services. Lead monitoring and incident response for production systems. Take primary ownership of our AWS infrastructure, using infrastructure as code. Design and implement backend features for a high … CloudWatch and related services). Manage resources using infrastructure as code tools. Maintain and improve observability: logging, metrics, alerts, and dashboards. Lead incident response when production issues occur and drive follow-up improvements. Technical direction and coaching Make and communicate architectural choices for backend and infrastructure. Review code ...

Engineer with strong experience in Node.js/NestJS and AWS, who will: Own day-to-day deployments of our backend services. Lead monitoring and incident response for production systems. Take primary ownership of our AWS infrastructure, using infrastructure as code. Design and implement backend features for a high … CloudWatch and related services). Manage resources using infrastructure as code tools. Maintain and improve observability: logging, metrics, alerts, and dashboards. Lead incident response when production issues occur and drive follow-up improvements. Technical direction and coaching Make and communicate architectural choices for backend and infrastructure. Review code ...

Engineer with strong experience in Node.js/NestJS and AWS, who will: Own day-to-day deployments of our backend services. Lead monitoring and incident response for production systems. Take primary ownership of our AWS infrastructure, using infrastructure as code. Design and implement backend features for a high … CloudWatch and related services). Manage resources using infrastructure as code tools. Maintain and improve observability: logging, metrics, alerts, and dashboards. Lead incident response when production issues occur and drive follow-up improvements. Technical direction and coaching Make and communicate architectural choices for backend and infrastructure. Review code ...

Engineer with strong experience in Node.js/NestJS and AWS, who will: Own day-to-day deployments of our backend services. Lead monitoring and incident response for production systems. Take primary ownership of our AWS infrastructure, using infrastructure as code. Design and implement backend features for a high … CloudWatch and related services). Manage resources using infrastructure as code tools. Maintain and improve observability: logging, metrics, alerts, and dashboards. Lead incident response when production issues occur and drive follow-up improvements. Technical direction and coaching Make and communicate architectural choices for backend and infrastructure. Review code ...

Engineer with strong experience in Node.js/NestJS and AWS, who will: Own day-to-day deployments of our backend services. Lead monitoring and incident response for production systems. Take primary ownership of our AWS infrastructure, using infrastructure as code. Design and implement backend features for a high … CloudWatch and related services). Manage resources using infrastructure as code tools. Maintain and improve observability: logging, metrics, alerts, and dashboards. Lead incident response when production issues occur and drive follow-up improvements. Technical direction and coaching Make and communicate architectural choices for backend and infrastructure. Review code ...