5 of 5 Remote/Hybrid Incident Response Jobs in Scotland

investigate security events across cloud and internal infrastructure using SIEM/security monitoring tools, distinguishing genuine threats from false positives. Lead and support incident response activities (containment, remediation, recovery and post-incident reviews). Own vulnerability management follow through: track remediation actions, validate fixes, and ensure closure ...

investigate security events across cloud and internal infrastructure using SIEM/security monitoring tools, distinguishing genuine threats from false positives. Lead and support incident response activities (containment, remediation, recovery and post-incident reviews). Own vulnerability management follow through: track remediation actions, validate fixes, and ensure closure ...

with the latest security threats and firewall technologies to recommend improvements. Document firewall configurations, changes, and procedures for audit and knowledge sharing. Participate in incident response and disaster recovery planning related to firewall infrastructure. Qualifications: Bachelor's degree or equivalent education and experience. Preferred: Bachelors degree in engineering ...

strong focus on proactive threat hunting, intelligence-led investigations and client engagement. The successful Cyber Threat Intelligence Analyst will work closely with SOC analysts, incident responders and engineering teams, using the Microsoft security stack to identify, analyse and mitigate cyber threats. The Role Cyber Threat Intelligence Analyst … tactical audiences Present findings in client meetings, translating technical detail into business risk and impact Collaboration & Continuous Improvement Work closely with SOC analysts, incident responders and security engineers Contribute to playbook development and threat hunting automation Participate in service reviews and governance meetings Support continuous improvement across cyber threat ...

Azure Firewall, and related services. Integrate security into DevOps pipelines, CI/CD, infrastructure-as-code, and container workflows. Automate threat detection and response using Microsoft Sentinel SOAR, custom playbooks, and telemetry pipelines. Platform Security Oversight Own and optimise endpoint security through Intune, ensuring device compliance and integration with … access, and remote gateway protection at the edge. Security Operations & Threat Defence Act as the technical escalation point for complex threat investigations and incident response. Lead red-teaming simulations, vulnerability assessments, and threat hunting activities. Support proactive telemetry monitoring and improvement of detection logic and alert fidelity. Leadership & Mentoring ...