76 to 100 of 116 Incident Response Jobs in the South East

translating validated findings into actionable improvements for engineering teams. Conduct and lead threat modeling activities to identify real-world attack vectors and apply pragmatic controls that reduce risk. Support incident response efforts, assist in the development of remediation plans, deploy fixes, and communicate mitigations to both internal and external stakeholders. Ensure adherence to financial and data privacy regulations More ❯

equivalent certifications. Experience auditing or delivering compliance frameworks. Familiarity with RMM/XDR/EDR , SIEM, and vulnerability scanning platforms. Background in mentoring or managing small teams. Exposure to incident response and tabletop exercises. Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we More ❯

availability, security, and observability of systems through best practices in reliability and recoverability. Develop and maintain monitoring systems to ensure compliance with service level objectives. Lead and contribute to incident response, root cause analysis, and resolution of infrastructure issues. Project Delivery & Innovation Collaborate on infrastructure projects to support new services and platform enhancements. Build and support production systems More ❯

requirements, deliverables, and operational priorities Deliver timely, high-quality threat briefings and risk assessments to operational stakeholders Drive continuous improvement of threat intelligence processes, tooling, and automation Participate in incident response investigations, providing threat context and attribution support Maintain awareness of global regulatory and compliance requirements related to threat intelligence and offensive security operations Ad hoc requests from More ❯

coordinating with multiple MSPs, managing cyber risk, monitoring threats, and embedding robust security practices across the organisation. Key Responsibilities: Act as the central point for all cybersecurity matters and incident response. Maintain the cybersecurity risk register and lead Cyber Essentials certification. Oversee Microsoft 365 and Google Workspace security, including vulnerability management, patching, MFA, and email security. Coordinate security audits More ❯

Stay abreast of the latest cybersecurity threats and trends, as well as advancements in network security technologies. Develop and enforce policies and procedures for network access, monitoring, and security incident response. What youll bring Youll have professional certifications such as CCNA, CCNP, or extensive knowledge of Checkpoint and Cisco Firewalls, and F5 Load Balancers and associated management software (CSM More ❯

SLAs and achieve 99%+ customer satisfaction targets. - Performance Optimisation: Develop and implement strategies to enhance service delivery, such as process automation, knowledge base improvements, and KPI monitoring (e.g., response times, resolution rates, CSAT). - Deep technical knowledge of Microsoft and IT service management is required. The helpdesk is a technical desk, and leadership requires in depth technical knowledge … to product feedback loops. - Quality Assurance & Compliance: Ensure adherence to ITIL best practices, data security standards, and regulatory requirements while conducting regular audits and training sessions. - Crisis Management: Lead incident response for high-impact issues, minimising downtime and communicating effectively with customers and executives. - Continuous Improvement: Champion a culture of innovation by analysing trends, implementing feedback mechanisms, and More ❯

robust governance across all business areas. Manage the ISO 27001 certification lifecycle - including audits, remediation, and recertification. Collaborate with technical and product teams to embed security standards and oversee incident response procedures. Drive measurable improvements in risk reduction and compliance maturity through strong audit oversight and playbook management. Digital & Clinical Safety Partner with IT, Clinical, Legal, and Executive … technical and clinical disciplines. Experience working with SIROs, Caldicott Guardians, DPOs, and certification bodies. Knowledge of international regulatory frameworks and multi-site operations. Experience with DCB0129/0160 standards, incident management, and external inspections. *Rates depend on experience and client requirements More ❯

Skills & Experience: 2+ years in IT support or systems administration (M365 & Azure). Strong knowledge of Microsoft Entra, Intune, Apple Business Manager, and MS Defender. Proven experience with cyber incident response and user device troubleshooting. Advanced use of MS Office, Teams, SharePoint, and Power Automate. More ❯

actions, and progress against remediation targets. - Identify vulnerabilities in hardware and software to be remediated by Engineering \ Operations teams. - Understand current and emerging security threats. - Assist and lead in Incident Response investigations and mitigation. Required Skills/Experience: - Hands-on experience with disaster recovery, failover testing, and operational resilience in IT infrastructure. - Solid understanding of business continuity and More ❯

resilient, and secure AWS/Azure based environments. Develop monitoring and alerting strategies in collaboration with CloudOps. Write and maintain clear documentation and share knowledge across teams. Support production incident response alongside the operations team. Requirements Knowledge & Experience: Proven DevOps engineering experience. Strong hands-on experience with AWS/Azure and SaaS platforms . Solid Linux & Windows system More ❯

IDS/IPS, PowerShell/Bash, serverless technologies (AWS Lambda, Elastic Containers), and AI applied to IAC Responsibilities for Cloud Operations Team Leader: Oversee daily cloud operations, including monitoring, incident response, troubleshooting, and optimisation Lead short- and long-term project planning in an Agile environment Develop and enforce cloud governance, security, and compliance policies Drive automation and Infrastructure More ❯

Drive Continuous Improvement: Implement operational frameworks and improvement initiatives that enhance efficiency, sustainability, reliability, and cost-effectiveness. Standards & Procedures: Implement and enforce standard operating procedures (SOPs), maintenance schedules, and incident response protocols Systems & Asset Management: Ensure the integrity and accuracy of data within the Data Centre Infrastructure Management (DCIM) system, including asset tracking, environmental monitoring, and capacity planning More ❯

be doing: Deploying and maintaining network architecture. Configuring and managing firewalls and network security systems. Monitoring and optimising network performance. Proactively identify and resolve issues and providing technical support, incident response and root-cause analysis for network faults. Collaborate with multi-functional teams to deliver project requirements. Document network configurations, maintain standards and protocols, support audits and compliance. More ❯

Key Skills : Microsoft Defender XDR: Endpoint, Identity, Office 365, Cloud Apps Microsoft Sentinel: KQL, playbook development, SIEM optimisation Privileged Identity Management (PIM) and change control workflows Advanced threat detection, incident response, and threat hunting Log collection via Azure Monitoring Agent and Firewall Management Centre Responsibilities: Configure and fine-tune Microsoft Defender XDR in line with approved designs Participate … in Microsoft FastTrack engagements Integrate Defender XDR with Sentinel SIEM for enhanced detection and response Develop Kusto queries and automation playbooks Support PoC setup for Microsoft Copilot for Security Connect syslogs from on-prem servers and firewalls to Sentinel If this Security Engineer role sounds like a good fit, please apply with your most up to date CV and More ❯

a senior analyst within the team while also providing direction, coordination, and mentorship to colleagues. You must have experience across the core Cyber Security domains, including TVM, SIEM, EDR, Incident Response, DLP, EASM, Cloud Security, Application Security, WAF, and User Access Management, along with a strong understanding of industry frameworks such as NIST and CIS . This role … models where feasible, or by designing and deploying new approaches within Luxoft. Support and contribute to the wider Cyber Security services delivered by the team, including TVM, SIEM, EDR, Incident Handling, DLP, EASM, Cloud Security, and WAF. Provide cover and support for team members during absence or workload peaks. Build strong working relationships across both DXC and Luxoft Security More ❯

a senior analyst within the team while also providing direction, coordination, and mentorship to colleagues. You must have experience across the core Cyber Security domains, including TVM, SIEM, EDR, Incident Response, DLP, EASM, Cloud Security, Application Security, WAF, and User Access Management, along with a strong understanding of industry frameworks such as NIST and CIS . This role … models where feasible, or by designing and deploying new approaches within Luxoft. Support and contribute to the wider Cyber Security services delivered by the team, including TVM, SIEM, EDR, Incident Handling, DLP, EASM, Cloud Security, and WAF. Provide cover and support for team members during absence or workload peaks. Build strong working relationships across both DXC and Luxoft Security More ❯

who can dive deep into the technical tooling and set strategic direction for a small but high-performing team. The remit cover end-to-end defence, covering security strategy, incident response, vulnerability management, cloud security and insider risk protection, all within one of the most data-driven, high speed environments. You'll partner closely with engineering, IT and More ❯

. Managing Infrastructure as Code (Terraform, Pulumi, CloudFormation) for scalable, repeatable deployments. Automating with PowerShell, Python, or Bash to drive efficiency. Supporting Kubernetes and AKS environments in production. Leading incident response, postmortems, and continuous improvement processes. Driving cost optimisation, capacity planning, and load testing. Championing best practices in cloud security and resilience. Key Skills & Experience Required: Proven Site More ❯

development teams through strong CI/CD infrastructure. This is a hands-on leadership role that blends strategy with execution. What you’ll do: Oversee daily cloud operations—monitoring, incident response, optimisation Lead and plan projects using Agile methods Implement cloud governance, security, and compliance policies Drive automation and Infrastructure as Code (Terraform, Ansible, AI-first approach) Support More ❯

relevant privacy regulations. Monitor and assess data protection compliance across client organisations. Conduct Data Protection Impact Assessments (DPIAs). Maintain and review Records of Processing Activities (RoPA). Support incident response and breach management. Liaise with regulatory bodies such as the ICO. Deliver staff training and awareness sessions. Review and advise on data sharing agreements and contracts. Provide More ❯

ensure seamless integration and deployment of applications. Implement and maintain security best practices and compliance standards across all AWS environments. Troubleshoot and resolve complex technical issues as part of incident response efforts. Maintain detailed documentation of architectures, configurations, and processes. Apply design patterns to ensure code reusability and maintainability. Develop and execute unit tests, following test-driven development More ❯

engineers, develop and enforce cloud governance and security best practices, and support development teams through reliable CI/CD infrastructure. Key responsibilities include: Overseeing daily cloud operations including monitoring, incident response, troubleshooting, and optimisation. Leading and managing both short and long-term project planning (Agile, sprints, iteration planning). Developing and implementing cloud governance, security, and compliance policies. More ❯

using tools such as Terraform, Docker, and AWS. Data governance and observability: Introduce and enhance tooling for data lineage, contracts, monitoring, and cataloguing. Operational excellence: Lead automation, monitoring, and incident response to maintain high platform reliability. Cross-functional collaboration: Work with data scientists, ML engineers, analysts, and product teams to understand and meet their data needs. Mentorship and More ❯

Basic knowledge of monitoring, logging, and observability tools Understanding of cloud cost management and resource optimisation principles Comfort with troubleshooting and supporting development teams Understanding of service reliability and incident response practices Connells Group UK is an equal opportunities employer and positively encourages applications from suitably qualified and eligible candidates regardless of sex, race, disability, age, sexual orientation More ❯