1 to 25 of 32 Incident Response Jobs in the South West

the identification, assessment, mitigation, and monitoring of risks across all systems and operations. Policy and Governance: Support and oversee the creation and enforcement of security policies, standards, and procedures. Incident Response: Develop, implement, and manage the security incident response plan. Leadership: Provide strong leadership and mentorship to the governance, risk, and compliance team. Essential Requirements: Extensive … processes, along with secure system architecture principles. Risk management: Demonstrated expertise in developing, implementing, and managing information security risk management frameworks, including risk assessment methodologies (eg OCTAVE, FAIR). Incident response: Proven track record in developing, leading, and managing security incident response plans, including experience with major incident handling and communication with regulatory bodies (eg More ❯

the identification, assessment, mitigation, and monitoring of risks across all systems and operations. Policy and Governance: Support and oversee the creation and enforcement of security policies, standards, and procedures. Incident Response: Develop, implement, and manage the security incident response plan. Leadership: Provide strong leadership and mentorship to the governance, risk, and compliance team. Essential Requirements: Extensive … processes, along with secure system architecture principles. Risk management: Demonstrated expertise in developing, implementing, and managing information security risk management frameworks, including risk assessment methodologies (eg OCTAVE, FAIR). Incident response: Proven track record in developing, leading, and managing security incident response plans, including experience with major incident handling and communication with regulatory bodies (eg More ❯

the skills or experience we're looking for, please go ahead and apply. We'd love to hear from you! About the Role We are seeking a highly capable Incident Management Specialist to support the end-to-end incident management lifecycle and provide structured, forward-looking insights through systematic horizon scanning. This dual-function role is integral to … maintaining operational resilience by coordinating effective incident response activities and identifying emerging risks and trends that may affect HL's strategic and operational objectives. Salary Offering circa £40k-£45k dependent on experience, plus bonus and additional benefits. What you'll be doing Support the Incident Management Lead throughout the full incident lifecycle, including coordination of response efforts and maintaining detailed documentation. Organise and facilitate incident-related meetings, ensuring accurate recording of minutes, action items, and follow-ups. Effectively use platforms such as Everbridge, MetricStream, and CL360 for incident communication, data analysis, and reporting. Lead structured post-incident reviews to capture lessons learned, define improvement actions, and track timely resolution of agreed actions. More ❯

remediation processes and security checks and develop security tools, processes and technologies, keeping future certifications for security standards in mind such as Cyber Essentials or ISO27001 Creating a security incident response plan, to promote rapid response and investigations of incidents to identify severity and sources, including the monitoring of alerts and springing into action to remediate threats … techniques and remediation processes It would be beneficial to have knowledge of GDPR and other data protection legislation Proven expertise in security software and prevention systems Experience in managing incident response plans and using analysis tools to investigate threats Excellent communication abilities, particularly in translating technical terms and jargon into easily understandable formats Good analytical and sound problem More ❯

such as Google SecOps tooling, Security Command Center, Cloud Armour, and VPC Service Controls. Collaborate with engineering and DevOps teams to embed security into CI/CD pipelines. Support incident response planning and cloud-specific disaster recovery strategies. Stay up to date with GCP security features, UK regulatory changes, and emerging threats. Requirements What You'll Bring Essential … sector or regulated industries (e.g. finance, healthcare). Familiarity with container security (GKE, Kubernetes RBAC, image scanning). Proficiency in scripting (Python, Bash) for automation and tooling. Experience with incident response in cloud-native environments. Previous consultancy experience within UK public sector organisations. If you're interested in the above, reach out to or apply Reasonable Adjustments: Respect More ❯

teams to ensure security best practices and secure-by-design principles. Identify and mitigate security risks in solution architectures. Create security documentation (e.g., RMADS, Security Assurance Documents). Support incident response and remediation efforts for security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST … modeling and risk assessments. Knowledge of secure development practices, penetration testing, and vulnerability assessments. Ability to communicate security risks and strategies to technical and non-technical stakeholders. Experience in incident response and remediation. Strong analytical and problem-solving skills. Qualifications & Requirements: Degree in Cybersecurity, Computer Science, or a related field (or equivalent experience). Certifications such as CISSP More ❯

teams to ensure security best practices and secure-by-design principles. Identify and mitigate security risks in solution architectures. Create security documentation (e.g., RMADS, Security Assurance Documents). Support incident response and remediation efforts for security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST … modeling and risk assessments. Knowledge of secure development practices, penetration testing, and vulnerability assessments. Ability to communicate security risks and strategies to technical and non-technical stakeholders. Experience in incident response and remediation. Strong analytical and problem-solving skills. Qualifications & Requirements: Degree in Cybersecurity, Computer Science, or a related field (or equivalent experience). Certifications such as CISSP More ❯

alerting systems, SLA/SLO/SLI monitoring, alert tuning. Proven track record leading and mentoring engineering teams. Experience working in multi-disciplinary environments with multiple stakeholders. Involvement in incident response, postmortems, on-call rotations. Strong communication skills, with ability to explain technical direction clearly. Java Technical Lead X5 – (Java 8) SC Security Cleared- Key Responsibilities Lead and …/CD, infrastructure, and monitoring. Ensure systems are secure, resilient, and aligned with engineering standards. Collaborate with Dev, Ops, QA, and Security teams in a cross-functional environment. Support incident response, troubleshooting, and postmortems to improve reliability. Contract until March 2026 with scope to extend-£550-£650pday inside IR35 Hybrid working with ad hoc days on site when More ❯

dashboards and reports that provide visibility into network health, asset utilisation, and service performance. Collaborate with Planning to inform asset lifecycle decisions, including upgrades, replacements, and capacity planning. Support incident response by providing rapid data analysis and historical context to aid resolution. Maintain and enhance asset and network data quality, ensuring accuracy in registers and documentation. Stay current … the ability to communicate complex technical insights to non-technical teams. Familiarity with EV charging infrastructure, charge point management systems, and protocols such as OCPP and OCPI. Experience in incident and problem management, including root cause analysis and post-incident reviews. Ability to, and an understanding of how to automate reporting and data workflows using scripting and APIs. More ❯

dashboards and reports that provide visibility into network health, asset utilisation, and service performance. Collaborate with Planning to inform asset lifecycle decisions, including upgrades, replacements, and capacity planning. Support incident response by providing rapid data analysis and historical context to aid resolution. Maintain and enhance asset and network data quality, ensuring accuracy in registers and documentation. Stay current … the ability to communicate complex technical insights to non-technical teams. Familiarity with EV charging infrastructure, charge point management systems, and protocols such as OCPP and OCPI. Experience in incident and problem management, including root cause analysis and post-incident reviews. Ability to, and an understanding of how to automate reporting and data workflows using scripting and APIs. More ❯

services to meet business expectations, ensuring performance, reliability, and responsiveness. Develop and implement a comprehensive cyber security strategy aligned with business objectives and compliance requirements, including risk management and incident response planning. Ensure the security and integrity of IT infrastructure, adhering to relevant standards and policies. Collaborate with digital leadership to ensure IT platforms support innovation and transformation. More ❯

their global Cyber Insights & Analytics team. This is a hands-on role where you’ll transform diverse data sources. Ranging from policy and claims to cyber threat intelligence and incident response, into actionable insights that strengthen our underwriting decisions and frameworks. With their data strategy making strong progress, this is an exciting opportunity for someone with a few More ❯

recovery, and disaster recovery strategies to ensure data protection and business continuity] Ability to implement robust monitoring and logging solutions e.g., CloudWatch, to ensure system reliability, observability, and proactive incident response Comfortable working in Agile development teams, translating business requirements into technical solutions, and actively participating in sprint planning, retrospectives, and daily stand-ups Capability to design scalable More ❯

recovery, and disaster recovery strategies to ensure data protection and business continuity] Ability to implement robust monitoring and logging solutions e.g., CloudWatch, to ensure system reliability, observability, and proactive incident response Comfortable working in Agile development teams, translating business requirements into technical solutions, and actively participating in sprint planning, retrospectives, and daily stand-ups Capability to design scalable More ❯

Coordinate security inventories, scheduled team activities, actions, and improvements. Generate ongoing team reporting, metrics/KPIs, and dashboards for stakeholders, including senior leadership and governance committees. Support information security incident response and recovery efforts as directed, including Post Incident Reviews and implementing control improvements. Skills/Experience: Industry-recognised security certifications such as Security+, CEH, or CySA+. More ❯

compliance (GDPR, NCSC Principles, ISO 27001). Configure cloud-native security tools & integrate with SIEM (Splunk, Chronicle). Embed security in CI/CD pipelines with DevOps teams. Support incident response & recovery for cloud-native environments. What You Bring Strong cloud architecture background. Knowledge of UK regulatory frameworks. IaC experience (Terraform/Deployment Manager). Understanding of monitoring More ❯

testing, and ethical hacking engagements Plan and deliver cyber attack simulations, vulnerability assessments, and social engineering tests Work with SOC teams on purple team exercises to enhance detection and response Produce executive reporting on cyber threats, risks, and remediation progress Collaborate with security and infrastructure teams to strengthen overall cyber resilience Skills & Experience 3+ years in penetration testing/… ethical hacking/red teaming Strong understanding of cyber threats, APTs, threat actor tactics, and exploit development Familiar with SIEM, defensive security monitoring, incident response, and detection engineering Deep knowledge of network, web application, and enterprise architecture security Excellent communication skills to present cyber risk insights to stakeholders Hybrid working model - 3 days in the London office. Competitive More ❯

validation, and regulatory obligations. Support AI governance frameworks ensuring ethical, explainable, and compliant use of AI across financial services. Digital Operational Resilience (DORA) Deliver gap assessments, compliance roadmaps, and incident response readiness programmes aligned to the EU Digital Operational Resilience Act (DORA). Advise financial institutions on resilience testing, regulatory reporting, and ICT risk management. Support the integration More ❯

end range of cyber and cloud capabilities, CyberCX empowers our customers to securely accelerate opportunities in the digital economy. Our services include: consulting and advisory, governance, risk and compliance, incident response, penetration testing and assurance, network and infrastructure solutions, cloud security and solutions, identity and access management, managed security services and cyber security training. More ❯

Proven experience in first-line IT support or a similar technical role Strong knowledge of Windows OS, Microsoft 365, and fundamental networking principles Awareness of **cybersecurity best practices** and incident response Excellent communication skills with a customer-first approach. Ability to prioritise tasks and stay organised under pressure Familiarity with IT asset management and user account administration If More ❯

assist with the hire of a senior Operational Resilience professional to lead critical resilience, continuity, and crisis management initiatives across the UK operations. Key Responsibilities Oversee the bank's Incident Management planning & testing programme. Lead incident response, horizon scanning, and tabletop exercises. Ensure resilience frameworks meet major regulatory standards (FFIEC, OCC, FRB). Drive process and policy More ❯

Apply security patches and updates Support AWS infrastructure (EC2, S3, IAM, VPC) Implement backup and disaster recovery Maintain documentation and asset inventories Ensure PCI DSS compliance and assist with incident response Collaborate with development, security, and operations teams Drive automation and process improvements Qualifications & Experience Degree in Computer Science, IT, or equivalent experience 3–5 years of Linux More ❯

and video services. Oversee live event execution, SLA compliance, service bookings, and customer support. Act as the senior point of escalation for complex incidents (Tier 3 support). Drive incident response, root cause analysis, and proactive monitoring/reporting. Develop and implement TOC strategy, staffing models, and documentation standards. Participate in systems architecture, new tech evaluation, and vendor … a TOC, NOC, or MCR environment. Strong understanding of live broadcast workflows, encoding, transmission, and routing. Deep knowledge of TCP/IP networking (switching, routing, multicast). Excellent leadership, incident management, and performance development skills. Strong documentation and process optimisation experience. High-pressure decision-making and problem-solving capabilities. Proficiency with Excel/Google Sheets; adaptable across Windows, MacOS More ❯

to integrate security best practices ensuring Secure by Design Identify and mitigate security vulnerabilities and risks in products Develop and maintain security guidelines, documentation, and training materials Participate in incident response and remediation efforts for security breaches affecting products Your skillset may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan More ❯

to integrate security best practices ensuring Secure by Design Identify and mitigate security vulnerabilities and risks in products Develop and maintain security guidelines, documentation, and training materials Participate in incident response and remediation efforts for security breaches affecting products Your skillset may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan More ❯