1 to 25 of 29 Incident Response Jobs in the South West

operations. This is a technical role suited to an experienced analyst with strong engineering instincts, hands-on coding capabilities, and a deep understanding of incident response, detection engineering, and adversary tradecraft. This position includes approximately one week per month of on-call availability for high-priority incident … ideal for someone who has likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible ...

deep experience in how data driven products work, you'll guide teams through complex device level data flows, assess realworld impacts, and lead incident response when risks surface. Alongside this, you'll help build and evolve a practical privacy toolkit-patterns, guardrails, and automated checks-that teams … with delivery teams - review technical designs, implementations, and onboarding of new tools, SDKs, vendors, and platforms, challenging approaches where privacy risks emerge. Lead privacy incident response - act as the onpoint SME during incidents, supporting rootcause analysis, impact assessment, and remediation. Raise capability across teams - coach engineers and product ...

deep experience in how data driven products work, you'll guide teams through complex device level data flows, assess realworld impacts, and lead incident response when risks surface. Alongside this, you'll help build and evolve a practical privacy toolkit-patterns, guardrails, and automated checks-that teams … with delivery teams - review technical designs, implementations, and onboarding of new tools, SDKs, vendors, and platforms, challenging approaches where privacy risks emerge. Lead privacy incident response - act as the onpoint SME during incidents, supporting rootcause analysis, impact assessment, and remediation. Raise capability across teams - coach engineers and product ...

deep experience in how data driven products work, you'll guide teams through complex device level data flows, assess realworld impacts, and lead incident response when risks surface. Alongside this, you'll help build and evolve a practical privacy toolkit-patterns, guardrails, and automated checks-that teams … with delivery teams - review technical designs, implementations, and onboarding of new tools, SDKs, vendors, and platforms, challenging approaches where privacy risks emerge. Lead privacy incident response - act as the onpoint SME during incidents, supporting rootcause analysis, impact assessment, and remediation. Raise capability across teams - coach engineers and product ...

deep experience in how data driven products work, you'll guide teams through complex device level data flows, assess realworld impacts, and lead incident response when risks surface. Alongside this, you'll help build and evolve a practical privacy toolkit-patterns, guardrails, and automated checks-that teams … with delivery teams - review technical designs, implementations, and onboarding of new tools, SDKs, vendors, and platforms, challenging approaches where privacy risks emerge. Lead privacy incident response - act as the onpoint SME during incidents, supporting rootcause analysis, impact assessment, and remediation. Raise capability across teams - coach engineers and product ...

deep experience in how data driven products work, you'll guide teams through complex device level data flows, assess realworld impacts, and lead incident response when risks surface. Alongside this, you'll help build and evolve a practical privacy toolkit-patterns, guardrails, and automated checks-that teams … with delivery teams - review technical designs, implementations, and onboarding of new tools, SDKs, vendors, and platforms, challenging approaches where privacy risks emerge. Lead privacy incident response - act as the onpoint SME during incidents, supporting rootcause analysis, impact assessment, and remediation. Raise capability across teams - coach engineers and product ...

deep experience in how data driven products work, you'll guide teams through complex device level data flows, assess realworld impacts, and lead incident response when risks surface. Alongside this, you'll help build and evolve a practical privacy toolkit-patterns, guardrails, and automated checks-that teams … with delivery teams - review technical designs, implementations, and onboarding of new tools, SDKs, vendors, and platforms, challenging approaches where privacy risks emerge. Lead privacy incident response - act as the onpoint SME during incidents, supporting rootcause analysis, impact assessment, and remediation. Raise capability across teams - coach engineers and product ...

deep experience in how data driven products work, you'll guide teams through complex device level data flows, assess realworld impacts, and lead incident response when risks surface. Alongside this, you'll help build and evolve a practical privacy toolkit-patterns, guardrails, and automated checks-that teams … with delivery teams - review technical designs, implementations, and onboarding of new tools, SDKs, vendors, and platforms, challenging approaches where privacy risks emerge. Lead privacy incident response - act as the onpoint SME during incidents, supporting rootcause analysis, impact assessment, and remediation. Raise capability across teams - coach engineers and product ...

deep experience in how data driven products work, you'll guide teams through complex device level data flows, assess realworld impacts, and lead incident response when risks surface. Alongside this, you'll help build and evolve a practical privacy toolkit-patterns, guardrails, and automated checks-that teams … with delivery teams - review technical designs, implementations, and onboarding of new tools, SDKs, vendors, and platforms, challenging approaches where privacy risks emerge. Lead privacy incident response - act as the onpoint SME during incidents, supporting rootcause analysis, impact assessment, and remediation. Raise capability across teams - coach engineers and product ...

deep experience in how data driven products work, you'll guide teams through complex device level data flows, assess realworld impacts, and lead incident response when risks surface. Alongside this, you'll help build and evolve a practical privacy toolkit-patterns, guardrails, and automated checks-that teams … with delivery teams - review technical designs, implementations, and onboarding of new tools, SDKs, vendors, and platforms, challenging approaches where privacy risks emerge. Lead privacy incident response - act as the onpoint SME during incidents, supporting rootcause analysis, impact assessment, and remediation. Raise capability across teams - coach engineers and product ...

endpoint, email, identity, network, cloud and application layers. Manage and integrate a broad ecosystem of third-party cyber security platforms, including managed detection and response services, email security gateways, vulnerability management tools, privileged access management and threat intelligence services. Lead and support cyber security incident response activities … including investigation, containment, remediation and post incident review. Oversee security monitoring, alerting and response processes, working closely with managed service providers where applicable. Conduct and coordinate vulnerability assessment and remediation activities across infrastructure, endpoints, applications and cloud services. Support regulatory, client and internal audits (e.g. ISO 27001), including ...

visibility and enhance the overall security posture. Key Responsibilities: Implement, configure and optimise core security tooling across the environment Enhance threat detection, monitoring and response capabilities Investigate security alerts and support incident response activities Improve integration and automation between security platforms Support vulnerability management and remediation processes … management platforms such as Tenable Knowledge of OT/ICS security platforms such as Claroty is beneficial Experience supporting security monitoring, detection engineering and incident response Strong understanding of enterprise infrastructure and cloud security Reasonable Adjustments: Respect and equality are core values to us. We are proud ...

ideally Clearswift Strong understanding of Active Directory administration Experience across Windows and Linux security Familiarity with ITSM tools such as Remedy or Jira Strong incident response and analytical skills TO BE CONSIDERED: Please either apply through this advert or reach out directly to discuss further. xehkeey By applying … client in line with this vacancy. KEY SKILLS SOC Engineer, SIEM, Elastic, Tanium, EDR, Trend Micro, Trellix, Clearswift, Active Directory, Windows, Linux, Incident Response, ITSM ...

technical engine behind the organisation's global digital integrity. Your responsibilities will include: Managing the Global SOC to ensure proactive threat hunting and rapid incident response across all global time zones. Implementing a cutting-edge DevSecOps approach to ensure security is automated and embedded within the CI/… have personally achieved certification from scratch) 2.DevSecOps (Embedding security into CI/CD pipelines and automated workflows) 3.SOC Management (Overseeing global threat detection and incident response) 4.NIST Framework (Applying security standards for the Americas region) 5.Essential 8 (Understanding and implementing Australian security protocols) 6.Vulnerability Management (Coordinating risk-based ...

threats posed to government systems, critical national infrastructure and strategic interests. You will operate in a highly secure environment, working closely with security operations, incident response, risk, and technical teams to deliver actionable intelligence that supports defensive and strategic decision-making. Key Responsibilities Collect, analyse and assess cyber … actor activity, including TTPs, malware, campaigns and infrastructure Produce high-quality intelligence reports, briefings and threat assessments for technical and non-technical stakeholders Support incident response and SOC teams with timely, contextual intelligence Maintain and develop threat intelligence repositories, playbooks and knowledge bases Contribute to strategic, operational ...

principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and non-technical stakeholders Excellent analytical, documentation, and problem-solving capability Knowledge ...

landing zones. Lead the development of CI/CD pipelines and automated infrastructure delivery. Promote strong observability, monitoring and alerting practices. Take part in incident response, root cause analysis and platform stability improvements. Balance build-and-run responsibilities with a focus on long-term platform health. ...

assurance, supporting business objectives while reducing cyber and data protection risk. As the Senior Information Security Analyst you will lead security architecture decisions, oversee incident response and vulnerability management, support secure digital transformation, and provide clear, risk-based advice to stakeholders and senior leadership. The position operates with … hybrid environments Microsoft 365 & Cloud Security Microsoft Defender XDR (Endpoint, Identity, Office 365, Cloud Apps) Microsoft Sentinel (SIEM): log ingestion, alert tuning, detection rules, incident workflows Intune & Endpoint Management: device compliance, MDM/MAM, BYOD enforcement Endpoint, Infrastructure & Asset Security Network, DNS & Access Security DNSFilter: DNS-layer protection, malicious ...

doing: Providing expert technical guidance to project teams to ensure compliance with customer, regulatory, and internal security standards. Leading the Computer Incident Response Team during security incidents, coordinating response efforts. Collaborating with the Cyber Security Operations Centre to meet UK security needs and communicate effectively with stakeholders. ...

change. Operational integrity Own end-to-end accountability for the availability, performance, resilience, and compliance of GPTI trading and optimisation systems, including live operations, incident response, service recovery, and continuous improvement. Data-driven decision making Monitor service health, performance, and operational risk to inform prioritisation, investment decisions ...

Manage and develop the IT team Oversee Microsoft 365, networks, telephony and key legal systems Deliver projects and drive digital transformation Own cybersecurity, risk, incident response and continuity planning What you’ll need Senior IT leadership experience (professional services ideal) Strong Microsoft 365, Windows Server, AD, Intune ...

Consultant, you will be responsible for supporting pre-sales activities across all of our core services, with focus on technical assurance, penetration testing and incident response, ensuring excellent customer service is provided from the outset. You will have a consultative approach to working with our clients and will … enjoy building relationships with clients. You will have a strong appetite for continuous learning and expanding your expertise in cyber security, technical assurance and incident response. Remuneration and benefits Excellent salary and benefits package Salary negotiable depending on skills, experience, and qualifications Matched company pension up to 5% Private ...

Azure + Microsoft 365 security Solid Windows Server + VMware (Vsphere/ESXi) Experience with SOC/monitoring tools (Darktrace/RocketCyber or similar) Incident response, threat analysis and remediation Knowledge of MFA, Conditional Access, endpoint security Comfortable working across hybrid environments (cloud + on-prem) This ...

excellent benefits package, and progression all the way up to Global Team Leadership. The Role: *2nd Line Security Analyst/EUC Security Analyst position *Incident response, containment, and remediation across endpoint environments *Work closely with 1st and 3rd line teams to resolve and escalate security issues where needed ...

complex, high-scale environment. What You Will Do Monitor and Analyse: Use SIEM and EDR tools to identify and mitigate potential threats and vulnerabilities. Incident Response: Lead IR activities, following established procedures for investigation and resolution. Proactive Hunting: Initiate threat hunting to identify risks before they escalate. Strategic ...