1 to 25 of 121 Incident Response Jobs in the Thames Valley

month contract, Outside IR35*** Job Profile We are seeking an experienced Cyber Incident Response Consultant to design and implement a robust, organisation-wide Cyber Incident Response capability. This role will lead the creation of clear, actionable plans and playbooks to ensure the business is fully prepared … respond effectively to cyber incidents. Responsibilities Design and deliver a fully documented Cyber Incident Response Plan from the ground up Develop scenario-based incident response playbooks covering ransomware, DDoS, phishing, and data breaches Identify and define key decision-makers, escalation paths, and governance during incidents Establish ...

them on a permanent basis. You will help to establish and lead local security operations capability across European offices, providing strategic technical leadership in incident response, cyber threat visibility, and security resilience. This role will bridge the gap between our centralized corporate security services and regional business needs. … Responsibilities Incident Response & Security Operations Lead and mature security incident response capabilities across the organisation Oversee incident investigations, alert triage, and threat hunting activities Develop and execute tabletop exercises and incident response playbooks Provide expert technical guidance during security incidents and recovery efforts ...

role will suit a technically capable individual with experience in security operations who is looking to broaden their exposure across security monitoring, engineering, and incident response within a dynamic environment. The role provides hands-on involvement in triaging and investigating security alerts, acting as an escalation point … outsourced Security Operations Centre (SOC), supporting major incident response activities. The successful candidate will work closely with infrastructure and network teams to manage and optimise endpoint, email, identity, and vulnerability management platforms, while contributing to continuous improvement of the organisation's security posture. This role offers the opportunity ...

Responsibilities Monitor, analyse, and assess cyber threats, threat actors, and campaigns relevant to the utilities sector Produce actionable threat intelligence to support SOC, incident response, and risk teams Track emerging threats affecting IT, OT, SCADA, and critical infrastructure Correlate intelligence from internal telemetry, SIEM, and external intelligence feeds … Support incident response and post-incident analysis with threat context Maintain threat models aligned to MITRE ATT&CK (IT & OT) Brief senior stakeholders on threat trends, risks, and mitigations Collaborate with government, industry, and intelligence-sharing bodies where appropriate Key Skills & Experience Experience in cyber threat intelligence ...

servers, and workstations. Carrying out security monitoring and improving the configuration of the security monitoring tools used by Smart Communications. Enhancing security detection and incident response processes ranging from individual playbooks to security incident response and remediation plans. Managing vulnerability detection and remediation by working with … years of hands-on experience in a similar role. Good understanding of security principles, technologies, and best practices, including threat detection and security incident response processes. Experience implementing security in AWS environments including proactive configuration of AWS accounts and assets to meet good security practices Experience conducting security ...

position involves financial and operational oversight of all service management and operations teams, ensuring transparent service delivery with high availability standards and rapid incident resolution. The role manages and limits operational risk to customers while delivering measurable business value through optimised service operations. Key Responsibilities & Requirements Service Management & Operations … Excellence Implementing vision and strategy for service management and operations excellence across the organisation Incident and problem management oversight, ensuring rapid service restoration, root cause analysis, and continuous service improvement Change and release management coordination to minimise service disruptions while enabling fast, safe deployments Service level management, including ...

risk with quantifiable results. We're comprised of top talent from private industry, government, intelligence, and law enforcement who are specialists in threat detection, incident response, digital forensics, offensive security, risk management, and cyber resilience. As a subsidiary of specialty insurance giant, Beazley, we've been … forefront of cyber insurance management and breach response activities for business clients in the US, UK, and Europe since 2017. As Beazley Security, the company will have an expanded scope, leveraging nearly two decades of cyber incident experience, a strong services division, and a business strategy focused ...

risk with quantifiable results. We're comprised of top talent from private industry, government, intelligence, and law enforcement who are specialists in threat detection, incident response, digital forensics, offensive security, risk management, and cyber resilience. As a subsidiary of specialty insurance giant, Beazley, we've been … forefront of cyber insurance management and breach response activities for business clients in the US, UK, and Europe since 2017. As Beazley Security, the company will have an expanded scope, leveraging nearly two decades of cyber incident experience, a strong services division, and a business strategy focused ...

social engineering assessments and physical security testing Produce detailed scoping documents and executive-level penetration testing reports aligned with CREST and NCSC standards Lead incident response investigations and digital forensic analysis when required Work independently on client-facing assessments whilst collaborating with senior consultants and team leaders Maintain … Certified Testers, and forensic specialists delivers: Penetration Testing & Security Audits: Infrastructure, application, and mobile assessments Compliance Advisory: PCI DSS, GDPR, ISO27001 implementations and certifications Incident Response & Forensics: 24/7 emergency response and digital evidence analysis Specialist Services: SCADA testing, social engineering, business continuity planning Based ...

social engineering assessments and physical security testing Produce detailed scoping documents and executive-level penetration testing reports aligned with CREST and NCSC standards Lead incident response investigations and digital forensic analysis when required Work independently on client-facing assessments whilst collaborating with senior consultants and team leaders Maintain … Certified Testers, and forensic specialists delivers: Penetration Testing & Security Audits: Infrastructure, application, and mobile assessments Compliance Advisory: PCI DSS, GDPR, ISO27001 implementations and certifications Incident Response & Forensics: 24/7 emergency response and digital evidence analysis Specialist Services: SCADA testing, social engineering, business continuity planning Based ...

social engineering assessments and physical security testing Produce detailed scoping documents and executive-level penetration testing reports aligned with CREST and NCSC standards Lead incident response investigations and digital forensic analysis when required Work independently on client-facing assessments whilst collaborating with senior consultants and team leaders Maintain … Certified Testers, and forensic specialists delivers: Penetration Testing & Security Audits: Infrastructure, application, and mobile assessments Compliance Advisory: PCI DSS, GDPR, ISO27001 implementations and certifications Incident Response & Forensics: 24/7 emergency response and digital evidence analysis Specialist Services: SCADA testing, social engineering, business continuity planning Based ...

Consulting is Palo Alto Network's security advisory team. Our vision is to create a more secure digital world by providing the highest quality incident response, risk management, and digital forensic services to clients of all sizes. Our team is composed of recognized experts and incident responders … with deep technical expertise and experience in investigations, data breach response, digital forensics, and information security. With a highly successful track record of delivering mission-critical cybersecurity solutions, we are experienced in working quickly to provide an effective incident response, attack readiness, and remediation plans with ...

intelligence, and security leadership. Key Responsibilities Act as the final escalation point for complex security alerts and incidents across the enterprise Lead and coordinate incident response activities, including containment, eradication, and post-incident reviews Perform advanced threat hunting and proactive investigations using SIEM, EDR, and cloud telemetry … MITRE ATT&CK Work extensively with the Microsoft Security stack, including Sentinel, Defender XDR, Entra ID, and M365 Security Improve SOC processes, playbooks, and response procedures to reduce MTTD and MTTR Support and mentor Level 1 and Level 2 analysts, raising overall SOC capability Collaborate with wider security teams ...

/LLM tools, including Copilot, Azure OpenAI, and agentic systems—ensuring proper guardrails, risk assessments, and data protection. Participate in cloud monitoring, detection & incident response, working with SIEM/XDR tooling and platform/application teams. Collaborate closely with data governance to ensure appropriate classification, labelling, access control … governance controls using Microsoft Purview. Practically skilled in AI security, including risk identification, secure integration patterns, and AI governance models. Experience with cloud monitoring, incident response, SIEM/XDR operations. Ability to translate complex security risks into clear business language and actionable recommendations. DESIRABLE SKILLS Experience with secure ...

cyber-resilience strategy and protect the systems and data that support essential public services. This is a key leadership role overseeing cyber security governance, incident response, regulatory compliance (PSN, PCI-DSS, Cyber Essentials Plus), and the secure operation of cloud and hybrid environments. You'll work closely with … services. What you'll do: Lead the local authority's cyber security framework, policies, and standards Own vulnerability management, security monitoring, and incident response Ensure compliance with NCSC, PSN, PCI-DSS, GDPR and other national frameworks Manage SIEM, Microsoft security tooling (Sentinel/Defender/E5), identity & access ...

services or DevOps tools to continuously enhance infrastructure capabilities. Produce and maintain platform documentation and runbooks, ensuring knowledge is shared and accessible. Contribute to incident response and root cause analysis for infrastructure-related issues. Track and report platform metrics, including performance, cost efficiency, and security posture. Required Skills … security best practices. Experience with monitoring, logging, and alerting tools. Proficiency in scripting or automation languages (Python, Bash, or PowerShell). Track record of incident response and root cause analysis in cloud environments. If you are interested in this position please apply online or for more information contact ...

specific and relevant security data points Participate in an on-call rotation and assist with troubleshooting issues that arise Defining and implementing a Security Incident Response process/policy with regular evolvement, testing and adherence Required Qualifications Three years or more experience in Cloud Infrastructure roles (predominantly … team Advantageous Qualifications AWS Certified Security Specialist Hands on experience designing and implementing security controls within GCP Experience defining and operating a Security Incident Response process Good knowledge of monitoring and alerting using one or more of: Graphite, Statsd, Prometheus, Grafana, OpenSearch Any experience of ISO27001 certification processes ...

risk assessments to proactively identify potential risks and develop mitigation strategies Track, analyse, and manage vulnerabilities in applications, providing guidance for remediation efforts Support incident response by investigating and analyzing security incidents related to applications Stay current on the latest security threats, vulnerabilities, and technologies to enhance … background looks something like: Extensive experience in application security, cybersecurity, or related fields Strong understanding of secure coding practices, threat modelilng, risk assessments, and incident response Proficiency in programming languages such as TypeScript, Python, or similar Experience with security tools, security protocols, encryption methods, and application security frameworks ...

environments. You'll work across servers, networks, storage, and security tools, contributing to infrastructure projects as well as cyber initiatives such as vulnerability management, incident response, and enhancing security controls. You'll also collaborate with group security teams and help ensure systems remain resilient and up to date. … etc.) Palo Alto deployment/configuration experience is a must Good understanding of firewalls, network protocols, and intrusion prevention Ability to manage vulnerability scanning, incident response, and remediation Confident communicator with solid documentation skills The role also covers an office in Birmingham and they might be occasional travel ...

helping a leading British retailer find an Incident Response Lead! You will join a huge tech transformation and own the IR space!! The role will be a mix of working closely with technical teams, and managing both technical and business stakeholders. To be a fit, you will have ...

helping a leading British retailer find an Incident Response Lead! You will join a huge tech transformation and own the IR space!! The role will be a mix of working closely with technical teams, and managing both technical and business stakeholders. To be a fit, you will have ...

high-risk processing activities. Managing third-party vendor data protection risk, from initial due diligence through to ongoing monitoring. Overseeing personal data breach incident response, ensuring timely containment, investigation, and reporting. Monitoring and maintaining data retention processes, ensuring compliance with legal, regulatory, and business requirements. This role offers … compliance (e.g. GDPR or equivalent frameworks). Strong understanding of data protection risk assessment and mitigation processes. Proven experience in data breach management and incident response coordination. Desirable Skills and Attributes Collaboratively curious — keen to engage with colleagues to find pragmatic, compliant solutions. Trustworthy and ethically minded, with ...

strategy (anycast, BGP policy, routing integration) and partner with networking, DNS, and edge platform teams. Set operational standards: SLOs/SLAs, on-call health, incident response (including incident commander duties), runbooks, and post-incident learning. Drive automation at scale: CI/CD strategy, test frameworks, progressive ...

strategy (anycast, BGP policy, routing integration) and partner with networking, DNS, and edge platform teams. Set operational standards: SLOs/SLAs, on-call health, incident response (including incident commander duties), runbooks, and post-incident learning. Drive automation at scale: CI/CD strategy, test frameworks, progressive ...

strategy (anycast, BGP policy, routing integration) and partner with networking, DNS, and edge platform teams. Set operational standards: SLOs/SLAs, on-call health, incident response (including incident commander duties), runbooks, and post-incident learning. Drive automation at scale: CI/CD strategy, test frameworks, progressive ...