26 to 50 of 133 Incident Response Jobs in the Thames Valley

strategy (anycast, BGP policy, routing integration) and partner with networking, DNS, and edge platform teams. Set operational standards: SLOs/SLAs, on-call health, incident response (including incident commander duties), runbooks, and post-incident learning. Drive automation at scale: CI/CD strategy, test frameworks, progressive ...

strategy (anycast, BGP policy, routing integration) and partner with networking, DNS, and edge platform teams. Set operational standards: SLOs/SLAs, on-call health, incident response (including incident commander duties), runbooks, and post-incident learning. Drive automation at scale: CI/CD strategy, test frameworks, progressive ...

secure SDLC practices with DevOps and engineering teams. Lead security programmes across endpoints, cloud, and customer facing products. Continuously improve security monitoring, tools, and incident readiness. 3. Incident Management & Operational Security Take ownership of security incidents as the primary point of contact. Coordinate response across internal teams … penetration tests and security assessments, track findings, and verify remediation. Your Present Skillset • Strong engineering experience, preferably in cloud or application security. • Expertise in incident response, SOC operations, and working with MSSPs •Deep understanding of cloud-native environments and infrastructure-as-code. • Experienced in defining and implementing security ...

reliability & cost: Apply SRE practices (error budgets, change management, resilience testing), right‐size resources, and use cloud provider tooling for security/cost posture. Incident response & on‐call: Participate in a fair, documented on‐call rota; lead and/or contribute to incident handling, comms, post‐incident … define metrics/traces/logs, tune alerts, and drive SLOs. Scripting & automation: Proficiency in Python and Bash; experience with boto3 or equivalent SDKs. Incident management: Exposure to production incidents, on‐call participation, and post‐incident review practices. Clear communication, stakeholder partnership, and a bias to automate, document ...

Process Improvement & Innovation: Drive continuous improvement initiatives, establish DevOps best practices, and identify opportunities for innovation in software development processes, tools, and technologies. Troubleshooting & Incident Management: Lead root cause analysis and resolution of complex infrastructure and deployment issues; establish incident response procedures and post-incident review ...

Process Improvement & Innovation: Drive continuous improvement initiatives, establish DevOps best practices, and identify opportunities for innovation in software development processes, tools, and technologies. Troubleshooting & Incident Management: Lead root cause analysis and resolution of complex infrastructure and deployment issues; establish incident response procedures and post-incident review ...

Process Improvement & Innovation: Drive continuous improvement initiatives, establish DevOps best practices, and identify opportunities for innovation in software development processes, tools, and technologies. Troubleshooting & Incident Management: Lead root cause analysis and resolution of complex infrastructure and deployment issues; establish incident response procedures and post-incident review ...

features and system changes Evaluate and recommend security technologies and tools Operational (40%) Manage security environments across Azure and AWS infrastructure Coordinate security incident response and vulnerability remediation Oversee security monitoring, alerting, and detection capabilities Manage vulnerability assessment and penetration testing programs Maintain identity and access management controls … compliance experience with payment processing systems Strong understanding of cloud security (Azure and/or AWS) Application security and secure development lifecycle knowledge Security incident management and cross-functional response coordination Excellent communication skills - able to translate technical security for commercial and executive audiences Experience supporting tender responses ...

/Jenkins/GitHub Actions/AWS Code Pipeline). Contribute to observability efforts including metrics, logs, traces, and alerting systems. Participate in incident response and post-incident reviews; help reduce MTTR through automation. Automate operational tasks using TypeScript and scripting languages; codify ops playbooks. Help implement ...

/Jenkins/GitHub Actions/AWS Code Pipeline). Contribute to observability efforts including metrics, logs, traces, and alerting systems. Participate in incident response and post-incident reviews; help reduce MTTR through automation. Automate operational tasks using TypeScript and scripting languages; codify ops playbooks. Help implement ...

industry standards. Conduct environment reviews, ensuring compliance with NIST frameworks and related standards. Oversee and implement SIEM/XDR deployments, custom rule development, and incident response processes. Provide guidance on best practices for SIEM/XDR and threat detection. Conduct security posture reviews and gap analysis. Prepare reports … Years CompTIA Security+ or CySA+ (Required)[NB2] [RR3] Any SIEM Analyst Certification (Desirable) Microsoft Certified Security Operations Analyst Associate (Desirable) EC-Council ECIH (Incident Handling) (Desirable) Multi-cloud Security Fundamentals training (AWS/Azure/GCP) (Desirable) GCIH (Desirable ...

incidents. Help implement security best practices and policies to protect digital assets. Gain exposure to SIEM tools and security monitoring platforms. Assist with creating incident response documentation and security reports. Support compliance efforts and basic risk assessments aligned with industry standards. Learn about network security concepts, including firewalls … methodologies. What You'll Gain Hands-on exposure to real-world cybersecurity operations and defensive strategies. Practical experience with vulnerability assessment, security monitoring, and incident response. 1:1 mentorship from experienced cybersecurity professionals. Internship Certificate and Letter of Recommendation upon successful completion. Opportunity for a Pre-Placement Offer ...

incidents. Help implement security best practices and policies to protect digital assets. Gain exposure to SIEM tools and security monitoring platforms. Assist with creating incident response documentation and security reports. Support compliance efforts and basic risk assessments aligned with industry standards. Learn about network security concepts, including firewalls … methodologies. What You'll Gain Hands-on exposure to real-world cybersecurity operations and defensive strategies. Practical experience with vulnerability assessment, security monitoring, and incident response. 1:1 mentorship from experienced cybersecurity professionals. Internship Certificate and Letter of Recommendation upon successful completion. Opportunity for a Pre-Placement Offer ...

incidents. Help implement security best practices and policies to protect digital assets. Gain exposure to SIEM tools and security monitoring platforms. Assist with creating incident response documentation and security reports. Support compliance efforts and basic risk assessments aligned with industry standards. Learn about network security concepts, including firewalls … methodologies. What You'll Gain Hands-on exposure to real-world cybersecurity operations and defensive strategies. Practical experience with vulnerability assessment, security monitoring, and incident response. 1:1 mentorship from experienced cybersecurity professionals. Internship Certificate and Letter of Recommendation upon successful completion. Opportunity for a Pre-Placement Offer ...

incidents. Help implement security best practices and policies to protect digital assets. Gain exposure to SIEM tools and security monitoring platforms. Assist with creating incident response documentation and security reports. Support compliance efforts and basic risk assessments aligned with industry standards. Learn about network security concepts, including firewalls … methodologies. What You'll Gain Hands-on exposure to real-world cybersecurity operations and defensive strategies. Practical experience with vulnerability assessment, security monitoring, and incident response. 1:1 mentorship from experienced cybersecurity professionals. Internship Certificate and Letter of Recommendation upon successful completion. Opportunity for a Pre-Placement Offer ...

incidents. Help implement security best practices and policies to protect digital assets. Gain exposure to SIEM tools and security monitoring platforms. Assist with creating incident response documentation and security reports. Support compliance efforts and basic risk assessments aligned with industry standards. Learn about network security concepts, including firewalls … methodologies. What You'll Gain Hands-on exposure to real-world cybersecurity operations and defensive strategies. Practical experience with vulnerability assessment, security monitoring, and incident response. 1:1 mentorship from experienced cybersecurity professionals. Internship Certificate and Letter of Recommendation upon successful completion. Opportunity for a Pre-Placement Offer ...

Benchmarks, EU AI Act, GDPR) and adapt processes accordingly. Operational Security Oversee day-to-day security operations, including vulnerability management, access reviews, and incident response readiness. Provide insights and triage signals from security tooling (SAST, DAST, dependency scanning, SIEM). Work hands-on to perform internal security assessments ...

Benchmarks, EU AI Act, GDPR) and adapt processes accordingly. Operational Security Oversee day-to-day security operations, including vulnerability management, access reviews, and incident response readiness. Provide insights and triage signals from security tooling (SAST, DAST, dependency scanning, SIEM). Work hands-on to perform internal security assessments ...

Benchmarks, EU AI Act, GDPR) and adapt processes accordingly. Operational Security Oversee day-to-day security operations, including vulnerability management, access reviews, and incident response readiness. Provide insights and triage signals from security tooling (SAST, DAST, dependency scanning, SIEM). Work hands-on to perform internal security assessments ...

Benchmarks, EU AI Act, GDPR) and adapt processes accordingly. Operational Security Oversee day-to-day security operations, including vulnerability management, access reviews, and incident response readiness. Provide insights and triage signals from security tooling (SAST, DAST, dependency scanning, SIEM). Work hands-on to perform internal security assessments ...

services, high-density deployments, extensive interconnection ecosystems, and 24/7 operational demands. This role oversees facilities operations, engineering/M&E teams, and incident management processes while ensuring excellence in service delivery and compliance with strict availability, safety, and security standards. Key Responsibilities Operational Leadership Oversee … Infrastructure & Risk Management Ensure all critical systems are maintained to world-class standards, following rigorous preventive and corrective maintenance programmes. Lead root-cause analysis, incident response, and post-incident reviews for all operational events. Maintain operational risk registers, capacity planning, and resilience strategies. Governance, Compliance & Standards Uphold ...

environment. This SOC places a strong emphasis on development, with clear progression pathways into Threat Intelligence, SOC Engineering, Professional Services, Senior SOC roles, and Incident Response. Key Responsibilities Detect & Investigate Monitor and triage alerts across SIEM, EDR/XDR, email, and web security platforms. Investigate suspicious activity and assess ...

Lead SOC Analyst/Incident Responder required by Harrington Starr's boutique financial services organisation. This newly created role will give the new hire the opportunity to take ownership of the incident management process whilst being the POC for any major incidents. The role will also play … cyber operations function. The role is London based. On a day-to-day basis the role will include: Triaging security incidents SIEM monitoring for incident investigations/for the development of monitoring dashboards. Use of playbooks, on-line resources and threat intelligence to enhance attack detection Creation ...

timely remediation. Manage and maintain LogicMonitor for cloud platform monitoring: Create and update logicmodules Configure alert rules and escalation chains Manage ServiceNow integration for incident handling Build and maintain dashboards Optimize alerting to prevent alert storms and missed alerts Provide support for ITHC coordination, access provisioning, and post-engagement … manage Workbooks Configure Azure Policies for security posture Implement regulatory compliance templates Hands-on experience with LogicMonitor and ServiceNow integrations Proven ability to lead incident response and vulnerability remediation efforts Nice-to-Have Skills: Familiarity with multi-cloud environments (AWS, GCP) Experience in coordinating ITHC assessments and managing ...

timely remediation. Manage and maintain LogicMonitor for cloud platform monitoring: Create and update logicmodules Configure alert rules and escalation chains Manage ServiceNow integration for incident handling Build and maintain dashboards Optimize alerting to prevent alert storms and missed alerts Provide support for ITHC coordination, access provisioning, and post-engagement … manage Workbooks Configure Azure Policies for security posture Implement regulatory compliance templates Hands-on experience with LogicMonitor and ServiceNow integrations Proven ability to lead incident response and vulnerability remediation efforts Nice-to-Have Skills: Familiarity with multi-cloud environments (AWS, GCP) Experience in coordinating ITHC assessments and managing ...