101 to 125 of 650 Incident Response Jobs in the UK

resilient digital world. You will act as a critical liaison between client stakeholders and internal operational teams, ensuring the delivery of world-class cyber security services. You'll drive incident response coordination, lead vulnerability management efforts, and ensure service excellence through strategic oversight and hands-on technical engagement. What You'll Be Doing Serve as the key point … of contact and escalation for clients across SOC services. Coordinate incident response activities, leading investigation, containment, and remediation alongside technical teams. Manage post-incident reporting and continuous service improvement initiatives. Support compliance with SLAs and ensure services meet contractual, operational, and quality standards. Lead service reviews and present performance reports to clients (weekly/monthly). Oversee … of experience in technical support for SOC or Cyber Security operations. 5+ years of vulnerability management experience, with demonstrable risk-based prioritisation skills. Proven leadership in high-pressure, crisis-response situations. Strong client relationship management and stakeholder engagement skills. In-depth understanding of incident response frameworks and operational delivery. Experience managing IDS/IPS technologies and security More ❯

resilient digital world. You will act as a critical liaison between client stakeholders and internal operational teams, ensuring the delivery of world-class cyber security services. You'll drive incident response coordination, lead vulnerability management efforts, and ensure service excellence through strategic oversight and hands-on technical engagement. What You'll Be Doing Serve as the key point … of contact and escalation for clients across SOC services. Coordinate incident response activities, leading investigation, containment, and remediation alongside technical teams. Manage post-incident reporting and continuous service improvement initiatives. Support compliance with SLAs and ensure services meet contractual, operational, and quality standards. Lead service reviews and present performance reports to clients (weekly/monthly). Oversee … of experience in technical support for SOC or Cyber Security operations. 5+ years of vulnerability management experience, with demonstrable risk-based prioritisation skills. Proven leadership in high-pressure, crisis-response situations. Strong client relationship management and stakeholder engagement skills. In-depth understanding of incident response frameworks and operational delivery. Experience managing IDS/IPS technologies and security More ❯

resilient digital world. You will act as a critical liaison between client stakeholders and internal operational teams, ensuring the delivery of world-class cyber security services. You'll drive incident response coordination, lead vulnerability management efforts, and ensure service excellence through strategic oversight and hands-on technical engagement. What You'll Be Doing Serve as the key point … of contact and escalation for clients across SOC services. Coordinate incident response activities, leading investigation, containment, and remediation alongside technical teams. Manage post-incident reporting and continuous service improvement initiatives. Support compliance with SLAs and ensure services meet contractual, operational, and quality standards. Lead service reviews and present performance reports to clients (weekly/monthly). Oversee … of experience in technical support for SOC or Cyber Security operations. 5+ years of vulnerability management experience, with demonstrable risk-based prioritisation skills. Proven leadership in high-pressure, crisis-response situations. Strong client relationship management and stakeholder engagement skills. In-depth understanding of incident response frameworks and operational delivery. Experience managing IDS/IPS technologies and security More ❯

resilient digital world. You will act as a critical liaison between client stakeholders and internal operational teams, ensuring the delivery of world-class cyber security services. You'll drive incident response coordination, lead vulnerability management efforts, and ensure service excellence through strategic oversight and hands-on technical engagement. What You'll Be Doing Serve as the key point … of contact and escalation for clients across SOC services. Coordinate incident response activities, leading investigation, containment, and remediation alongside technical teams. Manage post-incident reporting and continuous service improvement initiatives. Support compliance with SLAs and ensure services meet contractual, operational, and quality standards. Lead service reviews and present performance reports to clients (weekly/monthly). Oversee … of experience in technical support for SOC or Cyber Security operations. 5+ years of vulnerability management experience, with demonstrable risk-based prioritisation skills. Proven leadership in high-pressure, crisis-response situations. Strong client relationship management and stakeholder engagement skills. In-depth understanding of incident response frameworks and operational delivery. Experience managing IDS/IPS technologies and security More ❯

resilient digital world. You will act as a critical liaison between client stakeholders and internal operational teams, ensuring the delivery of world-class cyber security services. You'll drive incident response coordination, lead vulnerability management efforts, and ensure service excellence through strategic oversight and hands-on technical engagement. What You'll Be Doing Serve as the key point … of contact and escalation for clients across SOC services. Coordinate incident response activities, leading investigation, containment, and remediation alongside technical teams. Manage post-incident reporting and continuous service improvement initiatives. Support compliance with SLAs and ensure services meet contractual, operational, and quality standards. Lead service reviews and present performance reports to clients (weekly/monthly). Oversee … of experience in technical support for SOC or Cyber Security operations. 5+ years of vulnerability management experience, with demonstrable risk-based prioritisation skills. Proven leadership in high-pressure, crisis-response situations. Strong client relationship management and stakeholder engagement skills. In-depth understanding of incident response frameworks and operational delivery. Experience managing IDS/IPS technologies and security More ❯

Head of IT Security Incident and Threat Management - Solihull Crimson and IMI have joined forces to build IMI's new security team, and we are looking for talented individuals to join us on this exciting journey. If you are passionate about IT security and want to be part of a dynamic team that is shaping the future of security … within a successful global company, we want to hear from you! We are seeking a highly skilled and experienced Head of IT Security Incident and Threat Management to join our team. In this role, you will be responsible for leading the strategic efforts to safeguard the company's digital assets against potential threats and incidents. This role requires a … seasoned professional with a deep understanding of cybersecurity, incident response an threat management within a FTSE 100 environment. The salary on offer for this position is between £90,000 and £110,000 per annum plus benefits. Please note this role is based on site for the first 3 months followed by a hybrid working arrangement. Key Responsibilities Develop More ❯

Summary Established in 2006, CyberClan’s carefully selected team of experts are capable of solving complex cybersecurity challenges – keeping data secure and businesses running as usual. CyberClan’s Global Incident Response Teams are available 24/7/365 to leap into action, responding to all cyber-attacks with Proven defensive methodology. Our goal is to get businesses … with experience or strong interest in insurance law and claims handling. This role supports the CERT team with reviewing insurance policies, assisting with claims assessments, and contributing to breach response efforts. Ideal for someone with early in-house or private practice experience who’s ready to grow into a broader commercial legal role. This role will provide review, assessment … advise and expertise in the management of the claims process to support CyberClan’s delivery of Incident Response projects, including analysis of claims and providing recommendation for resolution of those claims. We are seeking an experienced claims professional to join our team and lend a hand in handling intricate primary and excess Cyber, Tech, and Media policies and More ❯

and ISO27001:2022. Risk Management : Lead the identification and mitigation of information security risks across all operations. Security Architecture : Oversee secure system and software design throughout the development lifecycle. Incident Response : Manage the full lifecycle of security incidents, including reporting to relevant authorities. Awareness & Training : Drive a strong security culture through staff training and awareness initiatives. Regulatory Compliance … Deep understanding of secure SDLC and embedding security into product and system architecture. Risk Management : Expertise in building and managing security risk frameworks using methodologies like OCTAVE or FAIR. Incident Response : Hands-on experience leading incident response, including regulatory reporting and crisis management. Policy & Governance : Skilled in developing and enforcing comprehensive security policies and governance structures. More ❯

and ISO27001:2022. Risk Management : Lead the identification and mitigation of information security risks across all operations. Security Architecture : Oversee secure system and software design throughout the development lifecycle. Incident Response : Manage the full lifecycle of security incidents, including reporting to relevant authorities. Awareness & Training : Drive a strong security culture through staff training and awareness initiatives. Regulatory Compliance … Deep understanding of secure SDLC and embedding security into product and system architecture. Risk Management : Expertise in building and managing security risk frameworks using methodologies like OCTAVE or FAIR. Incident Response : Hands-on experience leading incident response, including regulatory reporting and crisis management. Policy & Governance : Skilled in developing and enforcing comprehensive security policies and governance structures. More ❯

and ISO27001:2022. Risk Management : Lead the identification and mitigation of information security risks across all operations. Security Architecture : Oversee secure system and software design throughout the development lifecycle. Incident Response : Manage the full lifecycle of security incidents, including reporting to relevant authorities. Awareness & Training : Drive a strong security culture through staff training and awareness initiatives. Regulatory Compliance … Deep understanding of secure SDLC and embedding security into product and system architecture. Risk Management : Expertise in building and managing security risk frameworks using methodologies like OCTAVE or FAIR. Incident Response : Hands-on experience leading incident response, including regulatory reporting and crisis management. Policy & Governance : Skilled in developing and enforcing comprehensive security policies and governance structures. More ❯

advanced cyber defences that reduce risk with quantifiable results. We’re comprised of top talent from private industry, government, intelligence, and law enforcement who are specialists in threat detection, incident response, digital forensics, offensive security, risk management, and cyber resilience. As a subsidiary of specialty insurance giant, Beazley Insurance, we’ve been at the forefront of cyber insurance … management and breach response activities for business clients in the US, UK, and Europe since 2017. As Beazley Security, the company will have an expanded scope, leveraging nearly two decades of cyber incident experience, a strong services division, and a business strategy focused on growth, to realize our goals and deliver benefits for clients. As a company, we … best practices. Responsibilities: Evaluate and recommend security strategy, roadmaps, processes, technologies and solutions to address specific client needs. Collaborate with clients to design and implement risk mitigation strategies and incident response plans. Provide expert guidance to clients on frameworks (GDPR, NIST, ISO, HIPAA) and related strategies, with a focus on cyber security. Conduct thorough assessments of clients' existing More ❯

is a pivotal opportunity for an experienced Senior Consultant to lead large-scale cybersecurity projects across a diverse client base. The role focuses on cyber resilience, including threat intelligence, incident response, risk management, compliance, and security architecture. You will act as a trusted advisor, delivering tailored solutions that help clients enhance their cyber posture and protect their critical … the end-to-end delivery of cyber resilience projects, ensuring solutions are scalable, secure, and aligned with client goals Design and implement advanced cyber resilience solutions and frameworks Manage incident response, guiding teams through breach containment and recovery Engage directly with clients to identify requirements, provide expertise, and drive successful outcomes Facilitate Agile ceremonies to support efficient project … members, encouraging skill development and knowledge sharing Contribute to business development by producing high-quality proposals and identifying growth opportunities Skills & Experience ? Extensive expertise in threat intelligence, risk management, incident response, compliance (e.g. GDPR, ISO 27001), and security architecture ? Proficiency with tools such as Rapid7 InsightIDR/InsightVM, SentinelOne, Fortinet, Netskope, SOAR automation (Rapid7 InsightConnect), and cloud security More ❯

strategy, ensuring robust protection for our IT systems, OT infrastructure, and critical business data. Reporting directly to the Senior European IT Director, you’ll develop and implement policies, lead incident response, ensure compliance with industry standards, and promote best practice in technology risk management. Key Responsibilities: Develop, implement, and maintain a robust cybersecurity strategy and governance framework aligned … with business and regulatory requirements. Oversee technical security controls including firewalls, IDS/IPS, SIEM, IAM, endpoint protection, and cloud security (Azure, AWS). Lead threat detection, incident response, and recovery, ensuring minimal business disruption. Manage patching processes, AI-driven email intelligence tools, and network security across internal and customer-facing systems. Conduct risk assessments, penetration testing, and … plans related to cybersecurity. Act as the primary contact for cybersecurity vendors, regulators, auditors, and third-party assessments. About You: Proven track record in cybersecurity management, including threat detection, incident response, and vulnerability management. Strong knowledge of security frameworks (ISO 27001, NIST, CIS Controls) and regulatory compliance requirements (GDPR, NIS2). Hands-on expertise with firewalls, SIEM, IAM More ❯

strategy, ensuring robust protection for our IT systems, OT infrastructure, and critical business data. Reporting directly to the Senior European IT Director, you’ll develop and implement policies, lead incident response, ensure compliance with industry standards, and promote best practice in technology risk management. Key Responsibilities: Develop, implement, and maintain a robust cybersecurity strategy and governance framework aligned … with business and regulatory requirements. Oversee technical security controls including firewalls, IDS/IPS, SIEM, IAM, endpoint protection, and cloud security (Azure, AWS). Lead threat detection, incident response, and recovery, ensuring minimal business disruption. Manage patching processes, AI-driven email intelligence tools, and network security across internal and customer-facing systems. Conduct risk assessments, penetration testing, and … plans related to cybersecurity. Act as the primary contact for cybersecurity vendors, regulators, auditors, and third-party assessments. About You: Proven track record in cybersecurity management, including threat detection, incident response, and vulnerability management. Strong knowledge of security frameworks (ISO 27001, NIST, CIS Controls) and regulatory compliance requirements (GDPR, NIS2). Hands-on expertise with firewalls, SIEM, IAM More ❯

strategy, ensuring robust protection for our IT systems, OT infrastructure, and critical business data. Reporting directly to the Senior European IT Director, you’ll develop and implement policies, lead incident response, ensure compliance with industry standards, and promote best practice in technology risk management. Key Responsibilities: Develop, implement, and maintain a robust cybersecurity strategy and governance framework aligned … with business and regulatory requirements. Oversee technical security controls including firewalls, IDS/IPS, SIEM, IAM, endpoint protection, and cloud security (Azure, AWS). Lead threat detection, incident response, and recovery, ensuring minimal business disruption. Manage patching processes, AI-driven email intelligence tools, and network security across internal and customer-facing systems. Conduct risk assessments, penetration testing, and … plans related to cybersecurity. Act as the primary contact for cybersecurity vendors, regulators, auditors, and third-party assessments. About You: Proven track record in cybersecurity management, including threat detection, incident response, and vulnerability management. Strong knowledge of security frameworks (ISO 27001, NIST, CIS Controls) and regulatory compliance requirements (GDPR, NIS2). Hands-on expertise with firewalls, SIEM, IAM More ❯

strategy, ensuring robust protection for our IT systems, OT infrastructure, and critical business data. Reporting directly to the Senior European IT Director, you’ll develop and implement policies, lead incident response, ensure compliance with industry standards, and promote best practice in technology risk management. Key Responsibilities: Develop, implement, and maintain a robust cybersecurity strategy and governance framework aligned … with business and regulatory requirements. Oversee technical security controls including firewalls, IDS/IPS, SIEM, IAM, endpoint protection, and cloud security (Azure, AWS). Lead threat detection, incident response, and recovery, ensuring minimal business disruption. Manage patching processes, AI-driven email intelligence tools, and network security across internal and customer-facing systems. Conduct risk assessments, penetration testing, and … plans related to cybersecurity. Act as the primary contact for cybersecurity vendors, regulators, auditors, and third-party assessments. About You: Proven track record in cybersecurity management, including threat detection, incident response, and vulnerability management. Strong knowledge of security frameworks (ISO 27001, NIST, CIS Controls) and regulatory compliance requirements (GDPR, NIS2). Hands-on expertise with firewalls, SIEM, IAM More ❯

strategy, ensuring robust protection for our IT systems, OT infrastructure, and critical business data. Reporting directly to the Senior European IT Director, you’ll develop and implement policies, lead incident response, ensure compliance with industry standards, and promote best practice in technology risk management. Key Responsibilities: Develop, implement, and maintain a robust cybersecurity strategy and governance framework aligned … with business and regulatory requirements. Oversee technical security controls including firewalls, IDS/IPS, SIEM, IAM, endpoint protection, and cloud security (Azure, AWS). Lead threat detection, incident response, and recovery, ensuring minimal business disruption. Manage patching processes, AI-driven email intelligence tools, and network security across internal and customer-facing systems. Conduct risk assessments, penetration testing, and … plans related to cybersecurity. Act as the primary contact for cybersecurity vendors, regulators, auditors, and third-party assessments. About You: Proven track record in cybersecurity management, including threat detection, incident response, and vulnerability management. Strong knowledge of security frameworks (ISO 27001, NIST, CIS Controls) and regulatory compliance requirements (GDPR, NIS2). Hands-on expertise with firewalls, SIEM, IAM More ❯

the remit of proactively driving development of the cyber security capability in line with the evolving threat landscape. This includes; vulnerability management, access control, security platform engineering, detection and response activities. Coordinate with offensive security personnel to improve security posture based on Red/Purple team campaign findings. The role requires a self-starter, capable of taking the initiative … Maintain knowledge of current ATP TTPs Maintain knowledge of security tool landscape Vulnerability identification and remediation Penetration test report remediation Privileged access management Red/Purple offensive security activities Incident response and forensics Proactively identify opportunities for control improvements Develop strong relationships with stakeholders across the business Provide security tooling metrics Review and provide security input on architecture … projects Security platform engineering and projects Experience/Competences Essential Experience implementing vulnerability management, SIEM, PAM, IDS/IPS, EDR, DLP, CNAPP and AV platforms Intermediate level knowledge of incident response processes for OS and network level events Comfortable with Windows and Linux operating systems Solid knowledge of networking, active directory and web applications Comfortable with at least More ❯

day-to-day operations of the Data Protection Team, including workload management, team stand-ups, and quality assurance. Manage key privacy processes, including DPIAs, ROPAs, client rights requests, and incident response procedures. Provide expert advice to business teams, helping embed privacy by design into strategic initiatives and projects. Act as a point of contact for senior and executive … initiatives and assess compliance with privacy controls Review and approve DPIAs, and oversee the accuracy of ROPAs Provide expert guidance on GDPR, data sharing, retention, and lawful processing Support incident response by evaluating privacy risks and coordinating follow-up actions Conduct research on regulatory developments and update reports and committee packs Collaborate with Information Security to align on … organised, and outcome-focused Experience Proven experiencedata protection role, t ypically 8-10+ years Experience leading a data protection function or team Track record managing DPIAs, ROPAs, and incident response Strong engagement with senior stakeholders and governance bodies Familiarity with integrating data protection into enterprise-level initiatives Company Benefits A Competitive Salary, Pension Scheme and Life Assurance More ❯

IT security strategy. Key Responsibilities Monitor, triage, and investigate alerts generated by SIEM and security monitoring platforms. Conduct log analysis and threat hunting to proactively identify suspicious activity. Support incident response efforts including containment, investigation, and remediation. Ensure security processes align with Cyber Essentials and other best practice frameworks. Optimise SIEM tooling for enhanced visibility and detection capability. … in a security operations role. Strong hands-on knowledge of SIEM platforms (e.g., Splunk, Sentinel, QRadar, or similar). Understanding of Cyber Essentials and broader security standards. Knowledge of incident response, intrusion detection, and threat analysis. Familiarity with endpoint security, IDS/IPS, firewalls, and vulnerability management. Strong problem-solving skills and a proactive, analytical mindset. Comfortable working … depending on experience) Benefits: Competitive package including pension, healthcare, and training opportunities Onsite role within a collaborative SOC environment Exposure to advanced security tooling and real-world incident response 👉 If you’re passionate about cyber defence and want to advance your career as part of a dedicated SOC team in Manchester , we’d love to hear from you. More ❯

IT security strategy. Key Responsibilities Monitor, triage, and investigate alerts generated by SIEM and security monitoring platforms. Conduct log analysis and threat hunting to proactively identify suspicious activity. Support incident response efforts including containment, investigation, and remediation. Ensure security processes align with Cyber Essentials and other best practice frameworks. Optimise SIEM tooling for enhanced visibility and detection capability. … in a security operations role. Strong hands-on knowledge of SIEM platforms (e.g., Splunk, Sentinel, QRadar, or similar). Understanding of Cyber Essentials and broader security standards. Knowledge of incident response, intrusion detection, and threat analysis. Familiarity with endpoint security, IDS/IPS, firewalls, and vulnerability management. Strong problem-solving skills and a proactive, analytical mindset. Comfortable working … depending on experience) Benefits: Competitive package including pension, healthcare, and training opportunities Onsite role within a collaborative SOC environment Exposure to advanced security tooling and real-world incident response 👉 If you’re passionate about cyber defence and want to advance your career as part of a dedicated SOC team in Manchester , we’d love to hear from you. More ❯

IT security strategy. Key Responsibilities Monitor, triage, and investigate alerts generated by SIEM and security monitoring platforms. Conduct log analysis and threat hunting to proactively identify suspicious activity. Support incident response efforts including containment, investigation, and remediation. Ensure security processes align with Cyber Essentials and other best practice frameworks. Optimise SIEM tooling for enhanced visibility and detection capability. … in a security operations role. Strong hands-on knowledge of SIEM platforms (e.g., Splunk, Sentinel, QRadar, or similar). Understanding of Cyber Essentials and broader security standards. Knowledge of incident response, intrusion detection, and threat analysis. Familiarity with endpoint security, IDS/IPS, firewalls, and vulnerability management. Strong problem-solving skills and a proactive, analytical mindset. Comfortable working … depending on experience) Benefits: Competitive package including pension, healthcare, and training opportunities Onsite role within a collaborative SOC environment Exposure to advanced security tooling and real-world incident response 👉 If you’re passionate about cyber defence and want to advance your career as part of a dedicated SOC team in Manchester , we’d love to hear from you. More ❯

the skills or experience we're looking for, please go ahead and apply. We'd love to hear from you! About the Role We are seeking a highly capable Incident Management Specialist to support the end-to-end incident management lifecycle and provide structured, forward-looking insights through systematic horizon scanning. This dual-function role is integral to … maintaining operational resilience by coordinating effective incident response activities and identifying emerging risks and trends that may affect HL's strategic and operational objectives. Salary Offering circa £40k-£45k dependent on experience, plus bonus and additional benefits. What you'll be doing Support the Incident Management Lead throughout the full incident lifecycle, including coordination of response efforts and maintaining detailed documentation. Organise and facilitate incident-related meetings, ensuring accurate recording of minutes, action items, and follow-ups. Effectively use platforms such as Everbridge, MetricStream, and CL360 for incident communication, data analysis, and reporting. Lead structured post-incident reviews to capture lessons learned, define improvement actions, and track timely resolution of agreed actions. More ❯

Technology) assets safe from internal and external threats. Accountable for ensuring the confidentiality, integrity, and availability of company information resources by implementing and maintaining security controls, performing comprehensive security incident response, engaging in proactive threat assessment, mitigation planning, incident trend analysis, and security architecture review. Accountable for gap analysis and regular audits of OT environments to ensure … industry security standards. Accountable for complex and speedy troubleshooting to minimise any network security threats to the company. Provide 2nd line IT support when and where required. IT Security Incident Management Coordinate and carry out the security incident management lifecycle including preparation, detection and analysis, containment, eradication and recovery. Coordinate incident handling and contingency planning activities. Incorporate … lessons learned from ongoing incident handling activities into incident response procedures, training, and testing and implement resulting changes accordingly. Manage escalations in or out of normal business hours liaising with global internal and external service providers. Security Operations Daily support and security auditing of the firewall landscape. Support and audit remote access to internal company resources. Create More ❯

Technology) assets safe from internal and external threats. Accountable for ensuring the confidentiality, integrity, and availability of company information resources by implementing and maintaining security controls, performing comprehensive security incident response, engaging in proactive threat assessment, mitigation planning, incident trend analysis, and security architecture review. Accountable for gap analysis and regular audits of OT environments to ensure … industry security standards. Accountable for complex and speedy troubleshooting to minimise any network security threats to the company. Provide 2nd line IT support when and where required. IT Security Incident Management Coordinate and carry out the security incident management lifecycle including preparation, detection and analysis, containment, eradication and recovery. Coordinate incident handling and contingency planning activities. Incorporate … lessons learned from ongoing incident handling activities into incident response procedures, training, and testing and implement resulting changes accordingly. Manage escalations – in or out of normal business hours liaising with global internal and external service providers. Security Operations Daily support and security auditing of the firewall landscape. Support and audit remote access to internal company resources. Create More ❯