101 to 125 of 306 Incident Response Jobs in the UK

standards and guidelines Implement and improve technical processes to create efficient and secure methodologies Support the management and investigation of security events including post incident reviews in conjunction with other IT teams and members of the Information Security function Develop awareness materials to ensure continuous improvements to the security … DLP, Firewalls, Open Source Filtering tools, Cloud security (Azure), IdAM (PAM on-prem/cloud), EDR, Scanning/vulnerability tools, etc. Windows Server & Networking Incident response Endpoint and network security technologies Extensive knowledge of IT Security and Governance best practices and industry standards, including, but not limited to more »

we offer a complete end-to-end security services covering our clients’ security from every angle. Our services include Managed Security, Cyber Security Testing, Incident Response, Security Integration, PCI Compliance and Cyber Risk & Assurance services. What sets Integrity360 apart is our excellent team of people that drive the … robust, scalable and innovative solutions to our customers. Responsibilities Monitor security logs and alerts from various sources, including intrusion detection systems, Endpoint Detection and Response (EDR) systems, and security information and event management (SIEM) tools. Investigate and analyse security incidents whether raised by our customer or internally to identify … root cause and develop appropriate mitigation strategies. Execute security response actions, including full remote remediation of endpoints. Perform threat hunting and proactive analysis to identify potential security risks and vulnerabilities. Collaborate with cross-functional teams, including our customers internal operations, service desk and partners Mentor and provide guidance to more »

alerts - Analyse and respond to security events - Conduct root cause analysis and forensic investigations - Collaborate with IT and security teams to resolve incidents - Maintain incident response procedures and documentation Desirable Skills: - Experience with Microsoft technologies (Windows Server, Active Directory, Azure) - Knowledge of Elasticsearch and Linux - Familiarity with SIEM more »

alerts - Analyse and respond to security events - Conduct root cause analysis and forensic investigations - Collaborate with IT and security teams to resolve incidents - Maintain incident response procedures and documentation Desirable Skills: - Experience with Microsoft technologies (Windows Server, Active Directory, Azure) - Knowledge of Elasticsearch and Linux - Familiarity with SIEM more »

root cause analyses, and monitoring the implementation of corrective measures.Assess and contribute to the ongoing development of documentation concerning cloud security policies, procedures, and incident response plans, including the delivery of management KPIs.Assist in creating and implementing security controls that align with regulatory requirements and business goals.Engage in more »

and digital deployments. Continuously adjust cyber capabilities based on evolving cyber threat landscapes. Support and potentially lead NOC/SOC operational teams. Oversee Cyber incident response, conduct post-incident reviews (PIRs), root-cause analysis (RCAs), and implement mitigating solutions. Manage capacity for cyber platforms proactively. Design data more »

C&I SIR practice works with NCC Group clients to deliver prioritised programs of security improvements: in close collaboration with NCC Group security audit, Incident Response, Penetration and Red Teams. Security Consultants play key roles in these client assignments: as recognised security experts they drive change, as well … and their service providers on changes they will make. Key to this role is assessing and enhancing pre-existing risk and security information including incident reports, red team findings, penetration tests and security audits, augmenting those where appropriate with additional security reviews. As part of a project team, they … client Security Posture is materially impacted in a positive manner over the duration of an engagement. Assessing pre-existing risk and security information including incident reports, red team findings, penetration tests and security audits, augmenting those where appropriate with additional security reviews Providing technical input for work plans and more »

understanding of Azure Sentinel and Microsoft Defender. Key Responsibilities: Monitor security events and alerts using Azure Sentinel and Microsoft Defender, ensuring timely and effective response to potential threats. Mentor L1/L2 SOC Analysts whilst acting as their technical escalation point. Analyze and investigate security incidents, providing detailed reports … configurations, and policies within Azure Sentinel and Microsoft Defender. Collaborate with cross-functional teams to develop and enhance security strategies, including threat hunting and incident response procedures. Stay updated with emerging security threats, vulnerabilities, and industry best practices to proactively address potential risks. Requirements: Proven experience as a more »

risks on key systems, and collaborating with internal teams, and third parties, to agree, implement and review security controls. You would be contributing to incident response efforts. You’ll be Involved In: Policy Development and implementation: Risk Management Third Part management Incident Preparation Compliance Monitoring and Reporting more »

policies and procedures to protect the confidentiality, integrity, and availability of the organization's data and systems. They also build and manage the security incident response team and coordinate with other departments and external stakeholders to ensure compliance with security standards and regulations at global scale. Job Description more »

to protect the businesses internal/customer data in line with current legislations. Developing and embedding mature processes that focus on Risk Management and incident response. Carry out risk assessments and conducting frequent GDPR compliance audits. Work with stakeholders to develop Business Continuity and Disaster Recovery plans across the more »

to protect the businesses internal/customer data in line with current legislations. Developing and embedding mature processes that focus on Risk Management and incident response. Carry out risk assessments and conducting frequent GDPR compliance audits. Work with stakeholders to develop Business Continuity and Disaster Recovery plans across the more »

Cloud Architecture knowledge: GCP - 2+ years Total Experience Cloud – 6+ years Must have Efficient in SRE Best Practices – Dashboards (GCP-Predefined/Custom), Alerting, Incident Generation (Historical and Real-Time)- Must Have Knowledge/Implementation of KPI’s, SLA/SLO/SLI, Error Budget, Custom Metric Creation - Must … Have Incident Management: Experience with incident response and management. Troubleshooting Skills: Ability to diagnose and resolve complex system issues efficiently, Error Handling - Must Have Hybrid/Multi Cloud Connectivity Implementation- Good to Have Auto-remediation/Auto-Healing of services - Must Have Instances, Networks, Disks and Images more »

your communication skills must be very strong. You will have an excellent understanding of ITIL methodologies and demonstrable experience of working on IT Requests, Incident management, Change Management and Problem Solving. You will utilize ServiceNow and Manage Engine as the primary IT Service Management (ITSM) solution to efficiently manage … software licensing terms, license models and enterprise maintenance and support contracts. Work under limited supervision, both independently and within a team environment. Proficient in incident management tools and IT service management platforms with a focus on global incident response (e.g., ITSM, Jira, ServiceNow). Strong analytical and more »

your communication skills must be very strong. You will have an excellent understanding of ITIL methodologies and demonstrable experience of working on IT Requests, Incident management, Change Management and Problem Solving. You will utilize ServiceNow and Manage Engine as the primary IT Service Management (ITSM) solution to efficiently manage … software licensing terms, license models and enterprise maintenance and support contracts. Work under limited supervision, both independently and within a team environment. Proficient in incident management tools and IT service management platforms with a focus on global incident response (e.g., ITSM, Jira, ServiceNow). Strong analytical and more »

Awareness. Travel to other Ascential offices may be required from time to time which provides opportunity for international travel. Your team also carries out incident triage and investigation including malware analysis and some digital forensic work. If these are not areas that you are already experienced in, then this … a motivated network of Security Champions in tools and processes used by the Information Security team, allowing them to provide effective 24-hour first response Running product evaluations to select new commercial and open source Information Security solutions Creating and delivering engaging cyber security awareness content Running regular internal … auditing activity to discover vulnerabilities, threats, and breach of company security policy Shaping and executing our Cyber Incident Response process when necessary Your Experience Minimum three years experience in an Information Security role Experience of working in an Enterprise IT team or a managed hosting environment/ISP more »

and a solid business acumen to deal with other senior stakeholders across the business. This role would suit those with an extensive history in Incident Response , Threat Hunting and Threat Intelligence services who are used to working in a high-pressure environment and managing geographically dispersed teams across … responsibilities will be: Manage and develop a global team of L3 Threat Hunting, Forensic & Threat Intelligence specialists, providing expert assistance during a major cyber incident and for routine investigations escalated by the SOC. Proactively analyse the WTW estate in a threat-led manner looking for signs of compromise, acting more »

include, but are not limited to: Design, develop, and maintain Python-based integrations and automation solutions within Google Chronicle, enhancing threat intelligence, detection, and incident response capabilities. Lead the strategic integration of Google Chronicle within Fortrea's cybersecurity infrastructure, optimizing its utility for security analytics and operations. Direct … applications in threat intelligence, with knowledge of how to conduct analyses within SIEM (Security Information and Event Management) and SOAR (Security Orchestration, Automation, and Response) platforms. Strong foundation in cybersecurity principles, practices, and technologies, including data management specific to cybersecurity applications. Relevant certifications such as CISSP, GCIH, or Google more »

business ensuring security and monitoring requirements are determined and implemented through onboarding or continuous improvement activities Qualifications & Experience: Professional experience of working in an Incident Response Team or a similar environment Knowledge of SIEM platforms such as Azure Sentinel, Microsoft Defender, Splunk, ArcSight, QRadar, or LogRhythm. Strong analytical more »

systems and infrastructure. Investigate and mitigate newly identified cyber security vulnerabilities. Coordinate with stakeholders on cyber security patching and vulnerability management. Participate in major incident response when necessary. Perform proactive threat hunting for emerging cyber threats. Maintain and optimize TVM tool performance and dashboards. Ensure compliance with industry more »

verbal communication skills Experience configuring and deploying Microsoft technologies such as Microsoft Defender and Azure Experience using and developing playbooks for SOC processes and incident response Strong understanding of IT & networking fundamentals (eg TCP, DNS, TLS) Able to work effectively in a team as well as confident working more »

risks. Helping develop a security culture within the business. Ensure timely delivery of actionable threat intelligence across the organisation, including key stakeholders; Security Operations, Incident Response, Vulnerability Management, Security Leadership, Fraud Prevention and Industry intelligence communities. Act as the point of escalation and support for Threat Intelligence analysts more »

UK Role Responsibilities 7-10 years experience in site reliability engineering, with at least 3 years in a leadership role. Maintain production stability through: Incident Response, DR planning & roleplay Performance monitoring & healing Security monitoring & remediation/response Infrastructure hardening (e.g. security baselining & enhancements) Infrastructure maintenance (e.g. serverless more »

partners Review and update IT Security procedures to reflect best practice and mitigate current and emerging threats Assigned ownership of IT Security Monitoring and Response related FRB and Internal Audit finding(s) and effective/timely resolution with IT Security Maintain relationships with third-party IT security vendors and … securing systems, networks and infrastructure; operational support, including on-call experience.3+ years’ experience including combination of intrusion detection, malware analysis, forensics and/or incident response, particularly in cloud environments. Working knowledge of cloud environments such as AWS. Monitor, tune and develop technical IT Security controls and frameworks … to ensure appropriate preparation, monitoring and response to threats Ensure a risk-based approach to IT Security is adopted in every part of the business and solutions Work with members of the IT Security team to help design, implement and maintain security Prepare for, identify (hunt) and remediate cyber more »

Development Lifecycle (SSDLC), Compliance as Code, Security Orchestration, Container Security, Microservices Security, Threat Modelling, Secure Configuration Management, Secure DevOps Practices, Security Scanning & Testing, Security Incident Response, Identity & Access Management (IAM), Secure Cloud Environments, Secure Code Reviews Nature: Permanent, Full Time Hours: Monday - Friday 09.00 -17.30 Gross pay … + 20% bonus, Health Care, Discounts & other benefits Key Activity: * Develop & Deploy Security Protocols * Perform Security & Operational Evaluations * Integrate Security & Operations within DevSecOps * Manage Incident Responses * Enhance Operational Effectiveness * Coordinate on Code Security & Operational Streamlining * Promote DevSecOps Principles * Address Security & Operational Incidents * Implement DevSecOps Enhancements Overview: As a DevSecOps … testing & vulnerability scanning within our CI/CD pipelines. * Conduct regular security assessments & audits to identify & mitigate risks. * Respond to security incidents & conduct post-incident analysis to prevent future occurrences * Stay up to date with the latest security threats, vulnerabilities, & industry best practices. * Collaborate with DevSecOps Product Owner, Run more »