101 to 125 of 326 Incident Response Jobs in the UK

pragmatic cyber security strategy aligned to business priorities, whilst establishing and maintaining security policies, standards, and governance frameworks. You will oversee security operations, including incident detection, response, and continuous improvement, and manage key third-party security service providers, ensuring performance and accountability. Risk management activities will … following experience: Proven interim experience in a Cyber Security Manager/Lead/Security Consultant role. Strong understanding of security operations, threat detection, and incident response practices. Experience working with SIEM, EDR, and monitoring technologies in enterprise environments. Demonstrable knowledge of security frameworks, controls, and governance models. Experience ...

Senior Network Security Engineer Scotland/Hybrid Salary up to £80,000 You will own incidents end-to-end across Incident, Major Incident, Change, Problem, and Service Request workflows (ITIL-aligned), leading real-time response to live DDoS attacks and complex network events as they unfold. … cybersecurity, or infrastructure Degree in Computer Science or a related field Strong networking fundamentals TCP/IP, routing, Layer 13 troubleshooting Proven experience in incident response and customer-facing technical roles The temperament to own and resolve incidents under real pressure Excellent communication skills clear, calm, customer-ready ...

private cloud platform, ensuring systems are actively monitored, vulnerabilities are managed, and services remain secure, compliant and resilient. Key Responsibilities Security Monitoring & Response Monitor SIEM, EDR and platform telemetry. Investigate alerts and perform incident triage and escalation. Conduct structured incident response activities. Vulnerability & Patch Management Execute … Release Security Assess changes for security impact. Ensure deployments meet security requirements. Support secure-by-design implementation. Documentation & Continuous Improvement Maintain SOPs, runbooks and incident documentation. Contribute to improvement of SecOps processes and tooling. Essential Experience & Skills Experience in Security Operations or SecOps. SIEM, EDR and vulnerability management tooling ...

relationships with outsourced 24/7 SOC/MDR providers Monitor performance against SLAs and ensure proactive threat detection across cloud environments Manage security incident escalations and coordinate response activities across internal and external teams Drive value and accountability from third-party security partners Governance, Risk & Compliance … tools and data classification platforms Good understanding of cloud security (Azure/AWS) and identity protocols (OIDC, SAML, MFA/Entra ID) Experience coordinating incident response across multiple stakeholders, including external forensic teams Strong commercial awareness with the ability to link security decisions to business outcomes Excellent communication ...

focused on monitoring, analysing and responding to security threats, while driving continuous improvement across our security operations capability. Youll play a key role in incident response, threat intelligence, vulnerability management and ensuring effective use of our security tools and processes to reduce risk across the technology estate. ...

respond to security alerts and events, prioritising based on risk and impact Analyse security data to identify trends, vulnerabilities and emerging threats Support incident response activity, ensuring effective investigation and resolution Oversee vulnerability management and support patching activities, validating effectiveness through scanning and review Operate and support ...

Incident and Resilience Manager (DORA) MUST HAVE PAYMENTS Experience! UK Remote | Permanent Hiring a Incident Manager with strong DORA experience to lead operational resilience, major incident management and recovery planning within a regulated financial services environment. Key experience:* MUST DORA/Operational Resilience * Major Incident Management … Recovery* Financial Services/FinTech* ISO 22301/ISO 27001/NIST* Stakeholder & Regulatory Management This role will lead DORA implementation, resilience testing, ICT incident response, third-party risk and enterprise recovery planning across the business. High-impact role with strong visibility and ownership. Apply now for immediate ...

scalability and efficiency of SOC services. Working across SIEM, endpoint, and orchestration platforms (primarily Palo Alto XSOAR), you will reduce analyst workload, accelerate incident response, and enhance decision-making across customer environments. Key Responsibilities Automation Development – Design, build, and maintain scalable automation workflows across detection and response platforms. Integration & Orchestration – Deliver cross-platform automation enabling fast, reliable response actions. Lifecycle Management – Develop, deploy, and continuously optimise automation for performance, resilience, and coverage. Collaboration & Requirements Gathering – Work with SOC and engineering teams to identify automation opportunities. Documentation – Produce clear documentation to support delivery, troubleshooting, and continuous ...

secure solution design activities Advise on AI security risks, governance, and secure adoption of AI technologies Deliver security awareness training and workshops Assist in incident response planning and post-incident reviews Collaborate with technical and non-technical stakeholders to embed security into business processes Required Skills & Experience ...

updates Embed security within the software delivery lifecycle (DevSecOps principles) Support audits and ensure compliance with recognised frameworks (e.g., ISO 27001, Cyber Essentials) Lead incident response and root cause analysis for security and infrastructure-related events Monitoring, Reliability & Support Implement monitoring, alerting, and observability across infrastructure and applications … Knowledge of warehouse or automation systems and integrations (ERP, WMS, PLC/SCADA) Cloud experience (Azure) and containerisation (Docker, Kubernetes) Familiarity with ITIL processes (incident, change, problem management) Relevant certifications (e.g., VMware, Security+, CISSP, Terraform) Personal Attributes Strong ownership and accountability for delivering robust infrastructure solutions Pragmatic problem-solver ...

updates Embed security within the software delivery lifecycle (DevSecOps principles) Support audits and ensure compliance with recognised frameworks (e.g., ISO 27001, Cyber Essentials) Lead incident response and root cause analysis for security and infrastructure-related events Monitoring, Reliability & Support Implement monitoring, alerting, and observability across infrastructure and applications … Knowledge of warehouse or automation systems and integrations (ERP, WMS, PLC/SCADA) Cloud experience (Azure) and containerisation (Docker, Kubernetes) Familiarity with ITIL processes (incident, change, problem management) Relevant certifications (e.g., VMware, Security+, CISSP, Terraform) Personal Attributes Strong ownership and accountability for delivering robust infrastructure solutions Pragmatic problem-solver ...

technical role where youll investigate complex alerts, support threat-hunting activities, contribute to the tuning of SIEM detections, and help improve SOC processes and response playbooks. Youll also play an important role in mentoring analysts and supporting the continued development of the SOCs technical capability. Technology innovation is part … this role will continue to evolve as AI-driven detection, automation, and response capabilities are introduced. You will: Investigate, triage, and respond to security alerts across customer environments Support the tuning and maintenance of SIEM detection rules alongside senior analysts Carry out proactive threat analysis and support threat-hunting ...

collaboratively with IT, engineering, and business teams to ensure security is integrated into all stages of development and operations. Threat Management: Implement threat detection, incident response, and resilience strategies, including monitoring and analysis of security events and alerts. Regulatory Compliance: Ensure that the organization meets all regulatory ...

internal and external regulatory requirements. Performance & Monitoring Monitor DNS service health, performance, and availability. Optimize query resolution performance and latency. Implement logging, alerting, and incident response processes. Troubleshooting & Support Act as an escalation point for complex DNS and network-related issues. Conduct root cause analysis and implement preventative ...

periodic security reviews and internal control assessments. Cyber Security and Security Monitoring Oversee cyber security measures including vulnerability management, access control, security monitoring and incident detection. Ensure regular vulnerability assessments, security reviews and penetration testing are conducted. Incident Management Establish and maintain procedures for managing information security incidents. … Coordinate investigation, response and reporting of cyber security incidents. Operational Resilience Support the Branch’s operational resilience framework from an information security perspective. Participate in disaster recovery planning, cyber security exercises and resilience testing. Third-Party and Outsourcing Risk Assess information security risks associated with third-party service providers ...

load balancing Soft Skills & Collaboration: Cross-functional collaboration with architecture, developers, security, and infrastructure Agile and DevOps culture familiarity Strong documentation and communication skills Incident response and postmortem analysis Skills, Experience & Knowledge Demonstrated experience in systems engineering and cloud platforms, with a track record of successfully managing ...

rollback frequency Standardise release processes across engineering teams Implement progressive delivery practices Reliability & Observability Define and track SLIs/SLOs Enhance monitoring, alerting and incident response processes Lead post-incident reviews and root cause analysis Drive reduction of operational toil Security & Compliance Embed DevSecOps controls into pipelines … preferred) CI/CD tooling experience (GitHub Actions, GitLab CI, Jenkins) Experience operating production SaaS environments Strong observability tooling knowledge (Datadog, Prometheus, ELK etc.) Incident management and root cause analysis experience Experience in regulated or security-conscious environments is highly desirable ...

hiring a seasoned VP-Level Major Incident Manager to lead end-to-end management of high-severity technology incidents across a complex, regulated environment. You will command incidents from detection through restoration, ensure crisp executive communications, drive cross-technology recovery, and influence decisions that directly impact operational stability. What … Lead and coordinate major incidents across infrastructure, applications, middleware, cloud, EUC, network, identity, data, and third parties Establish and manage incident command structure, including team roles, bridge calls, and communications, ensuring clear ownership and rapid triage Drive restoration by coordinating technical SMEs, vendors, and operations teams; remove blockers ...

systematic approach to diagnosing complex technical issues Strong analytical skills to interpret data, identify patterns, and draw actionable conclusions Be involved in investigating incident response activities and postmortem analyses using Dynatrace, Grafana or provide insights. Has the ability to troubleshoot and resolve data quality issues on time, ensuring … using Cloud solutions such as Azure & AWS and containerized environments (Kubernetes, OpenShift) to implement cloud-native monitoring Have good knowledge of ITSM/incident management tools integration. Interacts with and influences colleagues and has working level contact with customers Applies methodical approach to issue definition and resolution Demonstrates effective ...

maintain security tooling across cloud environments Work with engineering teams to improve security, reliability, and operational resilience Implement monitoring, logging, and alerting solutions Support incident response, troubleshooting, and continuous improvement activities Contribute to automation initiatives and security-by-design practices Requirements Experience working with AWS cloud environments Hands ...

maintain security tooling across cloud environments Work with engineering teams to improve security, reliability, and operational resilience Implement monitoring, logging, and alerting solutions Support incident response, troubleshooting, and continuous improvement activities Contribute to automation initiatives and security-by-design practices Requirements Experience working with AWS cloud environments Hands ...

similar, Industry certifications such as CompTIA Security+, GIAC, CISM, CISSP or other relevant certification preferred Strong understanding of network and end point security, incident response, threat intelligence, and vulnerability management Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS Strong knowledge ...

required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS: SOC Analyst, Security Operations Centre, Microsoft Sentinel, Splunk, SIEM, Incident Response, MITRE ATT and CK, Networking, SC Clearance ...

internal and external regulatory requirements. Performance & Monitoring Monitor DNS service health, performance, and availability. Optimize query resolution performance and latency. Implement logging, alerting, and incident response processes. Troubleshooting & Support Act as an escalation point for complex DNS and network-related issues. Conduct root cause analysis and implement preventative ...

internal and external regulatory requirements. Performance & Monitoring Monitor DNS service health, performance, and availability. Optimize query resolution performance and latency. Implement logging, alerting, and incident response processes. Troubleshooting & Support Act as an escalation point for complex DNS and network-related issues. Conduct root cause analysis and implement preventative ...