126 to 150 of 867 Incident Response Jobs in the UK

helping to triage and remediate findings. Security Champion Enablement: Collaborate with engineering teams to build security awareness and develop a network of Security Champions. Incident & Response Readiness: Support Smarsh SOC and security incident response, including root cause analysis and post-mortem reviews for your product(s More ❯

security services (WAF, Shield, GuardDuty, Inspector) to safeguard cloud resources. Perform regular vulnerability assessments and implement proactive measures to mitigate security risks. Lead security incident response, conduct root cause analysis, and deploy corrective actions. Automate security tasks using AWS tools and scripting (Python, Bash, CloudFormation). Manage security … Python or Bash. Knowledge of compliance standards (SOC 2, ISO 27001, GDPR, PCI-DSS) and experience ensuring compliance in AWS environments. Experience with security incident response, monitoring, and post-incident remediation. Ability to assess and mitigate security risks in cloud environments. Strong communication skills to collaborate across More ❯

configuration enforcement. Vendor Management: Manage relationships with IT and security vendors and service providers. Evaluate vendor security practices and ensure compliance with company policies. Incident Response: Participate in security incident response and investigations, coordinating with remote team members and external partners. User Support & Training: Provide technical More ❯

operations, ensuring resilient and secure environments. Cloud Security Operations : Securely manage Azure, M365 & AWS security operations, implementing comprehensive security policies and initiatives. Threat Detection & Response : Leverage CrowdStrike and other EDR/XDR solutions to monitor, analyse, and respond to security threats. Identity & Access Management (IAM) : Design and enforce robust … ID, and Active Directory. End User Computing Security : Implement security measures and controls for EUC environments, including endpoint security, access controls, and device management. Incident Response & Forensics : Collaborate with security teams to analyse and respond to security incidents, conducting forensic investigations as needed. Optimize Security Posture: Enhance security … training to stakeholders, promoting security best practices and risk mitigation strategies. Security Automation & Optimization : Develop, implement, and optimize security automation processes to improve detection, response, and mitigation efforts. What we're looking for Experience : 3+ years in information security with a focus on cloud security, security architecture, and EUC More ❯

cyber threats. Key Responsibilities: Monitor and assess OT cybersecurity systems, ensuring effective threat detection and response. Conduct threat analysis and vulnerability assessments to support incident response activities. Develop and implement incident response plans tailored to OT environments. Support vulnerability management initiatives and penetration testing exercises. Contribute … understanding of OT/ICS cybersecurity or relevant control systems (SCADA/PLC) – training provided where required. Experience with network security, threat detection, and incident response. Knowledge of security frameworks and regulations including NIST, IEC, NIS Directive, and Cyber Kill Chain. Analytical mindset with the ability to manage complex More ❯

to protect critical systems. Design, implement, and maintain security architectures and frameworks aligned with government standards. Lead and support risk assessments, threat modelling, and incident response initiatives. Work closely with stakeholders to ensure compliance with NCSC and other relevant security policies. Develop and deliver security strategies, policies, and … penetration testing, vulnerability management, and cyber threat intelligence. Solid knowledge of security technologies such as SIEM, IDS/IPS, firewalls, and endpoint detection and response (EDR). Strong understanding of risk assessment methodologies and security governance frameworks. Excellent stakeholder engagement and communication skills, with the ability to convey technical … or equivalent security certifications. Experience with cloud security (AWS, Azure, or Google Cloud). Knowledge of secure coding practices and DevSecOps principles. Experience in incident response and forensic investigations. BENEFITS We prioritise employee well-being and mental health by offering a comprehensive range of benefits so to enhance More ❯

cloud security architectures across AWS, Azure, or Google Cloud. Develop and enforce cloud security controls , including IAM policies, encryption, and network security. Threat Monitoring & Incident Response Monitor cloud environments for security threats, vulnerabilities, and misconfigurations . Lead incident response efforts related to cloud security breaches and More ❯

space exploration & navigation, and integrate various tools into our systems of record to view interactions from a holistic risk management perspective. Areas to cover: Incident response and remediation Orchestrating and automating signals Prioritizing cases and incident response Cyber threat intelligence and dark web monitoring Vulnerability management More ❯

by building and maturing partnership channels. You will do this by leveraging Solis's methodologies and established channel of warm inbound leads from the Incident Response team. This candidate will expand our recurring revenue client base and strengthen our market presence within the UK. The successful individual will … leaves a positive mark. At Solis, sales collaborate closely with the delivery team to promote the suite of Solis services, from Managed Detection and Response through to Incident Response and Proactive Security. This individual will establish long term and mutually beneficial relationships with clients through proactive lead … consistently meeting or exceeding sales targets Ability to independently build or mature successful partnership channels Strong experience in sales conversation of Managed Detection and Response service You will be a self-starter with a strong sense of initiative and autonomy with a focus on providing customer excellence. Core Values More ❯

configuration adjustments. Create and sustain a thorough vulnerability management program that includes tracking vulnerabilities, assessing risks, and planning remediation strategies. Engage in network security incident response efforts by providing technical expertise and supporting investigations when needed. Stay updated with the latest security trends, threats, and technologies, particularly related … networks. Collaborate with IT and engineering teams to integrate security measures into network architecture, including mobile network elements. Respond to security breaches and provide incident response and disaster recovery support. Qualifications/Skills: Bachelor's degree in computer science, Information Security, or a related field (or equivalent work More ❯

security infrastructure, responding to threats, and ensuring compliance across systems. You'll work with various cyber security solutions while driving security best practices and incident response. If you have experience in cybersecurity tools, governance, and access management-and want to use your skills to support a mission that changes … a critical role in protecting our digital infrastructure. You'll lead the implementation and management of SIEM systems, Fortinet security tools, and endpoint detection & response (EDR) while conducting vulnerability assessments and penetration testing to stay ahead of cyber threats. You'll enhance identity and access management (IAM) by maintaining … Trust security principles. Your expertise in network security, VPNs, SD-WAN, and Microsoft Defender solutions will help safeguard our systems, while your contributions to incident response, governance, and security strategy will shape the future of our cybersecurity posture. If you're passionate about cybersecurity and want to make More ❯

tuning. Investigate alerts from a wide range of security technologies (e.g., Cloud, Brand Surveillance, MSSP tools). Provide support for ongoing security investigations and incident response activities. Assist InfoSec Governance, Risk & Compliance (GRC) teams with internal and external audits. Contribute to tabletop incident simulations to improve readiness … and response. Enhance existing incident response playbooks and contribute to security policy development. Participate in the team's on-call rota. Ideal Candidate Profile Hands-on experience with SIEM platforms and security monitoring technologies. Good understanding of security tools and concepts, especially Endpoint Detection & Response (EDR), Data More ❯

tuning. Investigate alerts from a wide range of security technologies (e.g., Cloud, Brand Surveillance, MSSP tools). Provide support for ongoing security investigations and incident response activities. Assist InfoSec Governance, Risk & Compliance (GRC) teams with internal and external audits. Contribute to tabletop incident simulations to improve readiness … and response. Enhance existing incident response playbooks and contribute to security policy development. Participate in the team's on-call rota. Ideal Candidate Profile Hands-on experience with SIEM platforms and security monitoring technologies. Good understanding of security tools and concepts, especially Endpoint Detection & Response (EDR), Data More ❯

security infrastructure, responding to threats, and ensuring compliance across systems. You'll work with various cyber security solutions while driving security best practices and incident response. If you have experience in cybersecurity tools, governance, and access management-and want to use your skills to support a mission that changes … a critical role in protecting our digital infrastructure. You'll lead the implementation and management of SIEM systems, Fortinet security tools, and endpoint detection & response (EDR) while conducting vulnerability assessments and penetration testing to stay ahead of cyber threats. You'll enhance identity and access management (IAM) by maintaining … Trust security principles. Your expertise in network security, VPNs, SD-WAN, and Microsoft Defender solutions will help safeguard our systems, while your contributions to incident response, governance, and security strategy will shape the future of our cybersecurity posture. If you're passionate about cybersecurity and want to make More ❯

security infrastructure, responding to threats, and ensuring compliance across systems. You'll work with various cyber security solutions while driving security best practices and incident response. If you have experience in cybersecurity tools, governance, and access management-and want to use your skills to support a mission that changes … a critical role in protecting our digital infrastructure. You'll lead the implementation and management of SIEM systems, Fortinet security tools, and endpoint detection & response (EDR) while conducting vulnerability assessments and penetration testing to stay ahead of cyber threats. You'll enhance identity and access management (IAM) by maintaining … Trust security principles. Your expertise in network security, VPNs, SD-WAN, and Microsoft Defender solutions will help safeguard our systems, while your contributions to incident response, governance, and security strategy will shape the future of our cybersecurity posture. If you're passionate about cybersecurity and want to make More ❯

governance committee. Manage internal and external information security requirements, liaising with relevant parties. Support the ISO in annual budgeting and planning. Participate in Cyber Incident Response as part of the ISO Team. Coordinate with vendors to evaluate new technologies and lead Proof of Concept evaluations as needed. Evaluate … Incidents and Security breaches (OWASP). Knowledge or experience in SOC2, ISO 27001, PCI DSS and GDPR. Previous experience working within an organisations Cyber Incident Response function. Hands on experience with Information Security tools. About you: Team player with the ability to communicate and collaborate effectively with diverse More ❯

governance committee. Manage internal and external information security requirements, liaising with relevant parties. Support the ISO in annual budgeting and planning. Participate in Cyber Incident Response as part of the ISO Team. Coordinate with vendors to evaluate new technologies and lead Proof of Concept evaluations as needed. Evaluate … Incidents and Security breaches (OWASP). Knowledge or experience in SOC2, ISO 27001, PCI DSS and GDPR. Previous experience working within an organisations Cyber Incident Response function. Hands on experience with Information Security tools. About you: Team player with the ability to communicate and collaborate effectively with diverse More ❯

tailored end-to-end solutions. Deliver chargeable workshops like strategy sessions, posture assessments, and gap analysis. Provide support during cyber incidents and assist with incident response plans. Serve as a cyber security advisor, offering guidance to clients. Conduct technical training to empower the sales team to sell security … cyber security trends and innovations. Key Skills and Experience: Proven experience in Pre-Sales or similar role within an MSP/Reseller. Experience with incident response teams and understanding of response stages. Familiar with endpoint detection, threat management, and cyber security services (SSE, SASE, SIEM, MDR/ More ❯

industry standards Compliance with applicable regulations & legislation Building and implementing governance & risk management processes Design implementation and testing of security tooling BC/DR & Incident response capability building and testing Production of threat intelligence reports and research Supply Chain Risk Management Consultants must possess and be able to … There is a base requirement to demonstrate understanding of and find ways to integrate activity with BlueVoyant colleagues across the globe, specifically Digital Forensics, Incident Response and Penetration Testing specialists as well as wider BlueVoyant service offerings when appropriate, to produce threat-aware products, services and outputs that … of outputs and outcomes and provide reporting and feedback when required. Support, when necessary, the development of opportunities by contributing as an SME in response to client RFPs and/or the construction of proposal documents and responses. Develop timely, accurate reporting that can convey technical findings to non More ❯

Up to £60,000 A global leader in defence and security solutions is seeking a Senior SOC Analyst to take charge of security operations, incident management, and threat detection strategies. This is an excellent opportunity for an experienced SOC analyst to step into a leadership role and help protect … national security interests. Key Responsibilities: Lead and mentor a team of SOC analysts in a high-security environment. Oversee real-time security monitoring and incident response activities. Investigate, triage, and manage security incidents using SIEM, EDR, and NDR tools. Coordinate threat intelligence integration to enhance detection capabilities. Develop … and refine SOC processes to improve efficiency and resilience. Requirements: 5+ years in Security Operations, with hands-on experience in incident response and threat analysis. Strong understanding of network security, TCP/IP protocols, and intrusion detection. Proficiency in Python and scripting for automation and security tooling. Experience More ❯

Azure/GCP, endpoint, and IAM environments and enforce cloud security best practices. Perform offensive activities and proactively hunt for vulnerabilities. Participate in the incident response process, providing technical expertise to manage and resolve security incidents; contribute to the development and maintenance of incident response plans More ❯

any signs of security incidents or unauthorized access and respond promptly to mitigate risks. Investigate security breaches, incidents, and other cybersecurity events, and develop incident response plans to ensure timely and effective resolution. Collaborate with cross-functional teams to design, implement, and maintain security controls and configurations across … Security+, IAT II/III level or similar). You excel in risk assessments, vulnerability management, and data-driven decision making. Strong knowledge of incident response procedures, including containment, eradication, and recovery from security incidents. You have strong expertise in AWS and GCP, with experience in multi-region More ❯

threat visibility Support internal research tools and help manage scripts/code in GitHub Interact with clients and their security teams as part of incident response Learn and apply methodologies in reverse engineering and IR with mentorship from senior team members Document your findings and contribute to our … CTI writeups) Interest in public speaking, knowledge sharing, or future training delivery About Security Joes: Security Joes is a global leader in Managed Detection & Response (MDR), offering elite incident response services, red team operations, forensics, penetration testing simulations, and custom security projects. We operate globally and remotely More ❯

maintain security solutions appropriate to the business' needs. Support the definition, execution and continuous improvement of key cybersecurity processes including vulnerability & patch management, security incident response, security monitoring, endpoint security, identity and access management, network security, and cryptography. Assist with developing and maintaining security policies, processes and incident response management plans and playbooks. Prepare and document standard operating procedures and protocols. Provide expertise on security requirements into core technology processes like asset management, change management, third-party management, technology development & acquisition, configuration management, etc. Contribute as a team member in projects and change initiatives aimed at More ❯

framework, and creating investment/programme plans to uplift their capabilities to appropriate levels. The role also encompasses traditional cyber security functions, such as incident management, and a focus on developing common group cyber services for consistency and efficiency. Key Competencies: Interpersonal Skills: Demonstrates a strong ability to build … Uplift: Assess TOC cyber security maturity, identify gaps, and develop/oversee implementation of tailored uplift programmes. Develop core cyber capabilities: Including robust cyber incident management (with executive reporting) and comprehensive threat intelligence/vulnerability management programs as key priorities. Group Cyber Services & Technology: Develop, promote and implement shared … developing and implementing cyber security strategies, frameworks (including maturity models), and risk management methodologies in complex organisations. Accredited in ISO27001 or similar. Threat Landscape & Incident Response: Deep understanding of modern cyber threats and attack vectors, coupled with proven experience in developing and managing effective incident response More ❯