151 to 175 of 361 Incident Response Jobs in the UK

critical systems. Risk Management: Helping stakeholders understand and manage cyber risks across both project lifecycles and operational systems, ensuring all regulatory obligations are met. Incident Response & Governance: Developing our risk management capabilities, chairing governance groups, and promoting a proactive, security-first culture across TfL. Continuous Improvement: Developing architectural ...

agentic AI infrastructure – Deploy and manage generative AI toolkits, model serving endpoints and data governance for AI workloads Drive reliability and operations – Support incident response and root-cause analysis; improve observability through logging, metrics, and tracing; contribute to on-call processes proportionate to company stage Continuously improve contributor ...

security, data protection, and governance, providing coaching and training to ensure high performance. Act as the primary point of contact for security incidents, coordinating incident response and recovery plans, and liaising with external authorities when necessary. Maintain up-to-date knowledge of evolving threats, technologies, and regulations relevant ...

Monitor proxy service health, availability, and performance, identifying and resolving user impacting issues. Perform root cause analysis for proxy related incidents and participate in incident response and post incident reviews. Assist with capacity planning and resiliency testing activities, escalating risks when thresholds are approached. Ensure proxy configurations ...

Cyber Security Operations Analyst (Tier 2) Role: Cyber Security Operations Analyst (Tier 2) Specialism(s): Security Operations, Security Alerts, Security Incident Management, SIEM, Defender, Cofense, Azure, Email Security, Conditional Access Policies, User Authentication, EDR, Playbooks Security Assessment, Vulnerability Analysis, Risk Analysis, SOAR Type: Contract, Daily Rate Pay Rate … incidents and initiatives o Undertake on-going analysis of emerging threats using TTP's and existing knowledge o Support the production of alert/incident 'playbooks' Required Skills & Experience * 3-4+ years' experience in a Security Operations/SOC-based role * Hands-on experience with Defender, Azure ...

vital services. What you'll be doing: Overseeing Security Operators during shifts, ensuring continuous security monitoring Performing initial investigations of potential threats using Security Incident and Event Management (SIEM) tools Monitoring SIEM systems for faults and anomalies Contributing to routine security incident management by identifying, prioritising, and escalating … customer services through proactive security measures What you'll bring: Proven experience in cyber security, with a solid understanding of security monitoring and incident response Technical leadership skills and the ability to guide and support team members Strong communication skills to clearly articulate findings and escalate issues effectively ...

Cybersecurity & IT Security*** Oversee the design and implementation of cybersecurity architecture and controls.* Ensure protection of IT infrastructure, cloud environments, and sensitive data.* Lead incident response, threat intelligence, and vulnerability management programs.* Maintain compliance with global standards (e.g., ISO 27001, NIST, GDPR, HIPAA).**Governance, Risk & Compliance*** Develop … .* Conduct risk assessments, internal audits, and third-party security evaluations.* Report regularly to senior leadership on risk mitigation and compliance status.**Investigations & Incident Management*** Establish and lead an internal investigations function to address security breaches, misconduct, and regulatory violations.* Build and manage a team of investigators and analysts ...

base articles in line with best practices Automate security tasks and toolchains using scripting (PowerShell, Batch, etc.) Collaborate with external SOC teams Prepare post-incident reports and root cause analyses Manage end-user device (EUD) security via MS Intune, Sophos and NinjaOne Schedule and assess vulnerability scans on critical … driven changes Produce weekly security operations reports Manage Cisco Umbrella web filtering and SSL inspection policies Requirements: Previous hands-on experience in SecOps or Incident Response Recognised Security certifications such as Security+, CEH, or Microsoft security certifications Strong knowledge of Microsoft Windows OS security and hardening Working PowerShell ...

Support ISO 27001 compliance and broader security frameworks Assist with third-party risk assessments and penetration testing Contribute to security policies, controls, and incident response Promote security awareness across the business Experience: 5+ years in cybersecurity or security operations Strong experience with Microsoft security stack (Defender, Sentinel, Entra ...

access Troubleshooting infrastructure and network issues across server and network environments Monitoring infrastructure performance and resolving incidents Maintaining technical documentation and infrastructure diagrams Supporting incident response and assisting with root cause analysis Working collaboratively with other engineers to maintain secure and resilient systems Required Skills & Experience Successful candidates ...

Solid understanding of Infrastructure as Code (IaC) and Git-based workflows * Experience with automation tools such as Terraform, Ansible, or PowerCLI * Proven experience in incident response and advanced troubleshooting * Strong Linux system administration skills * Scripting/programming experience (e.g. Python) * Experience managing CI/CD tools such ...

support of cloud SaaS platforms and project-specific cloud systems Execute infrastructure maintenance through change control processes Monitor and manage alerting, ticketing, and incident response workflows Identify, diagnose, and act on system alerts and performance issues Keep monitoring systems aligned with evolving infrastructure Ensure all systems remain patched ...

infrastructure, cloud platforms (Microsoft 365 & SharePoint), networks, and core systems alongside our external IT provider. Own cyber security - from vulnerability management and patching to incident response (in and out of hours). Act as Data Protection Lead, ensuring full GDPR compliance and robust data security. Manage hardware lifecycle ...

acting as a subject matter expert Advise and collaborate with stakeholders across the business on maintaining secure business systems Contribute to production support and incident response activities as required Maintain up-to-date product security documentation Desired Qualifications and Experience Degree in cybersecurity, computer science, engineering or related ...

regulatory review Coaching cross-functional teams on DevOps best practices and enabling developer productivity through self-service tooling Contributing to root cause analysis, incident response and continuous improvement of infrastructure reliability What we are looking for: Proven experience building and maintaining DevOps infrastructure for safety critical or regulated ...

technical users Able to work independently while collaborating effectively within a team Strong documentation and communication skills Desirable: Experience with security monitoring and incident response Exposure to vulnerability management and patching Familiarity with ITIL principles and ITSM tools Experience supporting telephony, print, or mobile device environments Interest ...

LibreNMS) Background in ISP, NOC, or data centre environments Exposure to network OS such as Arista EOS or MikroTik RouterOS Previous on-call or incident response experience The Package £33,000-£38,000 salary (DOE) On call allowance Hybrid working model Bonus scheme (profit share) Birthday ...

/EDR/XDR, SIEM, email security, and identity management solutions. Awareness of current threat landscape and MSSP service models (SOC, vulnerability management, incident response). ...

configuration changes Assist with backup, disaster recovery and business continuity Operate and maintain core cyber security controls Monitor alerts and suspicious activity; support incident response Perform vulnerability assessments and support remedial actions Assist with security audits, compliance work and risk assessments Maintain security documentation, policies and audit evidence ...

personal responsibility or autonomy, with little need for escalation. It would be great if you had: Cloud, on-prem, SaaS, PaaS, IaaS environments. Security incident response, code/malware analysis. Strong coding skills. If you are interested in this role but not sure if your skills and experience ...

defence in depth" strategy; manage both internal teams and strategic third‐party partners. Operational Management: Oversee 24x7x365 security operations, including continuous monitoring, threat assessment, incident response (CIRT). Risk & Compliance: Develop and maintain an industry‐standard Risk Management framework; ensure compliance with PCI‐DSS, GDPR, and NIST frameworks. ...

maintenance of our CrowdStrike Falcon platform. SIEM Mastery: Collaborate with our SOC partner to architect and optimize Splunk dashboards, alerts, and data models. Incident Response: Act as the technical escalation point for high-priority incidents, utilizing EDR and SIEM tools for rapid containment. Automation & Hunting: Develop SOAR workflows … improve response times and proactively hunt for undetected malicious activity. Upskilling: Directly train the existing team in CrowdStrike, Splunk, and advanced security analysis. Your Profile We are seeking a candidate who brings at least 5+ years of experience in a dedicated Cyber Security Engineering or SOC Tier 3 role. ...

maintenance of our CrowdStrike Falcon platform. SIEM Mastery: Collaborate with our SOC partner to architect and optimise Splunk dashboards, alerts, and data models. Incident Response: Act as the technical escalation point for high-priority incidents, utilizing EDR and SIEM tools for rapid containment. Automation & Hunting: Develop SOAR workflows … improve response times and proactively hunt for undetected malicious activity. Upskilling: Directly train the existing team in CrowdStrike, Splunk, and advanced security analysis. Your Profile We are seeking a candidate who brings at least 5+ years of experience in a dedicated Cyber Security Engineering or SOC Tier 3 role. ...

Write structured IaC using Terraform and/or AWS CDK, reviewed through Pull Requests. - Use AI development tooling as a standard workflow component. - Manage incident response within your scope and produce post-incident reviews. - Support less experienced engineers through PR reviews and knowledge sharing. - Identify improvements ...

Analyst, you will play a key role in delivering effective SOC services across multiple platforms and projects. You will provide hands on monitoring and incident response while also supporting the development of people, processes and security controls. Key responsibilities include: Leading and mentoring a small team … Manager to evolve SOC capability Senior SOC Analyst essential skills Proven experience in a SOC or similar security operations environment Strong knowledge of SIEM, incident management and threat intelligence Understanding of cloud technologies and modern networking Experience with IDAM, JML processes and ITSM frameworks Ability to lead, support ...