151 to 175 of 426 Incident Response Jobs in the UK

organisation. Responsibilities: ⦁ Configure and enhance Cortex XSIAM, including automation rules, alerting, correlation rules, and advanced use cases. ⦁ Implement recommendations from ongoing threat detection and response reviews and incident investigations. ⦁ Design and engineer security solutions based on findings from internal and external assessments. ⦁ Develop and architect detection logic, including … configuration and automation. ⦁ Strong working knowledge of Active Directory and Azure. ⦁ Practical experience applying the MITRE ATT&CK framework to real-world use cases. ⦁ Incident response and threat detection expertise within enterprise environments. ⦁ Ability to design, engineer, and implement security solutions based on assessment outputs. ⦁ Excellent communication skills ...

Portugal or Ireland. This leader will guide the evolution of an already strong Release Management organization, partnering closely with QA, Engineering, Production, and Incident Management to ensure that every release — client, server, data, and live operations — is predictable, stable, and delivered with excellence. This is not a greenfield function. … that understanding to drive practical, phased improvements that respect existing team expertise and organizational context Partner closely with pods, Production Directors, QA, Engineering, and Incident Management to address systemic challenges upstream of release Refine and evolve release strategy & governance Own and strengthen the release governance framework, including Scope Lock ...

Location: Bristol Reports to: Head of Cyber Security Hybrid Role: 3-4 days work from home The Role Play a key role in maturing incident response and threat intelligence functions Evolve and mature the firm's capability for detecting and responding to cyber incidents Help develop strategies ...

with future growth. What you'll Do you'll lead a dedicated team focused on: Developing and executing cyber security strategies, threat detection, and incident response Overseeing IT systems including identity management, device control, and network architecture Managing enterprise security infrastructure (SIEM, EDR, MDM, etc.) Supporting compliance, risk ...

global team have experience advising clients on hundreds of incidents. Leveraging this experience, they feedback practical lessons learned into clients cyber risk management and incident response programmes. What you will do The Identity and Access Senior Architect will be part of the Digital Trust team, and will ...

client and regulatory requirements. Our integrated approach combines secure by design principles relying on Identity and Access Management, Technical Assurance, continuous monitoring and incident response through Security Operations, and proactive risk management through GRC. Working closely with the Markets Innovation Group (MIG) and Fuse, the firms legal tech ...

Actions, Jenkins, CircleCI). Solid understanding of Linux systems and scripting (Bash, PowerShell, Python). Familiarity with security principles , SIEM/SOC tools, or incident response. Knowledge of networking fundamentals and APIs. Excellent problem-solving and communication skills. Nice to Have Experience with containerization (Docker, Kubernetes). Exposure ...

Actions, Jenkins, CircleCI). Solid understanding of Linux systems and scripting (Bash, PowerShell, Python). Familiarity with security principles , SIEM/SOC tools, or incident response. Knowledge of networking fundamentals and APIs. Excellent problem-solving and communication skills. Nice to Have Experience with containerization (Docker, Kubernetes). Exposure ...

bottlenecks using advanced problem-solving and performance tuning techniques. Conduct capacity planning and implement solutions to ensure systems can support current and future workloads Incident Response & Troubleshooting Respond swiftly to production incidents, ensuring minimal downtime and quick restoration of services. Perform root cause analysis and postmortems, implementing lessons … dashboards. Improve observability of services, ensuring issues are identified and addressed before impacting users. Continuously refine monitoring practices to reduce alert fatigue and improve response times. Automation & Tooling Develop automation to eliminate manual, repetitive tasks and improve operational efficiency. Write clear, maintainable, and well-tested code to support automation ...

. Proficient in Azure Monitor, Log Analytics, Application Insights, cost management and optimisation, resource tagging strategies, and maintaining platform availability through proactive monitoring and incident response. Infrastructure as Code (Terraform) - Strong working knowledge of Terraform for provisioning and managing Azure infrastructure including writing and maintaining Terraform modules for Azure … high availability architectures using Availability Zones, Azure Load Balancer, Azure Application Gateway, VM Scale Sets, and conducting DR tests to ensure business continuity. Collaboration & Incident Response - Strong team player with experience working across DevOps, infrastructure, security, and development teams. Skilled in incident management and managing status dashboards ...

cyber defence function. This position is suited to someone with a strong technical security background who can drive strategy, uplift security maturity, and oversee incident response activities. You will be responsible for safeguarding the business's infrastructure, digital assets, and data by shaping security processes, managing risk … recognised security frameworks. Key Responsibilities Lead and develop a team of cyber security engineers, providing technical and strategic direction. Oversee security operations including monitoring, incident management, and threat response. Conduct assessments across the IT estate to identify risks and emerging threats. Manage security events from detection through to remediation ...

working with the best standard technologies.The SOC Analyst reports to the SOC Manager. The SOC Analyst conducts a range of analysis and assists the incident response team with investigations that need to be escalated to an embedded member of staff. The SOC Analyst key responsibilities are: Effective Tier … threat hunting in collaboration with the CTI function Assist IR in HR and InfoSec related investigations Ensure the timely triage and remediation of any incident or request tickets raised to the SOC Participate in the activity of adding/removing URLs from the AcceptList and BlockList Attend routine security ...

with the best standard technologies. The SOC Analyst reports to the SOC Manager. The SOC Analyst conducts a range of analysis and assists the incident response team with investigations that need to be escalated to an embedded member of staff. The SOC Analyst key responsibilities are: Effective Tier … threat hunting in collaboration with the CTI function Assist IR in HR and InfoSec related investigations Ensure the timely triage and remediation of any incident or request tickets raised to the SOC Participate in the activity of adding/removing URLs from the AcceptList and BlockList Attend routine security ...

timely remediation. Manage and maintain LogicMonitor for cloud platform monitoring: Create and update logicmodules Configure alert rules and escalation chains Manage ServiceNow integration for incident handling Build and maintain dashboards Optimize alerting to prevent alert storms and missed alerts Provide support for ITHC coordination, access provisioning, and post-engagement … manage Workbooks Configure Azure Policies for security posture Implement regulatory compliance templates Hands-on experience with LogicMonitor and ServiceNow integrations Proven ability to lead incident response and vulnerability remediation efforts Nice-to-Have Skills: Familiarity with multi-cloud environments (AWS, GCP) Experience in coordinating ITHC assessments and managing ...

stakeholders across the business to ensure security controls are implemented in line with BPP policies. Work in collaboration with the Security Operations team on incident management, being the SME from a GRC perspective. Own and develop GRC training programs across the Group. Identify, assesses, and manage information security risks … problem-solving skills. Takes ownership of own development by ensuring that skills are kept up to date, in line with industry changes. Knowledge of incident response management. Risk management methodologies. Ability to drive change. Experience of Microsoft Security and Compliance toolkits, Tenable.io would be an advantage. Please note ...

GDPR, and other frameworks. Deliver security awareness training and embed a culture of compliance. Support day-to-day security operations, including monitoring, incident response, and threat analysis. What We're Looking For Experience: 3-5 years in information security or compliance roles. ISO 27001 Mastery: Proven track record ...

GDPR, and other frameworks. Deliver security awareness training and embed a culture of compliance. Support day-to-day security operations, including monitoring, incident response, and threat analysis. What We're Looking For Experience: 3-5 years in information security or compliance roles. ISO 27001 Mastery: Proven track record ...

triage security incidents and alerts Design, implement, and manage security solutions for cloud (primarily Azure) and on-premises environments Lead and participate in Incident Response and Disaster Recovery programs, including regular testing and validation Align business processes and systems implementations with industry best practices and regulatory requirements Stay ...

triage security incidents and alerts Design, implement, and manage security solutions for cloud (primarily Azure) and on-premises environments Lead and participate in Incident Response and Disaster Recovery programs, including regular testing and validation Align business processes and systems implementations with industry best practices and regulatory requirements Stay ...

technologies. Creating security use cases to enable the wider SOC to respond to a wider array of threats. Identify where automation can assist the Incident Response team when investigating suspicious activity. Creation of analytic content to enable quantifiable metrics on SOC performance. Additional Accountabilities Able to lead ...

maintenance and updates to roll out new features and keep the platform secure. Participate in a 24/7, on-call rotation for incident response escalation within response and on-site Service Level Agreements (SLA). Provide technical implementation support in customer environments, including guidance on implementation ...

passionate about technology and eager to start a career in cyber security? We’re looking for a Cyber Threat Detection & Response Apprentice to join our growing team and gain hands-on experience in identifying and responding to cyber threats. This is your chance to learn from industry experts … Microsoft technologies like M365 and Azure. Our mission is to keep networks secure, efficient, and future-ready. Responsibilities: As a Cyber Threat Detection & Response Apprentice at SNO, you’ll work alongside experienced professionals to strengthen our cyber defence capabilities. Your responsibilities will include: Assisting in monitoring network traffic ...

passionate about technology and eager to start a career in cyber security? We’re looking for a Cyber Threat Detection & Response Apprentice to join our growing team and gain hands-on experience in identifying and responding to cyber threats. This is your chance to learn from industry experts … Microsoft technologies like M365 and Azure. Our mission is to keep networks secure, efficient, and future-ready. Responsibilities: As a Cyber Threat Detection & Response Apprentice at SNO, you’ll work alongside experienced professionals to strengthen our cyber defence capabilities. Your responsibilities will include: Assisting in monitoring network traffic ...

base articles in line with best practices * Automate security tasks and toolchains using scripting (PowerShell, Batch, etc.) * Collaborate with external SOC teams * Prepare post-incident reports and root cause analyses * Manage end-user device (EUD) security via MS Intune, Sophos and NinjaOne * Schedule and assess vulnerability scans on critical … driven changes * Produce weekly security operations reports * Manage Cisco Umbrella web filtering and SSL inspection policies Requirements: * Previous hands-on experience in SecOps or Incident Response * Recognised Security certifications such as Security+, CEH, or Microsoft security certifications * Strong knowledge of Microsoft Windows OS security and hardening * Working PowerShell ...

base articles in line with best practices * Automate security tasks and toolchains using scripting (PowerShell, Batch, etc.) * Collaborate with external SOC teams * Prepare post-incident reports and root cause analyses * Manage end-user device (EUD) security via MS Intune, Sophos and NinjaOne * Schedule and assess vulnerability scans on critical … driven changes * Produce weekly security operations reports * Manage Cisco Umbrella web filtering and SSL inspection policies Requirements: * Previous hands-on experience in SecOps or Incident Response * Recognised Security certifications such as Security+, CEH, or Microsoft security certifications * Strong knowledge of Microsoft Windows OS security and hardening * Working PowerShell ...