176 to 200 of 655 Incident Response Jobs in the UK

of our lives. They're going through an exciting transformation period —building out their cyber security capabilities from the ground up. They're now looking for an experienced Cyber Incident Response Lead to help shape the function, drive best practices, and make a lasting impact on how the organisation responds to evolving threats. Key experience they're looking … for: Solid background in Incident & Problem Management, with the ability to lead effective responses and continuous improvement initiatives. Strong Stakeholder Management skills, with the confidence to work across technical and non-technical teams. Familiarity with ITIL and Service Management framework. A good understanding of the current Cyber Threat Landscape, including common threat actors, attack vectors, and response strategies. More ❯

Ability to demonstrate any IRM solution and SecOps solutions as and when needed. Knowledge of various modules like Policy Mgmt. Compliance & Audit Mgmt., Vendor Mgmt., Business Continuity Management, Vulnerability Response, Incident Response, Security Dashboard on ServiceNow IRM platform Assess as-is IRM processes for maturity and automation on ServiceNow platform Knowledge of Advance risk management and continuous More ❯

Ability to demonstrate any IRM solution and SecOps solutions as and when needed. Knowledge of various modules like Policy Mgmt. Compliance & Audit Mgmt., Vendor Mgmt., Business Continuity Management, Vulnerability Response, Incident Response, Security Dashboard on ServiceNow IRM platform Assess as-is IRM processes for maturity and automation on ServiceNow platform Knowledge of Advance risk management and continuous More ❯

Ability to demonstrate any IRM solution and SecOps solutions as and when needed. Knowledge of various modules like Policy Mgmt. Compliance & Audit Mgmt., Vendor Mgmt., Business Continuity Management, Vulnerability Response, Incident Response, Security Dashboard on ServiceNow IRM platform Assess as-is IRM processes for maturity and automation on ServiceNow platform Knowledge of Advance risk management and continuous More ❯

Ability to demonstrate any IRM solution and SecOps solutions as and when needed. Knowledge of various modules like Policy Mgmt. Compliance & Audit Mgmt., Vendor Mgmt., Business Continuity Management, Vulnerability Response, Incident Response, Security Dashboard on ServiceNow IRM platform Assess as-is IRM processes for maturity and automation on ServiceNow platform Knowledge of Advance risk management and continuous More ❯

Ability to demonstrate any IRM solution and SecOps solutions as and when needed. Knowledge of various modules like Policy Mgmt. Compliance & Audit Mgmt., Vendor Mgmt., Business Continuity Management, Vulnerability Response, Incident Response, Security Dashboard on ServiceNow IRM platform Assess as-is IRM processes for maturity and automation on ServiceNow platform Knowledge of Advance risk management and continuous More ❯

Ability to demonstrate any IRM solution and SecOps solutions as and when needed. Knowledge of various modules like Policy Mgmt. Compliance & Audit Mgmt., Vendor Mgmt., Business Continuity Management, Vulnerability Response, Incident Response, Security Dashboard on ServiceNow IRM platform Assess as-is IRM processes for maturity and automation on ServiceNow platform Knowledge of Advance risk management and continuous More ❯

devices Provide technical support for staff and volunteers accessing Pride in London systems on their personal devices Manage email systems, shared drives, and collaboration tools within Google Workspace Lead incident response for security breaches, system outages, and technical issues Train team members on IT security best practices, BYOD compliance, and Google Workspace tools WHAT YOU'LL BRING TO … knowledge of BYOD (Bring Your Own Device) policies and mobile device management Understanding of cybersecurity best practices, password policies, and data protection protocols for personal devices Experience with IT incident response and problem-solving in cloud-based environments Excellent communication skills for providing technical guidance on personal device security to volunteers Role Details This is a volunteer role More ❯

environments, and enterprise systems. Reporting to the Cyber Resilience Manager, you'll work across technical and governance functions to ensure ongoing protection against an evolving threat landscape, while supporting incident response, architecture design, compliance, and risk management. Key Responsibilities Design and maintain enterprise-wide security architectures aligned to business objectives and compliance requirements Implement security controls across infrastructure … measures into the software development lifecycle (SDLC) and broader IT processes Engage with architects, IT teams, and external suppliers to embed security into system design Develop and maintain technical incident response plans and support ongoing testing and refinement Monitor industry standards and regulatory changes (e.g., NIS regulations), ensuring ongoing compliance Contribute to internal security awareness and training programmes More ❯

alerting systems, SLA/SLO/SLI monitoring, alert tuning. Proven track record leading and mentoring engineering teams. Experience working in multi-disciplinary environments with multiple stakeholders. Involvement in incident response, postmortems, on-call rotations. Strong communication skills, with ability to explain technical direction clearly. Java Technical Lead X5 – (Java 8) SC Security Cleared- Key Responsibilities Lead and …/CD, infrastructure, and monitoring. Ensure systems are secure, resilient, and aligned with engineering standards. Collaborate with Dev, Ops, QA, and Security teams in a cross-functional environment. Support incident response, troubleshooting, and postmortems to improve reliability. Contract until March 2026 with scope to extend-£550-£650pday inside IR35 Hybrid working with ad hoc days on site when More ❯

hiring for an experienced Business Development Manager for our market leading Cyber Security client. Our client specialises in offering Cyber Security Solutions, including but not limited to Pen Testing, Incident Response, Investigative Services and accreditations. If you have a passion for Cyber Security and a minimum of 2 years in Cyber Security sales then this could be the … pitches and proposals to target clients. Essentials: A minimum of 2 years exceeding targets in a Business Development role specifically within Cyber Security. Knowledge of Cyber Services, such as incident response, Pen Testing or Digital Forensics. A competitive and Goals driven mindset. Well versed in the use of CRM software and additional sales software tools. Minimum of More ❯

and mitigating potential risks. You will oversee information security, compliance, and risk management practices based on industry-accepted information security and risk management frameworks, whilst establishing and maintaining an incident response plan, including incident detection, response, investigation, and resolution, to minimise the impact of security incidents. What you'll need to succeed Demonstrable experience of implementing More ❯

performing advanced investigations and, when required, first-line triage to maintain queue health and SLA compliance. You are responsible for high-quality service delivery through detailed analysis, evidence-led response actions, and operational leadership. In addition to handling escalated alerts, you provide line management, oversee ticket quality, contribute to training and onboarding, and drive continual improvement. You work core … business hours with participation in the on-call rota, ensuring consistent service support for customers and operational continuity across teams. Key Responsibilities • Incident Investigation and Response - You take ownership of escalated incidents, performing detailed investigations and, when necessary, stepping into first-line triage to guarantee prompt alert handling and escalation. • Team Leadership - You provide day-to-day leadership … SOC Analysts, conducting performance reviews, appraisals, one-to-one meetings, and development planning. • Quality Assurance - You own QA for the team’s outputs, ensuring consistency, accuracy, and completeness of incident handling and documentation across the team. • Training and Onboarding - You lead knowledge-transfer sessions, support structured onboarding of new team members, and coordinate internal training to drive skill development More ❯

of the latest threats in cybersecurity to guide and advise the organization regarding the protection of systems. - Serve as a technical resource for the security operations team during active response efforts. - Manage user roles, permissions and authentication mechanisms (e.g., PAM, SSO, MFA, OAuth, etc.). - Monitor cloud security events, logs and alerts to detect and respond to potential threats … Required Skills/Experience: - Identity and access management (IAM), security operations, cyber threat hunting, Endpoint Detection and Response (EDR) and detection analytics. - Practical experience with IAM technologies such as AD, Azure AD, access policies, authentication/authorization, strong authentication, and privileged access management. - Experience with open standards such as SAML, OAuth or Open ID. - Experience with SIEM content development … security monitoring, incident detection, incident response and forensics. - Experience in Threat hunting & IR experience in Windows and/or Linux environments, cloud/hybrid environments. - Experience of working within a global, highly regulated environment is important. Global Cyber Security Engineer In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon More ❯

triage to eliminate false positives. Identify threats that have entered the network. Evaluate and address system generated and user-reported security incidents: identify affected systems and scope of the incident, analyze running processes and configurations on affected systems, carry out in-depth threat intelligence analysis to identify an attack type, source, entry point, and possible remediation, implement remediation or … escalate incident. Support the ICT Security Incident Management Process as a member of the NHSCFA Security Incident Response Team. Manage ICT Security service requests and incidents via the NHSCFA Service Desk system. Ensure appropriate access control to systems is maintained. Person Specification pSpec Essential Experience of 1st-3rd level technical support of IT infrastructure or security, both … in person and remote. Demonstrate detailed knowledge of: IT system monitoring (SIEM). Security Incident Management. Demonstrate detailed knowledge of Information Security in several of the following areas: Intrusion detection and prevention systems. Vulnerability Management. Network technology and operations. Windows 10 and Windows Server. SUSE Linux. Microsoft365. oInformation Security Management Systems ISO27001. Risk Management Process. IT system auditing Experience More ❯

Strategic Program Manager, Strategy & Response (Fixed Term Contract Role) The Security, Integrity, Investigations, and IP (SI3) group in Legal is seeking an experienced professional to support our law enforcement operations, partner, and investigations teams, overseeing and coordinating priority programs to ensure they align with key org goals and KPIs.We are looking for someone who thrives in a dynamic and … skills who thrives in fast-paced environments and can operate independently to drive strategy, execution, and organization across teams.This is a fixed term contract role Strategic Program Manager, Strategy & Response (Fixed Term Contract Role) Responsibilities Identify, structure, and solve complex problems - leveraging data to support recommendations Design, coordinate and implement strategies and solutions and drive strategic alignment across the … SI3 organization and external stakeholders to reduce external pressures while scaling and increasing internal efficiencies Work with partners such as Central Operations (including Law Enforcement Response and Incident Response teams), Central Investigations (including Law Enforcement Investigations and Intelligence, Safety, and Signals teams), Security Legal, and Law Enforcement Outreach, as well as the risk, data, and technology teams More ❯

organizations through every step of their journey toward cyber resilience. Clients count on us for quick and expert support in the event of and in preparation against a cyber incident; from incident response to risk assessments, and complex forensics to breach notification and ID theft remediation we help clients - of all sizes - respond with confidence. At Kroll More ❯

and more, enhancing operational efficiency and reducing observability spending by up to 70%. We seek a Quality and Support Strategist professional who ensures that the Coralogix Alerting and Incident Management Platform and Process exceed the quality and reliability standards, establish a competitive edge, and prevent failures, profit loss, or work stoppages. You will be responsible for enhancing customer … management resolution, reducing engineering interruptions, and boosting product awareness. This role involves developing a robust knowledge base, identifying common usage issues, and creating solutions that establish the Alerting and Incident Management Platform's capabilities in terms of performance, pains, and business use cases we deliver. Key Responsibilities: Improve Customer Satisfaction Improve turnaround time to resolve customer satisfaction. Work closely … with engineering and technical account managers to ensure customers can achieve their ambitions using the Coralogix Alerting and Incident Management Platform. Sometimes, these solutions involve impromptu solutions by keeping one eye on the product roadmap. Reduce Engineering Interruptions Identify common problems and work with Technical Product Management to enrich the roadmap or improve the knowledge base and technical documentation More ❯

broad range of ServiceNow modules, including but not limited to: Integrated Risk Management (IRM): Policy Management, Compliance & Audit Management, Vendor Risk Management, Business Continuity Management. Security Operations (SecOps): Vulnerability Response, Security Incident Response, Security Dashboards. IT Service Management (ITSM). IT Operations Management (ITOM). Customer Service Management (CSM). Integration Design: Design and oversee the implementation More ❯

broad range of ServiceNow modules, including but not limited to: Integrated Risk Management (IRM): Policy Management, Compliance & Audit Management, Vendor Risk Management, Business Continuity Management. Security Operations (SecOps): Vulnerability Response, Security Incident Response, Security Dashboards. IT Service Management (ITSM). IT Operations Management (ITOM). Customer Service Management (CSM). Integration Design: Design and oversee the implementation More ❯

broad range of ServiceNow modules, including but not limited to: Integrated Risk Management (IRM): Policy Management, Compliance & Audit Management, Vendor Risk Management, Business Continuity Management. Security Operations (SecOps): Vulnerability Response, Security Incident Response, Security Dashboards. IT Service Management (ITSM). IT Operations Management (ITOM). Customer Service Management (CSM). Integration Design: Design and oversee the implementation More ❯

broad range of ServiceNow modules, including but not limited to: Integrated Risk Management (IRM): Policy Management, Compliance & Audit Management, Vendor Risk Management, Business Continuity Management. Security Operations (SecOps): Vulnerability Response, Security Incident Response, Security Dashboards. IT Service Management (ITSM). IT Operations Management (ITOM). Customer Service Management (CSM). Integration Design: Design and oversee the implementation More ❯

broad range of ServiceNow modules, including but not limited to: Integrated Risk Management (IRM): Policy Management, Compliance & Audit Management, Vendor Risk Management, Business Continuity Management. Security Operations (SecOps): Vulnerability Response, Security Incident Response, Security Dashboards. IT Service Management (ITSM). IT Operations Management (ITOM). Customer Service Management (CSM). Integration Design: Design and oversee the implementation More ❯

Job overview: This is an opportunity to lead global Security Operations focused on safeguarding Arm's digital environment through exemplary threat detection, incident response, and vulnerability management capabilities. This senior role, reporting directly into the CISO is accountable for driving the strategic direction of Arm's Detect & Response function, delivering outstanding performance and ensuring we are resilient … operations, you will lead cyber crisis management, C-Suite level stress testing, team development, and top-level cybersecurity thought leadership. Responsibilities: Own and deliver the strategic roadmap for cyber incident and vulnerability detection & response in line with Arm's threat profile and business objectives. You will guide and develop a high-performing team, driven with context of emerging More ❯

Governance setups Implement Data Loss Prevention (DLP) and sensitivity labels Work with Azure Key Vault and manage encryption and certificate strategies Collaborate with SOC and managed Sentinel provider on incident handling Help ensure compliance with ISO 27001, SOC 2, GDPR, and NIS2 Support configuration and monitoring in Microsoft Compliance Manager Maintain security documentation and assist in audit preparation Configure … insider risk management, audit, and eDiscovery capabilities Track Secure Score and recommend improvements Configure monitoring and alerts using Microsoft tools (Sentinel, Defender) Participate in incident response and post-incident reviews Contribute to the development of business continuity and disaster recovery plans Track KPIs and generate reports using Microsoft compliance and security solutions Work closely with DevOps, infrastructure More ❯