176 to 200 of 361 Incident Response Jobs in the UK

backgrounds, including Computer Science graduates, Linux-focused infrastructure engineers, Kubernetes/platform engineers, and individuals from live service or service desk environments with strong incident management experience. This is a hands-on operational engineering role focused on maintaining stability, availability, and performance of a complex, secure cloud platform operating … Responsibilities Provide frontline operational support for secure cloud infrastructure and platform users Troubleshoot and resolve critical incidents across live production systems Lead or support incident response, escalation, and coordination during shifts Operate within a 24/7 rota supporting high-priority workloads and services Follow, maintain, and improve ...

security and IT risk strategy Lead and develop a team of information security and technology risk specialists Oversee cyber security operations, including security tooling, incident response, and vulnerability management Maintain and manage the IT risk framework and risk register Ensure alignment with regulatory requirements and industry frameworks (e.g. ...

play a key role in protecting their systems, infrastructure, and data. This is a hands-on position where you'll lead on threat detection, incident response, and continuous security improvement across the business. What You'll Be Doing Monitoring and analysing security events (SIEM, endpoints, networks) Investigating incidents ...

when working with managed service providers and third-party vendors Collaborate with enterprise security teams to align OT and IT security initiatives Support OT incident response, including coordination with SOC teams where applicable Mentor junior team members and contribute to capability development Track and report on OT security ...

track SLIs, SLOs, and SLAs to measure service reliability and performance. Monitor system health using golden signals and implement effective alerting strategies. Support incident response, root cause analysis, and continuous improvement initiatives. Collaborate with engineering, platform, and operations teams to improve system resilience and operational efficiency. Manage error ...

pipelines and SDLC processes Define and support SLIs, SLOs, and alerting strategies in collaboration with engineering teams Promote best practices in instrumentation, monitoring, and incident response Work with network and platform teams to improve visibility across infrastructure and services Required Skills & Experience Proven experience in observability ...

Essentials/ISO 27001 Knowledge of: Identity & access management (Entra ID, MFA, Conditional Access) Endpoint & network security (EDR/MDR, firewalls) Vulnerability management & patching Incident response processes Ability to translate technical risk into business impact Key Traits Hands-on and pragmatic Comfortable working in a fast-paced, high ...

Azure) Active Directory, Group Policy, Office 365 & SharePoint Microsoft Exchange Virtualisation (Hyper-V, VMware, WVD) Backup & Disaster Recovery solutions Cyber Security (MFA, EDR, AV, Incident Response) Networking (TCP/IP, DNS, DHCP, LAN/WAN) Windows & macOS environments Experience supporting mobile devices Strong troubleshooting and problem-solving ability ...

observability tools Understanding of cloud cost management and resource optimisation principles Comfort with troubleshooting and supporting development teams Understanding of service reliability and incident response practices ** Please note that we are unfortunately unable to provide visa sponsorship for this position. Applicants must have the right to work ...

governance. Implement Zero Trust principles, network segmentation, encryption, key management, and secure access control models. Partner with SecOps teams to ensure monitoring, logging, and incident response capabilities are embedded Develop automation and service optimisation strategies to improve performance, cost efficiency, and availability. Conduct capacity planning, resilience engineering, disaster ...

Commercial to improve our digital marketplace. Boost productivity through AI‐assisted engineering. Cyber Security & Risk Own and mature the cyber security strategy. Ensure continuity, incident response and disaster recovery. Manage risks across cloud, SaaS, devices and networks. Set governance for responsible AI use. Cloud, Infrastructure & IT Ops Oversee ...

Responsibilities: Lead and deliver cyber resilience transformation programmes, owning end-to-end engagement delivery (scope, quality, timeline, budget) and ensuring outcomes measurably improve preparedness, response, and recovery. Design, run, and continuously enhance cyber crisis simulations and tabletop exercises for executives and operational teams—ensuring scenarios reflect the current threat … intelligence and emerging attacker tactics into practical resilience improvements—linking likely threats to business impact, critical dependencies, and control or capability gaps. Integrate cyber response and recovery into wider enterprise resilience plans, including business continuity, IT disaster recovery, operational resilience, third-party resilience, and enterprise risk management—ensuring cyber ...

understanding of relevant legal, regulatory and compliance requirements Proven experience implementing and operating security management in line with legislation and standards Experience conducting investigations, incident response and producing clear, high-quality reports Strong background in risk management, including risk assessment and logging Experience in process mapping and producing … effective, user-friendly procedures Broad understanding of information and cyber security technologies Experience in cyber incident management and remediation Knowledge or experience of forensic investigation Excellent written and verbal communication skills, with the ability to engage confidently with senior stakeholders A customer-focused mindset with a commitment to high ...

security tooling. You will act as the technical lead between the SOC and internal teams, transforming security data into actionable intelligence, optimising platforms, leading incident response, and mentoring the wider security function. Key Responsibilities Lead and manage the deployment, configuration, and optimisation of CrowdStrike Falcon Collaborate closely with … enhance Splunk dashboards, alerts, and detections Act as the technical escalation point for high-severity security incidents Develop automation and SOAR workflows to improve response effectiveness Conduct proactive threat hunting activities Mentor and upskill the internal security team across tools and threat analysis Skills & Experience Required 5+ years’ experience ...

Technical Oversight Lead and support a team of SOC analysts, ensuring high standards of performance and collaboration Provide mentoring, coaching, and technical guidance across incident response and investigation activities Act as the senior escalation point for complex or high-impact security incidents Support advanced threat hunting, forensic investigation … threat mitigation strategies Work closely with internal teams to enhance automation and SOAR workflows Operational Improvement Develop and refine SOC processes, procedures, and response playbooks Track SOC performance metrics and identify opportunities for efficiency and quality improvement Ensure services align with recognised security frameworks and regulatory requirements Skills & Experience ...

times Monitoring security vulnerabilities and hacking threats in network and host systems Leading security operations (including Managed SOC), threat intelligence, detection, and response capabilities Defining KPIs and KRIs to measure security maturity and providing regular security reporting to Executive and Board level stakeholders. Managing and developing the information security … environments. Knowledge of AI/ML security risks and governance frameworks like ISO 42001 or NIST AI RMF. Experience leading security operations, incident response, and threat management. Ability to work collaboratively with the 2nd line of defence to ensure the Bank remains within risk appetite Ability to work ...

CircleCI) 🔄 Operate and optimise Kubernetes environments (EKS primarily, GKE exposure a bonus) ☸️ Build and manage Infrastructure as Code using Terraform 🏗️ Champion reliability engineering: observability 👀, incident response 🚨, performance & cost optimisation 💡, and security best practices 🔐 Drive automation across environments and collaborate with cross-functional teams 🤝 ✅ What You’ll Bring Strong ...

reduce operational toil Build automation tooling (primarily Python) to streamline workflows Develop and maintain CI/CD pipelines for data and platform services Lead incident response, root cause analysis, and preventative improvements Implement monitoring, alerting, and observability across systems Support cloud data platforms (including Snowflake) for scalability ...

prem and cloud platforms Maintain clean documentation, standards, and operating procedures Governance, Audit & Operations Support access reviews, audit requests, and evidence production Contribute to incident response related to privileged access or credential exposure Help mature IAM and PAM processes through automation and continuous improvement Must Have’s Strong ...

knowledge of security best practice Working on security related projects and reporting Maintaining a contemporary knowledge of current threats and cyber trends Assisting with incident response What you'll need to succeed Experience working with SOC tools - use case tuning, IPS/IDS, EDR, SIEM, Vulnerability scanning ...

support and improve data and caching systems like Redis, Kafka, MongoDB, Cassandra, enhance observability using Datadog, Grafana, Prometheus, and CloudWatch 📊, and take part in incident response while continuously improving platform reliability 🔥 🧠 What you will bring Strong experience with Infrastructure as Code and automation tools such as Terraform, Ansible ...

reliable software delivery Partner with development teams to ensure solutions are scalable, resilient, and production-ready Champion reliability engineering practices, including monitoring, alerting, and incident response Drive high availability and operational excellence through proactive troubleshooting and optimisation Define and enforce Infrastructure as Code (IaC) and Immutable Infrastructure standards ...

Server (On-Prem & Azure)Active Directory, Group Policy, Office 365 & SharePointMicrosoft ExchangeVirtualisation (Hyper-V, VMware, WVD)Backup & Disaster Recovery solutionsCyber Security (MFA, EDR, AV, Incident Response)Networking (TCP/IP, DNS, DHCP, LAN/WAN)Windows & macOS environmentsExperience supporting mobile devicesStrong troubleshooting and problem-solving abilityPassion for learning ...

optimise Microsoft 365 and wider cloud services across public, private, and hybrid environments Maintain system performance through patching, monitoring, and proactive improvements Handle incident response, ensuring minimal disruption and effective resolution Work closely with engineering and delivery teams to embed secure-by-design principles Monitor systems, triage alerts ...

release engineering, with an emphasis on automation and reliability Infrastructure as code and platform engineering principles Containerisation and orchestration (Docker, Kubernetes) Observability, monitoring, and incident response in production systems AI-augmented development workflows and AIOps practices Alongside delivery, you’ll play a key role in evolving how this ...