201 to 225 of 575 Incident Response Jobs in the UK

Ops - Cloud) The Senior Security Analyst (Ops) sits within the Protective Monitoring function of the Cyber Security Operations Centre (CSOC). The CSOC is made up of Protective Monitoring, Incident Management, Threat Operations, Engineering and Consultancy. The role is a Tier 3 analyst in the Cloud Protective Monitoring Sub team. Cyber Operations purpose is to support safe care and … Delivery Unit (CDU). Cyber Improvement Programme. Chief Information Security Office Function (CISO) The post of Senior Security Analyst has been awarded a Recruitment and Retention Premia (RRP) in response to current labour market conditions. In recognition of this, the role attracts an additional monthly RRP payment equal to 20% per annum. Please be aware that RRP is none … contractual and subject to review. Main duties of the job As a Senior Security Analyst Ops you will: Provide Tier 3 security analytics and incident response for service-specific security monitoring. Depose for Security Lead (Analyst) in their absence. Act as an escalation point for Tier 2 Analysts for incidents and investigations. Offer mentorship and guidance to Tier More ❯

Job summary The Senior Security Analyst (Ops) sits within the Protective Monitoring function of the Cyber Security Operations Centre (CSOC). The CSOC is made up of Protective Monitoring, Incident Management, Threat Operations, Engineering and Consultancy. The role is a Tier 3 analyst in the Cloud Protective Monitoring Sub team. Cyber Operations purpose is to support safe care and … Delivery Unit (CDU). Cyber Improvement Programme. Chief Information Security Office Function (CISO) The post of Senior Security Analyst has been awarded a Recruitment and Retention Premia (RRP) in response to current labour market conditions. In recognition of this, the role attracts an additional monthly RRP payment equal to 20% per annum. Please be aware that RRP is none … contractual and subject to review. Main duties of the job As a Senior Security Analyst Ops you will: Provide Tier 3 security analytics and incident response for service-specific security monitoring. Deputise for Security Lead (Analyst) in their absence. Act as an escalation point for Tier 2 Analysts for incidents and investigations. Offer mentorship and guidance to Tier More ❯

Advisory - Expertise in leading the adoption of industry cyber frameworks (e.g., NIST, ISO) and providing high-level advisory to boards, executives, and stakeholders on emerging threats and compliance posture. Incident Oversight & Resilience - Executive capability to govern cyber incident response strategies, ensuring the organisation's preparedness, crisis management, and post-incident assurance processes. Security Governance Principles - Deep More ❯

from day one. Key Responsibilities Lead the development, implementation, and continuous improvement of the RSPBs cyber security strategy. Act as the senior accountable executive for cyber risk, compliance, and incident response. Provide expert advice to the CDTO, trustees, and executive board on cyber threats, risks, and mitigation strategies. Embed a cyber-aware culture across the organisation through training, awareness … campaigns, and policy enforcement. Maintain oversight of cyber KPIs, threat intelligence, and incident response protocols. Ensure compliance with relevant regulatory frameworks (e.g., PCI DSS, NIST, ISO 27001) Build and maintain strategic relationships with external partners, including regulators and the National Cyber Security Centre. Represent cyber security in major organisational change programmes and digital transformation initiatives. Essential Qualifications Professional … full ownership of the cyber function. Strong communication skills with the ability to translate technical risk into business impact. Decisive and calm under pressure, particularly in high-risk or incident scenarios. Skilled in building high-trust relationships with internal and external stakeholders. Desirable Experience in cyber leadership within the charity or not-for-profit sector. Evidence of sector-wide More ❯

day one. Key Responsibilities Lead the development, implementation, and continuous improvement of the RSPB’s cyber security strategy. Act as the senior accountable executive for cyber risk, compliance, and incident response. Provide expert advice to the CDTO, trustees, and executive board on cyber threats, risks, and mitigation strategies. Embed a cyber-aware culture across the organisation through training, awareness … campaigns, and policy enforcement. Maintain oversight of cyber KPIs, threat intelligence, and incident response protocols. Ensure compliance with relevant regulatory frameworks (e.g., PCI DSS, NIST, ISO 27001) Build and maintain strategic relationships with external partners, including regulators and the National Cyber Security Centre. Represent cyber security in major organisational change programmes and digital transformation initiatives. Essential Qualifications Professional … full ownership of the cyber function. Strong communication skills with the ability to translate technical risk into business impact. Decisive and calm under pressure, particularly in high-risk or incident scenarios. Skilled in building high-trust relationships with internal and external stakeholders. Desirable Experience in cyber leadership within the charity or not-for-profit sector. Evidence of sector-wide More ❯

and remediation plans. Execution and delivery Lead disciplined engineering execution across distributed in-house and outsourced teams. Champion 24/7/365 platform operations with SLAs, capacity planning, incident response and post-mortems Implement structured software release governance, migration frameworks, and robust QA practices. Drive predictable delivery (quarterly planning, dependency/risk management, quality gates). Establish … engineering talent to build a high-performance organisation. Who you are as a leader Builder’s mindset & hands‐on pragmatism: comfortable diving into design reviews, deployment decisions, or an incident bridge. Low‐ego, high‐trust collaborator with the CPO/Product leaders; co‐authors a single message to the org; avoids “two captains” anti‐pattern. High EQ: able to … caching) and resiliency patterns (graceful degradation, bulkheads, back pressure), empowering teams to deliver robust solutions. Experience leading and governing SRE/DevOps practices at scale, including CI/CD, incident management, post-mortems, and capacity & cost management, fostering a culture of operational excellence and continuous improvement. Sponsor and champion security leadership, including secure SDLC, identity/authorization (SAML/ More ❯

and remediation plans. Execution and delivery Lead disciplined engineering execution across distributed in-house and outsourced teams. Champion 24/7/365 platform operations with SLAs, capacity planning, incident response and post-mortems Implement structured software release governance, migration frameworks, and robust QA practices. Drive predictable delivery (quarterly planning, dependency/risk management, quality gates). Establish … engineering talent to build a high-performance organisation. Who you are as a leader Builder’s mindset & hands‐on pragmatism: comfortable diving into design reviews, deployment decisions, or an incident bridge. Low‐ego, high‐trust collaborator with the CPO/Product leaders; co‐authors a single message to the org; avoids “two captains” anti‐pattern. High EQ: able to … caching) and resiliency patterns (graceful degradation, bulkheads, back pressure), empowering teams to deliver robust solutions. Experience leading and governing SRE/DevOps practices at scale, including CI/CD, incident management, post-mortems, and capacity & cost management, fostering a culture of operational excellence and continuous improvement. Sponsor and champion security leadership, including secure SDLC, identity/authorization (SAML/ More ❯

management, patch governance, endpoint security (EDR/XDR), and cloud (M365/Azure security). Analytical Skills - capable of interpreting scan results, posture metrics (e.g., Microsoft Secure Score), and incident trends into actionable insights. Delegation & Leadership - experienced in mentoring Analysts and delegating effectively while retaining accountability for outcomes. Collaboration - able to work cross-functionally with Service Delivery, Projects, Account … equivalent certifications. Experience delivering or auditing compliance frameworks. Familiarity with RMM/XDR/EDR, SIEM, and vulnerability scanning platforms. Experience leading small teams (mentoring, guiding). Exposure to incident response and tabletop exercises. What Success Looks Like: Success means the Security Lead is recognised by clients as a trusted advisor who simplifies security into business language. All More ❯

teams to identify and remediate vulnerabilities across hardware and software. Act as the primary technical liaison with the Business Continuity Planning (BCP) team, supporting BIAs and resilience obligations. Lead incident response investigations, mitigation, and ongoing security improvements. Support Cyber Essentials Plus accreditation and contribute to maintaining a strong external security rating. Produce clear reporting, dashboards, and technical documentation More ❯

teams to identify and remediate vulnerabilities across hardware and software. Act as the primary technical liaison with the Business Continuity Planning (BCP) team, supporting BIAs and resilience obligations. Lead incident response investigations, mitigation, and ongoing security improvements. Support Cyber Essentials Plus accreditation and contribute to maintaining a strong external security rating. Produce clear reporting, dashboards, and technical documentation More ❯

Security Manager, you'll be the technical lead in our IT Security team, responsible for: Designing and implementing scalable, secure architectures and strategies Leading threat assessments, vulnerability management, and incident response Driving cloud security governance and DevSecOps frameworks Evaluating and deploying security tools and technologies Ensuring compliance with GDPR, PCI-DSS, SOX, and other standards Leading and mentoring More ❯

Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. Operational Security, SRE & Assurance: Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. Embed security telemetry and observability to enable proactive threat detection and automated response. Apply SRE principles to improve reliability, performance, and maintainability of security services. Lead More ❯

V, VMware) and implement endpoint security solutions including EDR, anti-malware, and DLP. Monitoring & Threat Detection Operate and optimise SIEM tools (Splunk, Microsoft Sentinel) for proactive threat detection and incident response. Vulnerability Management Perform vulnerability assessments using Qualys and Tenable, driving remediation and continuous improvement. Compliance & Governance Align security controls with frameworks such as ISO 27001, NIST, CIS, and More ❯

our company's security strategy, ensuring robust protection for both our assets and those of our clients. This division oversees all aspects of information security, from policy development to incident response. Our Global Security Services and Automation team excels in gathering diverse security requirements from clients and delivering top-tier security infrastructure, tools, and operations at scale. The Security … and recommendations Developing and presenting scalable security solutions and services that meet client needs Collaborating with internal teams to ensure client security requirements are integrated into service delivery Leading incident response efforts and conducting post-incident analysis to prevent future occurrences Organizing tabletop exercises with both clients and our teams Required profile: Ability to engage confidently with More ❯

to organizations of all sizes. The team supports a broad range of cutting-edge security technologies, helping customers secure their networks, applications, and infrastructure through proactive monitoring, management, and incident response. As demand for managed firewall and security services grows, my client is looking for a Network Engineer with strong networking fundamentals and a willingness to learn advanced security … Role Overview As a Network Engineer within the Security Operations Center (SOC), you will help manage and support customer network security environments. Youll work on firewall configurations, troubleshooting, and incident response, while gaining exposure to SIEM tools and advanced security solutions. Full training and development opportunities will be provided. Key Responsibilities Monitor and manage client firewalls, VPNs, and More ❯

/7 coverage Company Overview The team supports a broad range of cutting-edge security technologies, helping customers secure their networks, applications, and infrastructure through proactive monitoring, management, and incident response. As demand for managed firewall and security services grows, my client is looking for a Cyber Security Engineer with strong networking fundamentals and a willingness to learn advanced … As a Cyber Security Engineer within the Security Operations Center (SOC), you will help manage and support customer network security environments. You’ll work on firewall configurations, troubleshooting, and incident response, while gaining exposure to SIEM tools and advanced security solutions. Full training and development opportunities will be provided. Key Responsibilities Monitor and manage client firewalls, VPNs, and More ❯

vulnerability management processes and ensure timely remediation. Manage and maintain LogicMonitor for cloud platform monitoring Create and update logicmodules Configure alert rules and escalation chains Manage ServiceNow integration for incident handling Build and maintain dashboards Optimize alerting to prevent alert storms and missed alerts Provide support for ITHC coordination, access provisioning, and post-engagement resolution. Act as a liaison … Defender for Cloud Deploy and manage Workbooks Configure Azure Policies for security posture Implement regulatory compliance templates Hands-on experience with LogicMonitor and ServiceNow integrations Proven ability to lead incident response and vulnerability remediation efforts Nice-to-Have Skills Familiarity with multi-cloud environments (AWS, GCP) Experience in coordinating ITHC assessments and managing audit findings Knowledge of cloud More ❯

provide actionable recommendations. Produce clear, concise, and accurate reports, Statements of Work, and other deliverables. Collaborate with internal teams to integrate GRC services into Assurance and DFIM offerings. Support Incident Management and Assurance engagements as required. Provide pre-sales support, including scoping engagements, defining deliverables, and contributing to proposals. Maintain up-to-date knowledge of industry frameworks, standards, and … track record of managing client-facing projects from scoping through to delivery.- DESIRABLE Experience working across multiple sectors, including regulated industries (e.g., finance, healthcare, government). - DESIRABLE Experience supporting Incident Response planning, tabletop exercises, or assurance testing engagements. - DESIRABLE Other Requirements Strong understanding of governance, risk, and compliance principles, including key frameworks and regulations such as ISO More ❯

aligned with ISO 27001, NIST, and CIS frameworks. Produce detailed documentation for configurations, processes, and troubleshooting. Collaborate with global cloud, security, and infrastructure teams for consistent, secure operations. Support incident response, root cause analysis, and ongoing improvements. Required Skills & Experience: Extensive experience executing network refresh projects. Strong expertise with Cisco, Palo Alto, HAProxy, and Azure networking. Solid understanding More ❯

to-day live estate monitoring. Cyber Security Analyst/Engineer Responsibilities: With day-to-day reporting to the Group Information Security Officer (GISO), you will combine operational monitoring and incident response with hands-on project delivery. This is a role for a security professional who thrives in both technical and collaborative settings. Key duties include: Monitoring and analysing More ❯

Produce and maintain technical documentation, including architecture diagrams, procedures, and operational controls. Assist with compliance activities and audits relating to ISO 9001, ISO 27001, and other regulatory frameworks. Support incident response, risk assessments and cybersecurity best practices (Cyber Essentials Plus desirable). Handling Active Directory and Group Policy administration Collaborate with cross-functional teams to ensure smooth delivery More ❯

in relevant compliance frameworks (e.g., CIS Benchmarks, EU AI Act, GDPR) and adapt processes accordingly. Operational Security Oversee day-to-day security operations, including vulnerability management, access reviews, and incident response readiness. Provide insights and triage signals from security tooling (SAST, DAST, dependency scanning, SIEM). Work hands-on to perform internal security assessments or penetration testing. Manage More ❯

Essentials/Plus Experience in identity and access management, data protection, and cloud governance Knowledge of network and infrastructure security in cloud contexts Familiarity with business continuity, resilience, and incident response Desirable certifications: CISSP, CISM, CCSP, AZ-500, AWS Security Specialty, CCP, or equivalent #LI-JS2 Together, as owners, let’s turn meaningful insights into action. Life at More ❯

business. Promote the benefits of a robust and secure IT environment ensuring a pragmatic approach to deliver solutions within short timeframes. Be available as part of the Information Security Incident response team when required. Produce other metrics and reporting as required. Ensure compliance with company and other relevant standards/regulations at all times. Experience & Knowledge: Extensive Information More ❯

Azure, or GCP networking services; understanding of hybrid/multi-cloud; automation tools (Terraform, Ansible, Python). Monitoring & Management: Network management systems (SolarWinds, Cisco DNA Center); performance monitoring, logging, incident response. Experience Requirements: 7 10+ years in network engineering, with 3 5 years in architecture/design roles. Proven experience in large-scale or complex enterprise environments. Architectural artefact More ❯