226 to 250 of 946 Incident Response Jobs in the UK

Forensic and Investigations team within a prominent British universal bank with a significant global presence. This role involves leading complex digital forensic and cyber incident investigations, aiming to deliver positive outcomes for both internal and external stakeholders. You will enhance the organisation's investigative capability and safeguard against insider … digital evidence by gathering, preserving, and documenting data in a forensically sound manner to ensure admissibility for legal and employee tribunals/proceedings. Implement incident response procedures, ensuring swift investigative actions, containment of threats, and conducting post-incident analysis to understand root causes and prevent future occurrences. … improvements by offering insights from investigation findings to enhance cybersecurity measures and prevent future incidents. Maintain skills and knowledge in Cyber Forensic Investigations and Incident Response to stay updated on technological advances, threats, legal changes, and professional development. Assistant Vice President Expectations Consult on complex issues; advise People More ❯

our engineering operations, bringing together SRE principles and modern platform engineering practices. This includes combining principles of SRE - such as service-level reliability, observability, incident response - with platform engineering practices like GitOps, Infrastructure as Code, DevSecOps automation, and self-service enablement, to help development teams ship faster, safer … efficiently. What you'll be doing: Designing and operating highly reliable, scalable, and secure Azure-based platforms Applying SRE principles like SLOs, observability, and incident management to drive service reliability Building Infrastructure as Code using Terraform (v1.7+) and GitOps workflows Enabling teams through platform tools, reusable Terraform modules, and … Functions, Logic Apps, etc.) Improving monitoring and alerting with Datadog, Grafana, ELK, and proactive failure detection Participating in the on-call rota and leading incident response workflows and blameless postmortems Coaching engineers, upskilling teams, and contributing to a culture of continuous improvement Driving cost awareness through FinOps practices More ❯

infrastructure and operations teams to integrate security into network, identity and virtualisation platforms. Develop and maintain infrastructure security standards, playbooks and runbooks. Assist with incident response and troubleshooting for infrastructure-related security events. Monitor and ensure compliance with security policies and regulatory requirements (e.g. CIS, NIST, ISO … ESXi and virtual machine infrastructure. Lead firewall rule audits, optimisation and policy enforcement. Develop and maintain infrastructure security standards, playbooks and runbooks. Assist with incident response and troubleshooting for infrastructure-related security events. Monitor and ensure compliance with security policies and regulatory requirements (e.g. CIS, NIST, ISO More ❯

infrastructure and operations teams to integrate security into network, identity and virtualisation platforms. Develop and maintain infrastructure security standards, playbooks and runbooks. Assist with incident response and troubleshooting for infrastructure-related security events. Monitor and ensure compliance with security policies and regulatory requirements (e.g. CIS, NIST, ISO … ESXi and virtual machine infrastructure. Lead firewall rule audits, optimisation and policy enforcement. Develop and maintain infrastructure security standards, playbooks and runbooks. Assist with incident response and troubleshooting for infrastructure-related security events. Monitor and ensure compliance with security policies and regulatory requirements (e.g. CIS, NIST, ISO More ❯

responsibilities include integrating external supplier APIs, implementing Software Reliability Engineering (SRE) best practices, and ensuring seamless collaboration across teams. The team enhances resilience, observability, incident management, and disaster recovery (DR) practices while working closely with Peri Pantry, Stock Management, and Accounting, Banking, and Property (ABP) teams. Key Responsibilities Technical … Solution Design : Ensure the right technologies and architectures are used to enhance system performance, maintainability, and security. Observability & Resilience : Establish best practices for monitoring, incident response, and disaster recovery. Best Practices & Governance : Define engineering standards and drive their adoption across teams. Vendor & API Management : Oversee integrations with third … Product and Head of Engineering to define and implement a strategic roadmap for stock systems. Team Mentorship : Support engineers in developing their technical skills. Incident Management : Ensure effective post-mortem reviews and embed reliability best practices into development processes. Skills & Experience Proven experience leading engineering teams in designing and More ❯

responsibilities include integrating external supplier APIs, implementing Software Reliability Engineering (SRE) best practices, and ensuring seamless collaboration across teams. The team enhances resilience, observability, incident management, and disaster recovery (DR) practices while working closely with Peri Pantry, Stock Management, and Accounting, Banking, and Property (ABP) teams. Key Responsibilities Technical … Solution Design : Ensure the right technologies and architectures are used to enhance system performance, maintainability, and security. Observability & Resilience : Establish best practices for monitoring, incident response, and disaster recovery. Best Practices & Governance : Define engineering standards and drive their adoption across teams. Vendor & API Management : Oversee integrations with third … Product and Head of Engineering to define and implement a strategic roadmap for stock systems. Team Mentorship : Support engineers in developing their technical skills. Incident Management : Ensure effective post-mortem reviews and embed reliability best practices into development processes. Skills & Experience Proven experience leading engineering teams in designing and More ❯

systems you help to create. Work across the full stack, from frontend features to backend services and infrastructure. Participate in on-call rotations and incident response, contributing to a reliable and resilient system. Customer Focus: Develop features that are focused on providing the best value to our customers … documentation. Experience with test-driven development, continuous integration, and continuous delivery. Operational Awareness: Familiarity with operational aspects, such as on-call duties, troubleshooting, and incident response in a production environment. Soft Skills: Excellent communication skills, both written and verbal, with the ability to effectively convey technical concepts to More ❯

of advanced cybersecurity services, safeguarding organizations against evolving digital threats. We are seeking an Associate Director who will spearhead the Forensics, Threat Intelligence and Incident Response practice area for EMEA. This pivotal role involves leading a team of elite cybersecurity consultants, overseeing a substantial revenue stream and driving … proposals and articulating methodologies leveraging data and technology. Proactive awareness of cybersecurity trends and service development. Experience delivering proactive services like tabletop exercises and incident response training. If Verizon and this role sound like a fit for you, we encourage you to apply even if you don't More ❯

ll spearhead the evolution of our digital landscape, driving innovation and excellence. This role involves applying software engineering techniques, automation, and best practices in incident response to ensure the reliability, availability, and scalability of our systems, platforms, and technology. Key skills and experience required include: Oracle Enterprise Manager … cross-functional teamwork This role is based at our Knutsford campus. Purpose of the role: To utilize software engineering, automation, and best practices in incident response to maintain system reliability, availability, and scalability. Accountabilities include: Ensuring system performance and scalability through monitoring, maintenance, and capacity planning Responding to More ❯

manage system health. Skills and Strengths: AWS (Amazon Web Services) Auto Scaling Fargate Route53 Observability tools (New Relic, DataDog, Splunk) Containerization (Docker, Kubernetes, Fargate) Incident Response IaC (Terraform, CloudFormation, Helm, CDK) Scripting (Ansible, Bash, Python, GO) CI/CD Primary Job Responsibilities: Design and support EC2/ECS … solutions to improve scalability and efficiency. Implement security best practices across AWS environments, ensuring compliance with industry standards and safeguarding cloud infrastructure. Develop automated incident response mechanisms and self-healing solutions to minimize downtime and enhance fault tolerance. Diagnose and resolve infrastructure, networking, and application-related performance issues More ❯

Yesterday job requisition id R-150789 Senior Security Threat Hunter- Salary £60,000 - £70,000 DOE. A fantastic opportunity has arisen with the Cyber Incident Team for a Senior Security Threat Hunter to join the team. If you feel you have the experience and skills required then we would … diverse set of infrastructures/platforms utilising leading security platforms and tools utilising your own research and input from other teams within Aviva. Lead incident response activities escalated to Tier 3 and engage with security teams and business stakeholders to mitigate risk and ensure that Aviva's customers … the service they offer meets and maintains our high quality and standards, offering your guidance and understand the impact to Aviva if a cyber incident occurs within their estates. Supporting the wider business with your experience and expertise along with representing the threat hunting team on internal projects when More ❯

and ensure smooth feature rollouts with minimal downtime. Define and manage monitoring, logging, and telemetry using tools like AWS Cloudwatch, Prometheus, and Datadog. Lead incident response and production troubleshooting with a proactive and preventative mindset. Drive automation initiatives with tools like GitlabCI, Terraform/OpenTofu, Ansible, and scripting … IAM). Experience with Kubernetes and Argo CD in production settings. Deep knowledge of application security protocols and infrastructure-level security practices. Real-time incident response skills. Proficient in infrastructure as code, monitoring, and automation. Excellent communication, collaboration, and problem-solving skills. Relevant certifications in AWS would be More ❯

and ensure smooth feature rollouts with minimal downtime. Define and manage monitoring, logging, and telemetry using tools like AWS Cloudwatch, Prometheus, and Datadog. Lead incident response and production troubleshooting with a proactive and preventative mindset. Drive automation initiatives with tools like GitlabCI, Terraform/OpenTofu, Ansible, and scripting … IAM). Experience with Kubernetes and Argo CD in production settings. Deep knowledge of application security protocols and infrastructure-level security practices. Real-time incident response skills. Proficient in infrastructure as code, monitoring, and automation. Excellent communication, collaboration, and problem-solving skills. Relevant certifications in AWS would be More ❯

and ensure smooth feature rollouts with minimal downtime. Define and manage monitoring, logging, and telemetry using tools like AWS Cloudwatch, Prometheus, and Datadog. Lead incident response and production troubleshooting with a proactive and preventative mindset. Drive automation initiatives with tools like GitlabCI, Terraform/OpenTofu, Ansible, and scripting … IAM). Experience with Kubernetes and Argo CD in production settings. Deep knowledge of application security protocols and infrastructure-level security practices. Real-time incident response skills. Proficient in infrastructure as code, monitoring, and automation. Excellent communication, collaboration, and problem-solving skills. Relevant certifications in AWS would be More ❯

edge/deployed environments or cloud . Demonstrable knowledge of cyber detection (e.g., threat identification/intelligence, real-time monitoring, anomaly detection) and cyber response (e.g. incident response, eradication and remediation, recovery, post-incident analysis). DevSecOps. Zero Trust Architecture (ZTA) expertise for enterprise, cloud and More ❯

Incident Assurance Manager - RAN/Mobile telecoms 3-Month Contract Reading/Home Join a leading telecom service provider as an Incident Assurance Manager. You'll play a key role in ensuring service stability by overseeing critical incident management processes and coordination across multiple partners and teams. … Responsibilities of the Incident Assurance Manager include: Manage end-to-end incident processes, ensuring swift resolution and minimal business disruption. Coordinate major incident response across partners and tech teams. Lead post-incident reporting and ensure key stakeholders are informed. Enhance incident workflows through automation … and streamlined escalation paths. The successful Incident Assurance Manager will have: Proven experience in IT Operations or Service Management (ITIL environment). Strong stakeholder management, communication, and coordination skills. Ability to stay calm under pressure and solve problems proactively. Experience with ITSM tools (e.g., BMC Remedy). Knowledge of More ❯

Incident Assurance Manager - RAN/Mobile telecoms 3-Month Contract Reading/Home Join a leading telecom service provider as an Incident Assurance Manager. You'll play a key role in ensuring service stability by overseeing critical incident management processes and coordination across multiple partners and teams. … Responsibilities of the Incident Assurance Manager include: Manage end-to-end incident processes, ensuring swift resolution and minimal business disruption. Coordinate major incident response across partners and tech teams. Lead post-incident reporting and ensure key stakeholders are informed. Enhance incident workflows through automation … and streamlined escalation paths. The successful Incident Assurance Manager will have: Proven experience in IT Operations or Service Management (ITIL environment). Strong stakeholder management, communication, and coordination skills. Ability to stay calm under pressure and solve problems proactively. Experience with ITSM tools (e.g., BMC Remedy). Knowledge of More ❯

technology service providers and oversee service delivery. Lead the development and maintenance of the security controls framework and compliance. Manage security operations, threat monitoring, incident response, and testing. Define and steer cybersecurity programs, ensuring industry best practices and emerging threats are addressed. Ensure renewal of key certifications like … Cyber Essentials+ and ISO27001. Participate in the Risk Committee. Collaborate on security policies, procedures, and standards across the IT estate. Lead incident management, response, and tabletop exercises. Oversee security awareness, training, and communication initiatives. Report on the effectiveness of security controls and compliance. Participate in security assessments, audits … required Minimum 5 years' relevant experience in a law firm or regulated environment. Certifications such as CISM, CISSP. Experience with IT security systems, governance, incident management, and best practices. Deep knowledge of security and infrastructure principles and tools. Familiarity with standards like ISO 27001, NIST, GDPR. Strong analytical, problem More ❯

and DevOps teams to integrate security into CI/CD pipelines. Lead deployment of zero-trust architectures, security automation, and monitoring solutions. Support security incident detection, investigation, and response with SOC and Red Team. Threat & Vulnerability Management Conduct regular security assessments, vulnerability scans, and penetration tests, prioritizing remediation … efforts. Develop automated solutions for common security risks and misconfigurations. Monitor security logs and alerts, refining detection and response procedures. Risk & Compliance Support Collaborate with GRC and compliance teams to implement controls aligned with ISO 27001, NIST, SOC 2, and GDPR. Assist in security reviews for vendors, M&A … scripting (Python, PowerShell) and infrastructure-as-code (Terraform, Ansible). Deep understanding of vulnerability management, penetration testing, and security hardening. Knowledge of SOC processes, incident response, and forensics. Strong grasp of zero-trust architectures, identity security, and secure DevOps practices. Ability to work collaboratively across IT, DevOps, compliance More ❯

We have a fantastic opportunity for a talented individual to join Marsh in our Cyber Claims and Incident Management team in London. This is a hybrid role that has a requirement to work three days per week in the office. The role: Cyber Claims Advocate Marsh is seeking a … dedicated Cyber Claims Advocate to join our dynamic Cyber Claims and Incident Management Team. This is an exciting opportunity for Claims Specialists or individuals with 1-3 years of experience in Cyber Claims to enhance their career in a fast-paced environment. This role offers the opportunity to learn … and excess insurers, advocating for clients through submissions and escalation meetings as necessary. Respond to client and broker queries regarding policy coverage and cyber incident response pre-incident/loss. Assist in managing vendor relationships and creating visually appealing content and presentations. What you need to have More ❯

Company: Marsh Description: We have a fantastic opportunity for a talented individual to join Marsh in our Cyber Claims and Incident Management team in London. This is a hybrid role that has a requirement to work three days per week in the office. The role: Cyber Claims Advocate Marsh … is seeking a dedicated Cyber Claims Advocate to join our dynamic Cyber Claims and Incident Management Team. This is an exciting opportunity for Claims Specialists or individuals with 1-3 years of experience in Cyber Claims to enhance their career in a fast-paced environment. This role offers the … and excess insurers, advocating for clients through submissions and escalation meetings as necessary. Respond to client and broker queries regarding policy coverage and cyber incident response pre-incident/loss. Assist in managing vendor relationships and creating visually appealing content and presentations. What you need to have More ❯

Company: Marsh Description: We have a fantastic opportunity for a talented individual to join Marsh in our Cyber Claims and Incident Management team in London. This is a hybrid role that has a requirement to work three days per week in the office. The role: Cyber Claims Advocate Marsh … is seeking a dedicated Cyber Claims Advocate to join our dynamic Cyber Claims and Incident Management Team. This is an exciting opportunity for Claims Specialists or individuals with 1-3 years of experience in Cyber Claims to enhance their career in a fast-paced environment. This role offers the … and excess insurers, advocating for clients through submissions and escalation meetings as necessary. Respond to client and broker queries regarding policy coverage and cyber incident response pre-incident/loss. Assist in managing vendor relationships and creating visually appealing content and presentations. What you need to have More ❯

robust risk management framework, proactively identifying, assessing, and mitigating cybersecurity risks in alignment with business goals. Define standards for operational security including vulnerability management, incident detection and response, threat intelligence, and third-party/vendor security management. Act as the key internal and external security spokesperson, confidently communicating … track record of building and embedding security awareness and risk management frameworks across business and technical teams. Strong operational experience, including establishing and managing incident response, vulnerability management, and security monitoring programs. Ability to communicate complex security topics clearly to non-technical stakeholders, influencing executives, customers, and teams. More ❯

of a 24/7 operation with four shift teams working in a standard rotation. They are responsible for utilising the SOC's Security Incident and Event Management (SIEM) toolsets to detect and investigate potential Security and Service Incidents occurring within the monitored networks. These roles require a minimum … using the Protective Monitoring platform and Internet resources to identify cyber-attacks/security incidents. Categorise all suspected incidents in line with the Security Incident policy Recognise potential, successful and unsuccessful intrusion attempts and compromises through reviews and further analysis of relevant event detail and incident summary information. … Write up high quality security incident tickets using a combination of existing knowledge resources and independent research. Assist with remediation activities and conduct permitted remediation (or support customer stakeholders) to inhibit cyber-attacks, clean up IT systems and secure networks against repeat attacks. Produce security incident review reports More ❯

DevOps teams to embed security into CI/CD pipelines. Lead the deployment of zero-trust architectures, security automation, and monitoring solutions. Support security incident detection, investigation, and response alongside the SOC and Red Team. Threat & Vulnerability Management Perform regular security assessments, vulnerability scans, and penetration tests, prioritizing … remediation efforts. Develop automated remediation for common security risks and misconfigurations. Monitor and analyze security logs and alerts, fine-tuning detections and response playbooks. Risk & Compliance Support Work with GRC and compliance teams to implement security controls aligned with ISO 27001, NIST, SOC 2, and GDPR. Support security reviews … scripting (Python, PowerShell) and infrastructure-as-code (Terraform, Ansible). Deep understanding of vulnerability management, penetration testing, and security hardening. Knowledge of SOC processes, incident response, and forensics. Strong grasp of zero-trust architectures, identity security, and secure DevOps practices. Ability to work cross-functionally with IT, DevOps More ❯