176 to 200 of 450 Incident Response Jobs in the UK excluding London

Stay abreast of the latest cybersecurity threats and trends, as well as advancements in network security technologies. Develop and enforce policies and procedures for network access, monitoring, and security incident response. What youll bring Youll have professional security certifications such as CISSP, CISM, or equivalent Youll have a minimum of 3 years of experience in network security or a More ❯

you're inspired to think big and bring your ambition to work every day, which is why, at British Airways the sky is never the limit. The role: Cyber Incident Lead This role reports into the Cyber Incident Manager, and works with stakeholders across the organisation to ensure BA is able to effectively identify, respond, and recover from … to, and manage, cyber incidents across the BA estate 24/7 365 days a year as part of an on call function. Responsible for developing, maintaining, and managing incident response processes Ability to present on complex, technical concepts to a wide range of stakeholders of varying seniority and knowledge Confident to engage with business stakeholders and build … ambiguous information Assist with the development of BA's in-house digital forensics capability, supporting various investigation teams across the organisation Work closely with other cyber teams to feed incident data back into tuning our security tool configuration and assessing our deployed controls Effectively liaise and communicate with other Operating Companies (OpCos) within IAG to respond to wider-impacting More ❯

modern Security Operations function at a forward-thinking public sector organisation. About the Role As Security Operations Manager, you'll be responsible for safeguarding critical digital infrastructure, leading the response to cyber threats and ensuring secure access to systems across a large, complex estate. You’ll manage a team of specialists covering Microsoft Entra ID (Azure AD), Microsoft … highly skilled team across identity, M365, and security operations Overseeing day-to-day technical delivery and long-term strategy for identity and access services Driving improvements in security monitoring, incident response and threat management Managing the relationship with an outsourced 24/7 SOC partner Influencing roadmap decisions around tooling, automation and “shift-left” initiatives Acting as the … Operations, Identity & Access Management or Cybersecurity Strong hands-on knowledge of Microsoft Entra ID and Active Directory Experience managing or shaping a technical team Deep understanding of threat detection, incident response and security best practices A collaborative approach to working with internal stakeholders and external partners Location & Working Pattern Hybrid role based near Reading – typically 2–3 days More ❯

get in touch with at UKI.recruitment@tcs.com or call TCS London Office number 02031552100/+44 204 520 2575 with the subject line: “Application Support Request”. Role: Cyber Incident Response Consultant Job Type: Permanent Location: Bradford , Hybrid (3 days On-site) Are you looking to leverage your skills in threat detection, response, and coordination? We have … an exciting opportunity for you - Cyber Incident Response Consultant! Careers at TCS: It means more TCS is a purpose-led transformation company, built on belief. We do not just help businesses to transform through technology. We support them in making a meaningful difference to the people and communities they serve - our clients include some of the biggest brands … and thought leadership. Gain access to endless learning opportunities. Lead a team and their technical growth. Lead projects and inspire both colleagues and stakeholders. The Role As a Cyber Incident Response Consultant, you will be working with the existing security team to support the customer with monitoring alerts and threats received. You will also be responsible for front More ❯

outsourced MDR partner Manage and evolve the Security Operations Centre (SOC), guiding a small team of security professionals Coordinate timely responses to security incidents, ensuring proper documentation and post-incident analysis Collaborate with internal teams to ensure policies, protocols and operations align with business objectives and emerging threats Drive continual improvement in monitoring, incident response, and preventative … Security Service Edge (SSE), and SASE Proven ability to bridge the gap between technical and non-technical stakeholders when communicating security issues A passion for continuous improvement and post-incident analysis to drive security maturity What's on offer: Remote-first working (London office visit only max once per week) 35-hour working week for strong work-life balance More ❯

enable holistic analysis at a global level. Establish performance benchmarks, conduct analyses, and prepare reports on all key CMRS goals and metrics. Develop and maintain standard operating procedures, emergency response procedures, and preventive maintenance programs. Ensure standardization and consistency with best-in-class operating practices. Engage, coach, train, and influence business partners to be an extension of Loss Prevention … them on the appropriate escalation path. Effectively address product loss mitigation, physical security considerations, potential and actual workplace violence incidents per policy as well as conduct testing of the incident response plans. Review incident reports, document periodic trend summaries, and provide updates and recommended actions to management. Take calculated risks and challenge current practices to develop and … to physically be dispatched on to site to investigate and resolve the issue. Travel up to 25% domestically. About the team The Control Room Manager - CMRS (Centralized Monitoring and Response System) position serves as operational resource to support the Security Command Center. This position will provide analytics support and accountability for the overall deliverables of the command center. The More ❯

seeking individuals eager to drive SRE maturity through the research and development of internal tooling, operational enhancements, and deployment pipelines. Ivanti SRE takes a holistic view of operational procedures, incident response procedures, application and infrastructure monitoring, and process automation. Ivanti SRE is a blend of infrastructure, networking, automation, development, and application administration. This is a hands-on technical … position. The ideal candidate will have a software engineering background and strong experience with continuous deployment, SaaS delivery, and production incident response. This role requires that applicants reside in Scotland and be authorized to work in the United Kingdom. About The Team Ivanti Engineering is a driving force behind transforming market challenges into innovative ideas and successful solutions that … environments in AWS and Azure Working with geographically dispersed, cross-departmental teams to solve difficult problems Participate in on-call rotations for 24x7 coverage (follow-the-sun model) for incident response, issue triage, and problem resolution To Be Successful in The Role, You Will Have A BSc in Computer Science, a related field, or equivalent practical experience 3+ More ❯

doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Provide Incident Response support. Maintain, improve and develop team knowledge of SOC tools, security operations and triage. Prepare reports for managed clients to both technical and non-technical audiences and … continuously improve their content and presentation. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. What you will bring : Experience in Security Operations Centre. Demonstrable experience of Managing Microsoft Sentinel or Splunk implementations. Knowledge and experience with Mitre Att&ck Framework. Solid grasp of client-server applications, multi-tier web applications, relational More ❯

hours (based on operational needs) About Us We are a leading cybersecurity reseller and MSP delivering end-to-end security solutions. Our expert team powers proactive monitoring, management, and incident response to safeguard clients' networks, apps, and infrastructure. As our managed firewall and NOC services expand, we need a skilled NOC/Firewall Engineer with hands-on expertise … ensure secure, seamless network connectivity. The Role You will be the frontline technical expert in our 24/7 Network Operations Center, owning the daily monitoring, configuration, troubleshooting, and incident resolution of client firewalls and network security infrastructure. This hands-on position demands sharp technical skills and the ability to thrive in a fast-paced, client-focused environment. What More ❯

market data solutions. Responsibilities Monitor production systems and infrastructure, ensuring uptime and performance metrics are met Troubleshoot, diagnose, and resolve production issues in real time, minimizing service impact Manage incident response, including escalation, root cause analysis, and post-mortem reporting Collaborate with engineering teams to develop and implement monitoring tools, alert systems, and automated recovery processes Analyze system … monitoring role Strong technical skills in Linux/Unix environments, with experience in troubleshooting and debugging Hands-on experience with monitoring tools (e.g. ITRS, Nagios, Zenoss, Prometheus, Grafana) and incident management platforms Scripting experience (e.g., Python, Bash) to automate monitoring and reporting tasks Excellent problem-solving and analytical skills, with the ability to work under pressure in a fast More ❯

do as a Cyber Security Engineer at N Brown? To identify opportunities to improve efficiency in processes through automation Onboarding and integrating AWS native tools to enable detection and response to incidents, vulnerabilities, misconfigurations, etc in our AWS environments. Developing self-service tools for N Brown's engineering teams To work with other operational departments to ensure that our … performing optimally. Implementation of new security tooling To maintain security platforms and ensure they are operating effectively. Support the wider Security team improve their efficiency through automation, and support incident response efforts when required. What skills and experience will you have as Cyber Security Engineer? Knowledge of monitoring cloud environments using cloud native tooling. Experience in software delivery … within PCI DSS, or other compliance frameworks. Software and Technology Coding languages (Python, Teraform) Build pipeline tools (Gitlab, Jenkins) IaaS (AWS, Azure, GCP) & SIEM (ideally Splunk) Endpoint Detection and Response (EDR) tools such as MS Defender APT. Network and Host Intrusion Detection/Prevention tools Web Application Firewalls (ideally Akamai) Vulnerability scanning tools (ideally Rapid7) What’s in it More ❯

improved security posture Demonstrated adaptability and eagerness to learn Excellent command of English, both written and spoken Willingness to work occasional nights and weekends for scheduled DDoS simulations or incident response (note: this is not a 24/7 shift-based role) Desirable Qualifications and Experience Experience in a client-facing technical or consulting role Background in one More ❯

products. Maintain security solutions for our Enterprise and Digital Channels. Manage DDoS, Vulnerability management, and threat intelligence, ensuring layer 6 & 7 defenses are proactive against cyber threats. Participate in incident response and threat mitigation strategies. Required Skills: Strong experience with multiple WAF solutions for edge, cloud, and on-premise environments. Proficiency in WAF tuning, configuration, and web security More ❯

third-party network access, ensuring robust external connectivity aligned with organisational standards. Develop and maintain automation scripts and compliance tools to streamline access provisioning and monitoring. Provide support for incident response and change control processes to ensure flawless service management. Identify and implement opportunities for continuous improvement to improve the resilience, security, and efficiency of third-party network … understanding of modern networking components such as Load Balancers and firewalls. Experience with cloud infrastructure in Azure, GCP, or other public cloud platforms. Familiarity with JIRA, Confluence, and ServiceNow (Incident, Change, and Problem Management modules). A great understanding of automation and Infrastructure as Code (IaC)-experience with tools like Ansible, Terraform, or Python is a plus. About working More ❯

Proactively work with business units and global functions in InfoSec to support internal and external audits and ensure their success, Support other InfoSec teams and local IT teams during incident management and incident response activities, Liaise with Data Protection Officers for the implementation of data protection processes and controls, and during any data privacy issue, Contribute to More ❯

Principles & Technologies. Experience of Security Related Technical Investigations Hands-On Technical Experience of Conducting Vulnerability Scanning & Evaluating Results Commercial Awareness & (Ideally) Experience of PCI DSS (Current Version) Experience with Incident Response Procedures & Investigations Strong Verbal & Written Communication Skills High Attention to Detail Strong Team Player Searches: SOC Analyst/Vulnerability Management/VM Analyst/Information Security Analyst More ❯

protective security standards across digital and physical environments, and supporting the design of proportionate controls. You're comfortable analysing threat intelligence and using those insights to inform decision-making, incident response, and ongoing risk management activities. You're confident engaging with a wide range of stakeholders-from technical teams to senior leaders-and are able to clearly communicate More ❯

SANS CSC, etc. • Understanding of Infrastructure, Networking and Cloud environments Knowledge in Identity & Access Management Knowledge in Backup & Recovery technologies and installation Previous experience working with or within an Incident Response team is advantageous You will be required to pass the Non-Police Personnel Vetting (NPPV) Security Clearance as set by Warwickshire Police At Sword we are growing More ❯

including evidence preparation, control mapping, and client/regulator interaction. Understanding supply chain security considerations, including software and hardware assurance, secure procurement, and third-party risk management. Exposure to incident response planning, resilience testing, or crisis management in OT environments. Ability to support or guide the creation of cybersecurity architecture documentation, reference models, or patterns for OT systems. More ❯

including evidence preparation, control mapping, and client/regulator interaction. Understanding supply chain security considerations, including software and hardware assurance, secure procurement, and third-party risk management. Exposure to incident response planning, resilience testing, or crisis management in OT environments. Ability to support or guide the creation of cybersecurity architecture documentation, reference models, or patterns for OT systems. More ❯

in a large, complex research organisation, including provisioning and managing compute and research storage services. E2 Experience of maintaining IT security and resilience, including risk assessment, vulnerability management, major incident response, and backup/recovery strategies and disaster recovery. E3 Experience of working collaboratively with senior technical and non-technical colleagues with the ability to influence and negotiate More ❯

recovery, and disaster recovery strategies to ensure data protection and business continuity Ability to implement robust monitoring and logging solutions e.g., CloudWatch, to ensure system reliability, observability, and proactive incident response Comfortable working in Agile development teams, translating business requirements into technical solutions, and actively participating in sprint planning, retrospectives, and daily stand-ups Capability to design scalable More ❯

regular security assessments to ensure compliance with industry standards. * Create and maintain security policies to ensure data confidentiality, integrity, and availability. * Communicate security risks and recommendations to management. * Support incident response. Critical Skills for Success * Experience in IT security compliance or a related field. * Proven experience with security audits, risk assessments, and compliance reporting. * Proficiency in using security tools More ❯

ISO 27001, and ideally experience with additional standards such as ISO , and CSR practices. This position may also support broader IT operations, including system testing, asset management, and security incident response. Key Responsibilities Manage and maintain compliance with ISO standards across the business, with a primary focus on ISO 27001. Develop and update documentation and policies to meet compliance More ❯

infrastructure. Security Knowledge: Knowledge of cloud security best practices. Familiarity and competency with Identity and Access Management (IAM). Troubleshooting and Debugging: Strong troubleshooting and debugging skills. Experience in incident response. Experience working to an Agile methodology Ability to write technical documentation Configuration control (Git) Experience with Terraform Desirable Skills Containers and Orchestration: Understanding of containerisation (Docker). Experience More ❯