51 to 75 of 225 Incident Response Jobs in the UK excluding London

malicious activity using telemetry, SIEM data, and threat intelligence, develop hypotheses based on MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs), and support incident management and response activities when threats are identified. We are open to experienced SOC Analysts where threat hunting, investigations, and proactive detection have formed … tradecraft Experience working with Indicators of Compromise (IOCs) and threat intelligence feeds Solid experience across the security event life cycle, including detection, investigation, and incident management Hands-on experience with EDR/XDR technologies such as Microsoft Defender, CrowdStrike, SentinelOne, or Carbon Black Strong knowledge of networking fundamentals ...

Certificate in Cyber Security Practices, Level 3) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills ...

Security Practices, Level 3) equips you with the practical skills employers in Greater Manchester are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … security principles. Threat Intelligence: Develop expertise to identify risks and analyze threats. Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls. Incident Response: Prepare for and respond to live cyber security incidents. Ethics & Law: Understand legislation and ethical conduct within the cyber security sector. Professional Skills ...

Practices, Level 3) equips you with the practical skills employers in the West Midlands are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … security principles. Threat Intelligence: Develop expertise to identify risks and analyze threats. Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls. Incident Response: Prepare for and respond to live cyber security incidents. Ethics & Law: Understand legislation and ethical conduct within the cyber security sector. Professional Skills ...

Certificate in Cyber Security Practices, Level 3) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills ...

Certificate in Cyber Security Practices, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills ...

Risk Management: Own and manage the security risk management program, including advanced risk assessments, vendor risk reviews, third-party due diligence, and mitigation planning. Incident Response & Improvement: Collaborate on incident coordination, response, root cause analysis, and driving continuous improvement initiatives. Stakeholder Communication: Deliver clear, data-driven ...

external stakeholders. Taking ownership of complex alerts, support threat hunting and intelligence efforts, and contribute to the refinement of detection rules, playbooks, and response procedures. You will be involved in – • Incident Detection & Response • Threat Intelligence and Analysis • Security Monitoring and Detection Engineering • Compliance, Reporting and Documentation • Vulnerability … This would suit an experienced security analyst who has proved experience working in a busy security department, working in security operations. Strong alert triage, incident response, security monitoring, and threat analysis. Experience handling real-world security incidents and working with SIEM, EDR, or vulnerability management tools. Ideally have ...

Model & Ways of Working : Define and implement SRE ways of working and engagement patterns, aligning reliability practices with existing ITSM/ITIL processes (e.g., incident, problem, release and change) and modern engineering delivery. Reliability Measures (SLIs/SLOs) & Error Budgets : Establish service measures and targets (SLIs/SLOs … Insight: Shape observability approaches (metrics/logs/traces) and operational monitoring models that make reliability risks visible and actionable, improving operational decision‐making. Incident Excellence & Continuous Learning: Design incident analysis and improvement loops, including practical approaches that strengthen incident response and drive learning through post ...

/SLOs. You’ll help teams implement pragmatic observability—logging, metrics, and distributed tracing—with actionable alerting, and you’ll contribute to (or lead) incident response and post-incident reviews that drive learning and measurable improvements. Job qualifications We are looking for experience in the following skills … Dynatrace ( or similar tools) , including alerting, dashboards, and root-cause analysis. Exposure to AIOps practices , leveraging automation and intelligence for proactive issue detection and incident reduction. Experience supporting production platforms , including incident management, problem management, and continuous improvement. Ability to mentor junior engineers , influence technical standards ...

strategy and operating model (build vs. buy vs. MSSP); maximize value from SIEM, SOAR, IAM, PAM, EDR, DLP, DSPM, and CTI platforms. Security Operations & Incident Response Accountable for SOC performance (24×7 detection, response, threat hunting), DFIR, purple-team/assurance, ransomware preparedness, and crisis playbooks. Maintain … executive incident communications, regulator notifications, and post-incident improvements. Act as escalation point for any security related service failures or major incidents. Threat and Vulnerability Management Support the TVM team in continuously reducing vulnerability levels in the organisation. Recommend procedural improvements and reporting to drive constant improvement. Drive ...

focused on monitoring, analysing and responding to security threats, while driving continuous improvement across our security operations capability. Youll play a key role in incident response, threat intelligence, vulnerability management and ensuring effective use of our security tools and processes to reduce risk across the technology estate. ...

Responsibilities Proactively monitor security alerts, dashboards, and event queues for a portfolio of clients, identifying sophisticated threats and anomalies. Perform advanced analysis of incident data, logs, and artefacts, validating genuine security incidents and leading initial containment. Take ownership of escalated alerts from Level 1 analysts, performing in-depth investigation … managing the incident response process through to resolution or escalation to senior technical leads. Collaborate with other SOC team members, mentoring and providing guidance to junior analysts to build team capability. Support forensic data collection and evidence management during incident investigations; contribute expertly to incident post ...

technical role where youll investigate complex alerts, support threat-hunting activities, contribute to the tuning of SIEM detections, and help improve SOC processes and response playbooks. Youll also play an important role in mentoring analysts and supporting the continued development of the SOCs technical capability. Technology innovation is part … this role will continue to evolve as AI-driven detection, automation, and response capabilities are introduced. You will: Investigate, triage, and respond to security alerts across customer environments Support the tuning and maintenance of SIEM detection rules alongside senior analysts Carry out proactive threat analysis and support threat-hunting ...

scripts, and internal platform tooling. Support self-service capabilities for application and product teams. Operational Support (BAU) Support day-to-day platform operations and incident response. Apply patches, upgrades, and maintenance to platform components. Assist with onboarding new cloud environments and subscriptions/accounts. Documentation & Collaboration Maintain engineering documentation ...

/SLOs. You’ll help teams implement pragmatic observability—logging, metrics, and distributed tracing—with actionable alerting, and you’ll contribute to (or lead) incident response and post-incident reviews that drive learning and measurable improvements. We are looking for experience in the following skills: Strong experience ...

governance framework for all areas of cyber and information security across the Group. Manage third-party providers responsible for cyber monitoring, detection, and incident response, ensuring strong performance, resilience, and effective risk control. Maintain and take ownership of the Group-wide cyber security risk register, including conducting risk … assessments, threat modelling, and defining mitigation strategies. Take the lead on security incident management, ensuring timely response, clear stakeholder communication, and ongoing improvement of processes. Ensure adherence to relevant regulations and industry standards, including ISO 27001, NIST, GDPR, and the UK Data Protection Act. Promote a strong security ...

governance framework for all areas of cyber and information security across the client. Manage third-party providers responsible for cyber monitoring, detection, and incident response, ensuring strong performance, resilience, and effective risk control. Maintain and take ownership of the client-wide cyber security risk register, including conducting risk … assessments, threat modelling, and defining mitigation strategies. Take the lead on security incident management, ensuring timely response, clear stakeholder communication, and ongoing improvement of processes. Ensure adherence to relevant regulations and industry standards, including ISO 27001, NIST, GDPR, and the UK Data Protection Act. Promote a strong security ...

Develop and enhance monitoring systems to proactively identify performance, reliability, security, and cost issues Monitor platform performance and communicate insights to engineering teams Support incident response and assist with remediation of platform vulnerabilities Identify, plan, and implement improvements to cloud infrastructure and deployment processes Work closely with engineering ...

security‐related client matters Support customer audits, security questionnaires, and due diligence processes Identify, assess, and manage security risks across the business Lead incident response planning and execution Continuously improve detection and response capabilities Act as a trusted advisor to the CTO and broader executive leadership ...

product teams by delivering secure, operationally robust cloud environments * Monitoring platform health, performance and capacity using Azure Monitor and Log Analytics * Participating in incident response, problem management and root cause analysis * Automating operational tasks to improve reliability and reduce manual effort * Creating and maintaining technical documentation and standards ...

them using defined security patterns and security principles. Support the definition, execution and continuous improvement of key cybersecurity processes Including vulnerability & patch management, security incident response, security monitoring, endpoint security, identity and access management, network security, and cryptography. Manage, deliver, and lead cybersecurity and cyber risk assignments, producing ...

escalation point across 1st, 2nd, and 3rd line support Managing and improving cloud platforms, SaaS tools, and network environments Leading troubleshooting and incident response for complex technical issues Overseeing onboarding/offboarding, device management, and access controls Driving automation and reducing manual processes Improving IT processes, documentation ...

Spacelabs Privacy and Security Program is a shared service model with responsibility for Cybersecurity and Privacy by Design, Compliance, Security Testing and Incident Response. As a Spacelabs Senior Cybersecurity Engineer you are responsible for cybersecurity and privacy functions for our Products. The role collaborates with Spacelabs Project Teams … security inquiries complaint and vulnerability reports provide consistent cybersecurity and privacy guidance to Spacelabs and Customer Lead Cybersecurity and Privacy Complaint Event and Incident Invest Requirements: 10+ years of Cybersecurity and Privacy Compliance 5-10 years of Cloud Security Experience (AWS preferred) 5 years experience leading product cyber security ...

modern engineering and traditional ITSM/ITIL practices Establish SLIs, SLOs, and Error Budgets Shape observability strategies using metrics, logs, and traces Design incident response models and post-incident learning loops Reduce toil through automation and engineering excellence Deliver SRE capability assessments and roadmaps … Looking For Extensive experience in SRE, cloud operations, or DevOps Proven consulting or advisory background Experience with AWS, Azure, or GCP Strong observability and incident management expertise Ability to obtain UK SC clearance Modis International Ltd acts as an employment agency for permanent recruitment and an employment business ...