51 to 75 of 194 Incident Response Jobs in the UK excluding London

investigate security events across cloud and internal infrastructure using SIEM/security monitoring tools, distinguishing genuine threats from false positives. Lead and support incident response activities (containment, remediation, recovery and post-incident reviews). Own vulnerability management follow through: track remediation actions, validate fixes, and ensure closure ...

investigate security events across cloud and internal infrastructure using SIEM/security monitoring tools, distinguishing genuine threats from false positives. Lead and support incident response activities (containment, remediation, recovery and post-incident reviews). Own vulnerability management follow through: track remediation actions, validate fixes, and ensure closure ...

improved access controls. Escalate incidents to Level 2 OT SOC or OT Cybersecurity Engineers as per service documentation (i.e. Playbooks or Alert/Incident Management processes). Adhere to all internal service-related processes such as Alert & Incident Management processes. Assist with the creation of processes … when required and to have these align with existing processes. Document incident reports including actions taken in SOC Ticketing systems. Analyse data from logs, network traffic, and forensics to create detailed reports on findings and lessons learned. To be utilised in daily/weekly SOC reports for OT Environments. ...

scripts, and internal platform tooling. Support self-service capabilities for application and product teams. Operational Support (BAU) Support day-to-day platform operations and incident response. Apply patches, upgrades, and maintenance to platform components. Assist with onboarding new cloud environments and subscriptions/accounts. Documentation & Collaboration Maintain engineering documentation ...

control frameworks Lead security audits, manage remediation, and track follow-up actions Cyber Operations Oversight Manage vulnerability scanning programmes, penetration testing, and remediation Oversee incident management processes and escalation procedures Maintain incident response, disaster recovery, and business continuity plans Ensure high standards for access control, monitoring, encryption ...

intentionally progressing) into a cybersecurity-focused career. What We're Looking For Essential Strong systems administration or network engineering background. Hands-on experience in incident response, vulnerability management, or security operations. Clear, articulate communicator able to explain technical risk to non-technical stakeholders. Strong technical troubleshooting skills across ...

deployment pipelines. Ensure repeatable, reliable, and secure deployment processes aligned with best practices. Operational Excellence & SRE Support Contribute to SRE practices including monitoring, incident response, latency management, and service reliability improvements. Support observability initiatives by integrating monitoring, logging, and alerting tools. Troubleshoot platform issues across Red Hat, Kubernetes … maintaining strong communication with technical teams and stakeholders. This role is for a UK based Utility company and hence demands a highly experienced Major Incident Manager. severity incidents. functional technical teams to diagnose and resolve issues. Incident Activities dive reviews to identify root cause and preventive actions. ...

with the best standard technologies. The SOC Analyst reports to the SOC Manager. The SOC Analyst conducts a range of analysis and assists the incident response team with investigations that need to be escalated to an embedded member of staff. The SOC Analyst key responsibilities are: Effective Tier … threat hunting in collaboration with the CTI function Assist IR in HR and InfoSec related investigations Ensure the timely triage and remediation of any incident or request tickets raised to the SOC Participate in the activity of adding/removing URLs from the AcceptList and BlockList Attend routine security ...

experience and Windows Server knowledge. Key Responsibilities: Technically Proficient Implementing Security Controls Administration of SIEM tools and Security Controls (Sentinel, Defender, DarkTrace) Incident Response Security Operations Centre Vulnerability Management & Reporting Continuous Improvement Training & Awareness Secure Architecture Support Compliance and Framework Alignment Essential Skills: Experience with Microsoft Sentinel, Microsoft ...

involvement with strategic planning and leadership Shaping and owning our AWS infrastructure and reliability roadmap Defining and embedding SRE best practices, including monitoring, alerting, incident management, and capacity planning Establishing and evolving SLOs, SLIs, and error budgets in partnership with engineering teams Acting as a senior technical voice … architecture discussions and operational decision-making Supporting incident response and post-incident reviews, with a focus on long-term improvement Developing, mentoring, and empowering a high-performing engineering team Essential Skills & Experience Experience in a senior SRE, Infrastructure, or Platform leadership role Strong, practical experience operating production ...

Site Defender (KSD), WAF, and Bot Manager Implement and manage security policies, rulesets, and traffic routing configurations Monitor web traffic, identify threats, and support incident response activities Tune WAF and bot protection rules to minimise false positives and enhance effectiveness Support CDN configuration, caching strategies, and performance optimisation ...

with the latest security threats and firewall technologies to recommend improvements. Document firewall configurations, changes, and procedures for audit and knowledge sharing. Participate in incident response and disaster recovery planning related to firewall infrastructure. Qualifications: Bachelor's degree or equivalent education and experience. Preferred: Bachelors degree in engineering ...

wants to lead technology service operations and ensure consistent, reliable performance across systems and platforms? In this role, you'll take ownership of incident management, service governance, and operational excellence, helping to deliver a seamless technology experience across the organisation. What you'll do: Lead incident and problem … management, driving effective technical response and resolution. Manage SLAs, service performance dashboards, and continuous improvement initiatives. Oversee cyber security incident response and vulnerability remediation. Coordinate service desk triage and out-of-hours support coverage. Partner with key stakeholders across Product, Engineering, and Compliance to support audit readiness ...

rollback frequency Standardise release processes across engineering teams Implement progressive delivery practices Reliability & Observability Define and track SLIs/SLOs Enhance monitoring, alerting and incident response processes Lead post-incident reviews and root cause analysis Drive reduction of operational toil Security & Compliance Embed DevSecOps controls into pipelines … preferred) CI/CD tooling experience (GitHub Actions, GitLab CI, Jenkins) Experience operating production SaaS environments Strong observability tooling knowledge (Datadog, Prometheus, ELK etc.) Incident management and root cause analysis experience Experience in regulated or security-conscious environments is highly desirable ...

segmentation platforms, Sophos, Mimecast, XDR solutions, vulnerability scanners and hardening baselines. Managing firewalls, VPNs, secure remote access and segmentation controls. Improving detection and response by working closely with SIEM/SOC teams. Ensuring critical logging, monitoring and compliance standards are always met. Automating deployments and controls using PowerShell, Python … Terraform or similar tools. Supporting vulnerability assessments and driving remediation across the estate. Contributing to secure design reviews across applications, infrastructure, and cloud services. Incident response experience is desirable but not essential. We're looking for someone with: Strong hands-on experience with network infrastructure and security, segmentation ...

events from Microsoft Security Suite Perform initial triage and analysis of security incidents to determine severity and impact. Escalate verified incidents to the incident response teams. Ensure timely triage and remediation of any incidents Follow standard operating procedures (SOPs) for incident handling and escalation. Assist in improving … standard operating procedures (SOPs) Assist in identifying tuning opportunities and reduction of false positives Communicate with customer stakeholders during incident investigation Maintain awareness of current threats and vulnerabilities relevant to customers. Required Skills Basic understanding of cybersecurity principles and threat landscapes Experience working with Microsoft Security tools (Sentinel, Defender ...

DevOps tooling (Ansible, Terraform, CI/CD, Git) Experience working with Azure or similar cloud platforms Solid understanding of infrastructure reliability, monitoring, and incident response Strong problem-solving skills and ability to work across multiple priorities Willingness to work in secure, regulated environments (SC eligibility required) Desirable experience ...

cyber trends Assisting with security initiatives and implementations Overseeing the remediation of vulnerabilities raised by MSSP penetration tests, producing supporting documentation Assisting with incident response What you'll need to succeed Experience of rule creation and definition within Google SecOps is ideal, alongside, MS Defender for Endpoint ...

configured to best practice and delivering maximum protection. You'll conduct vulnerability scanning, oversee patching cycles, perform cloud security assessments, refine playbooks, support incident response and collaborate with project and change teams to ensure new deployments and business initiatives are delivered securely. This is a hands-on, high ...

operations, clients, environments and SIEM technologies. Gain exposure to industry frameworks such as MITRE ATT&CK and NIST. Build foundational knowledge across: Threat detection & incident response SOC processes and tooling Log analysis Microsoft security technologies (including Sentinel, Defender, Entra ID) Automation and scripting fundamentals The successful applicant will ...

will receive an additional allowance. Specific projects the team are working on include rolling out an observability tool to enhance system monitoring and incident response, streamlining deployment processes to reduce downtime and speed up feature delivery, and developing a CLI tool to automate tasks and boost developer productivity. ...

will receive an additional allowance. Specific projects the team are working on include rolling out an observability tool to enhance system monitoring and incident response, streamlining deployment processes to reduce downtime and speed up feature delivery, and developing a CLI tool to automate tasks and boost developer productivity. ...

will receive an additional allowance. Specific projects the team are working on include rolling out an observability tool to enhance system monitoring and incident response, streamlining deployment processes to reduce downtime and speed up feature delivery, and developing a CLI tool to automate tasks and boost developer productivity. ...

will receive an additional allowance. Specific projects the team are working on include rolling out an observability tool to enhance system monitoring and incident response, streamlining deployment processes to reduce downtime and speed up feature delivery, and developing a CLI tool to automate tasks and boost developer productivity. ...

output across projects. Operational Excellence * Oversee operational support and BAU services across identity platforms. * Maintain uptime targets (SLA 99.999) through proactive monitoring and strong incident response. * Identify risks and maintain architectural integrity. * Participate in the on call rota. Stakeholder Engagement * Build strong working relationships across technology and business functions. ...