76 to 100 of 242 Incident Response Jobs in the UK excluding London

Principles of Cyber Security, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills ...

security risk Design and implement security mitigations and remediation strategies Monitor emerging cyber threats and recommend appropriate defensive measures Support automated threat monitoring, incident detection and response capabilities Develop and maintain cybersecurity playbooks and incident response procedures Coordinate with third-party security providers during security incidents … Defender, Splunk, SolarWinds, Kubernetes, PowerShell, Python, Azure, AWS, Windows Server, Linux, New Relic, HashiCorp, Zerto and Jira. Experience with AI-driven threat detection and response platforms would also be advantageous. Qualifications CISSP certification preferred Equivalent certifications such as CISM, CEH or GIAC also considered Relevant cybersecurity or information security ...

mitigation activities Oversee security architecture to ensure alignment with wider technology strategy Drive continuous improvement through security assessments, testing, and reporting Ensure effective incident detection, response, and recovery capabilities Lead vulnerability management and remediation across all technology environments Oversee third-party security testing, including penetration testing and phishing … delivering cyber security strategies Strong understanding of security frameworks such as ISO 27001, NIST, Cyber Essentials Expertise in risk management, vulnerability assessment, and incident response Experience with enterprise security tools (e.g. SIEM, IDS, firewalls, encryption technologies) Knowledge of cloud and hybrid security environments Ability to communicate complex technical ...

major technology services organisation is building a new operational command capability in Belfast and is seeking experienced Senior Major Incident Managers to help lead and shape the function. These positions will work closely with the Head of Major Incident Management, taking ownership of high-profile incidents while helping … drive operational excellence, service improvement and best-practice adoption across the wider Major Incident Management team. This is a leadership-focused role suited to professionals who have significant experience owning critical incident response processes, managing senior stakeholder communications, mentoring incident teams and influencing service delivery outcomes. ...

pragmatic cyber security strategy aligned to business priorities, whilst establishing and maintaining security policies, standards, and governance frameworks. You will oversee security operations, including incident detection, response, and continuous improvement, and manage key third-party security service providers, ensuring performance and accountability. Risk management activities will … following experience: Proven interim experience in a Cyber Security Manager/Lead/Security Consultant role. Strong understanding of security operations, threat detection, and incident response practices. Experience working with SIEM, EDR, and monitoring technologies in enterprise environments. Demonstrable knowledge of security frameworks, controls, and governance models. Experience ...

Senior Network Security Engineer Scotland/Hybrid Salary up to £80,000 You will own incidents end-to-end across Incident, Major Incident, Change, Problem, and Service Request workflows (ITIL-aligned), leading real-time response to live DDoS attacks and complex network events as they unfold. … cybersecurity, or infrastructure Degree in Computer Science or a related field Strong networking fundamentals TCP/IP, routing, Layer 13 troubleshooting Proven experience in incident response and customer-facing technical roles The temperament to own and resolve incidents under real pressure Excellent communication skills clear, calm, customer-ready ...

private cloud platform, ensuring systems are actively monitored, vulnerabilities are managed, and services remain secure, compliant and resilient. Key Responsibilities Security Monitoring & Response Monitor SIEM, EDR and platform telemetry. Investigate alerts and perform incident triage and escalation. Conduct structured incident response activities. Vulnerability & Patch Management Execute … Release Security Assess changes for security impact. Ensure deployments meet security requirements. Support secure-by-design implementation. Documentation & Continuous Improvement Maintain SOPs, runbooks and incident documentation. Contribute to improvement of SecOps processes and tooling. Essential Experience & Skills Experience in Security Operations or SecOps. SIEM, EDR and vulnerability management tooling ...

focused on monitoring, analysing and responding to security threats, while driving continuous improvement across our security operations capability. Youll play a key role in incident response, threat intelligence, vulnerability management and ensuring effective use of our security tools and processes to reduce risk across the technology estate. ...

respond to security alerts and events, prioritising based on risk and impact Analyse security data to identify trends, vulnerabilities and emerging threats Support incident response activity, ensuring effective investigation and resolution Oversee vulnerability management and support patching activities, validating effectiveness through scanning and review Operate and support ...

Incident and Resilience Manager (DORA) MUST HAVE PAYMENTS Experience! UK Remote | Permanent Hiring a Incident Manager with strong DORA experience to lead operational resilience, major incident management and recovery planning within a regulated financial services environment. Key experience:* MUST DORA/Operational Resilience * Major Incident Management … Recovery* Financial Services/FinTech* ISO 22301/ISO 27001/NIST* Stakeholder & Regulatory Management This role will lead DORA implementation, resilience testing, ICT incident response, third-party risk and enterprise recovery planning across the business. High-impact role with strong visibility and ownership. Apply now for immediate ...

scalability and efficiency of SOC services. Working across SIEM, endpoint, and orchestration platforms (primarily Palo Alto XSOAR), you will reduce analyst workload, accelerate incident response, and enhance decision-making across customer environments. Key Responsibilities Automation Development – Design, build, and maintain scalable automation workflows across detection and response platforms. Integration & Orchestration – Deliver cross-platform automation enabling fast, reliable response actions. Lifecycle Management – Develop, deploy, and continuously optimise automation for performance, resilience, and coverage. Collaboration & Requirements Gathering – Work with SOC and engineering teams to identify automation opportunities. Documentation – Produce clear documentation to support delivery, troubleshooting, and continuous ...

updates Embed security within the software delivery lifecycle (DevSecOps principles) Support audits and ensure compliance with recognised frameworks (e.g., ISO 27001, Cyber Essentials) Lead incident response and root cause analysis for security and infrastructure-related events Monitoring, Reliability & Support Implement monitoring, alerting, and observability across infrastructure and applications … Knowledge of warehouse or automation systems and integrations (ERP, WMS, PLC/SCADA) Cloud experience (Azure) and containerisation (Docker, Kubernetes) Familiarity with ITIL processes (incident, change, problem management) Relevant certifications (e.g., VMware, Security+, CISSP, Terraform) Personal Attributes Strong ownership and accountability for delivering robust infrastructure solutions Pragmatic problem-solver ...

technical role where youll investigate complex alerts, support threat-hunting activities, contribute to the tuning of SIEM detections, and help improve SOC processes and response playbooks. Youll also play an important role in mentoring analysts and supporting the continued development of the SOCs technical capability. Technology innovation is part … this role will continue to evolve as AI-driven detection, automation, and response capabilities are introduced. You will: Investigate, triage, and respond to security alerts across customer environments Support the tuning and maintenance of SIEM detection rules alongside senior analysts Carry out proactive threat analysis and support threat-hunting ...

internal and external regulatory requirements. Performance & Monitoring Monitor DNS service health, performance, and availability. Optimize query resolution performance and latency. Implement logging, alerting, and incident response processes. Troubleshooting & Support Act as an escalation point for complex DNS and network-related issues. Conduct root cause analysis and implement preventative ...

periodic security reviews and internal control assessments. Cyber Security and Security Monitoring Oversee cyber security measures including vulnerability management, access control, security monitoring and incident detection. Ensure regular vulnerability assessments, security reviews and penetration testing are conducted. Incident Management Establish and maintain procedures for managing information security incidents. … Coordinate investigation, response and reporting of cyber security incidents. Operational Resilience Support the Branch’s operational resilience framework from an information security perspective. Participate in disaster recovery planning, cyber security exercises and resilience testing. Third-Party and Outsourcing Risk Assess information security risks associated with third-party service providers ...

load balancing Soft Skills & Collaboration: Cross-functional collaboration with architecture, developers, security, and infrastructure Agile and DevOps culture familiarity Strong documentation and communication skills Incident response and postmortem analysis Skills, Experience & Knowledge Demonstrated experience in systems engineering and cloud platforms, with a track record of successfully managing ...

rollback frequency Standardise release processes across engineering teams Implement progressive delivery practices Reliability & Observability Define and track SLIs/SLOs Enhance monitoring, alerting and incident response processes Lead post-incident reviews and root cause analysis Drive reduction of operational toil Security & Compliance Embed DevSecOps controls into pipelines … preferred) CI/CD tooling experience (GitHub Actions, GitLab CI, Jenkins) Experience operating production SaaS environments Strong observability tooling knowledge (Datadog, Prometheus, ELK etc.) Incident management and root cause analysis experience Experience in regulated or security-conscious environments is highly desirable ...

hiring a seasoned VP-Level Major Incident Manager to lead end-to-end management of high-severity technology incidents across a complex, regulated environment. You will command incidents from detection through restoration, ensure crisp executive communications, drive cross-technology recovery, and influence decisions that directly impact operational stability. What … Lead and coordinate major incidents across infrastructure, applications, middleware, cloud, EUC, network, identity, data, and third parties Establish and manage incident command structure, including team roles, bridge calls, and communications, ensuring clear ownership and rapid triage Drive restoration by coordinating technical SMEs, vendors, and operations teams; remove blockers ...

maintain security tooling across cloud environments Work with engineering teams to improve security, reliability, and operational resilience Implement monitoring, logging, and alerting solutions Support incident response, troubleshooting, and continuous improvement activities Contribute to automation initiatives and security-by-design practices Requirements Experience working with AWS cloud environments Hands ...

maintain security tooling across cloud environments Work with engineering teams to improve security, reliability, and operational resilience Implement monitoring, logging, and alerting solutions Support incident response, troubleshooting, and continuous improvement activities Contribute to automation initiatives and security-by-design practices Requirements Experience working with AWS cloud environments Hands ...

similar, Industry certifications such as CompTIA Security+, GIAC, CISM, CISSP or other relevant certification preferred Strong understanding of network and end point security, incident response, threat intelligence, and vulnerability management Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS Strong knowledge ...

required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS: SOC Analyst, Security Operations Centre, Microsoft Sentinel, Splunk, SIEM, Incident Response, MITRE ATT and CK, Networking, SC Clearance ...

internal and external regulatory requirements. Performance & Monitoring Monitor DNS service health, performance, and availability. Optimize query resolution performance and latency. Implement logging, alerting, and incident response processes. Troubleshooting & Support Act as an escalation point for complex DNS and network-related issues. Conduct root cause analysis and implement preventative ...

internal and external regulatory requirements. Performance & Monitoring Monitor DNS service health, performance, and availability. Optimize query resolution performance and latency. Implement logging, alerting, and incident response processes. Troubleshooting & Support Act as an escalation point for complex DNS and network-related issues. Conduct root cause analysis and implement preventative ...

impact scenarios Long term, stable contract opportunity THE DUTY MANAGER ROLE: As Duty Manager, you will act as the on-shift operational commander, leading incident response across security, network, infrastructure and physical domains. You will maintain full situational awareness, coordinate cross-functional teams and drive decisive action during … events. This is a leadership focused role centred on operational control rather than hands-on technical delivery. DUTY MANAGER ESSENTIAL SKILLS: Proven experience in incident management, command centre or operational leadership roles Strong cross-domain awareness across SOC, NOC, infrastructure and security Ability to make structured decisions under pressure ...