15 of 15 Incident Response Jobs in Wales

Incident Response Analyst Permanent - 52k - 57k + strong benefits Location: Hybrid - South Wales Your new company I am looking to recruit an Incident Response Analyst to join a leader in the utilities space. The business have been investing in their cyber security and IT estate and are continuing to grow and enhance their security posture. The … mitigating threats, at a good time when the company is expanding and investing in its IT and cyber security estate. Working alongside the SOC, the primary responsibility of an incident responder is to rapidly investigate and document cybersecurity incidents within the organisation. Key parts of the role: Monitor and analyse network traffic, system logs, and other data sources to … identify potential security incidents. Investigate alerts and suspicious activity to determine if an incident has occurred. Contain affected systems and networks to prevent the incident from spreading. Implement temporary measures to mitigate the impact of the incident. Work with other teams, such as IT and security operations, to develop and implement a containment strategy. Analyse incident data More ❯

Incident Response Analyst Permanent - £52k - £57k + strong benefits Location: Hybrid - South Wales Your new company I am looking to recruit an Incident Response Analyst to join a leader in the utilities space. The business have been investing in their cyber security and IT estate and are continuing to grow and enhance their security posture. The … mitigating threats, at a good time when the company is expanding and investing in its IT and cyber security estate. Working alongside the SOC, the primary responsibility of an incident responder is to rapidly investigate and document cybersecurity incidents within the organisation. Key parts of the role: Monitor and analyse network traffic, system logs, and other data sources to … identify potential security incidents. Investigate alerts and suspicious activity to determine if an incident has occurred. Contain affected systems and networks to prevent the incident from spreading. Implement temporary measures to mitigate the impact of the incident. Work with other teams, such as IT and security operations, to develop and implement a containment strategy. Analyse incident data More ❯

Major Incident & Problem Manager Grade: 4 Reporting to: Head of IT Service Management Location: Swansea About us IQUW is a speciality (re)insurer at Lloyd’s (Syndicate 1856) underwriting a diverse range of Property, Commercial and Speciality (re)insurance products from Cargo and Marine to Political Violence, Terror and War. We combine data, intelligent automation and human expertise to … help get under the skin of the most difficult insurance risks, helping build products to meet their customer’s needs. The role We are seeking a proactive and experienced Incident and Problem Manager to take ownership of our Incident, Major Incident and Problem Management processes. This role is critical in reducing operational disruption, improving service reliability, and … recurrence. We currently operate a hybrid working model. This entails 3 days per week collaborating with colleagues in the office, and 2 days working from home. Key responsibilities Major Incident Management Own and manage the end-to-end Major Incident process, ensuring efficient and effective response, resolution, and communication. Act as the primary point of escalation during More ❯

Overview Job Description Major Incident & Problem Manager Grade: 4 Reporting to: Head of IT Service Management Location: Swansea About us IQUW is a speciality (re)insurer at Lloyd's (Syndicate 1856) underwriting a diverse range of Property, Commercial and Speciality (re)insurance products from Cargo and Marine to Political Violence, Terror and War. We combine data, intelligent automation and … help get under the skin of the most difficult insurance risks, helping build products to meet their customer's needs. The role We are seeking a proactive and experienced Incident and Problem Manager to take ownership of our Incident, Major Incident and Problem Management processes. This role is critical in reducing operational disruption, improving service reliability, and … recurrence. We currently operate a hybrid working model. This entails 3 days per week collaborating with colleagues in the office, and 2 days working from home. Key responsibilities Major Incident Management Own and manage the end-to-end Major Incident process, ensuring efficient and effective response, resolution, and communication. Act as the primary point of escalation during More ❯

About the Role: We are seeking an experienced Incident Response Analyst for an established utilities business in Newport. This position plays a crucial part in enhancing the cyber resilience of the business by providing actionable insights, informing decision-making, and proactively contributing to mitigating potential threats. The success candidate will collaborate with various teams, both internal and external … to ensure a comprehensive understanding of the threat landscape and response to any incidents. Working within the security operations centre (SOC), the primary responsibility is to rapidly investigate and document cybersecurity incidents within the organisation. Key Responsibilities: (not limited to) Monitor and analyse network traffic, system logs, and other data sources to identify potential security incidents. Investigate alerts and … suspicious activity to determine if an incident has occurred. Contain affected systems and networks to prevent the incident from spreading. Implement temporary measures to mitigate the impact of the incident. Work with other teams, such as IT and security operations, to develop and implement a containment strategy. Analyse incident data to determine the root cause of the More ❯

About the Role: We are seeking an experienced Incident Response Analyst for an established utilities business in Newport. This position plays a crucial part in enhancing the cyber resilience of the business by providing actionable insights, informing decision-making, and proactively contributing to mitigating potential threats. The success candidate will collaborate with various teams, both internal and external … to ensure a comprehensive understanding of the threat landscape and response to any incidents. Working within the security operations centre (SOC), the primary responsibility is to rapidly investigate and document cybersecurity incidents within the organisation. Key Responsibilities: (not limited to) Monitor and analyse network traffic, system logs, and other data sources to identify potential security incidents. Investigate alerts and … suspicious activity to determine if an incident has occurred. Contain affected systems and networks to prevent the incident from spreading. Implement temporary measures to mitigate the impact of the incident. Work with other teams, such as IT and security operations, to develop and implement a containment strategy. Analyse incident data to determine the root cause of the More ❯

resilient digital world. You will act as a critical liaison between client stakeholders and internal operational teams, ensuring the delivery of world-class cyber security services. You'll drive incident response coordination, lead vulnerability management efforts, and ensure service excellence through strategic oversight and hands-on technical engagement. What You'll Be Doing Serve as the key point … of contact and escalation for clients across SOC services. Coordinate incident response activities, leading investigation, containment, and remediation alongside technical teams. Manage post-incident reporting and continuous service improvement initiatives. Support compliance with SLAs and ensure services meet contractual, operational, and quality standards. Lead service reviews and present performance reports to clients (weekly/monthly). Oversee … of experience in technical support for SOC or Cyber Security operations. 5+ years of vulnerability management experience, with demonstrable risk-based prioritisation skills. Proven leadership in high-pressure, crisis-response situations. Strong client relationship management and stakeholder engagement skills. In-depth understanding of incident response frameworks and operational delivery. Experience managing IDS/IPS technologies and security More ❯

environments, and enterprise systems. Reporting to the Cyber Resilience Manager, you'll work across technical and governance functions to ensure ongoing protection against an evolving threat landscape, while supporting incident response, architecture design, compliance, and risk management. Key Responsibilities Design and maintain enterprise-wide security architectures aligned to business objectives and compliance requirements Implement security controls across infrastructure … measures into the software development lifecycle (SDLC) and broader IT processes Engage with architects, IT teams, and external suppliers to embed security into system design Develop and maintain technical incident response plans and support ongoing testing and refinement Monitor industry standards and regulatory changes (e.g., NIS regulations), ensuring ongoing compliance Contribute to internal security awareness and training programmes More ❯

senior stakeholders to communicate risks effectively. What We're Looking For Technical Expertise: 5+ years of experience in threat intelligence, vulnerability management, or cyber threat research. Hands-on technical incident response and management experience. Strong understanding of emerging threats targeting government and CNI. Proficiency in Open-Source research, Windows/Linux operating systems, core networking concepts, and cloud More ❯

level. Generation of Key Components across various platforms (including IBM, Tandem, Unix) together with management of Cryptographic infrastructure. SSH Key Management. Certificate management HSM configuration/installation/support Incident management Change management ITIL Ensure the integrity and availability of cryptographic and key management services to business functions and applications ? Key Accountabilities: Cryptographic Hardware Management - including on site local … core geographic locations globally. Management of Cryptographic infrastructure to include Out of Hours Support, production of monthly management information and risk statements. Adherence to Group IT Security Standards. Problem, Incident & Change Management including root cause identification. Procedure/process development. Project delivery. Cryptographic Hardware Management. Auditable Record Management. Excellent Risk and Control Maintenance Ensure governance and clear record keeping … creation and maintenance. Deep understanding of change disciplines including change and release management and track record of delivering change projects in a timely manner with high quality Strong in incident response procedures and standards, strong communication skills and ability to articulate complex events to management. Experience of Sharepoint, Confluence and JIRA. Unix/Windows O/S skills More ❯

ll design scalable infrastructure, automate operations, and embed SRE principles to improve reliability and reduce toil. This is a highly influential role where you'll guide engineering standards, support incident management, and mentor others in building robust, cloud-native systems using modern DevOps practices. What You'll Bring: Strong experience supporting complex web applications and distributed systems, including Micro … DevOps, GitHub Actions) Solid grasp of cloud infrastructure (Azure or GCP), networking, and security best practices for web platforms Knowledge of SRE frameworks including SLOs, SLIs, error budgets, and incident response Familiarity with testing tools such as Playwright, Vitest, and Jest Understanding of infrastructure-as-code (Terraform) and DevSecOps is a plus Why You Should Apply: You'll More ❯

for Identity and Privileged Access Management Provide architecture reviews for all new systems and major changes to existing ones Support the redevelopment and testing of the organisation's Security Incident Response Plan (across both IT and OT) Input into a 5-year rolling Enterprise Security Strategy, adapting to threat and technology changes Deliver regular KPI reporting aligned to More ❯

the effective use of your personal development plan (known as Sgwrs). Any other reasonable duties requested commensurate with the grade of this role. Required to take part in incident response activities Your qualifications, experience, knowledge and skills In your application and interview you will be asked to demonstrate the following skills and experience using the STAR method More ❯

room staff-police constables, firefighters, paramedics, call handlers, dispatchers - to gather authentic operational requirements. Advise on how ESN integration and device deployment will impact day-to-day emergency operations, incident response, and communications. Facilitate workshops, operational briefings, and site visits to observe current working practices and recommend improvements. Work with technical and service management teams to ensure devices … including devices and their interaction with control rooms (police, fire, ambulance) or in direct partnership with such teams in an operational capacity. Strong understanding of the realities of emergency response, including operational workflows, user priorities, and the pressures of live incidents. Skilled at capturing end-user requirements from diverse roles, from senior officers to frontline responders. Able to translate More ❯

operations, and guide squads in applying SRE principles effectively. Working closely with Principal Engineers, Squad Leads, and cross-functional teams, you'll embed a culture of continuous improvement, proactive incident management, and operational excellence. As a senior team member, you will also mentor engineers, contribute to engineering strategy, and help define best practices across the tribe. Main Duties Leadership … Delivery Design and implement scalable, secure, and highly available systems on cloud platforms (Azure/GCP). Build and maintain monitoring and alerting solutions to ensure observability and proactive incident response. Contribute to CI/CD pipeline design, infrastructure as code, and deployment automation. Lead incident management activities, including post-incident reviews and improvement plans. Develop automation More ❯