26 to 50 of 223 Remote/Hybrid Incident Response Jobs

improvement Lead security engagement within client Design Authority and Enterprise Architecture forums Manage integration with the client SOC, including security reporting, SIEM alignment, and incident response coordination Oversee security incident management in line with the client Cyber Security Incident Response Plan Own joiner/mover … Strong understanding of NCSC HMG IAS5, Cyber Assessment Framework (CAF), ISO 27001, and GDPR Hands-on experience integrating with a UK Government SOC, including incident response and security reporting Strong working knowledge of Oracle Cloud security (OCI IAM, Vault, network security, audit, PAM) Experience securing Oracle SaaS applications ...

fully remote and allows you to work from anywhere within Northern Ireland. How you’ll make an impact Lead improvements in detection and response capabilities, continuously optimizing monitoring, alerting, and incident response processes. Mentor junior and mid‐level engineers, setting a high standard in security practices … decisions. Lead automation and process optimization efforts by developing scripts and tools to automate repetitive security tasks as well as to enhance detection and response capabilities through the use of automation and integration of security tools. What will set you up for success Bachelor's degree in Computer Science ...

intelligence products with internal and external stakeholders and use this intelligence to support vulnerability management and threat hunting activities. Additionally, you will contribute to incident response processes and provide support to colleagues responsible for the IPOs protection, detection, and response capabilities. If you have strong relevant expertise … best practice guidance. Metrics & Reporting Develop and maintain actionable metrics that demonstrate the effectiveness of the organisations vulnerability management and threat intelligence capabilities. Incident Response Support Contribute to and enhance our incident response processes, representing Cyber Security in operational incident calls, keeping stakeholders informed ...

into change initiatives, and security by design principles are applied. Provide 3rd line support to the IT service desk, responding to support requests and incident tickets which have been triaged and escalated to the cybersecurity operations team, and provide out of hours support through participation in an on-call … threat hunting, analysing logs and event data across the firms' systems, and procuring threat intelligence to inform the hunts. Provide technical leadership during security incident response, from identification through to containment, eradication, recovery and post incident review, reporting and recommendations; liaising with external IR providers as required. ...

play a key role in ensuring our systems and processes align with ISO 27001 and SOC 2 requirements, contributing to risk assessments, and supporting incident response activities. Working closely with product and engineering teams, you’ll help embed security into the design of our Microsoft Word … threat modelling, define non-functional security requirements, and review designs for security impact. Guide security considerations in our AI/LLM-enabled products. Risk & Incident Management Own the company-wide incident response plan and lead tabletop exercises. Perform ongoing risk assessments, vendor security reviews, and DPIAs. Ensure ...

matched up to 9%, Hybrid working opportunity, Private Healthcare. Responsibilities Managing checklists and problem management through to handover or resolution. Threat identification and classification. Incident response lead. Report writing. Stakeholder management. Continuous improvement. Junior SOC staff mentoring. Tasks Maintain and monitor effectiveness of security measures and controls. … SIEM and EDR tools. Monitor and configure IDS/IPS. Analyse and create reports for security incidents, root cause, lessons learnt. Create and rehearse Incident Response plans; support audits and red team engagements. Work closely with Cyber Security/IT teams and external support groups. Communicate with individuals ...

This is an initial 6 month contract paying up to £600 per day Outside IR35. The role focuses on supporting security operations monitoring and incident response activities within a large enterprise environment. This role allows remote working with occasional travel to London when required. The successful SOC Analyst … cyber security incidents and responding appropriately • Working with SIEM platforms such as Splunk, Sentinel or QRadar • Conducting threat analysis and triaging security alerts • Supporting incident response and remediation activities • Working with security engineering teams to improve detection capabilities Experience within financial services, fintech or other regulated environments would ...

Cyber Security Manager/Senior Engineer is responsible for security operations, risk management, incident response, policy development and user awareness. The role will manage external 3rd party and internal virtual resources. Client Details The client is a well-established, multi-site professional services organisation operating at national scale. … matters, providing clear guidance to leadership and technical teams Lead engagement with a third-party Security Operations Centre (SOC), ensuring effective monitoring, detection and response Oversee incident management, including coordination, post-incident reviews and continuous improvement actions Own and manage key security platforms, including security awareness ...

network estate (including Cisco Meraki). The role is hands-on and operational, partnering with IT teams to implement security controls, support monitoring and incident response through Sophos MDR, and improve cyber resilience by supporting Disaster Recovery (DR) testing and Business Continuity (BC) readiness. Key Responsibilities Cloud Security … ensure changes follow change control. Enable and review network security logging/alerting (e.g., syslog/SIEM integrations where applicable). Monitoring, Detection & Incident Response (Sophos MDR) Act as the internal technical point of contact for Sophos MDR and ensure smooth collaboration with MDR analysts. Maintain coverage ...

clients—from fast-growing organizations to large enterprise and public sector environments. Our security function supports clients through capabilities such as Managed Detection and Response (MDR), threat hunting, vulnerability management, penetration testing, and incident response, alongside advisory-led consulting engagements. The organization is experiencing strong growth … cyber threats across varied environments. You will support and mentor junior analysts, lead complex investigations, and contribute to the ongoing development of detection and response capabilities. This role is suited to a security professional with a solid technical background, a collaborative approach, and an interest in progressing into leadership ...

structure and rigour without bureaucracy, and the confidence to hold people to account and the judgement to bring them with you. Service Ownership and Incident Management Quarterback incident response: own the client communication layer during P1s and major incidents, coordinating with engineering leads and ensuring every stakeholder … informed, never surprised. Foster a culture of fast incident response; drive post-incident reviews to completion, with initial RCAs and full RCAs provided within contractually defined timelines. Ensure corrective actions are assigned, tracked, and chased to closure - across engineering teams you do not manage, using influence ...

Cyber Security Consultant - Incident and Vulnerability Management +6 months + +1 day a week on site in London/Preston/Birmingham - 4 days WFH +Inside IR35 + 550 - 580 a day +SC cleared role - must have current active clearance +Sole British nationals only due to nature … project Role Description: Security Incident & Vulnerability Management Consultant (Operational Integrator/SIAM - Transition Role) UK Sole National ONLY Security Clearance required Role Summary The Security Incident & Vulnerability Management Consultant operates within the Operational Integrator (OI) function to support the transition to a multi-supplier (SIAM) model within ...

smoothly in production. You will contribute to the operation of managed Kubernetes platforms (AKS/EKS), supporting best practices in monitoring, automation, and incident response, while continuing to develop your expertise in cloud-native technologies. About Synalogik Synalogik develops technology that enables organisations to work effectively with complex … supported, and then get the satisfaction of seeing them in products used in Tier 1 businesses. Key Responsibilities Site Reliability Engineering Participate in incident response, troubleshooting, and post-incident reviews Help reduce operational toil through automation and process improvements Contribute to improving system availability, performance, and scalability ...

Security Operations Model) Lead on investigations, and respond to security incidents across multiple client environments Perform threat detection, triage, analysis, and remediation activities Lead incident response activities and provide technical guidance to junior analysts Analyse alerts from SIEM, EDR, IDS/IPS, and other security tooling Conduct threat … security monitoring Support continuous improvement of SOC processes, playbooks, and operational procedures Collaborate with infrastructure and engineering teams to strengthen security posture Produce detailed incident reports and client-facing documentation Assist with vulnerability management and security compliance activities Contribute to mentoring and development of junior team members Required Experience ...

tooling Career progression within a growing security function Key responsibilities: Monitor, investigate and respond to cyber security alerts and incidents Lead and support incident response activities Conduct threat hunting and threat modelling exercises Manage vulnerability remediation and penetration testing activities Support and improve SIEM, EDR/…/XDR, IDS/IPS and firewalls Good understanding of Microsoft Azure security technologies Knowledge of NIST, ISO27001 and CIS Controls Experience in incident response, vulnerability management and threat intelligence Relevant certifications such as CISSP, CISM, GIAC or Security+ Soft skills: Strong analytical and problem-solving abilities Calm ...

environment. This opportunity is ideal for early-career cybersecurity professionals with hands-on SOC experience who are looking to grow within Security Operations and Incident Response. The ideal candidate will have experience monitoring and investigating security events, triaging alerts, handling incidents based on threat severity, and documenting findings within … Monitor, analyze, and investigate security alerts and suspicious activity Perform alert triage, threat validation, and escalation based on case severity and business impact Support incident response activities and follow established SOC procedures Investigate phishing emails, endpoint alerts, authentication anomalies, and network-related incidents Document investigation findings, remediation actions ...

teams, and remediation within SLA — and manage external pen tests and targeted assessments. Report regularly on status, SLA performance, and trends. Security operations and incident response: Manage our MSSP partner for 24/7 SIEM and SOC monitoring; ensure telemetry, detections, and playbooks match our threat model. Serve … incident commander for real events, and run regular tabletops and post‐incident reviews. Policy, controls, and risk: Define and maintain Reach’s security policies and control framework. Design, implement, and measure the effectiveness of controls; maintain a risk register; and surface material risk decisions to leadership. Compliance ...

Level Design Documents for Storage Infrastructure Advanced Troubleshooting (deep expertise) -Troubleshooting across Storage/Kubernetes/Hypervisors/Networking/Linux Systems Operations/Incident Response - Participate in On-Call Rotations/Incident Response/Root Cause Analysis Global Collaboration - Collaborate Globally on Change Management/ ...

cyber assurance integrates Knowledge of methodologies (Waterfall, Incremental, SAFE, DevOps) Experienced in managing ITHC activities end-to-end, from initial scoping through remediation Incident Response & Awareness Experienced in developing and managing Cyber Incident Response capabilities, including planning, implementation, and continuous improvement Proven experience designing and delivering ...

maintained. Establish, document, and enforce security controls that safeguard information flows across internal systems, third parties, and public networks. Develop, maintain, and execute incident response and crisis management procedures, ensuring swift and effective mitigation of security events while minimizing business disruption. Monitor security operations to identify anomalies, investigate … compliance activities. GENERAL Be the primary point of contact for all information security alerts and breaches within the Bank and coordinate responses via incident management protocols. Daily administrative tasks, reporting, and communication with the relevant departments in the organization. Maintain security records and documents of controls, security dashboards ...

controls Oversee PKI infrastructure, digital certificates, and certificate lifecycle management Operate SIEM, MDR, and vulnerability management platforms, including liaison with external SOC providers Lead incident response activities aligned to DORA reporting timelines Assess and mitigate emerging cyber and AI-driven threats Support AWS cloud security including IAM, GuardDuty … processes, and security certificates Python scripting for automation and threat analysis Strong AWS security knowledge Experience with SIEM, MDR, vulnerability management, and incident response Knowledge of ISO 27001, DORA, FCA, and NIS2 frameworks Desirable Experience within trading, exchange, or financial services environments This is an excellent opportunity ...

data. The successful individual will: Lead and develop a high-performing Information Security team Oversee security operations including SIEM, endpoint protection, vulnerability management and incident response Manage cyber resilience across both cloud and on-premise environments Act as the senior escalation point for security incidents and response … understanding of cyber security operations, governance and risk management Experience managing and developing technical security teams Strong knowledge of SIEM technologies, cloud security and incident response processes Ability to communicate effectively with both technical teams and senior leadership Experience operating within regulated environments Desirable experience includes: CISSP, CISM ...

across Azure cloud, VMware infrastructure and Cisco Meraki networking. This is an operational cyber security role focused on cloud security, infrastructure hardening, vulnerability remediation, incident response, DR testing and cyber resilience. Key Skills & Experience: • Azure security, Entra ID, Conditional Access, RBAC and Azure Policy • VMware vSphere, vCenter … ESXi • Cisco Meraki, VLANs, VPNs, firewall rules and network segmentation • Security monitoring, incident response and vulnerability management • Sophos MDR or similar MDR/SIEM tooling • Windows/Linux hardening and secure configuration • Disaster Recovery and Business Continuity testing • PowerShell, KQL or Python desirable • Microsoft Defender, Sentinel ...

security infrastructure Monitor and manage security tools including firewalls, SIEM, PAM, IDS, endpoint security, and network access controls Handle cyber security incidents and support incident response and recovery activities Perform root cause analysis and work with problem management teams Plan, test, and implement changes following strict change control … environments) Strong experience in OT/IT security operations and infrastructure Hands-on experience with network security, firewalls, and monitoring tools Experience in incident response and cyber security improvement initiatives Preferred Skills Industrial protocols: DNP3, ICCP, IEC 61850 Standards: NISD, NCSC CAF, ISO 27001/ ...

your background and interests, your work may include: Reviewing security maturity against recognised good practice Supporting Cyber Essentials preparation and assessments Developing and testing incident response plans Carrying out tabletop and simulated incident exercises Assessing and improving supply chain security Advising on secure application and software development … love to hear from you. Apply now and send over your CV for a quick review. Security, Cyber, Cybersecurity, Infosec, Information Security, Incident Response, IR, Consult, Consultant, Consulting, Compliance, 27001, GDPR, DPA, Data Protection, GRC, Governance, Risk Circle Recruitment is acting as an Employment Agency in relation ...