51 to 75 of 223 Remote/Hybrid Incident Response Jobs

opportunity for a Senior Cyber Security Analyst (12 month contract) within Marshall.The focus of this technical role is on threat prevention, detection and response for Marshall, including the configuration and monitoring of a security information and event management (SIEM) system, operating next generation antivirus, intrusion detection/prevention systems … Marshall protection and detection capabilities as risks evolve over time.Responsibilities include:Managing set checklistsProblem management through to handover or resolutionThreat identification and classificationIncident response leadReport writingStakeholder managementContinuous improvementJunior SOC staff mentoringTasks:Helping to maintain and monitor the effectiveness of security measures and controlsConduct and help coordinate, routine security event ...

transformation of our global Security Operations Center. Reporting to the Chief Security Officer, you will architect and scale a next‐generation SOC — advancing incident response, integrating cutting‐edge threat intelligence, and strengthening the systems that protect and sustain our digital operations. This is an opportunity to build something … senior escalation point for complex security incidents and coordinate cross‐functional responses. Threat and Vulnerability Management Integrate advanced threat intelligence into detection and response workflows to identify emerging threats proactively. Develop an automated, risk‐based vulnerability management programme to reduce attack surface. Collaborate with intelligence‐sharing communities to enhance ...

Must have 2+ years in Pre-Sales or similar role within an MSP/Reseller organisation Previous experience being part of or working with incident response teams would be beneficial Good understanding of incident response stages and handling preferred Knowledge and/or experience using endpoint ...

implement, and support a range of cyber security solutions across client environments. You will be involved in both proactive security improvement projects and reactive incident response activity, helping clients strengthen their overall security posture. This is a highly varied role suited to someone who enjoys working across multiple … security solutions across network, endpoint, and cloud environments Deploy and manage firewalls, endpoint protection, EDR, and security monitoring tools Lead and support cyber security incident response activities including investigation, containment, remediation, and reporting Conduct vulnerability assessments, security reviews, and risk analysis Recommend and implement improvements aligned to security ...

infrastructure, implementing and overseeing risk management processes, ensuring that appropriate controls and countermeasures are in place to mitigate all identified risks. Lead the incident response efforts, including preparing for, detecting, and responding to cyber security incidents, ensure that an effective incident response plan is in place … regularly tested and managing post incident analysis and reporting to prevent future occurrences. Manage and mentor the cyber security team, fostering a culture of continuous learning and development, ensuring that the team has the necessary skills and tools to protect the organisation effectively, and oversee recruitment, training, and performance ...

network and security infrastructure, ensuring robust protection of business systems and data. Key Responsibilities Manage day-to-day cyber security operations and incident response Monitor and optimise security tools (SIEM, firewalls, endpoint security) Maintain and support network infrastructure (LAN/WAN, Wi-Fi, L2/L3) Identify threats … Alto firewalls, SIEM tools, and endpoint security Experience with L2/L3 networking (Nexus, LAN/WAN, Wi-Fi) Vulnerability management (e.g. Qualys) and incident response expertise Understanding of data security, threat analysis, and security best practice Essential Requirements Strong problem-solving and analytical skills Excellent communication ...

initial contract) Location: SW1A 2AH, City of Westminster, England, United Kingdom Remote type: Remote Start date: As soon as possible Head of SOC/Incident Response – LA International Senior leadership within public sector and Defence cybersecurity. Coordinating and integrating public sector/defence digital services. Leverage … public benefit and strengthen digital infrastructure. Manage incident response with knowledge of NIST, ISO 27001, etc. Recruit, mentor, and influence SOC teams. Duration: 6 months Location: Fully remote (with occasional onsite meetings 1–2x per month) Start date: As soon as possible SOC Solutions & Cyber Advisory Lead ...

technical engine behind the organisation's global digital integrity. Your responsibilities will include: Managing the Global SOC to ensure proactive threat hunting and rapid incident response across all global time zones. Implementing a cutting-edge DevSecOps approach to ensure security is automated and embedded within the CI/… have personally achieved certification from scratch) 2.DevSecOps (Embedding security into CI/CD pipelines and automated workflows) 3.SOC Management (Overseeing global threat detection and incident response) 4.NIST Framework (Applying security standards for the Americas region) 5.Essential 8 (Understanding and implementing Australian security protocols) 6.Vulnerability Management (Coordinating risk-based ...

security framework across multi-cloud environments Deploy and manage security tooling and automated controls to identify and remediate risks Build threat detection processes and incident response playbooks in collaboration with the SOC Support compliance requirements including ISO27001, SOC2, and NCSC Cloud Security Principles Translate security tool outputs into … knowledge of cloud security frameworks (CSA STAR, NCSC Cloud Security Principles) Experience with scripting and automation (Python, PowerShell, or Bash) Strong understanding of cloud incident response Nice to Have Infrastructure as Code experience (Terraform, IaC scanning) Cloud network security knowledge (NSGs, VPCs, private endpoints) Relevant security certifications Package ...

Cyber Security Delivery Manager, you'll take ownership of client engagements from start to finish, covering risk assessments, security architecture reviews, policy development, incident response planning, and governance work. You'll be the senior point of contact on engagements, ensuring quality and consistency across everything that goes … cyber security projects in a consultancy or professional services environment Strong technical knowledge across core cyber domains - risk management, security architecture, governance, assurance, or incident response CISSP, CISM, or equivalent professional certification A proven track record of leading teams and managing senior client relationships The ability to communicate ...

growth and innovation. You’ll define and lead our security strategy, establish governance and compliance frameworks, strengthen cloud and third‐party security, and drive incident response and resilience planning across the organisation. About You Experience & Expertise 10+ years’ experience in information security, including leadership‐level responsibility Proven experience … building and scaling security and privacy programmes within growing organisations Strong hands‐on knowledge of GDPR, PCI‐DSS, incident response, and resilience planning Experience working within cloud‐first environments, ideally AWS Strong understanding of security within e‐commerce, fintech, or customer‐data‐led businesses Comfortable operating as both ...

secure, reliable, and scalable delivery of Retail platforms and applications. Oversee delivery planning, execution, and risk management, including ownership of P1 and P2 incident response and resolution. Build and develop engineering capability through strong leadership of Engineering Managers and senior engineers. Promote consistent engineering standards across automation, DevOps … technical design decisions to ensure solutions are scalable, secure, and maintainable. Act as an escalation point for major incidents, coordinating resolution and leading post‐incident reviews. Work with Engineering Managers to track delivery progress, dependencies, and risks. Coach and mentor engineering leaders, supporting capability and leadership development. Represent Retail ...

secure, reliable, and scalable delivery of Retail platforms and applications.* Oversee delivery planning, execution, and risk management, including ownership of P1 and P2 incident response and resolution.* Build and develop engineering capability through strong leadership of Engineering Managers and senior engineers.* Promote consistent engineering standards across automation, DevOps … technical design decisions to ensure solutions are scalable, secure, and maintainable.* Act as an escalation point for major incidents, coordinating resolution and leading post‐incident reviews.* Work with Engineering Managers to track delivery progress, dependencies, and risks.* Coach and mentor engineering leaders, supporting capability and leadership development.* Represent Retail ...

Lead the implementation and management of key enterprise security platforms including: AuthID – Biometric identity verification for secure authentication VMware Carbon Black – Endpoint detection and response (EDR) Responsibilities include: Deployment and configuration across the organization Policy management and enforcement Monitoring and incident response Integration with existing systems Manage … systems. Manage role-based access controls and least-privilege access models. Ensure proper onboarding and offboarding procedures for system access. Establish and maintain an incident response framework. Investigate and respond to security incidents. Conduct risk assessments and implement mitigation strategies. Required Qualifications 8+ years of experience ...

safe, controllable execution. Build evaluation frameworks, feedback loops, and testing for deterministic and non‐deterministic systems. Operate agents in production (AgentOps): logging, monitoring, alerting, incident response, and continuous improvement. Contribute to production infrastructure standards including CI/CD, environment separation, secrets management, and security fundamentals. Must Haves 5+ … ownership across design, implementation, deployment, and operations. Solid understanding of cloud‐native infrastructure and production operations (CI/CD, environment separation, secrets, monitoring, incident response). Nice to Haves Experience with Camunda, BPMN, DMN, or other workflow/orchestration platforms. Experience building reusable internal platforms, shared services ...

site) Join our Cyber Defence Centre (CDC) as a SOC Analyst. This is a crucial hands-on operational role within Security Operations, focused on incident detection, investigation, and response. You will play a pivotal role in ensuring effective monitoring, triage, and response to security events, while also driving … continuous improvement and detection engineering initiatives. Day-to-day of the role: Incident Detection & Response: Investigate and respond to security incidents and alerts escalated from Tier 1/Tier 2 SOC. Perform in-depth analysis and triage of security events, identifying threats and determining impact. Support high-severity ...

Medical Protection Society is seeking an Information Security Incident Manager to lead cyber incident responses and enhance resilience. The role involves coordinating major incidents, ensuring effective governance, and improving incident response plans. Candidates should have strong expertise in cyber security, experience leading incidents, and excellent communication ...

Model & Ways of Working : Define and implement SRE ways of working and engagement patterns, aligning reliability practices with existing ITSM/ITIL processes (e.g., incident, problem, release and change) and modern engineering delivery. Reliability Measures (SLIs/SLOs) & Error Budgets : Establish service measures and targets (SLIs/SLOs … Insight: Shape observability approaches (metrics/logs/traces) and operational monitoring models that make reliability risks visible and actionable, improving operational decision‐making. Incident Excellence & Continuous Learning: Design incident analysis and improvement loops, including practical approaches that strengthen incident response and drive learning through post ...

intent into engineering requirements that teams can implement. Mentor and coach Newpage and client engineers; raise the bar on secure coding, threat modeling, and incident response across the account. Engineer Security Into the Cloud Estate Design and operate hardened, multi-account or multi-subscription landing zones — AWS Control … across cloud data services (e.g., S3/Redshift/RDS/Lake Formation on AWS, or equivalents on Azure and GCP). Drive Detection, Response & Resilience Engineer detection-as-code and response automation in collaboration with the client SOC; tune findings, suppress noise, and ensure every signal ...

compliance roadmap, detailing priorities, timelines, and resource requirements. Compliance & Advisory : Provide ongoing support for compliance, interpret regulatory requirements, and ensure alignment with industry standards. Incident Leadership & Management : Lead the coordination of high-severity cyber incidents, ensuring effective communication and structured execution. Required Skills & Qualifications: Core Experience : Proven experience … Cyber Incident Response or Major Incident Management, preferably in a SOC or Security Operations environment. Stakeholder & Leadership Skills : Excellent communication skills, ability to influence and negotiate under pressure, and experience with senior stakeholders. Operational Capability : Experience managing incident bridges/war rooms and strong decision-making ...

focused on monitoring, analysing and responding to security threats, while driving continuous improvement across our security operations capability. Youll play a key role in incident response, threat intelligence, vulnerability management and ensuring effective use of our security tools and processes to reduce risk across the technology estate. ...

development and operations teams is required Documentation and knowledge sharing is required Communication of security risks to technical and non-technical stakeholders is required Incident response and on-call readiness is required Staying current with emerging security threats and vulnerabilities is required Education & Certifications: This position requires ...

technical role where youll investigate complex alerts, support threat-hunting activities, contribute to the tuning of SIEM detections, and help improve SOC processes and response playbooks. Youll also play an important role in mentoring analysts and supporting the continued development of the SOCs technical capability. Technology innovation is part … this role will continue to evolve as AI-driven detection, automation, and response capabilities are introduced. You will: Investigate, triage, and respond to security alerts across customer environments Support the tuning and maintenance of SIEM detection rules alongside senior analysts Carry out proactive threat analysis and support threat-hunting ...

analysis to identify and mitigate potential threats. Design and enforce security controls based on identified requirements and gaps in existing structures. Threat Detection and Response Monitor and respond to security incidents ensuring rapid and effective action. Develop comprehensive incident response plans to maintain organisational resilience against threats. ...

secure solution design activities Advise on AI security risks, governance, and secure adoption of AI technologies Deliver security awareness training and workshops Assist in incident response planning and post-incident reviews Collaborate with technical and non-technical stakeholders to embed security into business processes Required Skills & Experience ...