18 Incident Response Jobs in the South East with Remote Work Options

Service is a key leadership role responsible for overseeing day-to-day operations, managing the SOC team during shifts, and ensuring effective security analysis, incident response, and monitoring of client infrastructure. Reporting to the SOC Operations Manager, the Shift Lead is a critical escalation point during incidents, contributing … continual service improvement and staff development. What youll be doing: Team oversight - Directly manage and oversee all Analysts during assigned shifts. Security analysis and incident response - Lead security analysis efforts, incident classification, and incident response actions. Monitoring client security infrastructure - Oversee the continuous monitoring of … client infrastructure. SOC escalation point - Act as a key escalation point during incidents, advising on containment points and response strategies. Threat understanding - Maintain a deep understanding of evolving cybersecurity threats What you will bring: Experience with SIEM tools including Splunk, QRadar, and Sentinel. Ability to assess and impact business more »

security policies, playbooks, and procedures, ensuring compliance with regulatory requirements industry standards and the Cyber Security Strategy. Identify, evaluate, and mitigate cyber threats. Lead incident response activities and investigations into security breaches. Conduct regular risk assessments, audits, and testing of the security infrastructure to identify vulnerabilities and implement … remediation, through the whole lifecycle to ensure safety and compliance for the business. Investigate and analyse escalated security matters, identify methods and solutions in response to security related queries including the ones, submitted by end users. Perform root cause analysis of security incidents and participate in post-incident reviews to provide practical recommendations for improving the organisation's threat detection and incident response capabilities and overall security posture Perform malware analysis and digital forensics where appropriate Drive internal phishing campaigns (KnowBe4 platform) and work with management and HR - Training to raise Cyber awareness within the more »

for apprentices to work on a wide variety of activities and learn from security experts. Successful applicants will be involved in operational security management, incident response, risk management & compliance and security advice provision to deliver safe, secure, and innovative business solutions to drive sustainable value for a competitive … stakeholders to assess and recommend fixes for weaknesses in our existing business services, design and deliver security solutions for new services and support our response to security incidents Work with our Governance, Risk and Compliance manager to make sure we understand our security risk posture and are compliant with … Have guidance from your manager and the team who will support you and teach you how to be a security practitioner Provide support in response to security incidents occurring within L&G. Working in conjunction with the Security Operations Centre (SOC) service provider to provide security event monitoring Support more »

information assets. Ensure regular KPIs are developed and maintained and identify areas for improvement and make recommendations accordingly. Be the lead in Cyber security incident response and ensure processes and procedures and playbooks are efficient, effective and are tested regularly in line with policy. Develop and maintain a more »

information assets. Ensure regular KPIs are developed and maintained and identify areas for improvement and make recommendations accordingly. Be the lead in Cyber security incident response and ensure processes and procedures and playbooks are efficient, effective and are tested regularly in line with policy. Develop and maintain a more »

information assets. Ensure regular KPIs are developed and maintained and identify areas for improvement and make recommendations accordingly. Be the lead in Cyber security incident response and ensure processes and procedures and playbooks are efficient, effective and are tested regularly in line with policy. Develop and maintain a more »

or autonomy, with little need for escalation It would be great if you had: Knowledge of; Cloud, on-prem, SaaS, PaaS, IaaS environments Security incident response, code/malware analysis Strong coding skills CISSP-ISSEP (Information Systems Security Engineering Professional) Other Cyber/information Security qualification (e.g. CISSP more »

security by design. There's a broad range of responsibilities including handling requests related to system administration, operations governance, threat/vulnerability management and incident response, you'll collaborate with engineering teams to evaluate and identify optimal cloud solutions providing subject matter expertise across a range of Azure more »

Analyse IT security posture, manage OS patches, and conduct vulnerability scans; advise on risk mitigation. Investigate security breaches, preserve evidence, and maintain a Cybersecurity Incident Response Plan. Develop IT security training for users and promote security awareness. Support IT leadership in technical planning and prioritise system developments. Manage … and applications within a large enterprise networked environment. (Educational background is a plus) Operational experience with Voice and Wireless LAN standards. Developing Cyber Security Incident Plan (CIRP) with forensic readiness. Strong experience in Data Networking Protocols (TCP/IP, OSPF, DHCP, DNS). Proven track record in efficient business more »

wider Infosec team and any third-party consultants engaged by MWI to provide recommendations based on the findings to chart the way forward. Develop incident response plans and procedures tailored for Azure environments, conduct thorough security incident investigations, and coordinate with relevant stakeholders to effectively mitigate security more »

and Continuous Delivery (CI/CD) process for building and delivering security tools · Design and implement test suites for the security tools · Practice sustainable incident response and drive root cause analysis on a rotation basis What You’ll Bring: · BS degree in Computer Science or related technical field more »

database security, device security, VPNs & SSLs, secure file transfers, security event monitoring, malware security and cyber security. • Operational security: including but not limited to: incident management, change & patch management, data centre & physical security, backups, DR & BCP, outsourcing, managed services, cloud computing, asset management, cryptographic keys & certificate management, PCI DSS … Splunk, Suricata, Kali. • Application Security. • Identity and Access Management. • Data Protection. Endpoint Security. • Cyber Security Operations. • Experienced with Threat Modelling. • Pen testing and basic incident response. • Scripting languages ( python, or PowerShell/building dashboards/au- tomating common tasks) Preferred: • Experience in designing systems against a zero-trust architecture. more »

powerhouse behind our exceptional products. We're innovative, dynamic, and laser-focused on delivering unparalleled service to our franchisees and customers alike. As an Incident Manager, you'll play a crucial role in maintaining service continuity, minimizing disruptions, and ensuring customer satisfaction. Your key focuses will be to manage … closely with IT, operations, and other relevant departments to prevent recurrence. Success in this role looks like: Minimum 1 year of relevant experience in incident management or a similar role within the e-commerce industry. Ability to think critically, analyse situations, and make informed decisions under pressure. Excellent verbal … skills. Comfortable interacting with various teams and stakeholders. Thrive in a fast-paced environment and adapt quickly to changing priorities. Proven ability to lead incident response efforts and coordinate teams effectively. Flexibility is required in this role - you will be on an on call rota to manage with more »

software engineering to automate IT operations tasks that would normally be performed by system administrators. These tasks include production system management, change management and incident response. A SRE spends no more than half their time performing manual IT operations and system administration tasks - analyzing logs, performance tuning, applying patches more »

solution, especially endpoint security solution. Knowledge of Server Hardware and OS, Database. Advantage - Knowledge/on Database (MS-SQL.) Malicious code analysis or Security Incident Response experience. Windows operating systems and security aexperinece. Hours of work: 37.5 hour week - can be worked flexibly between the hours of 7am more »

such as DataDog and PagerDuty to provide proactive monitoring of production (and other) environments, design and implementation of automation processes to drive efficiencies, leading incident response, troubleshooting and root cause analysis to prevent issues reoccurring. You'll liaise closely with business stakeholders to understand requirements, address concerns and more »

Work in tandem with development teams to fine-tune application performance, enhance the efficiency of resource use, and improve scalability. Develop and sustain comprehensive incident response and review protocols to reduce system downtime and avert the repetition of problems. Propel ongoing enhancement efforts to boost the dependability, scalability more »

such as DataDog and PagerDuty to provide proactive monitoring of production (and other) environments, design and implementation of automation processes to drive efficiencies, leading incident response, troubleshooting and root cause analysis to prevent issues reoccurring. You'll liaise closely with business stakeholders to understand requirements, address concerns and more »