15 of 15 Incident Response Jobs in Somerset

assessment of Clarks' security posture Support business continuity and disaster recovery processes and assist in the development and implementation of activities to improve Clarks' cyber resilience Support of security incident response activities, including providing expertise in triaging and resolving key issues, engaging with outsourced security operations and internal SecOps teams to ensure standards and policies are appropriately applied … and assisting in the creation and updating of relevant run books to help ensure effective incident management planning and execution Support for compliance and audit activities, working with internal and external stakeholders to understand requirements, identify remedial activity, and monitor progress Analysing emerging and developing threats and working with stakeholders to validate the potential impact on Clarks - and recommend … security controls and best practices across a number of the following areas/domains: Network and infrastructure (networking protocol knowledge is an advantage Endpoint (e.g. DLP, Endpoint Detection and Response, File Integrity, SIEM) Database technologies (SQL, Oracle) General cryptography practices (e.g. PKI) Cloud environments (Azure, AWS) Fundamental understanding of privacy and data protection laws and regulations and how they More ❯

all its clients. Our innovative approach to security testing merges the benefits of consultant-led penetration testing with ongoing vulnerability assurance through our advanced SecurePortal. We are expanding our Incident Response team and are looking for a DFIR Analyst to join us in tackling some of the most challenging cybersecurity threats. This role requires strong analytical thinking, excellent … As part of our dynamic team, you’ll play a critical role in mitigating cyberattacks and enhancing our clients’ security posture to prevent future incidents. Key Responsibilities: Conduct initial incident assessments and support ongoing Incident Response (IR) management. Participate in live IR operations, including digital forensics and data acquisition. Perform security assessments, threat intelligence gathering, and OSINT … investigations. Thoroughly document incidents — including timelines, impacted systems, actions taken, and improvement recommendations. Prepare clear, well-structured reports for both technical and non-technical stakeholders. Technical Skills: Experience in incident response and investigation using tools like SIEM, SOAR, and EDR platforms. Proficiency in digital forensics and log analysis across Networking, Windows, Mac, Linux, or Cloud environments. Strong understanding More ❯

organisational environments such as enterprise, edge/deployed environments or cloud . Demonstrable knowledge of cyber detection (e.g., threat identification/intelligence, real-time monitoring, anomaly detection) and cyber response (e.g. incident response, eradication and remediation, recovery, post-incident analysis). DevSecOps. Zero Trust Architecture (ZTA) expertise for enterprise, cloud and air-gapped environments along with More ❯

in local and cloud environments Respond to security requests and events Vulnerability management Utilising security tools to enhance organisational security (SIEM, EDR, Vulnerability management tools) Following agreed protocols of incident response Incident response, investigation and recovery Utilising Crowdstrike, Qualys, Zscaler, Appcheck and ActiveDirectory Leveraging support from wider tech areas such as network operations or infrastructure What More ❯

Cyber Assurance Framework (CAF) Assess and mitigate risks across networks, systems, and applications Manage security team & third-party SOC operations Implement security controls, policies & awareness programs Monitor threats, lead incident response & drive security culture Report security posture & metrics to IT Director & leadership Oversee security assessments, audits & penetration testing What You’ll Bring CISSP or equivalent + More ❯

s team and play a key role in safeguarding our client’s digital environment. This is a broad, hands-on role that touches all corners of cyber operations - from incident response to awareness campaigns, tooling oversight and project work. This is afnatastic opportunity for a Cyber Security professional who wants to join a forward thinking, collaborative and progressive … organisation where you can make a real impact. What you’ll be doing: Leading and supporting cyber incident management across the business, ensuring timely and effective response. Managing and maintaining security tooling and systems, including Microsoft Defender, Sentinel, and the wider MS security stack. Supporting and promoting cyber awareness initiatives, helping users understand threats and best practices. Reviewing and … from across the organisation, providing clear, practical guidance. Involvement in security assurance activities and participation in wider cyber projects and initiatives. What we’re looking for: Proven experience in incident management and cyber incident response . Strong all-round cyber knowledge, ideally in an internal IT or hybrid enterprise setting. Familiarity with Microsoft 365 , Defender , Sentinel , and More ❯

working 100% remotely. This is a pivotal role at the heart of a rapidly growing mobile-first payments solution organisation, where you can truly shape and affect how the incident response is delivered. You would be reporting to the Security Operations Lead (who reports to the Head of Security) and will be working alongside a team of talented … suitability for the role. Key responsibilities You will be responsible for building the infrastructure of a new in-house SOC, all the way through to conducting precise and robust incident response against basic and advanced threat actors. You will be responsible for the automation workflow design and use case development. You will work on the SIEM detection content … development and false positive reduction. You will be in charge of robust and detailed incident response to threats, investigation, and triage of day-to-day security events. Key requirements Experience in deploying security related IaC projects at scale. Familiarity with SOAR and optimisation of Security Controls using automation. Experience working with multi cloud environments (specifically AWS and Azure More ❯

risk oversight, and aligning operational resilience strategies with upcoming supervisory expectations. Key Responsibilities: Lead DORA readiness assessments for the firm, identifying gaps in tech risk, third-party risk, and incident reporting frameworks. Support clients in designing and embedding Tech risk management frameworks. Advise on the design and implementation of incident response and reporting mechanisms Navigate third-party … ESMA guidelines, and PRA/FCA expectations. Experience working with or advising banks, insurers, asset managers, or payment service providers. Familiarity with third-party risk frameworks, resilience testing, and incident handling protocols. Ability to interpret and apply regulatory technical standards (RTS/ITS) in a business context. Excellent stakeholder engagement skills, with a track record of influencing at senior More ❯

ensure all systems are up to date and protected from security threats. Server hardening to Windows systems, both physical and virtual. Maintain accurate documentation of remediation activities Assist in incident response by applying emergency patches and remediations Contribute to disaster recovery and business continuity plans Skills and experience required: - Windows server including patching processes Server/security hardening. More ❯

designing a Security Operations Centre (SOC) within a secure environment Experience implementing a target operating model for a Security Operations Centre Expertise in security monitoring design, threat detection, and incident response Experience in selecting tools for Security Information and Event Management (SIEM) Proficiency in IT security documentation, including policies, standards, processes, procedures, and patterns Experience in risk and More ❯

data engineering activities, collaborating with other engineering squads to ensure data is accessible, well-governed, and usable across the organisation. Oversee the team's contribution to production readiness, monitoring, incident response, and resolution for data services. Track and report on delivery metrics, using data to drive continuous improvement in team performance and technical execution. This role's for More ❯

in all engineering activities, collaborating across squads to ensure tax wrapper services work seamlessly within the broader platform ecosystem. Oversee the team's contribution to production readiness , including monitoring, incident response, and resolution for our services. Track and report on delivery metrics , using data to drive continuous improvement in team performance, operational reliability, and time-to-market. This More ❯

security. Implement and manage containerization solutions to improve scalability and efficiency. Implement security best practices across AWS environments, ensuring compliance with industry standards and safeguarding cloud infrastructure. Develop automated incident response mechanisms and self-healing solutions to minimize downtime and enhance fault tolerance. Diagnose and resolve infrastructure, networking, and application-related performance issues to ensure operational efficiency. Ensure More ❯

effective. By building and maintaining automation, observability, and CI/CD pipelines, and by championing best practices in reliability engineering, the team enables faster, safer software delivery and rapid incident response. YOUR KEY RESPONSIBILITIES AND IMPACT Lead and Develop a High-Performing DevOps Engineers - recruit and manage a multidisciplinary team responsible for Automation, Observability/Monitoring, Security & Compliance Automation … CI/CD Pipeline, Reliability/Resilience, FinOps, Root Cause/Incident Response, Dashboarding/Reporting and 24/7 Runbook & On-Call Coordinators. Drive Platform Automation and Operational Excellence - own and evolve automation strategies, tooling, and processes that increase deployment velocity, reliability, and consistency across centralised and federated engineering teams. Champion Reliability Engineering and Incident Response - build and embed best practices in site reliability engineering, including proactive monitoring, incident detection, root cause analysis, and continuous improvement to minimise downtime and user impact. Enhance Observability and Operational Visibility - oversee the design, implementation, and evolution of monitoring, alerting, dashboarding, and reporting capabilities that provide actionable insights and enable rapid response to issues. Embed Security, Compliance More ❯

IT projects including hardware upgrades, system rollouts, and new site setups. Monitor infrastructure health, perform backups, and proactively resolve technical issues. Liaise with third-party vendors and support cybersecurity incident response. Assist with user support tasks such as account setup, password resets, and service desk ticket management. Company Benefits: 30 days holiday a year (inclusive of Bank Holidays), plus … Read more Heidi Smith South Lakes Volvo - April, 2025 Fantastic experience from start to finish! Enquired over e-mail for an Audi A5. Paul has been inredibly quick in response and been supe... Fantastic experience from start to finish! Enquired over e-mail for an Audi A5. Paul has been inredibly quick in response and been supe... Read More ❯