1 to 25 of 30 Permanent Incident Response Jobs in the North West

a comprehensive cybersecurity and information security strategy that aligns with business objectives, Lead, mentor, and oversee a small global team responsible for security operations, incident response, and threat detection, fostering a culture of continuous improvement, innovation, and excellence, Collaborate with the Group IT team to ensure the organisation … is protected against cyber threats and maintain an effective incident response plan, Play a pivotal role in ensuring the security of Tunstall's SaaS products, Identify, review, select, and manage our relationships with appropriate third-party security partners for our products, Work closely with product development teams to … prioritise security risks associated with both internal and external factors, Develop and maintain a risk management framework to mitigate risks effectively, Establish and enhance incident response plans and conduct drills, Evaluate and manage security risks associated with third-party vendors and partners, including those providing security solutions, Establish more »

Active Directory, including user authentication, access controls, and privilege management. * Managing and maintaining endpoint security solutions, including endpoint protection platforms (EPP), endpoint detection and response (EDR), and mobile device management (MDM) using Microsoft Intune. * Developing and enforcing Data security/Application security policies, standards, and procedures across the organisation. … Ensure compliance with relevant regulations and industry standards. * Working with the Managed SOC and Operational teams, develop and maintain incident response plans. Lead incident response activities, including detection, investigation, containment, and recovery. Staying updated on emerging threats and security trends. * Collaborating with cross-functional teams, including more »

defined processes.Supporting accreditation activities with the client and regulating authorities.Conducting security reviews and audits in accordance with defined processes.Conducting security operations, including Protective Monitoring, Incident Management, Incident Response, and Incident Recovery activities.If you would like to learn more about the opportunities available please get in touch. more »

robustness of IT security operations. The technical stack represents a blend of Azure, M365, IAM, Sentinel, Defender for Cloud and Log Monitoring. Responsibilities Security Incident Response: Assist in identifying, managing and resolving security incidents with the Security Operations Center (SOC). Ensure successful resolution and closure of these … security vulnerabilities. Ability to work effectively with cross-functional teams, particularly bridging IT operations and InfoSec. Scripting experience will be beneficial for automation and incident response tasks. Tech Stack Azure M365 IAM RBAC Sentinel Defender for Cloud (Secure Score) Interested? Apply now to find out more more »

Key Accountabilities Perform forensic analysis and gather evidence Correlation monitoring using multiple SIEM technologies Assist in gathering forensic data and physical equipment Act as incident responder for potential incident identified Ability to work under pressure In-depth understanding of the cyber threat landscape and advances adversary tactics Conduct … counter the attack or improvise security standards. Keep the security systems up to date and contributing to security strategies. Document incidents to contribute to incident response and disaster recovery plans. Perform internal and external security audits. In the case of third-party vendors, verify their security strength and … reporting Real Time attacks and vulnerabilities on the client network. Identification of incidents and subsequent analysis and investigation to determine their severity and the response required. Ensure that incidents are correctly reported and documented in accordance with the relevant policies and procedures. Be prepared to provide a Technical Escalation more »

Key Accountabilities Perform forensic analysis and gather evidence Correlation monitoring using multiple SIEM technologies Assist in gathering forensic data and physical equipment Act as incident responder for potential incident identified Ability to work under pressure In-depth understanding of the cyber threat landscape and advances adversary tactics Conduct … counter the attack or improvise security standards. Keep the security systems up to date and contributing to security strategies. Document incidents to contribute to incident response and disaster recovery plans. Perform internal and external security audits. In the case of third-party vendors, verify their security strength and … reporting Real Time attacks and vulnerabilities on the client network. Identification of incidents and subsequent analysis and investigation to determine their severity and the response required. Ensure that incidents are correctly reported and documented in accordance with the relevant policies and procedures. Be prepared to provide a Technical Escalation more »

alerts - Analyse and respond to security events - Conduct root cause analysis and forensic investigations - Collaborate with IT and security teams to resolve incidents - Maintain incident response procedures and documentation Desirable Skills: - Experience with Microsoft technologies (Windows Server, Active Directory, Azure) - Knowledge of Elasticsearch and Linux - Familiarity with SIEM more »

understanding of Azure Sentinel and Microsoft Defender. Key Responsibilities: Monitor security events and alerts using Azure Sentinel and Microsoft Defender, ensuring timely and effective response to potential threats. Mentor L1/L2 SOC Analysts whilst acting as their technical escalation point. Analyze and investigate security incidents, providing detailed reports … configurations, and policies within Azure Sentinel and Microsoft Defender. Collaborate with cross-functional teams to develop and enhance security strategies, including threat hunting and incident response procedures. Stay updated with emerging security threats, vulnerabilities, and industry best practices to proactively address potential risks. Requirements: Proven experience as a more »

business ensuring security and monitoring requirements are determined and implemented through onboarding or continuous improvement activities Qualifications & Experience: Professional experience of working in an Incident Response Team or a similar environment Knowledge of SIEM platforms such as Azure Sentinel, Microsoft Defender, Splunk, ArcSight, QRadar, or LogRhythm. Strong analytical more »

working, in house L&D, 28 days holiday +BH Skills required for this role: - Experience working with SIEM solutions (ideally Sentinel) - Vulnerability management (Nessus) - Incident Response - Implementing appropriate mediation Desirables: - SC Clearance - Large guideline expérience (ISO27001, Cyber Essentials, etc) This role gives the right candidate an opportunity to more »

through ongoing threat analysis and being up to date with the future threat landscape. Working with security tools such as; Sentinel, Defender and Azure Incident response planning for different Cyber Threats Monitoring of IT Security systems, providing trend analysis Implementing and maintaining firewall configurations What's in it more »

intellectual assets. The Cyber Threat Defence team is a senior team that develops, socializes, and deploys novel mitigations to counter threat activity observed in Incident Response operations and Threat Intelligence. This role is focused on improving the overall Privileged Access Management (PAM) strategy through evaluation, testing, and collaboration more »

to vulnerability management reduction across all IT Systems and you will work with the SOC to assist in the coordination and management of cyber incident response activities. The ideal candidate will have come from a IT Infrastructure background, have moved into Cyber Security, and will hold a current … due to the volume of applications received, we are unable to communicate feedback to all candidates. In the event you have not received a response within 14 days of your application, it is unlikely that your application will be progressed on this occasion. Please continue to review our website more »

Perform data profiling and analysis to identify patterns, trends, and insights. Conduct security assessments and vulnerability scanning. Respond to security incidents and participate in incident response activities. Stay updated on evolving security threats and Microsoft security solutions. Act as a point of contact between SOC team and customer. … of applications, we will be unable to contact each applicant individually on the status of their application. If you have not received a direct response within 30 days, then it should be deemed unsuccessful on this occasion. Application Process 1. Online application > 2. Technical discussion > 3. Managerial discussion > 4. more »

to ensure timely identification, capture, assignment, processing and completion of incidents and service requests • Monitor ticket queues to identify trends and escalate to Major Incident or Problem where appropriate • Knowledge sharing and participation in meetings to ensure an excellent customer experience • Provide advice and guidance to customers and liaise … parties on support issues where appropriate • Ensure that users are kept informed of the status of any outstanding calls • Ensure that documentation (technical notes, incident resolution notes, installation procedures, user guides etc.) are developed and maintained up to date and stored in the appropriate document repository • When a Major … Incident occurs, reprioritise work in accordance with the requirements dictated by the Digital Workplace Manager • Work with other teams within the IT Department to achieve call resolution. Technical Support • Support videoconferencing facilities & meeting room functionality (including tele-conferences, web meetings and room bookings) • Troubleshooting of networking issues including cabling more »

incidents, acting as the "security lead" within a resolver group. · Ensure that the Head of Security Operations and other senior stakeholders are appraised of incident impact, developments, and outcomes. · Recognise when external assistance is required to support or guide incident response and escalate promptly. · Develop - and guide … the development of - runbooks and processes, ensuring they're fit-for-purpose and followed. · Prepare incident reports and gather reporting metrics for cyber events and incidents. · Analyse security event trends to tune rules and thresholds to improve the fidelity of detections and alerts. What you’ll need: · Extensive experience more »

Handle security incidents and escalations, manage 3rd-party technical support. Provide security metrics, maintain documentation, and collaborate on technology design. Oversee security platform support, incident response, and vulnerability management. Track cyber threats, support vulnerability analysis, and lead system patching and updates. Integrate security into BAU processes, maintain technical more »

expand your skills in Digital forensics investigations. You would be part of a team that in the future could see you becoming skilled within Incident Response or becoming a future leader of the business. Role includes: Conducting analysis in either a lab or on client sites Secure and more »

Perform data profiling and analysis to identify patterns, trends, and insights. Conduct security assessments and vulnerability scanning. Respond to security incidents and participate in incident response activities. Stay updated on evolving security threats and Microsoft security solutions. Act as a point of contact between SOC team and customer. more »

Handle security incidents and escalations, manage 3rd-party technical support. Provide security metrics, maintain documentation, and collaborate on technology design. Oversee security platform support, incident response, and vulnerability management. Track cyber threats, support vulnerability analysis, and lead system patching and updates. Integrate security into BAU processes, maintain technical more »

and remediate vulnerabilities with an emphasis on automation and scalability Conduct security assessments and work with other engineering teams to develop secure products Support incident response and remediation including log and forensic data collection Consult with other teams to guide them in addressing vulnerabilities in source code or more »

ability to use KQL combined with the ability to create custom KQL scripts that are used to conduct sophisticated security data analysis and uplift incident response and threat detection capabilities within a SIEM Highly motivated with the ability to work autonomously to complete a range of tasks to more »

with experience or relevant job titles of; Loss Notification Operations Manager, Loss Reporting Team Supervisor, Initial Loss Assessment Coordinator, First Notice of Loss Supervisor, Incident Reporting Team Leader, Claims Intake Manager, Loss Notification Handling Supervisor, Initial Claims Assessment Coordinator, Incident Response Team Leader, Loss Reporting Operations Supervisor more »

expand your skills in Digital forensics investigations. You would be part of a team that in the future could see you becoming skilled within Incident Response or leading a competent forensics team. Role includes: Conducting analysis in either a lab or on client sites Secure and retrieve data more »

databases, storage solutions, and backup systems Ability to translate business requirements into efficient IT solutions Proficiency in cybersecurity practices, including threat detection, prevention, and incident response Professional work ethic with a client-driven focus and attention to detail Familiarity with IT project management methodologies and tools Capacity to more »