7 of 7 Incident Response Jobs in Buckinghamshire

dashboards, alerts, and log data to identify suspicious or malicious activity. Alert Triage: Perform initial investigation and prioritisation of security alerts, escalating where necessary. Incident Response (L1): Assist in incident investigation, gather relevant evidence, and support escalation to senior analysts or IR teams. Threat Detection: Support detection … Exposure to SIEM tools (e.g., Sumo Logic, Microsoft Sentinel) Familiarity with EDR/XDR tools (e.g., CrowdStrike, Microsoft Defender) Basic understanding of: Security operations Incident response lifecycle Networking fundamentals (TCP/IP, DNS, etc.) Strong analytical and problem-solving skills Good communication skills (written and verbal) Ability ...

fast-paced, shift-based environment. Key Responsibilities Advanced Security Monitoring: Analyse SIEM alerts, logs, and security events to identify and respond to complex threats. Incident Response: Lead investigations, perform deep analysis, determine impact, and coordinate response activities. Threat Detection & Analysis: Develop and refine detection rules … experience with SIEM platforms (e.g., Microsoft Sentinel, Sumo Logic) Hands-on experience with EDR/XDR tools (e.g., CrowdStrike, Microsoft Defender) Solid understanding of: Incident response lifecycle Threat detection methodologies Networking protocols (TCP/IP, DNS, HTTP/S) Experience analysing logs from multiple sources (endpoints, network, cloud ...

across a complex, cloud-first environment. You’ll be operating at both board and technical level, driving immediate improvements across risk, compliance, architecture and incident readiness. This role requires someone who can hit the ground running, bring structure to a fast-paced environment and deliver measurable outcomes within … including Zero Trust and secure architecture principles Proven experience embedding DevSecOps/Secure SDLC into engineering-led environments Hands-on leadership of major incident response, including ransomware and breach scenarios across global teams Strong experience with third-party/supplier risk management in complex SaaS ecosystems Experience leading ...

high-performing Azure solutions, within an SC Cleared environment.You’ll be responsible for implementing secure cloud designs, automating testing and compliance processes, and supporting incident response activities. Our client operates in an Agile environment. Please note that this is a Security Cleared role, so it is essential that ...

observability tools Understanding of cloud cost management and resource optimisation principles Comfort with troubleshooting and supporting development teams Understanding of service reliability and incident response practices ** Please note that we are unfortunately unable to provide visa sponsorship for this position. Applicants must have the right to work ...

monitoring of complex systems. Key Responsibilities Monitor and maintain SOC tools, controls, and platforms Investigate, resolve, or escalate security incidents Support analysts with incident response and threat investigations Analyse logs and system data to improve detection and alerting Develop and maintain detection rules and SOC procedures Support integration ...

Execution Own the cyber schedule, deliverables and risks within the programme. Drive timely completion of artefacts required for customer acceptance, including SSPs, POA&Ms, incident response plans, configuration baselines and security test evidence. Coordinate with US prime/DoD representatives on security clarifications and compliance submission. 4. Governance … compliant environment for development, test and integration, aligned to NIST (Apply online only), DFARS, STIGs and applicable ITAR/Export Control constraints. Ensure cyber incident reporting processes are in place and tested per DFARS (phone number removed). Support internal audit, external customer audit and formal assessment activities. 5. ...