6 of 6 Incident Response Jobs in Buckinghamshire

fast-paced, shift-based environment. Key Responsibilities Advanced Security Monitoring: Analyse SIEM alerts, logs, and security events to identify and respond to complex threats. Incident Response: Lead investigations, perform deep analysis, determine impact, and coordinate response activities. Threat Detection & Analysis: Develop and refine detection rules … experience with SIEM platforms (e.g., Microsoft Sentinel, Sumo Logic) Hands-on experience with EDR/XDR tools (e.g., CrowdStrike, Microsoft Defender) Solid understanding of: Incident response lifecycle Threat detection methodologies Networking protocols (TCP/IP, DNS, HTTP/S) Experience analysing logs from multiple sources (endpoints, network, cloud ...

Responsibilities Proactively monitor security alerts, dashboards, and event queues for a portfolio of clients, identifying sophisticated threats and anomalies. Perform advanced analysis of incident data, logs, and artefacts, validating genuine security incidents and leading initial containment. Take ownership of escalated alerts from Level 1 analysts, performing in-depth investigation … managing the incident response process through to resolution or escalation to senior technical leads. Collaborate with other SOC team members, mentoring and providing guidance to junior analysts to build team capability. Support forensic data collection and evidence management during incident investigations; contribute expertly to incident post ...

across a complex, cloud-first environment. You’ll be operating at both board and technical level, driving immediate improvements across risk, compliance, architecture and incident readiness. This role requires someone who can hit the ground running, bring structure to a fast-paced environment and deliver measurable outcomes within … including Zero Trust and secure architecture principles Proven experience embedding DevSecOps/Secure SDLC into engineering-led environments Hands-on leadership of major incident response, including ransomware and breach scenarios across global teams Strong experience with third-party/supplier risk management in complex SaaS ecosystems Experience leading ...

observability tools Understanding of cloud cost management and resource optimisation principles Comfort with troubleshooting and supporting development teams Understanding of service reliability and incident response practices ** Please note that we are unfortunately unable to provide visa sponsorship for this position. Applicants must have the right to work ...

Execution Own the cyber schedule, deliverables and risks within the programme. Drive timely completion of artefacts required for customer acceptance, including SSPs, POA&Ms, incident response plans, configuration baselines and security test evidence. Coordinate with US prime/DoD representatives on security clarifications and compliance submission. 4. Governance … compliant environment for development, test and integration, aligned to NIST (Apply online only), DFARS, STIGs and applicable ITAR/Export Control constraints. Ensure cyber incident reporting processes are in place and tested per DFARS (phone number removed). Support internal audit, external customer audit and formal assessment activities. 5. ...

services are delivered with consistency, stability, and quality at scale. You will own and strengthen the core ITIL service management processes including Major Incident, Problem, Change, and Service Transition setting clear standards, embedding best practice, and ensuring they are applied rigorously across the organisation. This is a pivotal role … high impact operational issues. Oversee the senior level governance of new services entering Operations, ensuring risk mitigation, scalability, and successful adoption. Direct high severity incident response, ensuring rapid stabilisation, transparent communication, and clear recovery plans. As the senior governance lead for Service Delivery, the role also provides strategic ...