21 of 21 Incident Response Jobs in Buckinghamshire

social engineering assessments and physical security testing Produce detailed scoping documents and executive-level penetration testing reports aligned with CREST and NCSC standards Lead incident response investigations and digital forensic analysis when required Work independently on client-facing assessments whilst collaborating with senior consultants and team leaders Maintain … Certified Testers, and forensic specialists delivers: Penetration Testing & Security Audits: Infrastructure, application, and mobile assessments Compliance Advisory: PCI DSS, GDPR, ISO27001 implementations and certifications Incident Response & Forensics: 24/7 emergency response and digital evidence analysis Specialist Services: SCADA testing, social engineering, business continuity planning Based ...

team. As part of a 24/7 operations team, you will monitor systems, identify potential incidents, and initiate the early stages of the incident response process. Key Responsibilities: Security Monitoring & Detection Continuously monitor security tools and SIEM platforms such as Splunk to identify suspicious or anomalous activity. … Respond efficiently and professionally to potential threats in accordance with established procedures. Incident Triage & Analysis Analyse alerts and logs to distinguish legitimate security incidents from false positives. Classify, prioritise, and escalate incidents following defined triage processes. Initial Incident Response Perform initial containment activities for confirmed incidents, including ...

services or DevOps tools to continuously enhance infrastructure capabilities. Produce and maintain platform documentation and runbooks, ensuring knowledge is shared and accessible. Contribute to incident response and root cause analysis for infrastructure-related issues. Track and report platform metrics, including performance, cost efficiency, and security posture. Required Skills … security best practices. Experience with monitoring, logging, and alerting tools. Proficiency in scripting or automation languages (Python, Bash, or PowerShell). Track record of incident response and root cause analysis in cloud environments. If you are interested in this position please apply online or for more information contact ...

environments. You'll work across servers, networks, storage, and security tools, contributing to infrastructure projects as well as cyber initiatives such as vulnerability management, incident response, and enhancing security controls. You'll also collaborate with group security teams and help ensure systems remain resilient and up to date. … etc.) Palo Alto deployment/configuration experience is a must Good understanding of firewalls, network protocols, and intrusion prevention Ability to manage vulnerability scanning, incident response, and remediation Confident communicator with solid documentation skills The role also covers an office in Birmingham and they might be occasional travel ...

Engineer with strong experience in Node.js/NestJS and AWS, who will: Own day-to-day deployments of our backend services. Lead monitoring and incident response for production systems. Take primary ownership of our AWS infrastructure, using infrastructure as code. Design and implement backend features for a high … CloudWatch and related services). Manage resources using infrastructure as code tools. Maintain and improve observability: logging, metrics, alerts, and dashboards. Lead incident response when production issues occur and drive follow-up improvements. Technical direction and coaching Make and communicate architectural choices for backend and infrastructure. Review code ...

strategy (anycast, BGP policy, routing integration) and partner with networking, DNS, and edge platform teams. Set operational standards: SLOs/SLAs, on-call health, incident response (including incident commander duties), runbooks, and post-incident learning. Drive automation at scale: CI/CD strategy, test frameworks, progressive ...

features and system changes Evaluate and recommend security technologies and tools Operational (40%) Manage security environments across Azure and AWS infrastructure Coordinate security incident response and vulnerability remediation Oversee security monitoring, alerting, and detection capabilities Manage vulnerability assessment and penetration testing programs Maintain identity and access management controls … compliance experience with payment processing systems Strong understanding of cloud security (Azure and/or AWS) Application security and secure development lifecycle knowledge Security incident management and cross-functional response coordination Excellent communication skills - able to translate technical security for commercial and executive audiences Experience supporting tender responses ...

Process Improvement & Innovation: Drive continuous improvement initiatives, establish DevOps best practices, and identify opportunities for innovation in software development processes, tools, and technologies. Troubleshooting & Incident Management: Lead root cause analysis and resolution of complex infrastructure and deployment issues; establish incident response procedures and post-incident review ...

Process Improvement & Innovation: Drive continuous improvement initiatives, establish DevOps best practices, and identify opportunities for innovation in software development processes, tools, and technologies. Troubleshooting & Incident Management: Lead root cause analysis and resolution of complex infrastructure and deployment issues; establish incident response procedures and post-incident review ...

Benchmarks, EU AI Act, GDPR) and adapt processes accordingly. Operational Security Oversee day-to-day security operations, including vulnerability management, access reviews, and incident response readiness. Provide insights and triage signals from security tooling (SAST, DAST, dependency scanning, SIEM). Work hands-on to perform internal security assessments ...

Security Alerts on the various monitoring tools to identify potential Security Incidents. Escalate suspected Security Incidents to the Lead Analysts. Assist Lead Analysts and Incident Response team with investigation and containment. Maintain knowledge of technology and cyber threats by reading Threat Intel, reports, attending Threat Intel briefings ...

verbal communication skills Desirable Experience working in an MSSP or MDR environment SIEM and/or SOAR deployment and support experience Security operations or incident response background Experience with Azure and Google Cloud AWS experience Why Apply? Remote-first role with meaningful, hands-on technical work Exposure ...

verbal communication skills Desirable Experience working in an MSSP or MDR environment SIEM and/or SOAR deployment and support experience Security operations or incident response background Experience with Azure and Google Cloud AWS experience Why Apply? Remote-first role with meaningful, hands-on technical work Exposure ...

capabilities (anycast, BGP signaling, routing policy) and integrate with OCI networking, DNS, and edge services. Own operational readiness: SLOs/SLAs, on-call health, incident response, runbooks, and post-incident improvements. Build automation-first workflows: CI/CD pipelines, test frameworks, canary/blue-green releases ...

clearance and have a proven background in Cyber Security Operation Centres working within a high-threat government environment: Experience in SOC operations, incident response, and forensic analysis. Proficiency in Security Information and Event Management (SIEM), including tools such as Sentinel, Splunk, Defender, Qualys, Tenable, Huntsman & LogRhyth Ability ...

observability tools Understanding of cloud cost management and resource optimisation principles Comfort with troubleshooting and supporting development teams Understanding of service reliability and incident response practices Connells Group UK is an equal opportunities employer and positively encourages applications from suitably qualified and eligible candidates regardless of sex, race ...

observability tools Understanding of cloud cost management and resource optimisation principles Comfort with troubleshooting and supporting development teams Understanding of service reliability and incident response practices Connells Group UK is an equal opportunities employer and positively encourages applications from suitably qualified and eligible candidates regardless of sex, race ...

Milton Keynes. As part of the first line of defence, you'll be responsible for monitoring systems, identifying potential threats, and ensuring rapid incident response to safeguard critical services. Responsibilities Keep a close watch on SIEM platforms and other monitoring tools to spot unusual activity. Evaluate and triage … senior analysts. Record incidents thoroughly in tickets and reports to support investigations. Help maintain and fine-tune security tools to improve detection and response capabilities. What you'll need to succeed Experience within Security Operations Strong attention to detail and a proactive mindset. Flexibility to work a rotating ...

partitioning, caching, compute configuration) with mentorship from more senior colleagues. Contribute to monitoring, alerting and observability setup for pipelines, applications and integrations. Participate in incident response and root cause analysis for platform and application issues. Assist in applying non-functional requirements (SLA/SLOs, resilience, backup and recovery … Performance issues or optimisation tasks. Permissions and basic security models. Schema/ontology changes and their impact on downstream use cases. Integration problems and incident recovery in collaboration with senior staff. Some client-facing experience (e.g. workshops, demos, requirement sessions or design walkthroughs). Any experience helping to train ...

partitioning, caching, compute configuration) with mentorship from more senior colleagues. Contribute to monitoring, alerting and observability setup for pipelines, applications and integrations. Participate in incident response and root cause analysis for platform and application issues. Assist in applying non-functional requirements (SLA/SLOs, resilience, backup and recovery … Performance issues or optimisation tasks. Permissions and basic security models. Schema/ontology changes and their impact on downstream use cases. Integration problems and incident recovery in collaboration with senior staff. Some client-facing experience (e.g. workshops, demos, requirement sessions or design walkthroughs). Any experience helping to train ...

Milton Keynes. As part of the first line of defence, you'll be responsible for monitoring systems, identifying potential threats, and ensuring rapid incident response to safeguard critical services. Responsibilities Keep a close watch on SIEM platforms and other monitoring tools to spot unusual activity click apply ...