understanding of Azure Sentinel and Microsoft Defender. Key Responsibilities: Monitor security events and alerts using Azure Sentinel and Microsoft Defender, ensuring timely and effective response to potential threats. Mentor L1/L2 SOC Analysts whilst acting as their technical escalation point. Analyze and investigate security incidents, providing detailed reports … configurations, and policies within Azure Sentinel and Microsoft Defender. Collaborate with cross-functional teams to develop and enhance security strategies, including threat hunting and incidentresponse procedures. Stay updated with emerging security threats, vulnerabilities, and industry best practices to proactively address potential risks. Requirements: Proven experience as a more »
analysis for the group. Providing security input and for maintaining relationships with the Service Management function in relation to change management, problem management and incident management. Responsible for the level 2/3 operational Cyber incident response. Escalating in a timely manner any incidents and anomalies that are … architecture level Operational On-Call Requirement This role has a shared, rotational 24/7 on-call requirement and forms part of information security incidentresponse capability. You will act as the single point of contact for all security related response actions and decisions, including management of … each incident from a security perspective, interaction with IM/MIM teams (where required) and recording of all key security decisions. What you'll need: Knowledge and operational experience in firewalls, intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, switches, routers, Voice over more »
Cyber Snr. IncidentResponse Specialist - London - £85/£95k My client is a global consultancy who are adding to their incidentresponse & proactive threat-hunting team to further develop and polish the company's overall service offering. They are looking for a strong incidentresponse consultant who can independently investigate incidents, conduct threat hunting and engage with clients. Responsibilities of a Cyber Snr. IncidentResponse Specialist: Manage and coordinate cyber security incidents Act as a lead for threat-hunting efforts to establish an attacker's spread through a system and network, anticipating … further attacker activity across endpoints, cloud, and network infrastructure Work closely with the CTI team and create playbooks Digital forensics of relevant incident data (disk, volatile memory, network packets, log files). Have the ability to advise clients on the threat landscape and attacks that may be relevant to more »
Oxfordshire, England, United Kingdom Hybrid / WFH Options
University of Oxford
are a small team, and every member contributes to all aspects of information security operations. You will get the opportunity to be part of incidentresponse and help develop tools for security operations. OxCERT can provide the required security training for strong candidates and help them achieve industry … the University network and taking appropriate remedial action. The team also provides advice and assistance on all issues relating specifically to IT security and incident response. They are an integral part of the University’s information security function and work closely with information security personnel as part of ongoing … University-wide information security initiatives, and in co-ordinating response to major security threats and incidents. OxCERT operate various systems for network monitoring, incident analysis and response, and related internal services. The team is a strong believer in Free Software and Open Source technologies and actively supports more »
Reading, England, United Kingdom Hybrid / WFH Options
Henderson Scott
+ Bonus) You will be responsible for monitoring clients network and endpoints for security alerts, investigating incidents, and assisting in incident response. You will also play a vital role in maintaining and optimizing our security information and event management (SIEM) platform. While previous experience in a Managed Security Service … monitor the client's network and endpoints for security alerts, and conduct thorough investigations when incidents occur. Serve as the first-tier responder for incident analysis and investigation, escalating issues as necessary. Contribute to containment strategies during security incidents, data loss, or breaches. Assist in the design and implementation … changes. Stay updated on the latest information security trends to assess their potential impact on the client's environment. Participate in an on-call incidentresponse team on a rotational basis (fortnightly). Generate relevant reports, including end-of-day summaries, handover reports, management intelligence, and threat and more »
achieve change and project management, initially focusing a core market IT change. Support issues prior to escalation Assist in monthly Information Security forums and IncidentResponse teams Understand needs and requirements, liaising with various stakeholders and vendors daily Requirements: Extensive management of third party supplier relationships Experience working more »
cybersecurity and risk mitigation? Our client is at the forefront, offering top-notch services in penetration testing, vulnerability assessments, security consulting, managed services, and incident response. Join them in their mission to strengthen cybersecurity defenses and protect sensitive data across various sectors. It's time to make a real more »
existing team. You will be joining a developing team as a technical resource where you will have the opportunity to lead on projects around incidentresponse, vulnerability management, EDR scanning and more. You will work with an already wide ranging tech stack for an exciting scaling business with … exposure to Data Protection & GDPR would be highly sought after too. In this role you will: Work on a variety of technical projects across incidentresponse, vulnerability management, triaging and more Work with third parties and vendors to ensure full security coverage Provide support to the governance and more »
Middlesbrough, England, United Kingdom Hybrid / WFH Options
GB Bank
created role we’ll ask you to lead on delivering the Bank's strategies and plans to align with industry standards and regulations for Incident Management, Operational Resilience, and Business Continuity. This is a really varied role would suit someone who is a self-starter, enjoys being hands-on … s Operational Resilience roadmap to help prevent, adapt, respond to, recover from, and learn from operational disruptions. Capture relevant information to determine whether an incident needs to be declared and then classifying the severity of the incident (minor to critical). Leading improvements in Business Continuity by designing … compliance status and delivery roadmaps. Work closely with outsourced service providers suppliers as required to implement recovery and resolution plans. Upon resolution of an incident, produce an incident report identifying root cause analysis and lessons learnt and improvements. Skills and experience – you are/will have most of more »
s growing trading activities. Collaborate with software engineering teams to troubleshoot complex technical issues and drive improvements in system architecture and design. Contribute to incidentresponse and post-mortem processes to identify root causes and prevent recurrence of issues. Requirements: Bachelor's or Master's degree in Computer more »
completion of IT services. You must be eligible for SC clearance for this role! Responsibilities Oversee and help to lead several crucial functions including: Incident Management: Assist in the response to IT service incidents, ensuring rapid restoration of services and minimisation of impact on operations. Develop and maintain … incidentresponse protocols Change Management: Oversee the change management process, ensuring all changes to IT infrastructure are assessed, approved, implemented, and reviewed in a controlled manner to minimise risk and impact on service quality Service Desk Leadership/Support: Support Service Desk team where necessary, ensuring high-level … is advantageous; not not required) Strong understanding of ITIL processes(with certifications in ITIL v3/v4 is preferred) Experience with service desk software, incident and problem management tools Strong communication and leadership skills If you want to work with a specialist defence service provider, apply with your CV more »
and infrastructure-as-code (IaC) tools Ability to perform security threat modelling and risk assessments to identify and prioritize security risks Experience with security incidentresponse and handling, including log analysis and forensics Outstanding business stakeholder engagement and management experience, inc. presenting of solutions to the exec team more »
expand your skills in Digital forensics investigations. You would be part of a team that in the future could see you becoming skilled within IncidentResponse or becoming a future leader of the business. Role includes: Conducting analysis in either a lab or on client sites Secure and more »
to become the prefered Digital transformation hub! And you get to be part of it! 😀 What will you be doing? Creating and managing an Incidentresponse pipeline Delegating work out to a team of 7 Analysts Setting up KPI's for the team Compliance and security experience (cyber more »
We're Looking For: - Strong understanding of information security best practices and regulatory requirements (ISO 27001, PCI-DSS, SOX). - Knowledge of risk management, incidentresponse, and compliance frameworks. - Experience working with globally distributed cross-functional teams. - Professional certifications such as CISSP, CISM, or CISA are highly desirable. more »
standards, and guidelines for projects. - Enhancing and monitoring development and operations tools. - Leading the implementation and maintenance of a security program. - Collaborating on audits, incidentresponse, and compliance processes. Required Skills: - Experience in SonarCloud or SonarQube. - Customer service orientation and the ability to meet customer expectations. - Effective communication more »
enhance privacy awareness across the organisation. Act as a liaison with regulatory authorities, external auditors, and third-party vendors on privacy-related matters. Support incidentresponse activities, including investigating and remediating privacy incidents in a timely manner. Prepare and present reports to senior management, outlining key privacy risks more »
Greater Southampton Area, United Kingdom Hybrid / WFH Options
Hays
Standards and Cybersecurity best practices to support complex decisions across the organisation. Support the Cybersecurity Manager in the implementation and maintenance of the cybersecurity incidentresponse procedures and processes. Implementation and maintenance of technical security controls to protect all information assets according to their sensitivity, integrity, and criticality more »
and team-building skills. Basic knowledge of designing and deploying information technology and solutions in one or more of the core domains: endpoint protection; incidentresponse; malware analysis; application and data security; infrastructure and endpoint; and security intelligence/SIEM. Understanding and experience working with structured design methodologies. more »
London, England, United Kingdom Hybrid / WFH Options
Control Risks
to specific cyber threat incidents, data breaches and other cyber security incidents. Build knowledge of collection tools to support bespoke investigative projects and Cyber IncidentResponse engagements. Conduct research on topics which support other service lines, notably Global Risk Analysis, Compliance Forensics and Investigations, and Response. Develop knowledge more »
Leeds, Yorkshire, United Kingdom Hybrid / WFH Options
IT Human Resources
Azure Storage, Security, and Network Components. Azure policies and governance tools for handling compliance and security. Expertise in securing virtualized environments, including threat detection, incidentresponse, and compliance frameworks. Automation tooling for example, Logic Apps, Functions, Azure Automation, Event Grid etc AVD architecture, deployment options, management tools, and more »
days per week on-site in any of the following locations: Portsmouth, Wiltshire and North Yorkshire Responsibilities: Develop and integrate security event monitoring and incident management services. Respond to security incidents as they occur as part of an incidentresponse team. Implement metrics and dashboards to give more »
Corsham, Wiltshire, United Kingdom Hybrid / WFH Options
Lorien
SIEM/Incident SME CONTRACTOR MUST HOLD DV CLEARANCE Role Title: SIEM/Incident SME Location: Hybrid onsite in one of the following locations 2/3 days per week - Corsham, Portsmouth or Northallerton Duration: 6 months Role Description: Main Tech Skills required are ELK (Elastic, Logstash, Kibana … the development and mentoring of Junior Analysts, monitoring networks to actively remediate unauthorised activities. Your role: . Develop and integrate security event monitoring and incident management services. . Respond to security incidents as they occur as part of an incidentresponse team. . Implement metrics and dashboards more »
Corsham, Wiltshire, United Kingdom Hybrid / WFH Options
fortice
SIEM/Incident SME Location: Hybrid onsite in one of the following locations 2/3 days per week - Corsham, Portsmouth or Northallerton Duration: 6 months MUST BE PAYE THROUGH UMBRELLA We are heading up a recruitment drive for a global consultancy that require a DV Cleared SIEM/… Incident SME to join them on a major project that's based onsite 4/5 days in either Warwick, Farnborough or Corsham. Role Description : Main Tech Skills required are ELK (Elastic, Logstash, Kibana) and Tanium The Cyber role is to join a growing security team responsible for designing … including the development and mentoring of Junior Analysts, monitoring networks to actively remediate unauthorised activities. Your role Develop and integrate security event monitoring and incident management services. Respond to security incidents as they occur as part of an incidentresponse team. Implement metrics and dashboards to give more »
Oxford, Oxfordshire, South East, United Kingdom Hybrid / WFH Options
Hays
C-SOC) with two laboratory sites. You will assist STFC's cyber team to define, practice,and verify the adequacy of the cyber critical incident response. You will also assist STFC's infrastructure team whomanage the BAU activities relevant to ongoing cyber assurance, patching, cyberreadiness, and routine incident … of relevant SME knowledge andexperience will ensure successful and secure project outcomes. What you'll needto succeed A relevant information security/information managementbackground. Incident management experience and an ability toquickly tailor responses to deal with fast-paced situations. Proven people & stakeholder management skills. Knowledge of Information Security standards more »
Employment Type: Contract, Work From Home
Rate: £450.0 - £500.0 per day + Up to £500 Per day