19 of 19 Incident Response Jobs in the South East

Join Centrica's IT Security Team as a Cyber Security Incident Response Specialist! ?? Are you ready to drive the UK's energy transformation? Centrica is looking for a skilled Cyber Security Incident Response Specialist to join our IT Security team. You'll handle cyber incident … investigations, e-Discovery, network forensics, and cyber breach inquiries. Location: Hybrid working with occasional travel to Windsor. Key Accountabilities: Carry out forensic analysis and incident response investigations Build and manage forensic and incident infrastructure. Lead cyber forensic investigations. Support weekly security operations calls. Oversee resilience planning and … and remediate vulnerabilities. Analyse security reports and manage alerts. Stay updated on security policies and regulations. Experience Required: Experience in Security Operations and Security Incident Response. Proficiency in SIEM, SEM, and log monitoring. Scripting/programming skills. Knowledge of operating systems, hardware, software platforms, and protocols. Familiarity with security more »

Your Role: You will play a critical role in responding to high-severity cyber incidents, performing advanced threat hunting, and developing response strategies to protect our network systems and customer data. This is a key position within our clients Information Systems directorate, and offers blended working, 3 days in … on industry best practices. Log Management: Ensure all log sources are onboarded into the SIEM solution and create use cases to identify suspicious activity. Incident Response: Lead escalated incident responses, oversee remediation, and report on high-severity incidents. Security Automation: Develop and automate workflows using SOAR tools … and standards. Essential Experience: Significant experience in a SOC Level 2 or 3 role, with a strong track record in advanced threat hunting and incident response. Qualifications in Cybersecurity or IT (Bachelor’s degree or equivalent), ideally with industry-recognized certifications such as CISSP, GIAC, CEH, or CompTIA CASP+. more »

s digital assets. Your expertise will guide the local technology teams and you'll be responsible for implementing and sustaining robust security measure, coordinating incident responses and driving regional and global security initiatives. Key Responsibilities Architect Security Infrastructure Develop technical architecture documentation and roadmaps for incorporating mandated security services. … assessments. 6. Leadership and Communication Exhibit strong critical thinking, decision-making and problem-solving skills. Communicate effectively with technical and non-technical teams. 7. Incident Response Support Assist with incident response initiatives and post-mortems. more »

threats to system architecture . Integrate secure practices across software and hardware teams. Proactively address emerging threats throughout the system lifecycle. Risk Assessment and Incident Response: Identify security risks across hardware, software, and systems architecture. Develop and test incident response plans for breaches or system compromises. more »

in engineering, hands on with common SIEMs, networks, infrastructures and will be capable of acting in a 3rd tier capacity, perhaps even crossing into incident response occasionally. You'll act as third line/IR if you have the skills, and enjoy spending time sharing knowledge, learning, growing … technical hands on around Infrastructure, Linux, System Admin, maybe some time spent in CLOUD borne SIEM Azure, SOAR, MS Sentinel Some strong t3/Incident response experience Knowledge share/mentoring and guidance for less senior members of the team You'd be reporting into a technical person more »

controls to ensure that the information within the client is kept secure. Key functions/outputs: 1. Vulnerability Scanning & Reporting 2. Endpoint Security 3. Incident Management & Tickets 4. System Hardening 5. Change Work 6. Participation in Regular Meetings 7. Documentation Main Objectives: Vulnerability Scanning & Reporting Perform regular vulnerability scans … blocked. • Access Control: ensuring that access controls have been implemented correctly to only allow authorised users to gain access to certain data and systems. Incident Management & Tickets: • Incident Identification: help to recognise and confirm potential incidents through alerts, logs and user reports. This includes distinguishing between true threats … and false positives. • Incident Response: respond to potential security breaches or cyber-attacks. The main effort should focus on containment, mitigating the damage, investigation of the root cause of the incident and restoring to normal operations. • Ticket Requests: respond to and resolve any tickets raised to the more »

and use cases. Automate detection engineering workflows using GitOps and CI/CD principles. Build and optimize security playbooks for detection, threat hunting, and incident response. Enhance threat detection and response capabilities, including Azure Logic Apps. Collaborate with security analysts and stakeholders to address incident response … with GitOps concepts and CI/CD workflows. Experience with security automation platforms (SOAR) and orchestration playbooks. Background in Security Operations and Cyber Security Incident Response. Education: Bachelor's degree preferred (but not essential) in IT, Computer Science, Information Systems, or related field. Relevant experience will be considered in more »

with risk appetites and organisational standards. Conduct and manage technology access reviews, ensuring compliance and appropriate system access levels across the business. Contribute to incident management processes, including root cause analysis and continuous improvement of incident response playbooks. Provide governance oversight and consultancy to ensure business initiatives … auditing, monitoring, and managing compliance frameworks such as ISO27001, PCI-DSS, FCA, GDPR, and IMO. Strong knowledge of cyber-attack techniques, vulnerability testing, and incident response. A track record of conducting risk assessments, control testing, and reporting in a regulated environment. Proven stakeholder management experience within a large and more »

following Saab Group IT standards. Maintains technical knowledge by attending educational workshops; reviewing publications. Systems accreditation for internal and external teams Leading IT Security Incident response process Required Skills: System administration Network security Problem solving Information security policies On-call network troubleshooting Firewall administration Network protocols Routers, hubs … and common security elements. Hands-on experience analysing high volumes of logs, network data (e.g. Netflow, FPC), and other attack artifacts in support of incident investigations Experience with vulnerability scanning solutions In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform (e.g. Sentinel, Nitro more »

guidance across the business. This includes, but is not limited to: - Monitor networks for security issues, investigating breaches and other cyber security incidents, providing incident response. - Perform tests to uncover vulnerabilities, mitigating these to maintain high-security standards - Develop company-wide IT best practice - Support colleagues to install security more »

in monitoring and maintaining the security of the Thales adopted public cloud infrastructure (e.g., AWS, Azure, Google Cloud) in compliance with government security guidelines Incident Response: Support the reporting, investigation and analysis of security incidents and potential breaches within classified environments, helping to resolve issues swiftly Security Auditing more »

credited and authorised by the world’s leading standards bodies such as the National Cyber Security Centre (NCSC) and CREST in Security Operations Centre, Incident Response and Penetration testing. We are a Microsoft Security partner and have a unique approach to deliver MXDR and Security Managed Services to more »

support of a secure, resilient IT infrastructure. You will be responsible for ensuring compliance with ISO27001 and other regulatory standards while overseeing IT operations, incident management, and security initiatives. You will work closely with the Group IT Director, acting as a key advisor and deputising when required. This is … ISO27001, ensuring all infrastructure and security measures align with industry standards. Oversee audit processes (internal & external), ensuring alignment with ISO14298 and regulatory frameworks. Manage incident response, root cause analysis (RCA), and problem resolution, minimising operational disruptions. Support and analyse penetration testing results, implementing robust security improvements. Own IT more »

and standards are aligned with best practices and latest industry trends) work collaboratively and closely with infrastructure and network engineers, on business as usual incident response, vulnerability management, root cause analysis etc. lead on cyber security projects maintaining and developing cyber security road-map ongoing security threat, risk more »

liaison with regulatory bodies. Present the state of cybersecurity governance and risk to executive stakeholders. Cybersecurity Operations & Engineering Manage threat detection, vulnerability assessment, and incident response programs. Lead the design, implementation, and maintenance of cybersecurity infrastructure. Drive the adoption of advanced security technologies and strategies. Ensure infrastructure, endpoints more »

to improve network configuration, ensuring compliance with technical specifications and best practices. Monitoring and Security : Developing systems to track network performance and security, managing incident responses, and liaising with external service providers. This role offers variety, challenge, and the opportunity to work in a collaborative and supportive environment. What more »

and Continuous Delivery (CI/CD) process for building and delivering security tools Design and implement test suites for the security tools Practice sustainable incident response and drive root cause analysis on a rotation basis. What You’ll Bring: BS degree in Computer Science or related technical field more »

and Continuous Delivery (CI/CD) process for building and delivering security tools Design and implement test suites for the security tools Practice sustainable incident response and drive root cause analysis on a rotation basis. What You’ll Bring: BS degree in Computer Science or related technical field more »

and tuning. Monitor system performance and troubleshoot issues to ensure optimal uptime and reliability. Responsible for the analysis of error trends and problem management. Incident response Documentation: current and new systems – administering correct documentation Implementing and maintaining security policies and procedures to protect sensitive data (SAP Security) would more »