1 to 25 of 32 Incident Response Jobs in the North West

a comprehensive cybersecurity and information security strategy that aligns with business objectives, Lead, mentor, and oversee a small global team responsible for security operations, incident response, and threat detection, fostering a culture of continuous improvement, innovation, and excellence, Collaborate with the Group IT team to ensure the organisation … is protected against cyber threats and maintain an effective incident response plan, Play a pivotal role in ensuring the security of Tunstall's SaaS products, Identify, review, select, and manage our relationships with appropriate third-party security partners for our products, Work closely with product development teams to … prioritise security risks associated with both internal and external factors, Develop and maintain a risk management framework to mitigate risks effectively, Establish and enhance incident response plans and conduct drills, Evaluate and manage security risks associated with third-party vendors and partners, including those providing security solutions, Establish more »

Active Directory, including user authentication, access controls, and privilege management. * Managing and maintaining endpoint security solutions, including endpoint protection platforms (EPP), endpoint detection and response (EDR), and mobile device management (MDM) using Microsoft Intune. * Developing and enforcing Data security/Application security policies, standards, and procedures across the organisation. … Ensure compliance with relevant regulations and industry standards. * Working with the Managed SOC and Operational teams, develop and maintain incident response plans. Lead incident response activities, including detection, investigation, containment, and recovery. Staying updated on emerging threats and security trends. * Collaborating with cross-functional teams, including more »

will play a key role in supporting InfoSec initiatives, identifying and managing security issues and ensuring the robustness of IT security operations. Responsibilities Security Incident Response: Assist in identifying, managing and resolving security incidents with the Security Operations Center (SOC). Ensure successful resolution and closure of these … Hands-on experience with Azure cloud security tools and infrastructure management, including M365, IAM, RBAC, Sentinel, Defender for Cloud, Secure Score and Log Monitoring. Incident Management: Ability to identify, respond to and manage security incidents efficiently. Vulnerability Management: Experience in monitoring, prioritising and implementing remediation activities for security vulnerabilities. … Collaboration: Ability to work effectively with cross-functional teams, particularly bridging IT operations and InfoSec. Scripting: Beneficial Scripting experience for automation and incident response tasks. Tech Stack Azure M365 IAM RBAC Sentinel Defender for Cloud Secure Score With a salary circa £55k and the opportunity for hybrid working more »

understanding of Azure Sentinel and Microsoft Defender. Key Responsibilities: Monitor security events and alerts using Azure Sentinel and Microsoft Defender, ensuring timely and effective response to potential threats. Mentor L1/L2 SOC Analysts whilst acting as their technical escalation point. Analyze and investigate security incidents, providing detailed reports … configurations, and policies within Azure Sentinel and Microsoft Defender. Collaborate with cross-functional teams to develop and enhance security strategies, including threat hunting and incident response procedures. Stay updated with emerging security threats, vulnerabilities, and industry best practices to proactively address potential risks. Requirements: Proven experience as a more »

tools, and methodologies. Recommend and implement appropriate security solutions to enhance the organization's security posture and resilience against cyber threats. Develop and maintain incident response plans and procedures to effectively respond to security incidents and breaches. Coordinate with internal teams and external stakeholders to contain incidents, minimize more »

working, in house L&D, 28 days holiday +BH Skills required for this role: - Experience working with SIEM solutions (ideally Sentinel) - Vulnerability management (Nessus) - Incident Response - Implementing appropriate mediation Desirables: - SC Clearance - Large guideline expérience (ISO27001, Cyber Essentials, etc) This role gives the right candidate an opportunity to more »

through ongoing threat analysis and being up to date with the future threat landscape. Working with security tools such as; Sentinel, Defender and Azure Incident response planning for different Cyber Threats Monitoring of IT Security systems, providing trend analysis Implementing and maintaining firewall configurations What's in it more »

intellectual assets. The Cyber Threat Defence team is a senior team that develops, socializes, and deploys novel mitigations to counter threat activity observed in Incident Response operations and Threat Intelligence. This role is focused on improving the overall Privileged Access Management (PAM) strategy through evaluation, testing, and collaboration more »

to vulnerability management reduction across all IT Systems and you will work with the SOC to assist in the coordination and management of cyber incident response activities. The ideal candidate will have come from a IT Infrastructure background, have moved into Cyber Security, and will hold a current … due to the volume of applications received, we are unable to communicate feedback to all candidates. In the event you have not received a response within 14 days of your application, it is unlikely that your application will be progressed on this occasion. Please continue to review our website more »

Perform data profiling and analysis to identify patterns, trends, and insights. Conduct security assessments and vulnerability scanning. Respond to security incidents and participate in incident response activities. Stay updated on evolving security threats and Microsoft security solutions. Act as a point of contact between SOC team and customer. … of applications, we will be unable to contact each applicant individually on the status of their application. If you have not received a direct response within 30 days, then it should be deemed unsuccessful on this occasion. Application Process 1. Online application > 2. Technical discussion > 3. Managerial discussion > 4. more »

to ensure timely identification, capture, assignment, processing and completion of incidents and service requests • Monitor ticket queues to identify trends and escalate to Major Incident or Problem where appropriate • Knowledge sharing and participation in meetings to ensure an excellent customer experience • Provide advice and guidance to customers and liaise … parties on support issues where appropriate • Ensure that users are kept informed of the status of any outstanding calls • Ensure that documentation (technical notes, incident resolution notes, installation procedures, user guides etc.) are developed and maintained up to date and stored in the appropriate document repository • When a Major … Incident occurs, reprioritise work in accordance with the requirements dictated by the Digital Workplace Manager • Work with other teams within the IT Department to achieve call resolution. Technical Support • Support videoconferencing facilities & meeting room functionality (including tele-conferences, web meetings and room bookings) • Troubleshooting of networking issues including cabling more »

incidents, acting as the "security lead" within a resolver group. · Ensure that the Head of Security Operations and other senior stakeholders are appraised of incident impact, developments, and outcomes. · Recognise when external assistance is required to support or guide incident response and escalate promptly. · Develop - and guide … the development of - runbooks and processes, ensuring they're fit-for-purpose and followed. · Prepare incident reports and gather reporting metrics for cyber events and incidents. · Analyse security event trends to tune rules and thresholds to improve the fidelity of detections and alerts. What you’ll need: · Extensive experience more »

Handle security incidents and escalations, manage 3rd-party technical support. Provide security metrics, maintain documentation, and collaborate on technology design. Oversee security platform support, incident response, and vulnerability management. Track cyber threats, support vulnerability analysis, and lead system patching and updates. Integrate security into BAU processes, maintain technical more »

expand your skills in Digital forensics investigations. You would be part of a team that in the future could see you becoming skilled within Incident Response or becoming a future leader of the business. Role includes: Conducting analysis in either a lab or on client sites Secure and more »

Handle security incidents and escalations, manage 3rd-party technical support. Provide security metrics, maintain documentation, and collaborate on technology design. Oversee security platform support, incident response, and vulnerability management. Track cyber threats, support vulnerability analysis, and lead system patching and updates. Integrate security into BAU processes, maintain technical more »

analysing security logs and events, implementing security controls from the CIS security framework, configuring and managing security tools and technologies. You'll participate in incident response activities and collaborate across teams to ensure security is integrated into all aspects of the organisation. You'll have continual learning and more »

and remediate vulnerabilities with an emphasis on automation and scalability Conduct security assessments and work with other engineering teams to develop secure products Support incident response and remediation including log and forensic data collection Consult with other teams to guide them in addressing vulnerabilities in source code or more »

ability to use KQL combined with the ability to create custom KQL scripts that are used to conduct sophisticated security data analysis and uplift incident response and threat detection capabilities within a SIEM Highly motivated with the ability to work autonomously to complete a range of tasks to more »

with experience or relevant job titles of; Loss Notification Operations Manager, Loss Reporting Team Supervisor, Initial Loss Assessment Coordinator, First Notice of Loss Supervisor, Incident Reporting Team Leader, Claims Intake Manager, Loss Notification Handling Supervisor, Initial Claims Assessment Coordinator, Incident Response Team Leader, Loss Reporting Operations Supervisor more »

expand your skills in Digital forensics investigations. You would be part of a team that in the future could see you becoming skilled within Incident Response or leading a competent forensics team. Role includes: Conducting analysis in either a lab or on client sites Secure and retrieve data more »

databases, storage solutions, and backup systems Ability to translate business requirements into efficient IT solutions Proficiency in cybersecurity practices, including threat detection, prevention, and incident response Professional work ethic with a client-driven focus and attention to detail Familiarity with IT project management methodologies and tools Capacity to more »

Engagement and Insight strategies. Experience in database management and optimisation, i.e. reorganisation and rebuild. Strong knowledge of database backup and recovery procedures. Experience of incident response (triage, classification, investigation, and escalation). Proficient in database encryption at rest, in transit and in memory. Financial Services experience and exposure more »

version control systems, and release management practices. Familiarity with monitoring and observability tools (Prometheus, Grafana, Dynatrace) Knowledge of security best practices, compliance standards, and incident response protocols. Strong analytical and problem-solving skills, with the ability to troubleshoot complex technical issues. Excellent communication and leadership skills, with the more »

for applications & infrastructure on a Sailpoint based project. Responsibilities: Applications deployment to AWS & Azure Managing code & configuration using Git Developing CI/CD pipelines Incident responses Monitoring of production systems Being part of/leading builds across systems Required skills. Active HO SC Expert in Azure & AWS environments Skilled more »

Perform data profiling and analysis to identify patterns, trends, and insights. Conduct security assessments and vulnerability scanning. Respond to security incidents and participate in incident response activities. Stay updated on evolving security threats and Microsoft security solutions. Act as a point of contact between SOC team and customer. more »