1 to 25 of 93 Incident Response Jobs in the UK excluding London

Job Description: We are looking for an experienced Incident Responder as Line Manager to Lead our Airbus Protect Incident Response Centre (IRC). Reporting to the HO CSIRT, the IRC Line Manager will have a strong Technical focus, at expert level (Technical Leader) within Incident Response … our different sites in France and UK. The role ... Responsible for the day to day leadership and management of the transnational I ncident Response Centre (IRC) Accountable for the development and maintenance of a proactive Incident Response Plan. The plan is to include but not limited … a major security incident. Is responsible for the design, planning and execution of IR exercises and Cybersecurity crisis management preparation exercises to test the Incident Response Plan. Develop and maintain the readiness of the logistics and IRC team members in the associated tooling, procedures and ensure all permits more »

What you’ll be doing Defender of the Digital Realm: Safeguard networks and systems by responding to cyber threats in real time. Leading the response to cybersecurity incidents, following the incident response lifecycle, to a timely and effective resolution. Master of Digital Forensics: Analyse breaches, uncover attack … investigations and respond to eDiscovery cases. Quick on Your Feet: Swiftly assess, help mitigate and neutralise security incidents with precision and poise via your incident management expertise and utilising incident response plans to resolve incidents. Collaborate to Innovate: Work with cross-functional teams to strengthen our cybersecurity … posture and prevent future threats. Driving continuous improvement of incident response capabilities through post incident reviews and incident scenario testing. On the Frontlines of Security: Be the first line of defence in keeping sensitive data secure and ensuring our operations stay uninterrupted. Working with the wider more »

Join Centrica's IT Security Team as a Cyber Security Incident Response Specialist! ?? Are you ready to drive the UK's energy transformation? Centrica is looking for a skilled Cyber Security Incident Response Specialist to join our IT Security team. You'll handle cyber incident … investigations, e-Discovery, network forensics, and cyber breach inquiries. Location: Hybrid working with occasional travel to Windsor. Key Accountabilities: Carry out forensic analysis and incident response investigations Build and manage forensic and incident infrastructure. Lead cyber forensic investigations. Support weekly security operations calls. Oversee resilience planning and … and remediate vulnerabilities. Analyse security reports and manage alerts. Stay updated on security policies and regulations. Experience Required: Experience in Security Operations and Security Incident Response. Proficiency in SIEM, SEM, and log monitoring. Scripting/programming skills. Knowledge of operating systems, hardware, software platforms, and protocols. Familiarity with security more »

Join Police Digital Service as NMC Cyber Incident Management Lead £65,000 - £70,000 About Police Digital Service Police Digital Service strives to be the go-to partner for technology developments and programmes across UK policing. The National Management Centre (NMC) is part of Police Digital Service and provides … visibility and control of information risks for policing. It supports the 24x7x365 nature of police operations, providing a threat detection and response capability for digital services before, during and after cyber-attacks, enabling stakeholders to understand and proactively manage risk across the technology estate at both the national and … the NMC, along with any issues concerning quality and delivery of the service. You will have line management responsibility for the team of Cyber Incident Leads. Accountable for the evolution and development of the Incident Management Service with regards to continuously improving People, Processes and Technology. Responsible for more »

Infrastructure to supervise and support the Security Operations Center (SOC) with hands-on expertise. Team Coordination : Assist in coordinating daily team activities and priorities. Incident Response: Lead incident response efforts from detection to recovery. Security Monitoring: Oversee advanced monitoring and analysis using SIEM tools. Vulnerability Management … Align security initiatives with business goals. Reporting: Maintain documentation and generate reports for management. Qualifications: Technical Expertise: Proven hands-on experience in cyber security. Incident Response: Strong background in handling complex security incidents. Analytical Skills: Excellent problem-solving abilities. Communication: Strong verbal and written skills. Certifications: Relevant certifications more »

Infrastructure to supervise and support the Security Operations Center (SOC) with hands-on expertise. Team Coordination : Assist in coordinating daily team activities and priorities. Incident Response: Lead incident response efforts from detection to recovery. Security Monitoring: Oversee advanced monitoring and analysis using SIEM tools. Vulnerability Management … Align security initiatives with business goals. Reporting: Maintain documentation and generate reports for management. Qualifications: Technical Expertise: Proven hands-on experience in cyber security. Incident Response: Strong background in handling complex security incidents. Analytical Skills: Excellent problem-solving abilities. Communication: Strong verbal and written skills. Certifications: Relevant certifications more »

security tools such as Microsoft Sentinel and DKIM for email security into the organization's IT and OT systems. Create and implement comprehensive security incident response playbooks to enhance incident management across IT and OT environments. Provide expert advice on security monitoring, log management, and incident response best practices to strengthen the organization's overall security posture. What you will Ideally Bring: In-depth knowledge of security monitoring techniques, including the use of Microsoft Sentinel and related tools to detect and respond to threats effectively. Proficient in managing and analysing logs from diverse IT … and OT systems to identify potential security issues. Demonstrated ability to develop and execute robust incident response strategies, ensuring swift and effective handling of security incidents. Strong understanding of compliance frameworks, including NIS-R, and their application in designing security solutions. Experience integrating advanced security technologies into existing more »

low carbon energy. We work at the cutting edge of the transition to a sustainable, net zero world. We’re looking fora Cyber Security Incident Response Team Senior Analyst. Based at our Capenhurst office2/3 days a week. At Urenco we’re committed to giving you opportunities … threat models, identify threat vectors, and create use cases for effective security monitoring. What do you need to thrive in this role? Demonstrates strong incident response experience with a consultancy mindset. Possesses a strong curiosity and analytical mindset - capable of identifying core problems and collaborating with various functions more »

Join us as a Cyber Security Analyst We’ll look to you to provide an end-to-end security response, including triage, response, escalation, and coordination of events and incidents You’ll undertake a proactive role to anticipate and identify security events, incidents and trends that could adversely … modification, perusal, inspection, recording or destruction. You’ll be collaborating with internal and external colleagues, specialists and stakeholders to make sure activities relating to incident response, user access, alert monitoring, root cause analysis and scenario planning are completed in line with standard operating procedures and to a high … events Providing assurance of security posture through monitoring security system status Monitoring security alerting and analysis service within the function Giving advice during an incident response and any subsequent reviews Identifying security incidents while helping to handle them in a timely manner, in accordance with security best practice more »

The post holder will provide expert technical advice and operational support on cyber security matters across the organisation, including risk assessments, threat mitigation, and incident response. Working closely with other Digital Services teams, the Cyber Security Specialist will play a vital role in supporting the Trusts digital strategy, implementing … and technical expertise in cyber security to protect the Trust's digital assets. Monitor, analyse, and respond to security threats and vulnerabilities, ensuring effective incident response and recovery. Develop and maintain cyber security policies, processes, and documentation to align with NHS and industry standards. Conduct security risk assessments … to mitigate identified risks. Develop and manage a robust security risk register, ensuring risks are tracked, monitored, and reported to the appropriate governance forums. Incident Management and Response Act as a key point of contact for managing and investigating security incidents, coordinating with internal teams and external partners more »

Your Role: You will play a critical role in responding to high-severity cyber incidents, performing advanced threat hunting, and developing response strategies to protect our network systems and customer data. This is a key position within our clients Information Systems directorate, and offers blended working, 3 days in … on industry best practices. Log Management: Ensure all log sources are onboarded into the SIEM solution and create use cases to identify suspicious activity. Incident Response: Lead escalated incident responses, oversee remediation, and report on high-severity incidents. Security Automation: Develop and automate workflows using SOAR tools … and standards. Essential Experience: Significant experience in a SOC Level 2 or 3 role, with a strong track record in advanced threat hunting and incident response. Qualifications in Cybersecurity or IT (Bachelor’s degree or equivalent), ideally with industry-recognized certifications such as CISSP, GIAC, CEH, or CompTIA CASP+. more »

s digital assets. Your expertise will guide the local technology teams and you'll be responsible for implementing and sustaining robust security measure, coordinating incident responses and driving regional and global security initiatives. Key Responsibilities Architect Security Infrastructure Develop technical architecture documentation and roadmaps for incorporating mandated security services. … assessments. 6. Leadership and Communication Exhibit strong critical thinking, decision-making and problem-solving skills. Communicate effectively with technical and non-technical teams. 7. Incident Response Support Assist with incident response initiatives and post-mortems. more »

our systems, data, and networks against evolving cyber risks. Key Responsibilities: Oversee the daily operations of the CSOC, ensuring the effective monitoring, detection, and response to security incidents. Develop and implement security policies, procedures, and best practices aligned with industry standards. Lead and mentor a team of security analysts … fostering professional growth and technical excellence. Collaborate with internal stakeholders to identify vulnerabilities and recommend risk mitigation strategies. Conduct regular threat assessments and incident response drills. Manage security tools and technologies, ensuring optimal performance and timely updates. Stay updated on the latest cyber threats, trends, and compliance requirements. … Strong knowledge of cyber security frameworks, such as NIST, ISO 27001, or CIS Controls. Hands-on experience with SIEM tools, threat intelligence platforms, and incident response processes. Certifications such as CISSP, CISM, CEH, or equivalent are highly desirable. Excellent communication and problem-solving skills. Ability to work under more »

our systems, data, and networks against evolving risks. Key Responsibilities: CSOC Oversight: Manage the daily operations of the CSOC, ensuring effective monitoring, detection, and response to security incidents. Policy Development: Create and enforce security policies, procedures, and best practices aligned with industry standards. Team Leadership: Lead and mentor a … growth and technical excellence. Collaboration: Work with internal stakeholders to identify vulnerabilities and recommend risk mitigation strategies. Threat Assessments: Conduct regular threat assessments and incident response drills. Tool Management: Oversee security tools and technologies, ensuring optimal performance and timely updates. Continuous Learning: Stay informed about the latest cyber … knowledge of cyber security frameworks like NIST, ISO 27001, or CIS Controls. Technical Skills: Hands-on experience with SIEM tools, threat intelligence platforms, and incident response processes. Certifications: Certifications such as CISSP, CISM, CEH, or equivalent are highly desirable. Soft Skills: Excellent communication and problem-solving skills. Adaptability more »

security principles and practices so you can effectively detect, respond to, and prevent threats. You'll be working closely with teams like security operations, incident response, and development, all to help strengthen the companys overall security. Main Responsibilities As our new Security Operations Engineer, you will also: Youll … be responsible for handling the implementation, integration, maintenance, and management of security tools like SIEM, EDR, and vulnerability management platforms. Assist security analysts and incident command team with ongoing alerts of note and incidents Youll collaborate with analysts and management to create and fine-tune detections, ensuring that the … that the security posture is constantly evaluated and updated to stay in line with the evolving threat landscape. Youll support Security Operations Analysts, the Incident Command Team, and any connected third-party service providers during incident response activities. The Ideal Candidate We are looking for: You should more »

of your roles, in the clients' words: Develop and build the automation, logging, and detection strategy to improve the CDO's efficiency, scalability, and incident response capabilities. Design, implement, and maintain automated workflows and playbooks to streamline CDO operations, including incident response, threat hunting, cyber threat more »

of your roles, in the clients' words: Develop and build the automation, logging, and detection strategy to improve the CDO's efficiency, scalability, and incident response capabilities. Design, implement, and maintain automated workflows and playbooks to streamline CDO operations, including incident response, threat hunting, cyber threat more »

the growing team. As a technology-driven SOC, our client is actively integrating cutting-edge innovations, including SOAR platforms, to drive automation and streamline incident response. They are investigating the use of AI within the SOC to enhance threat detection, analysis, and remediation, enabling faster, smarter, and more effective … client relationships. We are seeking a dynamic professional with a solid foundation in security operations, exceptional customer service skills, and hands-on experience in incident response and threat hunting. If you have a knack for mentoring and guiding junior team members, experience managing multiple clients at once and … Analyst – Technical Lead: Mentorship and Team Support : Provide mentorship to Security Analysts while providing collaborative support to the broader Security Operations Centre (SOC). Incident Leadership : Act as a key liaison for the client’s senior management and external partners during security incidents, offering expert guidance and resolution strategies. more »

and regulatory compliance. Implement and enforce cybersecurity policies and procedures across departments. Manage compliance metrics and reporting, providing actionable insights to senior leadership. Facilitate incident response planning and coordinate responses to security incidents. Conduct security awareness and training programs to educate staff on best practices. Support business continuity … proactive and collaborative approach. You will have: 2-6 years of experience in cybersecurity or information security roles. Expertise in risk management , compliance , and incident response . Familiarity with standards like ISO27001 , GDPR, and PCI-DSS. Strong problem-solving skills with the ability to communicate effectively across technical more »

Cyber Security Analyst – London/Remote Gibbs Hybrid is looking for several accomplished Cyber Security Analysts to support the Security Incident Response Team. The team is growing, we require strong individual contributors that will investigate, analyze, and contain security incidents. This is a fully remote role, with the … the UK • Strong ability to collaborate, delegate tasks and drive deadline compliance in a highly regulated, time sensitive environment • Triage, escalation, and assisting the response of cybersecurity, policy and privacy related events and incidents • Manage containment and remediation efforts of affected assets, IOCs, and TTPs • Integrate and collaborate with … BTL1 and/or BTL2, GCIH, CEH, CySA+, OSCP, CISSP, CCSP etc.) • IT Security or Cyber Security experience in any of the following areas: Incident Response & Digital Forensics. Cybersecurity Detection Engineering and Threat Hunting or Vulnerability Management • Experience analyzing attack vectors, current threats, and security remediation strategies • Experience more »

Cyber Security Analyst – London/Remote Gibbs Hybrid is looking for several accomplished Cyber Security Analysts to support the Security Incident Response Team. The team is growing, we require strong individual contributors that will investigate, analyze, and contain security incidents. This is a fully remote role, with the … the UK • Strong ability to collaborate, delegate tasks and drive deadline compliance in a highly regulated, time sensitive environment • Triage, escalation, and assisting the response of cybersecurity, policy and privacy related events and incidents • Manage containment and remediation efforts of affected assets, IOCs, and TTPs • Integrate and collaborate with … BTL1 and/or BTL2, GCIH, CEH, CySA+, OSCP, CISSP, CCSP etc.) • IT Security or Cyber Security experience in any of the following areas: Incident Response & Digital Forensics. Cybersecurity Detection Engineering and Threat Hunting or Vulnerability Management • Experience analyzing attack vectors, current threats, and security remediation strategies • Experience more »

Cyber Security Analyst – London/Remote Gibbs Hybrid is looking for several accomplished Cyber Security Analysts to support the Security Incident Response Team. The team is growing, we require strong individual contributors that will investigate, analyze, and contain security incidents. This is a fully remote role, with the … the UK • Strong ability to collaborate, delegate tasks and drive deadline compliance in a highly regulated, time sensitive environment • Triage, escalation, and assisting the response of cybersecurity, policy and privacy related events and incidents • Manage containment and remediation efforts of affected assets, IOCs, and TTPs • Integrate and collaborate with … BTL1 and/or BTL2, GCIH, CEH, CySA+, OSCP, CISSP, CCSP etc.) • IT Security or Cyber Security experience in any of the following areas: Incident Response & Digital Forensics. Cybersecurity Detection Engineering and Threat Hunting or Vulnerability Management • Experience analyzing attack vectors, current threats, and security remediation strategies • Experience more »

Cyber Security Analyst – London/Remote Gibbs Hybrid is looking for several accomplished Cyber Security Analysts to support the Security Incident Response Team. The team is growing, we require strong individual contributors that will investigate, analyze, and contain security incidents. This is a fully remote role, with the … the UK • Strong ability to collaborate, delegate tasks and drive deadline compliance in a highly regulated, time sensitive environment • Triage, escalation, and assisting the response of cybersecurity, policy and privacy related events and incidents • Manage containment and remediation efforts of affected assets, IOCs, and TTPs • Integrate and collaborate with … BTL1 and/or BTL2, GCIH, CEH, CySA+, OSCP, CISSP, CCSP etc.) • IT Security or Cyber Security experience in any of the following areas: Incident Response & Digital Forensics. Cybersecurity Detection Engineering and Threat Hunting or Vulnerability Management • Experience analyzing attack vectors, current threats, and security remediation strategies • Experience more »

Cyber Security Analyst – London/Remote Gibbs Hybrid is looking for several accomplished Cyber Security Analysts to support the Security Incident Response Team. The team is growing, we require strong individual contributors that will investigate, analyze, and contain security incidents. This is a fully remote role, with the … the UK • Strong ability to collaborate, delegate tasks and drive deadline compliance in a highly regulated, time sensitive environment • Triage, escalation, and assisting the response of cybersecurity, policy and privacy related events and incidents • Manage containment and remediation efforts of affected assets, IOCs, and TTPs • Integrate and collaborate with … BTL1 and/or BTL2, GCIH, CEH, CySA+, OSCP, CISSP, CCSP etc.) • IT Security or Cyber Security experience in any of the following areas: Incident Response & Digital Forensics. Cybersecurity Detection Engineering and Threat Hunting or Vulnerability Management • Experience analyzing attack vectors, current threats, and security remediation strategies • Experience more »

Cyber Security Analyst – London/Remote Gibbs Hybrid is looking for several accomplished Cyber Security Analysts to support the Security Incident Response Team. The team is growing, we require strong individual contributors that will investigate, analyze, and contain security incidents. This is a fully remote role, with the … the UK • Strong ability to collaborate, delegate tasks and drive deadline compliance in a highly regulated, time sensitive environment • Triage, escalation, and assisting the response of cybersecurity, policy and privacy related events and incidents • Manage containment and remediation efforts of affected assets, IOCs, and TTPs • Integrate and collaborate with … BTL1 and/or BTL2, GCIH, CEH, CySA+, OSCP, CISSP, CCSP etc.) • IT Security or Cyber Security experience in any of the following areas: Incident Response & Digital Forensics. Cybersecurity Detection Engineering and Threat Hunting or Vulnerability Management • Experience analyzing attack vectors, current threats, and security remediation strategies • Experience more »