Active Directory, including user authentication, access controls, and privilege management. * Managing and maintaining endpoint security solutions, including endpoint protection platforms (EPP), endpoint detection and response (EDR), and mobile device management (MDM) using Microsoft Intune. * Developing and enforcing Data security/Application security policies, standards, and procedures across the organisation. … Ensure compliance with relevant regulations and industry standards. * Working with the Managed SOC and Operational teams, develop and maintain incidentresponse plans. Lead incidentresponse activities, including detection, investigation, containment, and recovery. Staying updated on emerging threats and security trends. * Collaborating with cross-functional teams, including more »
Chester, England, United Kingdom Hybrid / WFH Options
Digital Gurus
robustness of IT security operations. The technical stack represents a blend of Azure, M365, IAM, Sentinel, Defender for Cloud and Log Monitoring. Responsibilities Security IncidentResponse: Assist in identifying, managing and resolving security incidents with the Security Operations Center (SOC). Ensure successful resolution and closure of these … security vulnerabilities. Ability to work effectively with cross-functional teams, particularly bridging IT operations and InfoSec. Scripting experience will be beneficial for automation and incidentresponse tasks. Tech Stack Azure M365 IAM RBAC Sentinel Defender for Cloud (Secure Score) Interested? Apply now to find out more more »
Key Accountabilities Perform forensic analysis and gather evidence Correlation monitoring using multiple SIEM technologies Assist in gathering forensic data and physical equipment Act as incident responder for potential incident identified Ability to work under pressure In-depth understanding of the cyber threat landscape and advances adversary tactics Conduct … counter the attack or improvise security standards. Keep the security systems up to date and contributing to security strategies. Document incidents to contribute to incidentresponse and disaster recovery plans. Perform internal and external security audits. In the case of third-party vendors, verify their security strength and … reporting Real Time attacks and vulnerabilities on the client network. Identification of incidents and subsequent analysis and investigation to determine their severity and the response required. Ensure that incidents are correctly reported and documented in accordance with the relevant policies and procedures. Be prepared to provide a Technical Escalation more »
Key Accountabilities Perform forensic analysis and gather evidence Correlation monitoring using multiple SIEM technologies Assist in gathering forensic data and physical equipment Act as incident responder for potential incident identified Ability to work under pressure In-depth understanding of the cyber threat landscape and advances adversary tactics Conduct … counter the attack or improvise security standards. Keep the security systems up to date and contributing to security strategies. Document incidents to contribute to incidentresponse and disaster recovery plans. Perform internal and external security audits. In the case of third-party vendors, verify their security strength and … reporting Real Time attacks and vulnerabilities on the client network. Identification of incidents and subsequent analysis and investigation to determine their severity and the response required. Ensure that incidents are correctly reported and documented in accordance with the relevant policies and procedures. Be prepared to provide a Technical Escalation more »
alerts - Analyse and respond to security events - Conduct root cause analysis and forensic investigations - Collaborate with IT and security teams to resolve incidents - Maintain incidentresponse procedures and documentation Desirable Skills: - Experience with Microsoft technologies (Windows Server, Active Directory, Azure) - Knowledge of Elasticsearch and Linux - Familiarity with SIEM more »
understanding of Azure Sentinel and Microsoft Defender. Key Responsibilities: Monitor security events and alerts using Azure Sentinel and Microsoft Defender, ensuring timely and effective response to potential threats. Mentor L1/L2 SOC Analysts whilst acting as their technical escalation point. Analyze and investigate security incidents, providing detailed reports … configurations, and policies within Azure Sentinel and Microsoft Defender. Collaborate with cross-functional teams to develop and enhance security strategies, including threat hunting and incidentresponse procedures. Stay updated with emerging security threats, vulnerabilities, and industry best practices to proactively address potential risks. Requirements: Proven experience as a more »
Manchester, Clifton, City and Borough of Salford, United Kingdom Hybrid / WFH Options
Advania UK
business ensuring security and monitoring requirements are determined and implemented through onboarding or continuous improvement activities Qualifications & Experience: Professional experience of working in an IncidentResponse Team or a similar environment Knowledge of SIEM platforms such as Azure Sentinel, Microsoft Defender, Splunk, ArcSight, QRadar, or LogRhythm. Strong analytical more »
business ensuring security and monitoring requirements are determined and implemented through onboarding or continuous improvement activities. Qualifications & Experience: Professional experience of working in an IncidentResponse Team or a similar environment. Knowledge of SIEM platforms such as Azure Sentinel, Microsoft Defender, Splunk, ArcSight, QRadar, or LogRhythm. Strong analytical more »
Greater Cheshire West and Chester Area, United Kingdom Hybrid / WFH Options
psd group
to vulnerability management reduction across all IT Systems and you will work with the SOC to assist in the coordination and management of cyber incidentresponse activities. The ideal candidate will have come from a IT Infrastructure background, have moved into Cyber Security, and will hold a current … due to the volume of applications received, we are unable to communicate feedback to all candidates. In the event you have not received a response within 14 days of your application, it is unlikely that your application will be progressed on this occasion. Please continue to review our website more »
Warrington, England, United Kingdom Hybrid / WFH Options
Tata Consultancy Services
Perform data profiling and analysis to identify patterns, trends, and insights. Conduct security assessments and vulnerability scanning. Respond to security incidents and participate in incidentresponse activities. Stay updated on evolving security threats and Microsoft security solutions. Act as a point of contact between SOC team and customer. … of applications, we will be unable to contact each applicant individually on the status of their application. If you have not received a direct response within 30 days, then it should be deemed unsuccessful on this occasion. Application Process 1. Online application > 2. Technical discussion > 3. Managerial discussion > 4. more »
to ensure timely identification, capture, assignment, processing and completion of incidents and service requests • Monitor ticket queues to identify trends and escalate to Major Incident or Problem where appropriate • Knowledge sharing and participation in meetings to ensure an excellent customer experience • Provide advice and guidance to customers and liaise … parties on support issues where appropriate • Ensure that users are kept informed of the status of any outstanding calls • Ensure that documentation (technical notes, incident resolution notes, installation procedures, user guides etc.) are developed and maintained up to date and stored in the appropriate document repository • When a Major … Incident occurs, reprioritise work in accordance with the requirements dictated by the Digital Workplace Manager • Work with other teams within the IT Department to achieve call resolution. Technical Support • Support videoconferencing facilities & meeting room functionality (including tele-conferences, web meetings and room bookings) • Troubleshooting of networking issues including cabling more »
incidents, acting as the "security lead" within a resolver group. · Ensure that the Head of Security Operations and other senior stakeholders are appraised of incident impact, developments, and outcomes. · Recognise when external assistance is required to support or guide incidentresponse and escalate promptly. · Develop - and guide … the development of - runbooks and processes, ensuring they're fit-for-purpose and followed. · Prepare incident reports and gather reporting metrics for cyber events and incidents. · Analyse security event trends to tune rules and thresholds to improve the fidelity of detections and alerts. What you’ll need: · Extensive experience more »
Handle security incidents and escalations, manage 3rd-party technical support. Provide security metrics, maintain documentation, and collaborate on technology design. Oversee security platform support, incidentresponse, and vulnerability management. Track cyber threats, support vulnerability analysis, and lead system patching and updates. Integrate security into BAU processes, maintain technical more »
Warrington, England, United Kingdom Hybrid / WFH Options
Hamilton Barnes 🌳
Perform data profiling and analysis to identify patterns, trends, and insights. Conduct security assessments and vulnerability scanning. Respond to security incidents and participate in incidentresponse activities. Stay updated on evolving security threats and Microsoft security solutions. Act as a point of contact between SOC team and customer. more »
Handle security incidents and escalations, manage 3rd-party technical support. Provide security metrics, maintain documentation, and collaborate on technology design. Oversee security platform support, incidentresponse, and vulnerability management. Track cyber threats, support vulnerability analysis, and lead system patching and updates. Integrate security into BAU processes, maintain technical more »
North West London, London, United Kingdom Hybrid / WFH Options
Client Server
analysing security logs and events, implementing security controls from the CIS security framework, configuring and managing security tools and technologies. You'll participate in incidentresponse activities and collaborate across teams to ensure security is integrated into all aspects of the organisation. You'll have continual learning and more »
Preston, Lancashire, United Kingdom Hybrid / WFH Options
BAE Systems
ability to use KQL combined with the ability to create custom KQL scripts that are used to conduct sophisticated security data analysis and uplift incidentresponse and threat detection capabilities within a SIEM Highly motivated with the ability to work autonomously to complete a range of tasks to more »
Employment Type: Permanent
Salary: £60000/annum Depending on skills and experience
with experience or relevant job titles of; Loss Notification Operations Manager, Loss Reporting Team Supervisor, Initial Loss Assessment Coordinator, First Notice of Loss Supervisor, Incident Reporting Team Leader, Claims Intake Manager, Loss Notification Handling Supervisor, Initial Claims Assessment Coordinator, IncidentResponse Team Leader, Loss Reporting Operations Supervisor more »
Oldham, Greater Manchester, North West, United Kingdom
BluetownOnline Ltd
databases, storage solutions, and backup systems Ability to translate business requirements into efficient IT solutions Proficiency in cybersecurity practices, including threat detection, prevention, and incidentresponse Professional work ethic with a client-driven focus and attention to detail Familiarity with IT project management methodologies and tools Capacity to more »
Manchester Area, United Kingdom Hybrid / WFH Options
Hamilton Barnes 🌳
services team. Provide 3rd line network support for enterprise networks across multiple different Vendors, including Cisco/Palo Alto/Checkpoint. Handle troubleshooting, configurations, incidentresponse, and network change implementation. Opportunity to work on Next-Gen Network Kit, onsite & remotely! Skills/Must Have: Expertise in Cisco routing more »
cybersecurity and risk mitigation? Our client is at the forefront, offering top-notch services in penetration testing, vulnerability assessments, security consulting, managed services, and incident response. Join them in their mission to strengthen cybersecurity defenses and protect sensitive data across various sectors. It's time to make a real more »
Manchester, England, United Kingdom Hybrid / WFH Options
bet365
Building sophisticated monitoring dashboards using log data, metrics and traces from a number of sources including New Relic, Grafana, Splunk and Kibana. Administering an incidentresponse platform, like PagerDuty, to enable fast and efficient resolution of incidents. Working with service owners and other teams on integrations while supporting more »