Latest Incident Response Jobs

Incident Response Sr. Consultant

This role involves serving as a technical team member on incident response engagements, developing new methods to hunt for bad actors, and performing host and network-based forensics across various platforms. You will work on high-profile investigations and produce detailed reports for key stakeholders.

CrowdStrike London, SE10 0TW, United Kingdom

Remote Permanent

Incident Response Sr. Consultant

This role involves serving as a technical team member on incident response engagements, developing and using new methods to hunt for bad actors, and performing host and network-based forensics across various platforms. You will support the production of high-quality reports and recommendations for key stakeholders, including customer management and legal counsel.

CrowdStrike Bigton, Alba / Scotland, ZE2 9GA, United Kingdom

Remote Permanent

Cyber Security Incident Response Consultant - SOC

This role involves responding to complex cyber incidents by conducting technical investigations, analysing logs and forensic data, and guiding clients through containment and recovery. The consultant will work within a high-pressure incident response team, applying frameworks like MITRE ATT&CK to identify attacker behaviour and improve detection strategies. Key responsibilities include producing incident reports, enhancing response playbooks, and supporting proactive security exercises for clients across critical sectors.

Adecco Belfast, County Antrim, United Kingdom £35,000 – £50,000 pa

On-site Permanent Clearance Required

Cyber Security Incident Response Consultant - SOC

This role involves supporting organizations during cyber incidents by conducting technical investigations, analyzing logs and endpoint data, and guiding clients through containment and recovery. The consultant will perform digital forensics across Windows, Linux, and cloud environments, apply threat intelligence to understand attacker behavior, and contribute to improving incident response playbooks. Work is office-based in Belfast with a focus on real-time breach response and proactive client advisory within a high-pressure consultancy environment.

Adecco Ireland, Alba / Scotland, ZE2 9GA, United Kingdom £35,000 – £50,000 pa

On-site Permanent Clearance Required

Cyber Security Engineer - Incident Response & Crisis Simulation within UK

This role involves creating and improving defensive security labs, challenges, and online learning content on the Immersive One platform. You will research the latest threats, develop crisis simulation content, and work with the Product team to enhance the platform's blue team capabilities.

Immersive United Kingdom

Remote Permanent

IT Security Analyst – Incident Response & Vulnerability Management

The Level 3 Security Analyst is responsible for the technical investigation, containment, and resolution of IT security incidents and vulnerabilities across a complex, multi-site customer estate. They act as a senior technical authority, working closely with Incident Management, Infrastructure, and Network teams to ensure security issues are resolved end-to-end and do not reoccur.

Operations Resources Cardiff, Cymru / Wales, CF10 2AF, United Kingdom

Hybrid Permanent

OT Incident Responder

The OT Incident Responder role involves hands-on investigation, containment, and recovery activities in industrial environments, supporting CNI clients. You will work under senior responders to build specialist OT and ICS expertise.

Bridewell Cardiff, United Kingdom

Hybrid Permanent Clearance Required

Lead OT Incident Responder

One of the most exciting prospects in the UK cyber security sector today, Bridewell is a leading cyber security services company specialising in protecting and transforming critical business functions for some of the world’s most trusted organisations. We are the...

Bridewell Cardiff, United Kingdom

Hybrid Permanent

Principal Consultant, Incident Preparedness

As a Principal Consultant in Incident Preparedness, you will lead high-impact projects to enhance clients' cyber resilience. Your responsibilities include conducting Tabletop Exercises, developing Incident Response Plans, and providing expert advisory to diverse stakeholders, from technical teams to C-suite executives. You will manage the full lifecycle of client engagements, ensuring high-quality outcomes and continuous improvement of service delivery methodologies.

Palo Alto Networks United Kingdom

Remote Permanent

Senior CIRT / Threat Intel Analyst

This role involves leading cyber incident response and threat intelligence activities, focusing on detecting, analyzing, and responding to security incidents across endpoints, networks, cloud, and SaaS environments. The analyst will integrate threat intelligence into investigations, develop incident response playbooks, tune detections, and produce actionable intelligence for both technical and executive audiences. Collaboration with SOC teams and participation in global information-sharing initiatives are key aspects of the position.

eFinancialCareers London, United Kingdom

Hybrid Permanent

Senior Cyber Security Analyst

The Senior Cyber Security Analyst will work closely with the Head of Information Security to enhance the organization's incident response capabilities and manage vulnerabilities. Key responsibilities include leading remediation efforts, maintaining Microsoft Sentinel SIEM, and staying ahead of emerging threats in a dynamic environment.

HAYS Specialist Recruitment Bolton, United Kingdom £45,000 – £55,000 pa

Hybrid Permanent

AWS Security Engineer

This role involves securing AWS-hosted environments with a focus on identity and access management, vulnerability management, compliance, and incident response. The engineer will work closely with internal technical teams and external stakeholders to mitigate security risks and ensure robust cloud security posture. The position supports a range of information security activities within a structured, collaborative environment.

Metaskil Limited Camberley, GU15 3SA, United Kingdom £52,000 – £55,000 pa

Hybrid Permanent

Cyber Operations Manager

Leads a London-based cybersecurity team and serves as Incident Commander for cyber incidents, managing endpoint, platform, and incident response capabilities. Coordinates with global teams and MDR providers to triage threats, prioritize risk-based remediation using frameworks like MITRE ATT&CK, and ensure alignment with enterprise cyber risk. Oversees vulnerability patching, incident response exercises, and cross-functional security initiatives in a hybrid working model.

Prime Personnel UK Victoria, Greater London, London, SW1P 1BX, United Kingdom £95,000 – £110,000 pa

Hybrid Permanent Clearance Required

IT Cyber Security Analyst

This role involves managing patching, vulnerability remediation, and incident response within a large enterprise environment, supporting both IT and OT systems. The analyst will work closely with internal teams and external SOC/MDR providers to enhance threat detection and security maturity. Key responsibilities include coordinating security controls, supporting audits, and improving detection capabilities across networks, endpoints, identity, and cloud platforms.

Rise Technical Recruitment Scunthorpe, DN15 6SS, United Kingdom £45,000 – £50,000 pa

On-site Permanent Clearance Required

SOC Analyst

This role involves continuous protective monitoring, triaging security alerts, and supporting incident response within a 24/7 Security Operations Centre for UK public sector clients. The analyst will work with advanced SIEM and XDR platforms such as IBM QRadar, Microsoft Sentinel, and Palo Alto XSIAM, contributing to national-level cyber defence. Collaboration within a small, high-performing team and adherence to established runbooks are key aspects of the position.

Experis Hursley, Hampshire, United Kingdom £40,000 – £50,000 pa

On-site Permanent Clearance Required