2,185 Incident Response Plans jobs in the United Kingdom

Security Analyst | UK Financial Services | Compliance & Technical Security | North West England | 35k-45k + Benefits/Progression

Zachary Daniels are delighted to be working with a well-established UK business during an exciting period of growth, to recruit a Security Analyst . This is a company investing heavily in technology, compliance, and security.

In this role, you'll be part of a collaborative team, working across compliance, risk, and technical security to protect the business, strengthen frameworks, and support transformation projects. It's a varied position offering real scope to grow both your governance and technical skills.

Benefits You'll Enjoy:
Competitive salary up to 45 000 (DOE)
Generous annual leave entitlement, rising with service
Enhanced maternity, paternity, and parental leave
Life assurance
Regular social events

Role Responsibilities:
Identify and assess security risks, ensuring mitigation plans are in place.
Support the development and maintenance of security policies and standards.
Assist with third-party security reviews and supplier risk management.
Provide oversight of vulnerability assessments.
Conduct architecture reviews for new systems and services.
Evaluate technical controls and recommend improvements.
Support the rollout of new security tools and technologies.
Provide input into incident management and security metrics reporting.

About You:
2+ years' experience in an security role.
Strong understanding of risk assessment methodologies.
Knowledge of frameworks such as ISO 27001.
Experience with vulnerability management and technical controls.
Excellent problem-solving skills with strong attention to detail.
Confident communicator with the ability to explain security concepts to non-technical stakeholders.

This is more than just a security role, it's a chance to join a forward-thinking business, develop your expertise across both compliance and technical domains, and make a real impact in protecting and enabling the organisation.

Apply today with your most up-to-date CV!

BBBH34361

Security Analyst | UK Financial Services | Compliance & Technical Security | North West England | £35k-£45k + Benefits/Progression

Zachary Daniels are delighted to be working with a well-established UK business during an exciting period of growth, to recruit a Security Analyst . This is a company investing heavily in technology, compliance, and security.

In this role, you'll be part of a collaborativ.

WHJS1_UKTJ

• Monitor security alerts and events generated by the SIEM system in real-time.
• Analyze security incidents, identify root causes, and perform detailed investigations.
• Develop and implement effective incident response procedures and playbooks.
• Conduct forensic analysis of security breaches and compromised systems.
• Configure and tune SIEM rules, correlation logic, and dashboards to enhance threat detection capabilities.
• Stay up-to-date with the latest cybersecurity threats, vulnerabilities, and attack vectors.
• Collaborate with IT teams to implement security controls and remediate vulnerabilities.
• Participate in security awareness training initiatives.
• Maintain accurate documentation of security incidents, investigations, and resolutions.
• Contribute to the continuous improvement of the SOC's operational processes and tools.
• Assist in vulnerability assessments and management activities.
• Provide support for security audits and compliance activities.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 3-5 years of experience in information security, with a focus on SIEM operations and incident response.
• Hands-on experience with SIEM platforms (e.g., Splunk, QRadar, ArcSight).
• Strong understanding of common cyber threats, attack techniques, and mitigation strategies.
• Familiarity with network protocols, operating systems (Windows, Linux), and security technologies (firewalls, IDS/IPS, endpoint protection).
• Experience with forensic tools and techniques is a plus.
• Excellent analytical, problem-solving, and critical-thinking skills.
• Effective communication and interpersonal skills, with the ability to work collaboratively within a team.
• Relevant security certifications such as CompTIA Security+, CEH, GCIH are advantageous.
• Ability to work under pressure and respond effectively to security incidents.
• Must be eligible to work in the UK.

About the job you're considering

Embedded with an existing Customer SOC Capgemini supplies a level of cyber expertise and corporate experience assisting the customer in regular SOC activities as well as proposing new processes and bringing best practice to the workplace.

This role is based five days per week on-site in Corsham.

If you are successfully offered this position you will go through a series of preemployment checks including identity nationality single or dual or immigration status employment history going back three continuous years and unspent criminal record check known as Disclosure and Barring Service.

Your role

• Conduct reactive monitoring of client networks to deliver a layered agile cyber defence capability across all security domains.
• Manage and triage alerts conduct impact assessments and develop mitigating strategies to be briefed up the chain of command.
• Improve and comply all extant cyber security policies procedures and orders review and amend when required.
• Maintain and share knowledge of current cyber issues vulnerabilities and exploits through research technical reports and briefs.

You can bring your whole self to work At Capgemini striving for equity diversity and inclusion is part of everyday life and will be part of your working reality We have built an inclusive and welcoming environment for everyone.

Your skill and experience

• Experience working as a security analyst in a SOC or equivalent security monitoring and response environment.
• Currently hold SC clearance.
• Knowledge of data networks .
• Knowledge and experience with SIEM tool sets and security management tools.
• Desirable security qualifications CompTIA S N CySA AWS MS SANS CISSP etc.
  
  
  

Your security clearance

To be successfully appointed to this role, it is a requirement to obtain Developed Vetting (DV) clearance. 
To obtain DV clearance, the successful applicant must have resided continuously within the United Kingdom for the last 10 years, along with other very detailed criteria and requirements. 
Throughout the recruitment process, you will be asked questions about your security clearance eligibility such as, but not limited to, country of residence and nationality.
Some posts are restricted to sole UK Nationals for security reasons; therefore, you may be asked about your citizenship in the application process.

What does ‘Get The Future You Want' mean for you?

You will be empowered to explore, innovate, and progress. You will benefit from Capgemini’s ‘learning for life’ mindset, meaning you will have countless training and development opportunities from thinktanks to hackathons, and access to 250,000 courses with numerous external certifications from AWS, Microsoft, Harvard ManageMentor, Cybersecurity qualifications and much more.
You will reimagine what’s possible: creating value for the world’s leading organisations through technology to build a sustainable, more inclusive future. You will work with a range of clients all with a unique set of business, technological and societal ambitions, which will make a real impact across the UK.

Why you should consider Capgemini

Growing clients’ businesses while building a more sustainable, more inclusive future is a tough ask.  When you join Capgemini, you’ll join a thriving company and become part of a diverse collective of free-thinkers, entrepreneurs and industry experts.  We find new ways technology can help us reimagine what’s possible.  It’s why, together, we seek out opportunities that will transform the world’s leading businesses, and it’s how you’ll gain the experiences and connections you need to shape your future.  By learning from each other every day, sharing knowledge, and always pushing yourself to do better, you’ll build the skills you want. You’ll use your skills to help our clients leverage technology to innovate and grow their business. So, it might not always be easy, but making the world a better place rarely is.

About Capgemini

Capgemini is a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating tangible impact for enterprises and society. It is a responsible and diverse group of 340,000 team members in more than 50 countries. With its strong over 55-year heritage, Capgemini is trusted by its clients to unlock the value of technology to address the entire breadth of their business needs. It delivers end-to-end services and solutions leveraging strengths from strategy and design to engineering, all fuelled by its market leading capabilities in AI, cloud and data, combined with its deep industry expertise and partner ecosystem. The Group reported 2023 global revenues of €22.5 billion.

Get The Future You Want |   

Cyber Security Analyst

Milton Keynes - hybrid

Up to 60,000, 10% annual bonus and excellent benefits.

Our client is an impressive, innovative, multiple award-winning, leading IT Managed Service Provider; they believe great people build great companies and invest heavily in staff development, cultivating a culture of innovation, quality, and excellence.

We are looking for a skilled and proactive Cyber Security Analyst to join their specialist security team. This role offers the opportunity to work across a diverse range of clients and environments, applying your technical expertise to enhance security operations, tooling, and compliance.

You will play a key role in managing incidents, optimising security tools, and mentoring junior analysts, while contributing to the continuous improvement of their security posture.

This is a hands-on, operationally focused role that blends technical security responsibilities with governance, risk, and compliance (GRC) elements.

As Cyber Security Analyst, you will:

• Lead cyber incident investigations with SOC and client teams
• Triage and analyse alerts across email, cloud, and hybrid systems
• Perform threat hunting and develop detection use cases
• Manage vulnerability assessments and remediation efforts
• Maintain and optimise DLP tools and incident response
• Support forensic readiness and insider risk initiatives
• Develop and enforce security policies and awareness programs
• Lead incident response and produce investigation reports
• Utilise and enhance Microsoft Security Stack (Sentinel, Defender, Purview)
• Drive Zero Trust implementation
• Conduct security audits and generate KPI/compliance reports
• Mentor junior analysts and support their growth

What are we looking for?

• Industry certifications such as Security+, ISC2 CC, Cisco, or equivalent.
• Progress toward or completion of Microsoft certifications: AZ-900, SC-200, SC-401, SC-500, and ideally SC-100.
• Strong written and verbal communication skills.
• Solid understanding of enterprise security operations and tooling.
• Experience in a technical cyber security role.
• Hands-on experience with the Microsoft Security Stack and other leading security tools.
• Familiarity with network and application firewalls.
• Working knowledge of security frameworks such as ISO27001, NIST, SOC2, and Cyber Essentials Plus.
• Experience with Privileged Access Management tools (e.g., CyberArk, Entra, SailPoint).
• Ability to quickly learn and adapt to new security tools and technologies.

Please be aware this advert will remain open until the vacancy has been filled. Interviews will take place throughout this period, therefore we encourage you to apply early to avoid disappointment.

Tate is acting as an Employment Business in relation to this vacancy.

Tate is committed to promoting equal opportunities. To ensure that every candidate has the best experience with us, we encourage you to let us know if there are any adjustments we can make during the application or interview process. Your comfort and accessibility are our priority, and we are here to support you every step of the way. Additionally, we value and respect your individuality, and we invite you to share your preferred pronouns in your application.

Cyber Security Analyst

Permanent - 40k - 43k + strong benefits

Location: Hybrid - South Wales

Your new company

I am looking to recruit a Cyber Security Analyst to join a leader in the utilities space. The business has been investing in its cyber security and IT estate and is continuing to grow and enhance its security posture. The company has a strong reputation, and we have placed numerous people into careers there, with strong feedback.

Your new role

This is an interesting opportunity where you will work with the cyber resilience team and assist with the Security Operations function, including EDR, SIEM, gathering security control framework evidence and general day to day assistance with security tasks. You will help deliver strategy which will enhance the organisations security resilience, proactively contributing to mitigating threats, at a good time when the company is expanding and investing in its IT and cyber security estate. Key parts of the role:

• You will require knowledge and understanding of attack and exploitation techniques and adversarial TTP's.
• Help to provide resilience to our threat monitoring and response capabilities.
• Handle security incident response with internal teams and other third parties to ensure that the incident response lifecycle is undertaken to a high standard.
• Monitor and respond to security incidents, alerts and breaches
• Monitor and track remediation to all identified vulnerabilities
• Monitor the risks using security tooling to carry out routine checks.
• Monitor and report on user behavioural analysis such as awareness training and social engineering campaigns.
• Stay informed about emerging cyber threats and vulnerabilities.

What you'll need to succeed

• Good knowledge and understanding of SOC processes and procedures.
• Basic experience using SIEM systems such as MS Sentinel, LogRhythm, AlienVault, Splunk
• Good understanding of incident response stages and handling.
• Basic knowledge and experience using leading endpoint detection and threat management products and managing their operation.
• Good knowledge and awareness of global Information Security Standards including ISO27002, CIS, NCSE CAF, NIST CSF.
• Ability to work independently and as part of a team.
• Excellent communication and interpersonal skills.
• Ability to obtain UK Security Clearance

What you'll get in return

• Salary of between 40k-43k
• Hybrid working 2/3 days in South Wales per week
• Possible bonus
• 5% pension contribution from you, the company pays 10%
• Enhanced pay for parental leave
• And more!

What you need to do now

If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV.
If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career.

Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)

Are you ready to take the lead in shaping the security landscape of a global organization? Our client is a market-leading company operating across the UK, Ireland, and the US East Coast, currently undergoing a major transformation to build a Group Shared Services model.

This is your opportunity to step into a strategic, hands-on role where your expertise will directly impact the company's security posture across multiple geographies and business models.

What You'll Do

• Lead Incident Response across the organization, coordinating investigations and remediation.
• Conduct Security Gap Analysis and recommend improvements, especially in third-party and franchisee environments.
• Manage Vulnerability Detection & Remediation using tools like Tenable, Nessus, Microsoft Defender.
• Create clear technical documentation and executive-level summaries.
• Engage with internal teams, vendors, and franchisees to drive security initiatives.
• Contribute to the development of security programs and frameworks.
• Apply deep technical knowledge of Microsoft Sentinel, Azure 365, and other security platforms.

Requirements

• Hands-on experience in incident response and vulnerability management.
• Strong proficiency in Microsoft Defender, Sentinel, Azure 365, Tenable, Nessus.
• Excellent analytical and documentation skills.
• Strong communication and stakeholder engagement abilities.
• Ability to work independently in a fast-paced, evolving environment.
• Experience in Microsoft-centric and distributed/franchise-based environments is a plus.

Why You'll Love It

• Be part of a maturing security function with global impact.
• Tackle modern security challenges in a collaborative, cross-functional setting.
• Enjoy a hybrid work model that supports work-life balance.
• Receive a competitive salary and benefits package.
• Make a real difference in a company that values innovation and proactive thinking.

If you're passionate about cybersecurity and want to lead meaningful change in a global organization, we'd love to hear from you.