Senior Incident Responder
2 weeks ago
Senior Incident Responder Scroll down to find an indepth overview of this job, and what is expected of candidates. Make an application by clicking on the Apply button. £71000 GBP Onsite WORKING Location : Birmingham, West Midlands - United Kingdom Type : Permanent Senior Incident Responder - SOC Analyst (L3) Birmingham or Glasgow | Up to £71,000 + Bonus + Benefits | Hybrid | SC Clearance Required or Eligible Our client - a global technology and services firm - is expanding its Managed Security Operations Centre and seeking a Senior Incident Responder (L3 SOC Analyst) to take the lead on complex security incidents, investigations, and threat response. This is a hands‑on, senior‑level role at the sharp end of cybersecurity operations, working on major incidents across enterprise environments, guiding L1 / L2 analysts, and collaborating with client stakeholders to deliver best‑in‑class detection, response, and remediation. The Role You'll take ownership of escalated incidents, conduct detailed investigations, and ensure effective containment and eradication of threats. You'll act as the escalation point within the SOC, providing technical expertise, mentoring junior analysts, and driving continuous improvement of incident response processes. Key Responsibilities Lead complex investigations into security incidents and breaches. Perform root cause analysis and provide actionable recommendations. Conduct static and dynamic malware analysis; reverse engineer to identify IOCs. Monitor, tune, and optimise SIEM tools – particularly IBM QRadar, Splunk, and Microsoft Sentinel. Develop and refine SOC use cases, runbooks, and playbooks. Integrate emerging threat intelligence into monitoring and detection workflows. Liaise with clients, Service Delivery Managers, and technical teams to manage escalations and coordinate response. Maintain high standards of documentation, including post‑incident reports and monthly performance packs. Support presales activities and SOC solution demonstrations when required. What You’ll Bring 3-5 years’ experience in cybersecurity operations, ideally within a SOC or incident response environment. Proven expertise with QRadar (key focus), Splunk, or Microsoft Sentinel. Strong grasp of network traffic analysis, vulnerability management, and ethical hacking techniques. Solid understanding of DFIR principles and evidence handling. Knowledge of ITIL processes – Incident, Problem, and Change Management. Comfortable working autonomously in a 24 / 7 or on‑call operations environment. Excellent communication and stakeholder engagement skills. Certifications (Preferred) CISSP, GIAC (GCIA / GCIH / GCFA), SC‑200, or equivalent. Cloud Experience Exposure to AWS and / or Azure environments. Security Clearance You must hold, or be eligible to obtain, SC Clearance. Reference : ODI / N / SOC #oddi TPBN1_UKTJ #J-18808-Ljbffr
-
Senior Incident Responder
2 weeks ago
City of Westminster, United Kingdom ANSON MCCADE Full timeA global technology and services firm is seeking a Senior Incident Responder (L3 SOC Analyst) to lead complex security incidents and investigations. The ideal candidate will have 3-5 years of experience in cybersecurity operations, with proven expertise in SIEM tools such as IBM QRadar. This is a hands-on role with a hybrid working model, requiring strong...
-
Technical Incident Responder
2 weeks ago
City Of London, England, United Kingdom Deloitte Full time £40,000 - £55,000 per yearRole: Technical Incident Responder (Cyber incident Response)Location: UK remoteStart: ASAPDuration: 6 months (inside IR35)**Overall purpose the roleOur CIR specialists are called to answer client needs regarding proactive incident response advisory services, reactive incident response, post-breach assessments, managed threat hunting as well as implementing...
-
Senior Incident Responder
6 days ago
Welwyn Garden City, Hertfordshire, United Kingdom Tesco Full time £90,000 - £120,000 per yearAbout the roleOur Digital Forensics and Incident Response (DFIR) teamlead the technical investigation and response to security incidents at Tesco.As part of this team, you'll work alongside our security operations, threatintelligence, and security engineering teams to protect, detect, and respond tosecurity threats across Tesco's diverse and evolving...
-
Technical Incident Responder
3 days ago
City of London, United Kingdom Deloitte Full timeRole: Technical Incident Responder (Cyber incident Response)Location: UK remoteStart: ASAPDuration: 6 months (inside IR35) Overall purpose the roleOur CIR specialists are called to answer client needs regarding proactive incident response advisory services, reactive incident response, post-breach assessments, managed threat hunting as well as implementing...
-
Technical Incident Responder
3 days ago
City Of London, United Kingdom Deloitte Full timeRole: Technical Incident Responder (Cyber incident Response)Location: UK remoteStart: ASAPDuration: 6 months (inside IR35) Overall purpose the roleOur CIR specialists are called to answer client needs regarding proactive incident response advisory services, reactive incident response, post-breach assessments, managed threat hunting as well as implementing...
-
Technical Incident Responder
3 days ago
City Of London, United Kingdom Deloitte Full timeRole: Technical Incident Responder (Cyber incident Response)Location: UK remoteStart: ASAPDuration: 6 months (inside IR35) Overall purpose the roleOur CIR specialists are called to answer client needs regarding proactive incident response advisory services, reactive incident response, post-breach assessments, managed threat hunting as well as implementing...
-
Technical Incident Responder
2 weeks ago
London, City of London, ECA, United Kingdom Deloitte Full time £60,000 - £100,000 per yearRole: Technical Incident Responder (Cyber incident Response)Location: UK remoteStart: ASAPDuration: 6 months (inside IR35)Overall purpose theroleOur CIR specialists arecalled to answer client needs regarding proactive incident response advisoryservices, reactive incident response, post -breach assessments, managed threathunting as well as implementing...
-
Senior Incident Responder
23 hours ago
Welwyn Garden City, United Kingdom Tesco Full timeTesco UK • Welwyn Garden City • Hybrid • Full-Time • Apply by 19-Dec-2025 Our Digital Forensics and Incident Response (DFIR) team lead the technical investigation and response to security incidents at Tesco. As part of this team, you'll work alongside our security operations, threat intelligence, and security engineering teams to protect, detect, and...
-
Technical Incident Responder
3 days ago
City of London, Greater London, United Kingdom Deloitte Full timeRole: Technical Incident Responder (Cyber incident Response) Location: UK remote Start: ASAP Duration: 6 months (inside IR35) Overall purpose the role Our CIR specialists are called to answer client needs regarding proactive incident response advisory services, reactive incident response, post-breach assessments, managed threat hunting as well as...
-
Senior Cyber Incident Responder
6 days ago
City Of London, United Kingdom Deloitte LLP Full timeA leading consulting firm in the UK seeks a Technical Incident Responder to lead a team in Cyber Incident Response (CIR). You will handle incidents, conduct forensic analysis, and develop proactive response strategies. Ideal candidates will have incident response experience and strong communication skills. This role offers opportunities for professional...
