26 to 50 of 71 Incident Response Jobs in London

connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Incident Responder - Cyber Security - Middle East BAE Systems Digital Intelligence has been contracted to deliver a National Cyber Security Programme in the Middle East as … for 12 months so there are no options for hybrid working as the majority of time will be spend on client site. As an Incident Responder you will be responsible for the Triage of cyber security incidents, determining and categorising which incidents cross the threshold becoming National cyber security … media releases. Manage Incidents on site and across multiple sites. Conduct on-site analysis and collection of data for depth support as part of incident investigation. Identify and propose remediation activities and identify security improvements to prevent future incidents. Direct client IR Teams and In-house malware and forensics more »

and digital deployments. Continuously adjust cyber capabilities based on evolving cyber threat landscapes. Support and potentially lead NOC/SOC operational teams. Oversee Cyber incident response, conduct post-incident reviews (PIRs), root-cause analysis (RCAs), and implement mitigating solutions. Manage capacity for cyber platforms proactively. Design data more »

be beneficial but equivalent experience or demonstratable equivalent knowledge will also be accepted. Cyber, Security, Information Security leadership, Technology, Management, Risk Management and Governance, Incident Response, Security Remediation, Security Policy Creation, Third Party Risk Management, Attack Surface Management Creation exposure and experience essential. The role holder will possess more »

include, but are not limited to: Design, develop, and maintain Python-based integrations and automation solutions within Google Chronicle, enhancing threat intelligence, detection, and incident response capabilities. Lead the strategic integration of Google Chronicle within Fortrea's cybersecurity infrastructure, optimizing its utility for security analytics and operations. Direct … applications in threat intelligence, with knowledge of how to conduct analyses within SIEM (Security Information and Event Management) and SOAR (Security Orchestration, Automation, and Response) platforms. Strong foundation in cybersecurity principles, practices, and technologies, including data management specific to cybersecurity applications. Relevant certifications such as CISSP, GCIH, or Google more »

capable of implementing secure rebuilds tailored to customer requirements.Conduct assurance assessments of Third-Party suppliers to uphold security standards.Provide expert technical support during incidents response engagements.Reviewing existing technical environment, propose and manage changes to improve IT Security.Take ownership and responsibility for accomplishing objectives across the team and department.Demonstrate steadfast … NIST, CIS Critical Controls.VMWare or Hyper-V and server integration knowledge and experience.Certified Information Systems Security Professional (CISSP) or equivalent.Exposure to ISO 27001, 9001.Any incident Response or rebuild after disasters experience is a plus.Knowing we’re right for youEmbracing uniqueness, the culture at Grant Thornton thrives on the more »

Responsibilities: Develop and implement comprehensive information security strategies, policies, and procedures. Conduct risk assessments and vulnerability analyses to identify and mitigate security threats. Lead incident response efforts and manage security breaches efficiently. Collaborate with cross-functional teams to ensure security measures are integrated into all business operations. Stay more »

Develop and maintain strong relationships with key stakeholders. Lead and manage a security pillar, ensuring the delivery of high-quality work. Document and maintain incident response plans for various cybersecurity incidents. Maintain Business Continuity Policies and Plans to ensure uninterrupted operations. Prepare and maintain Disaster Recovery plans to … mitigate potential disruptions. Collaborate with teams for data center operations and backup, ensuring compliance and risk management. Manage crisis response professionals and conduct simulation exercises to test preparedness. Qualifications and Experience: Bachelor’s degree in a related technical area. One or more relevant certifications such as CISSP, CISM, GCIH … CEH, or OSCP. Proficiency in SIEM Platforms, vulnerability management tools, and incident management processes. Experience in managing security functions or SOC capabilities. Strong analytical skills to analyze security monitoring data and identify threats. Ability to make considered decisions and ensure successful delivery in a fast-paced environment. Why Join more »

incorporated into the business Risk Register. Participate in supplier reviews, serving as the subject matter expert in cybersecurity. Provide support during the Bank's incident response process involving suppliers. Contribute to the continuous monitoring of key third-party relationships. Enhance awareness of third-party cybersecurity risks through local more »

policies and audit requirements. Contribute to the development of a Cybersecurity Operations Resource and Capacity planner managed through BDO's Azure DevOps environment. Oversee incident response, threat detection, and mitigation efforts You'll be someone with: A good understanding of monitoring frameworks eg MITRE ATT&CK and SIEM more »

the appropriate SIEM platform and then once it's embedded ensuring BAU and leading security monitoring, carrying out indepth investigations and actively participating in incident response. This is a high profile role where you'll establish Security Operations Centre procedures and processes from the ground up, collaborating with senior more »

matters. This includes drafting and implementing privacy strategies, negotiating Data Processing Agreements (DPAs), Standard Contractual Clauses (SCCs), and other privacy-related documentation with clients. Incident Response: You’ll assist with incident reports and reviews, ensuring compliance with relevant regulations. DORA Expertise: As part of the escalation point more »

in all vendor and project activities. - Develop and maintain frameworks for security assessments. - Stay updated on emerging security threats and industry trends. - Participate in incident response and investigations. - Collaborate with procurement to evaluate and manage vendor security. - Review vendor documentation to assess security posture. - Apply risk management principles more »

party suppliers and external auditors. In addition to this, you will deliver awareness training, test and report on the businesss disaster recovery, continuity and incident response plans, and carry out internal audits of the InfoSec governance frameworks. In order to be suitable for this role, you must be more »

including next generation firwalls, network segmentation technology (Forescout preferred) and internet connectivity. Experience with EDR, M365 security, SIEM, Vulnerability management, MITRE attack framework and Incident response. Experience of providing knowledge transfer to Service Delivery teams and developing other cybersecurity team members. Having an in-depth understanding of threats in more »

security function. As such, you will provide the day-to-day technical expertise and guidance on security operations activities, such as vulnerability management, major incident response, and security monitoring improvements. Perform requirements analysis following customer engagements. Design, architect, and deliver security projects. Document and transition projects into support. more »

trends and threats to proactively protect the organisation's digital assets. Create and update security event investigation notes and maintain case data in the Incident Response Management platform. Document information security operations policies, process and procedures. Monitor threat and vulnerability news services for any relevant information that may more »

and managing automation scripts for deploying and configuring security agents across large environments. Experience in tuning and optimizing OpenSearch or Elasticsearch indexers. Experience with incident response processes and forensic analysis to support investigations and improve threat detection. Experience with cloud-native security tools and services Desired Qualifications: Advanced more »

Security Center), and services. - Familiarity with security testing methodologies like penetration testing and vulnerability assessments. - Experience with SIEM tools (Splunk, ELK, Azure Sentinel) and incident response/forensics. - Knowledge of security frameworks (NIST, ISO 27001, SOC 2) and relevant certifications (CISSP, CCSP). - Proficiency in Infrastructure as Code more »

party monitoring tools to detect issues, perform root cause analysis, and implement remediation actions promptly. Develop comprehensive documentation, runbooks, and playbooks outlining procedures for incident response, troubleshooting, and system maintenance. Qualifications: Bachelor's degree in Computer Science, Engineering, or related field (or equivalent experience). Strong experience with more »

to specific cyber threat incidents, data breaches and other cyber security incidents. Build knowledge of collection tools to support bespoke investigative projects and Cyber Incident Response engagements. Conduct research on topics which support other service lines, notably Global Risk Analysis, Compliance Forensics and Investigations, and Response. Develop knowledge more »

London. My client is currently seeking a Operational Resilience Manager to come on to bolster the client's Technology & Cyber capability, aiding in readiness, response, and recovery from disruptions to our global tech infrastructure. Serving as a trusted advisor, you'll offer expertise in Operational Resilience concerning technology and … cybersecurity. Your background should encompass disciplines like Business Continuity, Disaster Recovery, Cyber Security, Risk Management, Incident, and Crisis Management. Collaborating closely with colleagues in Group Risk, Group IT, and Group Cyber Security, you'll analyse present and future risks, threat trends, pinpoint vulnerabilities, and propose mitigation strategies. Take charge … operational risks and their impacts. Stay informed as a subject matter expert, keeping abreast of the latest developments and innovations in the field. Coordinate incident response activities and facilitate effective communication among teams during incidents. Possess knowledge and experience in developing and implementing organizational resilience frameworks, preferably within more »

security risks.  Develop and enforce security policies, standards, and guidelines.  Monitor and analyse security threats, identifying and mitigating potential risks. Security Operations:  Lead the incident response planning and investigation processes.  Oversee the implementation of security measures and regularly review their effectiveness.  Collaborate with IT teams to ensure secure more »

bottlenecks, and implement solutions to ensure optimal performance and uptime. Oversee the implementation of security best practices and ensure compliance with industry standards. Manage incident response and troubleshooting to minimize downtime and ensure swift resolution of issues. Evaluate and integrate new technologies and tools to continuously improve the more »

and documentation to support secure DevOps practices. Monitor security metrics and logs to detect and respond to security incidents. Lead and participate in security incident response activities, including root cause analysis and remediation efforts. To be considered for this role, you should have: Must have hands on experience more »

We're Looking For: - Strong understanding of information security best practices and regulatory requirements (ISO 27001, PCI-DSS, SOX). - Knowledge of risk management, incident response, and compliance frameworks. - Experience working with globally distributed cross-functional teams. - Professional certifications such as CISSP, CISM, or CISA are highly desirable. more »