26 to 50 of 107 Incident Response Jobs in London

and experience with SIEM (Security Information and Event Management) tools will be instrumental in identifying and mitigating security threats proactively.Responsibilities:1. Security Monitoring and Incident Response: - Utilize SIEM tools such as Microsoft Sentinel to monitor security events and respond promptly to potential threats. - Investigate security incidents, analyse root … causes, and implement necessary remediation actions. - Develop and maintain incident response procedures to ensure timely and effective handling of security breaches.2. Vulnerability Management: - Conduct regular vulnerability assessments and penetration tests to identify weaknesses in our systems and infrastructure. - Collaborate with system administrators and developers to remediate vulnerabilities and more »

security solutions tailored to the business's requirements.Support the definition, execution, and continuous improvement of key cybersecurity processes, including vulnerability and patch management, security incident response, monitoring, endpoint security, identity and access management, network security, and cryptography.Assist in developing and maintaining security policies, processes, incident response more »

solutions tailored to the business's requirements. Support the definition, execution, and continuous improvement of key cybersecurity processes, including vulnerability and patch management, security incident response, monitoring, endpoint security, identity and access management, network security, and cryptography. Assist in developing and maintaining security policies, processes, incident response more »

skills and Experience -you will have prior experience as acting as either a lead or an escalation point to the SOC -prior experience with incident response, threat and vulnerability management -development of incident response plans, processes and procedures -Working with Security frameworks MITRE, cyber kill chain more »

Senior IT Security Engineer, Security Operations, SecOps, Incident Response will find, test and implement effective technical solutions to counter cyber security risks, implementing and managing those solutions either directly or by working closely with other teams. This is a hands on technical role, engineering, implementation, configuration and support … Azure-based environments. Monitor and respond to new vulnerabilities. Manage the remediation of vulnerabilities. Actively seeking out the latest research on attacks and countermeasure. Incident Response experience and or threat actors understanding is beneficial. Managing Active Directory users, computers and group policy security settings Configuration/hardening of more »

existing team. You will be joining a developing team as a technical resource where you will have the opportunity to lead on projects around incident response, vulnerability management, EDR scanning and more. You will work with an already wide ranging tech stack for an exciting scaling business with … exposure to Data Protection & GDPR would be highly sought after too. In this role you will: Work on a variety of technical projects across incident response, vulnerability management, triaging and more Work with third parties and vendors to ensure full security coverage Provide support to the governance and more »

with remote working flexibility. Job Title: Lead Security Analyst Job Type: Permanent Location: London, UK(Remote) Job details: Purpose of the Job Leading the Response: Acting swiftly and decisively during security incidents to mitigate risks. Incident Lifecycle Management: Overseeing incidents from the moment of detection, through the containment … and eradication stages, to the final resolution. Post-Incident Analysis: Conducting detailed investigations post-incident to understand the root cause and to develop strategies to prevent recurrence. Continuous Monitoring: Keeping a vigilant eye on the organization's security systems to detect any suspicious activities early. Threat Analysis: Evaluating … manage security incidents by analyzing alerts from diverse sources and collaborating with external monitors to identify and address potential threats. Serve as a primary incident responder, leading the containment and resolution process in line with established protocols to reduce risks. Enhance security procedures to improve the organization's monitoring more »

a deep understanding of information security technologies, you will aid in triaging threat intelligence from multiple sources and add contextual information to the security incident, perform additional analysis and based on the business impact will recommend the response actions and escalation path. You will be guided by Threat … completion of day-to-day checklist(s), including log review, management report scheduling & running, alert analysis, and escalation follow up. Perform advanced event and incident analysis, including baseline establishment and trend analysis. Manage a number of analysts as part of a virtual team of L1 and L2 analysts, including … activities including shift cover etc Support on-call arrangements as part of a Rota, to support L1 Analysts working out of hours. Support Major Incident Response activity, from a Protective Monitoring perspective, including supporting teams in identification, containment, and remediation of security related threat. Identify opportunities for SOC more »

a deep understanding of information security technologies, you will aid in triaging threat intelligence from multiple sources and add contextual information to the security incident, perform additional analysis and based on the business impact will recommend the response actions and escalation path. You will be guided by Threat … completion of day-to-day checklist(s), including log review, management report scheduling & running, alert analysis, and escalation follow up. '€¢Perform advanced event and incident analysis, including baseline establishment and trend analysis. '€¢Manage a number of analysts as part of a virtual team of L1 and L2 analysts, including … activities including shift cover etc '€¢Support on-call arrangements as part of a Rota, to support L1 Analysts working out of hours. '€¢Support Major Incident Response activity, from a Protective Monitoring perspective, including supporting teams in identification, containment, and remediation of security related threat. '€¢Identify opportunities for SOC more »

analysis for the group. Providing security input and for maintaining relationships with the Service Management function in relation to change management, problem management and incident management. Responsible for the level 2/3 operational Cyber incident response. Escalating in a timely manner any incidents and anomalies that are … architecture level Operational On-Call Requirement This role has a shared, rotational 24/7 on-call requirement and forms part of information security incident response capability. You will act as the single point of contact for all security related response actions and decisions, including management of … each incident from a security perspective, interaction with IM/MIM teams (where required) and recording of all key security decisions. What you'll need: Knowledge and operational experience in firewalls, intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, switches, routers, Voice over more »

and looking for a Senior Security Analyst to join the Global Team. You will play a crucial role in ensuring effective security monitoring and incident response. This role will also be required to assist in the development, implementation, and maintenance of the IT Security program in the company. We … Security and ideally CISSP (although for the right candidate we can support the gaining of this qualification). Key responsibilities include: Security Monitoring and Incident Response Monitoring systems for signs anomalies, attacks, and unauthorized activities. Investigate potential incidents and provide timely feedback. Analyze events to identify trends, threats more »

analysis for the group. Providing security input and for maintaining relationships with the Service Management function in relation to change management, problem management and incident management. Responsible for the level 2/3 operational Cyber incident response. Escalating in a timely manner any incidents and anomalies that are … Security Playbook. Operational On-Call Requirement This role has a shared, rotational 24/7 on-call requirement and forms part of information security incident response capability. You will act as the single point of contact for all security related response actions and decisions, including management of … each incident from a security perspective, interaction with IM/MIM teams (where required) and recording of all key security decisions. more »

with the MSSP functionality to analyse value delivered, SLAs, enhancements, review control and vulnerability assessments to identify control weaknesses and assess remedial action. Regarding Incident management you will ensure that Incident information is shared with all relevant stakeholders in a timely and appropriate manner taking into account the … seriousness of the incident, arrange for the mobilisation of global and/or regional Incident Response teams whilst acting as coordinator and/or consultant during incident resolution. The ticketing system is ServiceNow. With regards to Security Operations development you will use your teams security knowledge more »

Responsibilities Platform Expertise: Maintain pipelines, Terraform code, and AWS stack for optimal platform performance. Automation Focus: Patch, update, and automate tasks for maximum efficiency. Incident Lead: Coordinate incident response with L2 and SRE teams. Handover and Reviews: Facilitate daily SRE handovers and post-incident reviews. Reporting more »

In collaboration with GT, manage security systems, including firewalls, intrusion detection/prevention systems, and antivirus software. In collaboration with GT, Develop and test incident response plans and coordinate responses to security incidents and breaches Raise awareness of cybersecurity issues among bank London employees; conduct annual training/ more »

build the firm’s cyber practice, operating as the lead or (on larger, complex matters) co-lead on all cyber projects, covering preparedness and response briefs. You will also be responsible for developing and driving BD in the cyber space, working with the Senior Director. Cyber incident preparedness … and response is a key, growing field of work this team undertakes and they have worked on a number of high-profile incidents over the last two years. They are also increasingly undertaking cyber incident preparedness projects for existing and new clients, as well as extending their network … team who come from an array of professional backgrounds including journalism, banking, law, as well as communications. RESPONSIBILITIES Leading cyber communication projects (preparedness and response) with minimal input from the Senior Director, where required Devising cyber response communications strategy, covering all stakeholder audiences, with knowledge of regulatory requirements more »

across various Identity providers. Actively monitor emerging security technologies, trends, and solutions, assessing their applicability to business initiatives and strategies. Participate in Information Security Incident Response activities. Monitor compliance with information security policies and procedures among employees, contractors, and third parties. Collaborate with key stakeholders to create and more »

be beneficial but equivalent experience or demonstratable equivalent knowledge will also be accepted. Cyber, Security, Information Security leadership, Technology, Management, Risk Management and Governance, Incident Response, Security Remediation, Security Policy Creation, Third Party Risk Management, Attack Surface Management Creation exposure and experience essential. The role holder will possess more »

Lead, you will play a pivotal role in coordinating security operations within their IT environment. Your responsibilities will include managing cyber defence technologies, coordinating incident response, and leading threat hunting efforts. You will collaborate closely with internal teams and external partners to ensure the highest level of security … global team of IT security operations analysts, supporting their development and training. Select, deploy, and maintain cyber defence technologies such as Endpoint Detect and Response, Anti-Virus, SIEM, and SOAR. Monitor and manage the use of cyber defence tools, ensuring efficient performance and driving operational efficiency. Develop Standard Operating … Procedures (SOPs) and other documentation to support cyber operations. Respond to cyber-related incidents, coordinating remediation efforts and post-incident reviews. Enable threat hunting through the fusion of threat intelligence and business risk analysis. Requirements: Strong understanding of network protocols, firewalls, and intrusion detection/prevention systems. Proficiency in more »

engagements across a broad range of information security disciplines, including: Technical domains and cyber transformation Framework assessments and roadmapping Cyber regulations, governance and compliance Incident Response, Disaster Recovery and Business Continuity Training and Exercising Threat Intelligence Project Management S-RM Consultants are organised and dynamic project managers and more »

partners Review and update IT Security procedures to reflect best practice and mitigate current and emerging threats Assigned ownership of IT Security Monitoring and Response related FRB and Internal Audit finding(s) and effective/timely resolution with IT Security Maintain relationships with third-party IT security vendors and … securing systems, networks and infrastructure; operational support, including on-call experience.3+ years’ experience including combination of intrusion detection, malware analysis, forensics and/or incident response, particularly in cloud environments. Working knowledge of cloud environments such as AWS. Monitor, tune and develop technical IT Security controls and frameworks … to ensure appropriate preparation, monitoring and response to threats Ensure a risk-based approach to IT Security is adopted in every part of the business and solutions Work with members of the IT Security team to help design, implement and maintain security Prepare for, identify (hunt) and remediate cyber more »

Development Lifecycle (SSDLC), Compliance as Code, Security Orchestration, Container Security, Microservices Security, Threat Modelling, Secure Configuration Management, Secure DevOps Practices, Security Scanning & Testing, Security Incident Response, Identity & Access Management (IAM), Secure Cloud Environments, Secure Code Reviews Nature: Permanent, Full Time Hours: Monday - Friday 09.00 -17.30 Gross pay … + 20% bonus, Health Care, Discounts & other benefits Key Activity: * Develop & Deploy Security Protocols * Perform Security & Operational Evaluations * Integrate Security & Operations within DevSecOps * Manage Incident Responses * Enhance Operational Effectiveness * Coordinate on Code Security & Operational Streamlining * Promote DevSecOps Principles * Address Security & Operational Incidents * Implement DevSecOps Enhancements Overview: As a DevSecOps … testing & vulnerability scanning within our CI/CD pipelines. * Conduct regular security assessments & audits to identify & mitigate risks. * Respond to security incidents & conduct post-incident analysis to prevent future occurrences * Stay up to date with the latest security threats, vulnerabilities, & industry best practices. * Collaborate with DevSecOps Product Owner, Run more »

engineering security solutions.· Provide input for architecture plans with consideration of current standards.· Monitor new and emerging technologies that could be adopted· Take on incident response duties· Liaison with key stakeholders· Ensure smooth handover from engineering to production.Requirements:· Strong knowledge of security engineering conceptsWorking knowledge over Linux and more »

engineering security solutions. · Provide input for architecture plans with consideration of current standards. · Monitor new and emerging technologies that could be adopted · Take on incident response duties · Liaison with key stakeholders · Ensure smooth handover from engineering to production. Requirements: · Strong knowledge of security engineering concepts . Working knowledge more »

a DEVOPS environment, with strong knowledge of AWS services and security best practices.Proven experience working as part of a SOC function, with expertise in incident response and threat hunting.Strong understanding of network security principles, protocols, and technologies.Excellent communication and interpersonal skills, with the ability to effectively collaborate with more »