1 to 25 of 51 Forensic Analysis Jobs in London

VPNs, firewalls, and cloud platforms (AWS, Azure, GCP). Expertise in Microsoft Sentinel, Cisco Splunk or Palo Alto QRadar, and KQL. Proven skills in threat detection, incident response, and forensic analysis. Knowledge of SOAR tools (especially Palo Alto XSOAR or similar). Familiarity with compliance standards: ISO 27001, NIST, CIS, GDPR, HIPAA. Bonus: scripting/automation skills (Python, PowerShell More ❯

VPNs, firewalls, and cloud platforms (AWS, Azure, GCP). Expertise in Microsoft Sentinel, Cisco Splunk or Palo Alto QRadar, and KQL. Proven skills in threat detection, incident response, and forensic analysis. Knowledge of SOAR tools (especially Palo Alto XSOAR or similar). Familiarity with compliance standards: ISO 27001, NIST, CIS, GDPR, HIPAA. Bonus: scripting/automation skills (Python, PowerShell More ❯

Incident Responder, supporting complex investigations into cyber security incidents. Conduct proactive threat hunting to detect and neutralize emerging threats. Monitor and analyze logs via SIEM, EDR, and network traffic analysis tools for potential attack indicators. Investigate security incidents, including malware infections, phishing attacks, and unauthorized access attempts. Develop and enhance incident response playbooks, ensuring alignment with evolving threats. Analyze … threat intelligence sources to identify new attack vectors and adversary tactics. Provide forensic analysis and malware reverse engineering to assess security incidents. Collaborate with IT, Risk, and Compliance teams to ensure regulatory compliance and security best practices. Produce timely reports on incident trends, threat intelligence insights, and response actions. Lead training sessions and tabletop exercises to improve security … and incident reporting. Deep knowledge of cyber-attack techniques, including phishing, malware, ransomware, lateral movement, and data exfiltration. Strong hands-on experience with SIEM, EDR, IDS/IPS, and forensic analysis tools. Expertise in threat cyber security frameworks such as MITRE ATT&CK and Cyber Kill Chains. Strong analytical and problem-solving skills, with an investigative mindset to More ❯

VPNs, firewalls, and cloud platforms (AWS, Azure, GCP). Expertise in Microsoft Sentinel, Cisco Splunk or Palo Alto QRadar, and KQL. Proven skills in threat detection, incident response, and forensic analysis. Knowledge of SOAR tools (especially Palo Alto XSOAR or similar). Familiarity with compliance standards: ISO 27001, NIST, CIS, GDPR, HIPAA. Deep understanding of Microsoft security technologies. Certifications More ❯

Incident Responder, supporting complex investigations into cyber security incidents. Conduct proactive threat hunting to detect and neutralize emerging threats. Monitor and analyze logs via SIEM, EDR, and network traffic analysis tools for potential attack indicators. Investigate security incidents, including malware infections, phishing attacks, and unauthorized access attempts. Develop and enhance incident response playbooks, ensuring alignment with evolving threats. Analyze … threat intelligence sources to identify new attack vectors and adversary tactics. Provide forensic analysis and malware reverse engineering to assess security incidents. Collaborate with IT, Risk, and Compliance teams to ensure regulatory compliance and security best practices. Produce timely reports on incident trends, threat intelligence insights, and response actions. Patriciate in training sessions and tabletop exercises to improve … and incident reporting. Deep knowledge of cyber–attack techniques, including phishing, malware, ransomware, lateral movement, and data exfiltration. Strong hands–on experience with SIEM, EDR, IDS/IPS, and forensic analysis tools. Expertise in threat cyber security frameworks such as MITRE ATT&CK and Cyber Kill Chains. Strong analytical and problem–solving skills, with an investigative mindset to More ❯

Incident Responder, supporting complex investigations into cyber security incidents. Conduct proactive threat hunting to detect and neutralize emerging threats. Monitor and analyze logs via SIEM, EDR, and network traffic analysis tools for potential attack indicators. Investigate security incidents, including malware infections, phishing attacks, and unauthorized access attempts. Develop and enhance incident response playbooks, ensuring alignment with evolving threats. Analyze … threat intelligence sources to identify new attack vectors and adversary tactics. Provide forensic analysis and malware reverse engineering to assess security incidents. Collaborate with IT, Risk, and Compliance teams to ensure regulatory compliance and security best practices. Produce timely reports on incident trends, threat intelligence insights, and response actions. Patriciate in training sessions and tabletop exercises to improve … and incident reporting. Deep knowledge of cyber-attack techniques, including phishing, malware, ransomware, lateral movement, and data exfiltration. Strong hands-on experience with SIEM, EDR, IDS/IPS, and forensic analysis tools. Expertise in threat cyber security frameworks such as MITRE ATT&CK and Cyber Kill Chains. Strong analytical and problem-solving skills, with an investigative mindset to More ❯

testing. Developing and implementing security policies and procedures. Monitoring network traffic for unusual activity and potential threats using SOC/SIEM solutions. Responding to security breaches and carrying out forensic investigations. Ensuring compliance with industry standards and regulations, including ISO 27001 and GDPR. Delivering security training and awareness programs for both clients and staff. Mentoring junior security analysts to … Expertise in Microsoft 365, SharePoint, Azure architecture, security, and Entra. Proficiency in security tools and technologies, including firewalls, identity management, and layered security stacks. Experience in incident response and forensic analysis. Excellent problem-solving, analytical, and communication skills. Relevant certifications (e.g., CISSP, CEH, CompTIA Security+) are advantageous. Benefits: Opportunity to contribute to a growing MSP with a strong client More ❯

using PowerShell, Azure Policy, or Infrastructure-as-Code (IaC). Strong understanding of compliance frameworks (ISO 27001, NIST, CIS Benchmarks, GDPR). Experience in threat detection, incident response, and forensic analysis. Familiarity with Identity and Access Management (IAM) principles, Azure AD, and MFA. Experience working in a DevSecOps environment and improving IT systems to adhere to security guidelines proactively More ❯

of incidents from detection through to remediation. Collaborate with threat intelligence teams to incorporate emerging threat data and integrate relevant indicators of compromise into hunting and detection practices. Perform forensic analysis on systems, applications, and cloud environments to trace the origin, scope, and impact of incidents. Develop and refine detection rules, incident response playbooks, and investigation workflows to … SOC, with a strong focus on incident response and threat hunting. Proven experience investigating and mitigating threats targeting web applications and cloud infrastructure (specifically AWS). Deep experience conducting analysis of data from a diverse range of data sources using a SIEM. Demonstrated expertise in performing forensic investigations and root cause analyses for complex incidents. Experience with SIEM More ❯

enforce consistent security policies Implement and maintain Kubernetes (K8s) security protocols Execute comprehensive security assessments and audits to identify risks, perform penetration testing, and lead incident response activities including forensic analysis and post-incident reporting Continuously monitor security threats across hybrid environments, deploying preventive controls (e.g., WAF, IPS) and mitigation strategies to address vulnerabilities and active attacks Partner More ❯

our digital assets and ensuring compliance with security standards and policies. Key Responsibilities: Design and implement secure network, system, and application architectures. Monitor and respond to security incidents, including forensic analysis and incident containment. Conduct regular vulnerability assessments and penetration tests. Manage security tools such as firewalls, SIEMs, IDS/IPS, endpoint protection, and encryption solutions. Develop and More ❯

to potential threats in real-time. Develop, implement, and fine-tune detection rules and correlation logic to improve threat detection capabilities. Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. Maintain and optimize security information and event management systems and other security tools used in the SOC. Collaborate with other teams to More ❯

and implement security monitoring and logging strategies. Investigate and analyse security incidents, including identifying root causes, determining the scope of impact, and taking appropriate containment and remediation actions. Perform forensic analysis to identify and investigate suspicious activity. Automate security tasks and workflows to improve efficiency and effectiveness. Google is proud to be an equal opportunity workplace and is More ❯

to potential threats in real-time. - Develop, implement, and fine-tune detection rules and correlation logic to improve threat detection capabilities. - Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. - Maintain and optimize security information and event management systems and other security tools used in the SOC. - Collaborate with other teams to More ❯

to potential threats in real-time. - Develop, implement, and fine-tune detection rules and correlation logic to improve threat detection capabilities. - Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. - Maintain and optimize security information and event management systems and other security tools used in the SOC. - Collaborate with other teams to More ❯

As a Security Engineer , you'll drive high-quality security baselines, ensure robust data for detection engineering, and enhance incident response. You'll manage logging, monitoring, vulnerability tools, and forensic analysis while strengthening Yolo Group’s security posture. Your day-to-day Implement and maintain security logging and monitoring controls to ensure continuous threat detection; Develop and maintain … tools essential for security incident response; Enhance and improve incident detection and response capabilities to strengthen security resilience; Act as a 2nd line incident responder, assisting with forensic collection and analysis; Set up and manage vulnerability management tools to identify and mitigate security risks; Create templated security solutions to support teams across Yolo Group in improving their security More ❯

from various sources to detect and respond to threats in real-time. Develop and refine detection rules and correlation logic to enhance threat detection. Investigate security incidents thoroughly, perform forensic analyses, and coordinate incident responses. Maintain and optimize security information and event management systems and other SOC tools. Collaborate with teams to improve threat intelligence, incident response procedures, and More ❯

As a Security Engineer , you'll drive high-quality security baselines, ensure robust data for detection engineering, and enhance incident response. You'll manage logging, monitoring, vulnerability tools, and forensic analysis while strengthening Yolo Group's security posture. Your day-to-day Implement and maintain security logging and monitoring controls to ensure continuous threat detection; Develop and maintain … tools essential for security incident response; Enhance and improve incident detection and response capabilities to strengthen security resilience; Act as a 2nd line incident responder, assisting with forensic collection and analysis; Set up and manage vulnerability management tools to identify and mitigate security risks; Create templated security solutions to support teams across Yolo Group in improving their security More ❯

analyze, and mitigate security threats. Key Skills: Extensive years of experience in incident response, cybersecurity, or a related role. Strong knowledge of incident response frameworks and methodologies. Proficiency in forensic analysis tools and techniques. Experience with security information and event management (SIEM) systems. Excellent problem-solving and analytical skills. Effective communication and people skills. Relevant certifications such as … CISSP, CISM, or GIAC are a plus. Responsibilities: Leading and managing incident response activities, including detection, analysis, containment, eradication, and recovery. Developing and implementing incident response plans, policies, and procedures. Conducting forensic analysis and investigations to determine the root cause of security incidents. Collaborating with IT, security, and other teams to improve overall security posture. Providing guidance More ❯

analyse, and mitigate security threats. Key Skills: Extensive years of experience in incident response, cybersecurity, or a related role. Strong knowledge of incident response frameworks and methodologies. Proficiency in forensic analysis tools and techniques. Experience with security information and event management (SIEM) systems. Excellent problem-solving and analytical skills. Effective communication and people skills. Relevant certifications such as … CISSP, CISM, or GIAC are a plus. Responsibilities: Leading and managing incident response activities, including detection, analysis, containment, eradication, and recovery. Developing and implementing incident response plans, policies, and procedures. Conducting forensic analysis and investigations to determine the root cause of security incidents. Collaborating with IT, security, and other teams to improve overall security posture. Providing guidance More ❯

the cybersecurity team to integrate DLP measures with broader security initiatives. Your responsibilities: Monitor DLP Systems – Oversee and manage DLP alerts to prevent unauthorized data access and leakage. Incident Analysis – Investigate DLP security incidents, provide reports, and recommend corrective actions. Policy Implementation & Maintenance – Assist in deploying and updating DLP policies, configurations, and security controls. User Support & Training – Provide technical … DLP technologies, threats, and security trends. Desirable skills/knowledge/experience: Experience with Cloud Security – Exposure to cloud-based DLP solutions (e.g., Microsoft 365, AWS, Google Cloud). Forensic Investigation Skills – Ability to conduct forensic analysis of data security incidents and breaches. Project Management & Process Improvement – Ability to optimize DLP workflows and security processes Change Management More ❯

the cybersecurity team to integrate DLP measures with broader security initiatives. Your responsibilities: Monitor DLP Systems – Oversee and manage DLP alerts to prevent unauthorized data access and leakage. Incident Analysis – Investigate DLP security incidents, provide reports, and recommend corrective actions. Policy Implementation & Maintenance – Assist in deploying and updating DLP policies, configurations, and security controls. User Support & Training – Provide technical … DLP technologies, threats, and security trends. Desirable skills/knowledge/experience: Experience with Cloud Security – Exposure to cloud-based DLP solutions (e.g., Microsoft 365, AWS, Google Cloud). Forensic Investigation Skills – Ability to conduct forensic analysis of data security incidents and breaches. Project Management & Process Improvement – Ability to optimize DLP workflows and security processes Change Management More ❯

network, cloud (Azure), endpoint, and application security. Experience building and running company-wide security programs. Proven ability to handle real and simulated cybersecurity incidents. Familiarity with security operations and forensic analysis tools. Excellent communication skills, with experience presenting to executive leadership. More ❯

large data sets for reporting, hunting, and anomaly detection Incident Management - Detect, document, investigate, and resolve security incidents in an efficient manner Endpoint Forensics - Construct meaningful incident timelines from forensic artifact analysis Counter Measures - Ability to design and implement preventative and corrective controls to counteract emerging threats Proactive Threat Hunting - Develop and execute focused plans to discover advanced … threats that evade traditional security controls Behavioral Analysis - Develop and implement criteria to identify anomalous user behavior leading indicating insider threat activity Intrusion Detection - Develop and tune network anomaly control capability to produce reliable actionable data Threat Hunting - Proactively search for unknown threats within the environment. Preferred Knowledge And Experience 3+ years of relevant experience Deep understanding of networking More ❯

to the level of administration and deployment. Exposure to SOAR tools, observability tools and data stream processing tools Hands-on experience with vulnerability assessment tools, penetration testing methodologies and forensic analysis techniques. Experience in writing content/polices for monitoring in line with MITRE ATT&CK framework Familiarity with regulatory requirements such as GDPR, HIPAA, PCI DSS, and More ❯