25 of 25 Incident Response Jobs in Central London

primary escalation point for complex IT and cybersecurity incidents. Manage and secure core client infrastructure and cloud environments. Ensure centralised security, monitoring, and incident response platforms operate effectively. You will collaborate closely with our Service Desk, Projects and Account Management teams to maintain high standards of service, document … infrastructure, cloud services, endpoints, and networks, in alignment with best practices and frameworks such as ISO27001, NIST, and Cyber Essentials Plus. Lead and coordinate incident response efforts, including root cause analysis, threat containment and post-incident reporting for clients. Collaborate with the Project and Service Desk teams ...

Operations Analyst to join a fast-growing Blue Team within our Cyber Practice. You will work with high-profile clients to ensure effective cyber incident detection, response, and threat mitigation across cloud, endpoint, and network environments. Key Responsibilities: Develop, maintain, and enhance security detection content for SIEM platforms … escalation for junior analysts. Serve as a technical subject matter expert on client engagements, presenting findings to senior stakeholders. Participate in alert testing, incident response exercises, and threat hunting activities. Stay up to date with the latest threat intelligence and emerging attacker tactics. Additional Responsibilities (client-dependent): Threat ...

client is an innovative and growing financial services organisation focused on providing exceptional service and safeguarding client wealth. They are seeking an Operational Resilience & Incident Manager to ensure the organisation can anticipate, withstand, respond to, and recover from operational disruptions. This pivotal role involves leading resilience testing, managing real … simulations. Assess critical business services and their dependencies, ensuring robust impact tolerances. Collaborate with technology and business teams to embed resilience into operational processes. Incident Management Lead and coordinate real-time response efforts for operational incidents, ensuring swift and effective resolution. Develop and maintain incident response ...

client is seeking a SOC Analyst to join a security operations team in London. The role is focused on real-time monitoring, investigation, and incident response across a modern enterprise security environment. Key Responsibilities Monitor, triage, and respond to security alerts across multiple platforms, including Microsoft and endpoint … Optimise and tune detection rules, policies, and alerting mechanisms to improve SOC efficiency. Collaborate with internal teams to support security operations, threat analysis, and incident recovery. Produce clear incident documentation, reports, and recommendations for continuous improvement. Contribute to maintaining and enhancing SOC processes, runbooks, and operational workflows. Required ...

strong observability and auditability, including logging, monitoring, alerting, and security events. ·Design systems assuming attack, failure, and misuse as default scenarios. ·Lead cloud-level incident response and post-incident reviews. ·Ensure the platform meets expectations for a trading/regulated environment. Reliability, DR & Resilience ·Design, implement … trading, or other security-sensitive environments. ·Experience with containerised and event-driven systems. ·Experience inheriting, hardening, or cleaning up existing cloud environments. ·Familiarity with incident response and DR testing in cloud platforms. Working Style ·Proactive and self-directed; sees gaps and addresses them without prompting. ·Detail-oriented ...

implementing, operating, and monitoring technical security controls across IT and operational environments. The role is hands-on and delivery-focused, covering vulnerability management, incident response, identity and access controls, security tooling, and technical risk mitigation, while working in alignment with governance and risk requirements. Key Responsibilitie s Security … Controls & Architecture Vulnerability & Threat Management Incident Response Identity, Access & Data Security Risk & Compliance Support Security Training and awareness Required Technical Experience: Proven experience in a hands-on IT security/cybersecurity role Logging and monitoring Security Tooling (vulnerability scanning (Tenable, Qualys, Rapid7) Endpoint or network security platforms ...

. Proficient in Azure Monitor, Log Analytics, Application Insights, cost management and optimisation, resource tagging strategies, and maintaining platform availability through proactive monitoring and incident response. Infrastructure as Code (Terraform) - Strong working knowledge of Terraform for provisioning and managing Azure infrastructure including writing and maintaining Terraform modules for Azure … high availability architectures using Availability Zones, Azure Load Balancer, Azure Application Gateway, VM Scale Sets, and conducting DR tests to ensure business continuity. Collaboration & Incident Response - Strong team player with experience working across DevOps, infrastructure, security, and development teams. Skilled in incident management and managing status dashboards ...

comprehensive post-release validation, ensuring software functions correctly following deployments. Participate in release management processes and uphold best practices following Agile methodologies. Be the Incident coordinator for operational incidents on the core engineering production platform. This includes all technical internal communications, ensuring processes are followed and all post-incident … efficiently in ambiguous environments. Excellent documentation and knowledge-sharing skills, coupled with a passion for continuous improvement in documentation strategies and tooling. Experience with incident response protocols and comfort navigating high-pressure situations. Proficiency with development workflows and tools (JIRA, Confluence, GitHub, Scrum methodologies). Strong written ...

Manage and optimise Microsoft Defender across Endpoint, Identity, Cloud Apps, Office 365, and Cloud Security Posture Management. Monitor alerts and conduct threat investigations. Support incident response with containment and remediation. Conduct proactive threat hunting. Platform administration and governance Configure policy baselines and protection profiles. Maintain governance and compliance … Security teams. Provide security insights to projects. Produce reporting for stakeholders. Identify automation and workflow enhancements. Essential Skills Strong experience with Microsoft Defender platforms. Incident investigation skills across endpoint, identity, and cloud. Understanding of Microsoft 365, Azure, and Zero Trust. Skilled in ASR rules, AV baselines, and KQL analytics. ...

procedures Managing and challenging third party security vendors and MSPs Leading audit and assurance activities Oversight of DLP, penetration testing, vulnerability management, and incident response Advising the business on emerging risks, including AI-driven security threats What you need You do not require prior buy side experience, although ...

client solutions are safe, observable and enterprise-ready by: Implementing evaluation frameworks and safety checks across models and agents Designing monitoring, logging, tracing and incident-response patterns Applying governance, risk and compliance principles within client environments Supporting releases, environments and handover into client operations Ensuring reliability, reproducibility, performance ...

targets. - Identify vulnerabilities in hardware and software to be remediated by Engineering \ Operations teams. - Understand current and emerging security threats. - Assist and lead in Incident Response investigations and mitigation. Required Skills/Experience: - Hands-on experience with disaster recovery, failover testing, and operational resilience in IT infrastructure. - Solid ...

friction and accelerate development velocity. Monitor system reliability, performance, and security across environments. Implement robust observability tools including logs, metrics, traces, and alerts. Lead incident response, root-cause analysis, and long-term remediation. Ensure security best practices are embedded across infrastructure and pipelines. Collaborate closely with the wider ...

friction and accelerate development velocity. Monitor system reliability, performance, and security across environments. Implement robust observability tools including logs, metrics, traces, and alerts. Lead incident response, root-cause analysis, and long-term remediation. Ensure security best practices are embedded across infrastructure and pipelines. Collaborate closely with the wider ...

Provide independent governance oversight (separate from IT Ops) About You Strong experience with ISO 27001 (Annex 8), CE+, and risk management Background in audits, incident response, and governance documentation Confident working with Compliance, IT, and external partners Able to own initiatives and work independently Pragmatic, collaborative, and business ...

vulnerability assessments and penetration testing to uncover weaknesses Developing and implementing security policies and procedures - Investigating and responding to cyber incidents, working closely with incident response teams Staying up to date with the latest cyber threats, vulnerabilities, and mitigation techniques Collaborating with cross-functional teams to ensure secure ...

design reviews , guide architecture decisions, and support engineers in navigating trade-offs around performance, cost, and reliability. Champion operational excellence — strong observability, testing discipline, incident response, and SLO ownership. Collaborate with Product & Design to define technical requirements, prioritise roadmaps, and drive measurable outcomes. Tech Environment You’ll Influence … scalable data pipelines with predictable velocity. Clear improvements in system reliability, throughput, and cost efficiency. Strong engineering discipline across design, testing, observability, and incident management. Improved technical foundations and reduced operational toil. Clear, thoughtful communication and alignment across engineering, product, and design. ...

partitioning, caching, compute configuration) with mentorship from more senior colleagues. Contribute to monitoring, alerting and observability setup for pipelines, applications and integrations. Participate in incident response and root cause analysis for platform and application issues. Assist in applying non-functional requirements (SLA/SLOs, resilience, backup and recovery … Performance issues or optimisation tasks. Permissions and basic security models. Schema/ontology changes and their impact on downstream use cases. Integration problems and incident recovery in collaboration with senior staff. Some client-facing experience (eg workshops, demos, requirement sessions or design walkthroughs). Any experience helping to train ...

/DevOps practices for Linux platforms powering low-latency, high-throughput trading workloads. Optimize, and tune Linux for performance, resilience, and minimal latency. Drive incident response, root cause analysis, and continuous reliability improvement across production systems. Oversee system automation and reproducibility—build, deploy, and fleet-manage bare-metal ...

client solutions are safe, observable and enterprise-ready by: Implementing evaluation frameworks and safety checks across models and agents Designing monitoring, logging, tracing and incident-response patterns Applying governance, risk and compliance principles within client environments Supporting releases, environments and handover into client operations Ensuring reliability, reproducibility, performance ...

reliability that the fund relies on. You will be responsible for building and maintaining business-critical systems, developing automation for deployment, monitoring, and incident response, and collaborating closely with developers, researchers, traders, and platform teams to improve reliability, performance, and scalability across the platform. Stack: Python, AWS, Linux ...

Deployment: Deliver high-quality support for our trading applications and ensure seamless deployments. Monitoring Systems: Configure, tune, and optimise monitoring systems for maximum efficiency. Incident Response: Manage and resolve incidents effectively to maintain platform stability and client satisfaction. Client Management: Work closely with clients, providing exceptional service ...

eTrading/algo, market data, and exchange connectivity. You will sit close to the desk and act as the go-to owner for stability, incident response, and release safety. Key Responsibilities: End-to-end production reliability for equities trading systems (OMS/EMS, FIX gateways, algo/eTrading ...

baseline; Azure/GCP to be evaluated) and interconnection locations (carrier-neutral DCs/IX presence). Deliverables or KPIs (e.g. uptime %, response times, resolution targets, etc) Target Architecture Document for cloud edge and DMZ hosting (including diagrams, logical and physical topology). Hybrid Connectivity Design Principles and Standards … Network performance engineering (capacity planning, QoS, traffic engineering). Security Expertise Firewalls, VPNs, IDS/IPS, secure segmentation, Zero Trust architecture. Threat detection/response, SIEM integration, incident response. Compliance frameworks (ISO 27001, NIST, GDPR). Cloud & Hybrid Networking AWS/Azure/GCP networking (VPC/VNet ...

Analyse triggered alerts, triage incidents, and respond to security events on a rota basis, including on-call duties. Conduct threat hunting, vulnerability analysis, and incident investigation using the latest intelligence and tooling. Collaborate with peers and stakeholders to identify gaps in detection coverage and improve SecOps processes. Mentor junior … operations. Present technical findings and guidance to clients and senior stakeholders. Ideal candidate: Minimum 5-6 years of experience in cyber security operations or incident response. Strong technical background, ideally from engineering or a hands-on IT/security role. Proficient in scripting or programming (Python, Bash, or similar ...