1 to 25 of 26 Incident Response Jobs in the City of London

Incident Response Manager (Cyber Threat) - Global financial services company - Full time permanent role - Salary up to £100,000 plus bonus. Hybrid working (twice a week in the London office) A large global financial services firm is looking for an Incident Response Manager within its cyber threat … point once a month for weekends) - Deliver on information security projects - Ensuring services provided meet the business requirements To be considered suitable for this Incident Response Manager role you will need the following skills and experience: - Experience in a technical cyber/incident response role - Previous … team management experience - Good understanding of incident response frameworks and methodologies (ICERF) - Good understanding of threats, vulnerabilities and processes - Familiarity with incident response tools and measures - Relevant industry certifications would be seen as advantageous (CISSP, OSCP, OSCE etc. More ❯

Security Incident Response Manager (Cyber Threat) - Global financial services company - Full time permanent role - Salary up to £100,000 plus bonus. Hybrid working (twice a week in the London office) A large global financial services firm is looking for an Incident Response Manager within its cyber … point once a month for weekends) - Deliver on information security projects - Ensuring services provided meet the business requirements To be considered suitable for this Incident Response Manager role you will need the following skills and experience: - Experience in a technical cyber/incident response role - Previous … team management experience - Good understanding of incident response frameworks and methodologies (ICERF) - Good understanding of threats, vulnerabilities and processes - Familiarity with incident response tools and measures - Relevant industry certifications would be seen as advantageous (CISSP, OSCP, OSCE etc. More ❯

real-time. Implementation of security best practices, including access control, vulnerability scanning, and secure authentication Be a subject matter expert on the organisation's incident response plan and aid in response to security incidents, ensuring timely resolution and minimal impact. Identify security risks, conduct vulnerability assessments, and … e.g., Snyk, Aqua, SonarQube). Security Scanning & Vulnerability Assessment: Knowledge of static and dynamic analysis tools, and the ability to integrate them into pipelines. Incident Response: Familiarity with security incident response processes, including detection, containment, eradication, and recovery. Offers are subject to satisfactory background checks, including More ❯

maturity of SIEM, SOC, and EDR capabilities while actively addressing emerging threats and vulnerabilities. The security engineer will also play a critical role in incident response, compliance, and implementing innovative security technologies to strengthen the organisation's defenses. Essential functions of the job: SOC operations: perform incident triaging, threat detection, and response activities. SIEM & EDR management: advance and configure SIEM and EDR systems to optimise threat detection and response in Azure environments. Incident response: investigate and mitigate security incidents, applying root cause analysis and remediation. Security testing: conduct regular application and network More ❯

enforce security policies, standards, and guidelines. Collaborate with the Compliance Manager/CISO to ensure adherence to regulatory requirements (e.g., GDPR, ISO 27001). Incident Response and Management: Establish and maintain incident response plans and procedures. Lead technical response efforts during security incidents or breaches. … Conduct post-incident analyses to prevent future occurrences. Collaboration: Promote a security-aware culture across the organization. Engage with stakeholders to communicate security strategies and risks effectively. Continuous Improvement: Stay abreast of emerging security threats, trends, and technologies. Proactively identify opportunities to enhance security architecture and processes. Lead initiatives … to improve security monitoring, detection, and response capabilities. Qualifications and Experience: Professional Experience: Minimum of 2 -5 years experience in information security. Proven hands-on experience with DevSecOps practices and tools. Familiarity with cloud security architectures (AWS). Technical Skills: understanding of security principles, protocols, and standards. Proficiency with More ❯

protection, and threat detection and response. Compliance andGovernance: Ensure compliance with industry standards and regulations (e.g.,GDPR, HIPAA) and develop security policies and procedures. Incident Response: Lead and coordinate incident response activities, including investigation,containment, and remediation of security incidents. Collaboration: Workclosely with IT, DevOps, and More ❯

protection, and threat detection and response. Compliance andGovernance: Ensure compliance with industry standards and regulations (e.g.,GDPR, HIPAA) and develop security policies and procedures. Incident Response: Lead and coordinate incident response activities, including investigation,containment, and remediation of security incidents. Collaboration: Workclosely with IT, DevOps, and More ❯

and ensure smooth feature rollouts with minimal downtime. Define and manage monitoring, logging, and telemetry using tools like AWS Cloudwatch, Prometheus, and Datadog. Lead incident response and production troubleshooting with a proactive and preventative mindset. Drive automation initiatives with tools like GitlabCI, Terraform/OpenTofu, Ansible, and scripting … IAM). Experience with Kubernetes and Argo CD in production settings. Deep knowledge of application security protocols and infrastructure-level security practices. Real-time incident response skills. Proficient in infrastructure as code, monitoring, and automation. Excellent communication, collaboration, and problem-solving skills. Relevant certifications in AWS would be More ❯

and ensure smooth feature rollouts with minimal downtime. Define and manage monitoring, logging, and telemetry using tools like AWS Cloudwatch, Prometheus, and Datadog. Lead incident response and production troubleshooting with a proactive and preventative mindset. Drive automation initiatives with tools like GitlabCI, Terraform/OpenTofu, Ansible, and scripting … IAM). Experience with Kubernetes and Argo CD in production settings. Deep knowledge of application security protocols and infrastructure-level security practices. Real-time incident response skills. Proficient in infrastructure as code, monitoring, and automation. Excellent communication, collaboration, and problem-solving skills. Relevant certifications in AWS would be More ❯

IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO … practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response: Ability to detect, respond to, and mitigate cyber threats using SIEM, endpoint security, and vulnerability management tools. Networking & Infrastructure Security: Understanding of More ❯

followed by appropriate remedial action, to ensure that systems are protected from known and potential threats and are free from known vulnerabilities Collating security incident and event data to produce monthly exception and management reports Reporting unresolved network security exposures, misuse of resources or noncompliance situations using defined escalation … skills (both written and verbal) At least 18 months experience of working with cybersecurity principles, including risk assessment and management, threat and vulnerability management, incident response, and identity and access management Experience in developing, documenting and maintaining security procedures Knowledge of network infrastructure, including routers, switches, firewalls and More ❯

followed by appropriate remedial action, to ensure that systems are protected from known and potential threats and are free from known vulnerabilities Collating security incident and event data to produce monthly exception and management reports Reporting unresolved network security exposures, misuse of resources or noncompliance situations using defined escalation … skills (both written and verbal) At least 18 months experience of working with cybersecurity principles, including risk assessment and management, threat and vulnerability management, incident response, and identity and access management Experience in developing, documenting and maintaining security procedures Knowledge of network infrastructure, including routers, switches, firewalls and More ❯

add their first EU based Security Analyst to the team. Collaborating closely with the Security team in the US, you'll be responsible for incident response, vulnerability management, risk analysis and detection, with a particular focus on Europe and APAC. This is a brand new hire for a More ❯

add their first EU based Security Analyst to the team. Collaborating closely with the Security team in the US, you'll be responsible for incident response, vulnerability management, risk analysis and detection, with a particular focus on Europe and APAC. This is a brand new hire for a More ❯

threats. Security alerts and incidents handling experience. Must have very good Knowledge of scripting languages such as Splunk, Python, Bash and PowerShell. Experienced with incident response and reporting for both technical and non-technical stakeholders. Possess a broad technical understanding of Windows, Linux, Networks, VMware, etc. Excellent knowhow More ❯

vulnerability scans to identify and address potential vulnerabilities and weaknesses. Assist in investigating security breaches, incidents, and unauthorized access attempts, and develop and implement incident response plans. Collaborate with cross-functional teams to ensure security requirements are incorporated into the design and implementation of systems and applications. Lead More ❯

The following skills are essential: Microsoft KQL Network security Web application security API security including OAUTH Experience of the following would be advantageous: Cyber incident response Akamai experience Cequence experience More ❯

understanding of Active Directory, Entra, GPO, DNS, DHCP PowerShell scripting Knowledge of Cyber Security tooling and best practice Assisting with InfoSec policy adherence and incident response Software troubleshooting What’s in it for you? Though initially joining on a 6 month FTC, given where the team are currently More ❯

understanding of Active Directory, Entra, GPO, DNS, DHCP PowerShell scripting Knowledge of Cyber Security tooling and best practice Assisting with InfoSec policy adherence and incident response Software troubleshooting What’s in it for you? Though initially joining on a 6 month FTC, given where the team are currently More ❯

week required on-site in the office. Key duties of the Cyber Security Manager will include: Production of comprehensive reports detailing security statuses and incident responses. You will be responsible for overseeing cyber operations within the organisation. You will be managing a team ensuring all security protocols and procedures More ❯

Key Responsibilities: Serve as Application Manager for print-related mnemonics (EQC, KAS, NUA, RMT, RTN), overseeing maintenance, uptime, and resolution of critical issues. Lead incident management for print-related issues, including troubleshooting, MIM response, diagnostics, and stakeholder communications. Monitor the print environment proactively to detect and mitigate issues … Support/Management within banking or regulated environments Proven expertise in print services management , especially across complex, enterprise-level environments Hands-on experience with incident response, troubleshooting , and root cause analysis Solid understanding of compliance, security standards , and patch management Excellent stakeholder communication and coordination skills Experience in More ❯

training Set usage & security policies & processes for information sharing on internal & external platforms Ensure documented processes & processes exist for all operational security workstreams, prioritising incident response procedures including runbooks exist for specific threat types e.g. Ransomware, Malware etc Oversee vulnerability management Manage IT security incidents, investigations, and reports More ❯

Responsibilities: Develop and implement technical solutions aligned with business needs. Manage and support network infrastructure (switches, routers, firewalls, etc.), including lifecycle management, upgrades, and incident response. Oversee critical changes and ensure infrastructure efficiency. Collaborate with Engineering, Architecture, Security, and Support teams. Ensure system availability, performance, and security. Align technology More ❯

Responsibilities: Develop and implement technical solutions aligned with business needs. Manage and support network infrastructure (switches, routers, firewalls, etc.), including lifecycle management, upgrades, and incident response. Oversee critical changes and ensure infrastructure efficiency. Collaborate with Engineering, Architecture, Security, and Support teams. Ensure system availability, performance, and security. Align technology More ❯

forensic analysis, and apply swift mitigation actions. Stay current on security technologies and trends to enhance system protection. Design disaster recovery plans and coordinate incident responses with the IT Team Leader. Ensure adherence to security policies, SLA requirements, and compliance standards. Maintain comprehensive system documentation and support system upgrades. More ❯