22 of 22 Incident Response Jobs in the City of London

Senior Incident Response Manager (SOC) London/WFH to £120k Do you have expertise in the field of Incident Response, Cyber Security Operations or Digital Forensics? You could be progressing your career in a senior, hands-on leadership role at the Investment Management … global bank. As a Senior Incident Response Manager you will continuously develop a high performance technical response team and lead the Incident Response efforts, overseeing the end-to-end incident response lifecycle, from detection and containment to eradication, recovery and post incident ...

Security Lead - Incident Response & Threat Management 4 Months Contract £400 to £500 a day Inside IR35 Remote working *Active Security Clearance is Needed* A well-established consultancy firm is urgently looking for an experienced Security Lead with a strong background in Incident Response and Threat Management … high-profile client. This role requires a professional with active SC Clearance and a deep understanding of SecOps analyst support. Core Responsibilities Incident Management: Directing the full incident response lifecycle, including the triage, investigation, and total resolution of security events. Threat Intelligence: Utilising Recorded Future, OpenCTI ...

Operations Analyst to join a fast-growing Blue Team within our Cyber Practice. You will work with high-profile clients to ensure effective cyber incident detection, response, and threat mitigation across cloud, endpoint, and network environments. Key Responsibilities: Develop, maintain, and enhance security detection content for SIEM platforms … escalation for junior analysts. Serve as a technical subject matter expert on client engagements, presenting findings to senior stakeholders. Participate in alert testing, incident response exercises, and threat hunting activities. Stay up to date with the latest threat intelligence and emerging attacker tactics. Additional Responsibilities (client-dependent): Threat ...

posture through continuous monitoring and analysis. Key Responsibilities Investigate and respond to cyber security incidents, including malware outbreaks, phishing attempts, and insider threats. Lead incident response efforts and conduct digital forensics. Enhance detection and response capabilities through process improvements and automation. Monitor alerts from SOC tools … perform root cause analysis. Collaborate with IT and security teams to remediate vulnerabilities. Gather and analyse threat intelligence to inform detection strategies. Maintain detailed incident records and conduct post-incident reviews. Technical Skills Hands-on experience with SIEM, EDR, IDS/IPS, and SOAR platforms. Strong knowledge ...

client is seeking a SOC Analyst to join a security operations team in London. The role is focused on real-time monitoring, investigation, and incident response across a modern enterprise security environment. Key Responsibilities Monitor, triage, and respond to security alerts across multiple platforms, including Microsoft and endpoint … Optimise and tune detection rules, policies, and alerting mechanisms to improve SOC efficiency. Collaborate with internal teams to support security operations, threat analysis, and incident recovery. Produce clear incident documentation, reports, and recommendations for continuous improvement. Contribute to maintaining and enhancing SOC processes, runbooks, and operational workflows. Required ...

protect the firm's data and Technology infrastructure. * VPN Administration - Administer and maintain Virtual Private Networks (VPN) to ensure secure remote access for employees. * Incident Response - Investigate and resolve potential security issues, participate in incident response initiatives, and respond to security-related alerts promptly. * Vulnerability Management ...

Security Lead - Incident Response & Threat Management 4 Months Contract £400 to £500 a day Inside IR35 Remote working Active Security Clearance is Needed A well-established consultancy firm is urgently looking for an experienced Security Lead with a strong background in Incident Response and Threat Management ...

technical environments. Stay current with emerging threats, regulatory changes, and industry best practices in risk management, compensating controls, and evolving enterprise technologies. Assist with incident response planning and post-incident risk evaluation, leveraging broad technical knowledge to assess impacts and recommend improvements. Qualifications/Skills Required Demonstrated ...

enterprise messaging infrastructure built on Solace PubSub+, ensuring high availability, optimal performance, and reliability across production and non-production environments. This includes working on incident response, capacity planning, WAN optimization, and system observability using tools like Prometheus and Grafana . Key Responsibilities: Administer and maintain Solace PubSub+ appliances ...

comprehensive post-release validation, ensuring software functions correctly following deployments. Participate in release management processes and uphold best practices following Agile methodologies. Be the Incident coordinator for operational incidents on the core engineering production platform. This includes all technical internal communications, ensuring processes are followed and all post-incident … efficiently in ambiguous environments. Excellent documentation and knowledge-sharing skills, coupled with a passion for continuous improvement in documentation strategies and tooling. Experience with incident response protocols and comfort navigating high-pressure situations. Proficiency with development workflows and tools (JIRA, Confluence, GitHub, Scrum methodologies). Strong written ...

integrate reliability and performance into the software lifecycle. Managing and evolving CI/CD pipelines to ensure smooth deployments and rollbacks. Contributing to incident response , post-mortems, and reliability improvements. Championing SRE principles such as error budgets, SLIs/SLOs, and automation-first thinking. What We’re Looking ...

Manage and optimise Microsoft Defender across Endpoint, Identity, Cloud Apps, Office 365, and Cloud Security Posture Management. Monitor alerts and conduct threat investigations. Support incident response with containment and remediation. Conduct proactive threat hunting. Platform administration and governance Configure policy baselines and protection profiles. Maintain governance and compliance … Security teams. Provide security insights to projects. Produce reporting for stakeholders. Identify automation and workflow enhancements. Essential Skills Strong experience with Microsoft Defender platforms. Incident investigation skills across endpoint, identity, and cloud. Understanding of Microsoft 365, Azure, and Zero Trust. Skilled in ASR rules, AV baselines, and KQL analytics. ...

procedures Managing and challenging third party security vendors and MSPs Leading audit and assurance activities Oversight of DLP, penetration testing, vulnerability management, and incident response Advising the business on emerging risks, including AI-driven security threats What you need You do not require prior buy side experience, although ...

monitoring Collaborate with data scientists to ensure models are production-ready Implement security, compliance, and governance practices for ML systems Support troubleshooting and incident response for deployed ML systems Required Skills and Experience Strong programming skills in Python; experience with ML libraries such as Snowpark, PySpark, or PyTorch ...

targets. - Identify vulnerabilities in hardware and software to be remediated by Engineering \ Operations teams. - Understand current and emerging security threats. - Assist and lead in Incident Response investigations and mitigation. Required Skills/Experience: - Hands-on experience with disaster recovery, failover testing, and operational resilience in IT infrastructure. - Solid ...

observability and performance monitoring using Dynatrace. You will have: Demonstrable experience delivering cloud migration, optimisation, or transformation projects Experience with Terraform or Ansible Drive incident response and root cause analysis using click apply for full job details ...

observability and performance monitoring using Dynatrace. You will have: Demonstrable experience delivering cloud migration, optimisation, or transformation projects Experience with Terraform or Ansible Drive incident response and root cause analysis using Dynatrace data Must have active SC Clearance - this is non-negotiable Hays Specialist Recruitment Limited acts ...

Provide independent governance oversight (separate from IT Ops) About You Strong experience with ISO 27001 (Annex 8), CE+, and risk management Background in audits, incident response, and governance documentation Confident working with Compliance, IT, and external partners Able to own initiatives and work independently Pragmatic, collaborative, and business ...

concept) and helping mature the organisation’s security posture. Your remit will span areas such as: Security strategy and roadmap Security architecture and design Incident response and management SOC operations Compliance and vulnerability management Identity and access management Network security and DLP You don’t need experience ...

robust, well-architected technical solutions Acting as a trusted technical partner to non-technical stakeholders Operational excellence Owning production support for Business Central, including incident response and root-cause analysis Improving deployment pipelines, monitoring, and overall ERP reliability Proactively identifying risks, bottlenecks, and opportunities for improvement Platform & engineering ...

eTrading/algo, market data, and exchange connectivity. You will sit close to the desk and act as the go-to owner for stability, incident response, and release safety. Key Responsibilities: End-to-end production reliability for equities trading systems (OMS/EMS, FIX gateways, algo/eTrading ...

baseline; Azure/GCP to be evaluated) and interconnection locations (carrier-neutral DCs/IX presence). Deliverables or KPIs (e.g. uptime %, response times, resolution targets, etc) Target Architecture Document for cloud edge and DMZ hosting (including diagrams, logical and physical topology). Hybrid Connectivity Design Principles and Standards … Network performance engineering (capacity planning, QoS, traffic engineering). Security Expertise Firewalls, VPNs, IDS/IPS, secure segmentation, Zero Trust architecture. Threat detection/response, SIEM integration, incident response. Compliance frameworks (ISO 27001, NIST, GDPR). Cloud & Hybrid Networking AWS/Azure/GCP networking (VPC/VNet ...