1 to 25 of 29 Incident Response Jobs in the City of London

Incident Response Manager (Cyber Threat) - Global financial services company - Full time permanent role - Salary up to £100,000 plus bonus. Hybrid working (twice a week in the London office) A large global financial services firm is looking for an Incident Response Manager within its cyber threat … point once a month for weekends) - Deliver on information security projects - Ensuring services provided meet the business requirements To be considered suitable for this Incident Response Manager role you will need the following skills and experience: - Experience in a technical cyber/incident response role - Previous … team management experience - Good understanding of incident response frameworks and methodologies (ICERF) - Good understanding of threats, vulnerabilities and processes - Familiarity with incident response tools and measures - Relevant industry certifications would be seen as advantageous (CISSP, OSCP, OSCE etc. More ❯

Security Incident Response Manager (Cyber Threat) - Global financial services company - Full time permanent role - Salary up to £100,000 plus bonus. Hybrid working (twice a week in the London office) A large global financial services firm is looking for an Incident Response Manager within its cyber … point once a month for weekends) - Deliver on information security projects - Ensuring services provided meet the business requirements To be considered suitable for this Incident Response Manager role you will need the following skills and experience: - Experience in a technical cyber/incident response role - Previous … team management experience - Good understanding of incident response frameworks and methodologies (ICERF) - Good understanding of threats, vulnerabilities and processes - Familiarity with incident response tools and measures - Relevant industry certifications would be seen as advantageous (CISSP, OSCP, OSCE etc. More ❯

real-time. Implementation of security best practices, including access control, vulnerability scanning, and secure authentication Be a subject matter expert on the organisation's incident response plan and aid in response to security incidents, ensuring timely resolution and minimal impact. Identify security risks, conduct vulnerability assessments, and … e.g., Snyk, Aqua, SonarQube). Security Scanning & Vulnerability Assessment: Knowledge of static and dynamic analysis tools, and the ability to integrate them into pipelines. Incident Response: Familiarity with security incident response processes, including detection, containment, eradication, and recovery. Offers are subject to satisfactory background checks, including More ❯

enforce security policies, standards, and guidelines. Collaborate with the Compliance Manager/CISO to ensure adherence to regulatory requirements (e.g., GDPR, ISO 27001). Incident Response and Management: Establish and maintain incident response plans and procedures. Lead technical response efforts during security incidents or breaches. … Conduct post-incident analyses to prevent future occurrences. Collaboration: Promote a security-aware culture across the organization. Engage with stakeholders to communicate security strategies and risks effectively. Continuous Improvement: Stay abreast of emerging security threats, trends, and technologies. Proactively identify opportunities to enhance security architecture and processes. Lead initiatives … to improve security monitoring, detection, and response capabilities. Qualifications and Experience: Professional Experience: Minimum of 2 -5 years experience in information security. Proven hands-on experience with DevSecOps practices and tools. Familiarity with cloud security architectures (AWS). Technical Skills: understanding of security principles, protocols, and standards. Proficiency with More ❯

policies, ensuring best practices for data protection and cybersecurity. Risk & Compliance: Oversee data security measures, ensure compliance with regulatory frameworks, and manage security audits. Incident Response & Threat Management: Lead the creation of an incident response strategy, monitor security risks, and coordinate responses to potential breaches. Stakeholder More ❯

policies, ensuring best practices for data protection and cybersecurity. Risk & Compliance: Oversee data security measures, ensure compliance with regulatory frameworks, and manage security audits. Incident Response & Threat Management: Lead the creation of an incident response strategy, monitor security risks, and coordinate responses to potential breaches. Stakeholder More ❯

and ensure smooth feature rollouts with minimal downtime. Define and manage monitoring, logging, and telemetry using tools like AWS Cloudwatch, Prometheus, and Datadog. Lead incident response and production troubleshooting with a proactive and preventative mindset. Drive automation initiatives with tools like GitlabCI, Terraform/OpenTofu, Ansible, and scripting … IAM). Experience with Kubernetes and Argo CD in production settings. Deep knowledge of application security protocols and infrastructure-level security practices. Real-time incident response skills. Proficient in infrastructure as code, monitoring, and automation. Excellent communication, collaboration, and problem-solving skills. Relevant certifications in AWS would be More ❯

and ensure smooth feature rollouts with minimal downtime. Define and manage monitoring, logging, and telemetry using tools like AWS Cloudwatch, Prometheus, and Datadog. Lead incident response and production troubleshooting with a proactive and preventative mindset. Drive automation initiatives with tools like GitlabCI, Terraform/OpenTofu, Ansible, and scripting … IAM). Experience with Kubernetes and Argo CD in production settings. Deep knowledge of application security protocols and infrastructure-level security practices. Real-time incident response skills. Proficient in infrastructure as code, monitoring, and automation. Excellent communication, collaboration, and problem-solving skills. Relevant certifications in AWS would be More ❯

and ensure smooth feature rollouts with minimal downtime. Define and manage monitoring, logging, and telemetry using tools like AWS Cloudwatch, Prometheus, and Datadog. Lead incident response and production troubleshooting with a proactive and preventative mindset. Drive automation initiatives with tools like GitlabCI, Terraform/OpenTofu, Ansible, and scripting … IAM). Experience with Kubernetes and Argo CD in production settings. Deep knowledge of application security protocols and infrastructure-level security practices. Real-time incident response skills. Proficient in infrastructure as code, monitoring, and automation. Excellent communication, collaboration, and problem-solving skills. Relevant certifications in AWS would be More ❯

IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO … practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response: Ability to detect, respond to, and mitigate cyber threats using SIEM, endpoint security, and vulnerability management tools. Networking & Infrastructure Security: Understanding of More ❯

followed by appropriate remedial action, to ensure that systems are protected from known and potential threats and are free from known vulnerabilities Collating security incident and event data to produce monthly exception and management reports Reporting unresolved network security exposures, misuse of resources or noncompliance situations using defined escalation … skills (both written and verbal) At least 18 months experience of working with cybersecurity principles, including risk assessment and management, threat and vulnerability management, incident response, and identity and access management Experience in developing, documenting and maintaining security procedures Knowledge of network infrastructure, including routers, switches, firewalls and More ❯

followed by appropriate remedial action, to ensure that systems are protected from known and potential threats and are free from known vulnerabilities Collating security incident and event data to produce monthly exception and management reports Reporting unresolved network security exposures, misuse of resources or noncompliance situations using defined escalation … skills (both written and verbal) At least 18 months experience of working with cybersecurity principles, including risk assessment and management, threat and vulnerability management, incident response, and identity and access management Experience in developing, documenting and maintaining security procedures Knowledge of network infrastructure, including routers, switches, firewalls and More ❯

followed by appropriate remedial action, to ensure that systems are protected from known and potential threats and are free from known vulnerabilities Collating security incident and event data to produce monthly exception and management reports Reporting unresolved network security exposures, misuse of resources or noncompliance situations using defined escalation … skills (both written and verbal) At least 18 months experience of working with cybersecurity principles, including risk assessment and management, threat and vulnerability management, incident response, and identity and access management Experience in developing, documenting and maintaining security procedures Knowledge of network infrastructure, including routers, switches, firewalls and More ❯

threats. Security alerts and incidents handling experience. Must have very good Knowledge of scripting languages such as Splunk, Python, Bash and PowerShell. Experienced with incident response and reporting for both technical and non-technical stakeholders. Possess a broad technical understanding of Windows, Linux, Networks, VMware, etc. Excellent knowhow More ❯

vulnerability scans to identify and address potential vulnerabilities and weaknesses. Assist in investigating security breaches, incidents, and unauthorized access attempts, and develop and implement incident response plans. Collaborate with cross-functional teams to ensure security requirements are incorporated into the design and implementation of systems and applications. Lead More ❯

The following skills are essential: Microsoft KQL Network security Web application security API security including OAUTH Experience of the following would be advantageous: Cyber incident response Akamai experience Cequence experience More ❯

understanding of Active Directory, Entra, GPO, DNS, DHCP PowerShell scripting Knowledge of Cyber Security tooling and best practice Assisting with InfoSec policy adherence and incident response Software troubleshooting What’s in it for you? Though initially joining on a 6 month FTC, given where the team are currently More ❯

understanding of Active Directory, Entra, GPO, DNS, DHCP PowerShell scripting Knowledge of Cyber Security tooling and best practice Assisting with InfoSec policy adherence and incident response Software troubleshooting What’s in it for you? Though initially joining on a 6 month FTC, given where the team are currently More ❯

understanding of Active Directory, Entra, GPO, DNS, DHCP PowerShell scripting Knowledge of Cyber Security tooling and best practice Assisting with InfoSec policy adherence and incident response Software troubleshooting What’s in it for you? Though initially joining on a 6 month FTC, given where the team are currently More ❯

Zero Trust framework. Work closely with business stakeholders to deliver secure, seamless authentication and authorization experiences. Establish continuous monitoring, threat detection, and real-time incident response protocols. Deploy and manage Microsoft security tools for advanced threat protection and policy enforcement. Define and implement security policies, standards, and procedures More ❯

week required on-site in the office. Key duties of the Cyber Security Manager will include: Production of comprehensive reports detailing security statuses and incident responses. You will be responsible for overseeing cyber operations within the organisation. You will be managing a team ensuring all security protocols and procedures More ❯

Responsibilities: Develop and implement technical solutions aligned with business needs. Manage and support network infrastructure (switches, routers, firewalls, etc.), including lifecycle management, upgrades, and incident response. Oversee critical changes and ensure infrastructure efficiency. Collaborate with Engineering, Architecture, Security, and Support teams. Ensure system availability, performance, and security. Align technology More ❯

Responsibilities: Develop and implement technical solutions aligned with business needs. Manage and support network infrastructure (switches, routers, firewalls, etc.), including lifecycle management, upgrades, and incident response. Oversee critical changes and ensure infrastructure efficiency. Collaborate with Engineering, Architecture, Security, and Support teams. Ensure system availability, performance, and security. Align technology More ❯

Responsibilities: Develop and implement technical solutions aligned with business needs. Manage and support network infrastructure (switches, routers, firewalls, etc.), including lifecycle management, upgrades, and incident response. Oversee critical changes and ensure infrastructure efficiency. Collaborate with Engineering, Architecture, Security, and Support teams. Ensure system availability, performance, and security. Align technology More ❯

forensic analysis, and apply swift mitigation actions. Stay current on security technologies and trends to enhance system protection. Design disaster recovery plans and coordinate incident responses with the IT Team Leader. Ensure adherence to security policies, SLA requirements, and compliance standards. Maintain comprehensive system documentation and support system upgrades. More ❯