1 to 25 of 28 Incident Response Jobs in the City of London

Cyber Security Analyst - Incident Response London - Hybrid | Up to £75,000 + benefits A global specialist insurer is expanding its internal cyber defence capability and is seeking an experienced analyst to strengthen its Security Operations Centre. This role is focused on incident response first and foremost. … suits someone who has spent 3-5 years in a SOC environment and is now taking ownership of investigations, leading response activity, and managing incidents end-to-end. Threat intelligence exposure is welcome but not essential. The role Lead and coordinate responses to live security incidents including malware, phishing ...

Operations Analyst to join a fast-growing Blue Team within our Cyber Practice. You will work with high-profile clients to ensure effective cyber incident detection, response, and threat mitigation across cloud, endpoint, and network environments. Key Responsibilities: Develop, maintain, and enhance security detection content for SIEM platforms … escalation for junior analysts. Serve as a technical subject matter expert on client engagements, presenting findings to senior stakeholders. Participate in alert testing, incident response exercises, and threat hunting activities. Stay up to date with the latest threat intelligence and emerging attacker tactics. Additional Responsibilities (client-dependent): Threat ...

client is seeking a SOC Analyst to join a security operations team in London. The role is focused on real-time monitoring, investigation, and incident response across a modern enterprise security environment. Key Responsibilities Monitor, triage, and respond to security alerts across multiple platforms, including Microsoft and endpoint … Optimise and tune detection rules, policies, and alerting mechanisms to improve SOC efficiency. Collaborate with internal teams to support security operations, threat analysis, and incident recovery. Produce clear incident documentation, reports, and recommendations for continuous improvement. Contribute to maintaining and enhancing SOC processes, runbooks, and operational workflows. Required ...

implementing, operating, and monitoring technical security controls across IT and operational environments. The role is hands-on and delivery-focused, covering vulnerability management, incident response, identity and access controls, security tooling, and technical risk mitigation, while working in alignment with governance and risk requirements. Key Responsibilitie s Security … Controls & Architecture Vulnerability & Threat Management Incident Response Identity, Access & Data Security Risk & Compliance Support Security Training and awareness Required Technical Experience: Proven experience in a hands-on IT security/cybersecurity role Logging and monitoring Security Tooling (vulnerability scanning (Tenable, Qualys, Rapid7) Endpoint or network security platforms ...

high-risk processing activities. Managing third-party vendor data protection risk, from initial due diligence through to ongoing monitoring. Overseeing personal data breach incident response, ensuring timely containment, investigation, and reporting. Monitoring and maintaining data retention processes, ensuring compliance with legal, regulatory, and business requirements. This role offers … compliance (e.g. GDPR or equivalent frameworks). Strong understanding of data protection risk assessment and mitigation processes. Proven experience in data breach management and incident response coordination. Desirable Skills and Attributes Collaboratively curious — keen to engage with colleagues to find pragmatic, compliant solutions. Trustworthy and ethically minded, with ...

including but not limited to: Integrated Risk Management (IRM): Policy Management, Compliance & Audit Management, Vendor Risk Management, Business Continuity Management. Security Operations (SecOps): Vulnerability Response, Security Incident Response, Security Dashboards. IT Service Management (ITSM). IT Operations Management (ITOM). Customer Service Management (CSM). Integration Design ...

technical environments. Stay current with emerging threats, regulatory changes, and industry best practices in risk management, compensating controls, and evolving enterprise technologies. Assist with incident response planning and post-incident risk evaluation, leveraging broad technical knowledge to assess impacts and recommend improvements. Qualifications/Skills Required Demonstrated ...

analysis to identify and mitigate potential threats. Design and enforce security controls based on identified requirements and gaps in existing structures. Threat Detection and Response Monitor and respond to security incidents ensuring rapid and effective action. Develop comprehensive incident response plans to maintain organisational resilience against threats. ...

services, high-density deployments, extensive interconnection ecosystems, and 24/7 operational demands. This role oversees facilities operations, engineering/M&E teams, and incident management processes while ensuring excellence in service delivery and compliance with strict availability, safety, and security standards. Key Responsibilities Operational Leadership Oversee … Infrastructure & Risk Management Ensure all critical systems are maintained to world-class standards, following rigorous preventive and corrective maintenance programmes. Lead root-cause analysis, incident response, and post-incident reviews for all operational events. Maintain operational risk registers, capacity planning, and resilience strategies. Governance, Compliance & Standards Uphold ...

Cloud, Sentinel, Conditional Access) Manage Identity and Access Management across Azure AD and M365 Implement Zero Trust principles and security best practices Support incident response, vulnerability management, and compliance initiatives Collaborate with IT teams to embed security into cloud-first solutions Experience Required: Solid experience in Cyber Security ...

secure identities and access through Microsoft Entra ID. Core responsibilities will include threat management, proactive hunting for vulnerabilities, data protection, security posture management, and incident response. All of these will be based on collaborating with other teams to maintain and improve the organization's overall security posture. Key responsibilities … secure user experience. Act as a subject matter expert for the core components of the Defender XDR suite. Manage endpoint protection, detection, and response across our device fleet. Protect against email-based threats, including phishing, malicious attachments, and compromised links. Monitor on-premises Active Directory signals to identify ...

senior management on the status of projects, operational performance, and security compliance. Facilitate effective communication between IT teams and business units. Problem Solving and Incident Management: Manage and resolve high-priority incidents and critical issues. Conduct root cause analysis and implement corrective actions to prevent recurrence. Develop and maintain … incident response plans and procedures. Requirements: Proven experience as a Digital Operations Manager, IT Manager, Support Manager, or similar role. Strong leadership and team management skills with the ability to mentor and inspire a diverse team. Excellent understanding of IT infrastructure, application support, and digital operations. Demonstrated experience ...

Manage and optimise Microsoft Defender across Endpoint, Identity, Cloud Apps, Office 365, and Cloud Security Posture Management. Monitor alerts and conduct threat investigations. Support incident response with containment and remediation. Conduct proactive threat hunting. Platform administration and governance Configure policy baselines and protection profiles. Maintain governance and compliance … Security teams. Provide security insights to projects. Produce reporting for stakeholders. Identify automation and workflow enhancements. Essential Skills Strong experience with Microsoft Defender platforms. Incident investigation skills across endpoint, identity, and cloud. Understanding of Microsoft 365, Azure, and Zero Trust. Skilled in ASR rules, AV baselines, and KQL analytics. ...

implementing ServiceNow solutions, while ensuring alignment with business objectives and IT best practices. Key Responsibilities: Deliver solutions across key ServiceNow modules, including: ITSM (Incident, Problem, Request, Change) HRSD (Human Resources Service Delivery) Security Incident Response (SIR) and Vulnerability Management Service Portal and Virtual Agent configuration CMDB setup ...

expert guidance on cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Develop and enforce security policies, standards, and best practices. Lead incident response and root cause analysis for security-related issues. Mentor and train teams on DevSecOps principles and tools. Contract: 6 Months Rolling Rate ...

data pipelines. Excellent communication and stakeholder engagement skills across technical and non-technical audiences. Experience designing resilient pipelines with monitoring, logging, error handling, and incident response considerations. Desirable Familiarity with AI Foundry, Copilot, or similar AI-assisted engineering tools. Experience implementing data governance, cataloguing, lineage, and security best ...

environment, and who is confident working with BC/OR technology, data, and tooling. Key Responsibilities Lead business continuity and operational resilience planning and response across the firm, ensuring critical services, processes, and dependencies are identified and protected. Own the firm's BC/OR technology stack, including: Overseeing … reviews, risk assessments, and business impact analyses (BIAs) to ensure frameworks remain aligned to the firm's strategy, risk profile, and regulatory expectations. Oversee incident management, business continuity, and technology recovery planning, using specialist third-party tools to coordinate response, capture actions, and monitor recovery. Deliver and monitor ...

concept) and helping mature the organisation’s security posture. Your remit will span areas such as: Security strategy and roadmap Security architecture and design Incident response and management SOC operations Compliance and vulnerability management Identity and access management Network security and DLP You don’t need experience ...

monitoring Collaborate with data scientists to ensure models are production-ready Implement security, compliance, and governance practices for ML systems Support troubleshooting and incident response for deployed ML systems Required Skills and Experience Strong programming skills in Python; experience with ML libraries such as Snowpark, PySpark, or PyTorch ...

friction and accelerate development velocity. Monitor system reliability, performance, and security across environments. Implement robust observability tools including logs, metrics, traces, and alerts. Lead incident response, root-cause analysis, and long-term remediation. Ensure security best practices are embedded across infrastructure and pipelines. Collaborate closely with the wider ...

based in our London, Knutsford or Glasgow locations. Purpose of the role To apply software engineering techniques, automation, and best practices in incident response, to ensure the reliability, availability, and scalability of the systems, platforms, and technology through them. Accountabilities Availability, performance, and scalability of systems and services … through proactive monitoring, maintenance, and capacity planning. Resolution, analysis and response to system outages and disruptions, and implement measures to prevent similar incidents from recurring. Development of tools and scripts to automate operational processes, reducing manual workload, increasing efficiency, and improving system resilience. Monitoring and optimisation of system performance ...

practices for Linux platforms powering low-latency, high-throughput trading workloads. Architect, optimize, and tune Linux for performance, resilience, and minimal latency. Drive incident response, root cause analysis, and continuous reliability improvement across production systems. Oversee system automation and reproducibility—build, deploy, and fleet-manage bare-metal Linux ...

Deployment: Deliver high-quality support for our trading applications and ensure seamless deployments. Monitoring Systems: Configure, tune, and optimise monitoring systems for maximum efficiency. Incident Response: Manage and resolve incidents effectively to maintain platform stability and client satisfaction. Client Management: Work closely with clients, providing exceptional service ...

platform, with a strong focus on automation, reliability, and system resilience. You will be responsible for building operational tooling and automation, improving observability and incident response, and applying core SRE principles to ensure the stability, performance, and scalability of mission-critical trading systems. Stack: Python, Linux, Kubernetes, Terraform ...

eTrading/algo, market data, and exchange connectivity. You will sit close to the desk and act as the go-to owner for stability, incident response, and release safety. Key Responsibilities: End-to-end production reliability for equities trading systems (OMS/EMS, FIX gateways, algo/eTrading ...