18 of 18 Incident Response Jobs in the City of London

Incident Response Manager (Cyber Threat) - Global financial services company - Full time permanent role - Salary up to £110,000 plus bonus. Hybrid working (twice a week in the London office) A large global financial services firm is looking for an Incident Response Manager within its cyber threat … point once a month for weekends) - Deliver on information security projects - Ensuring services provided meet the business requirements To be considered suitable for this Incident Response Manager role you will need the following skills and experience: - Experience in a technical cyber/incident response role - Previous ...

operations. This is a technical role suited to an experienced analyst with strong engineering instincts, hands-on coding capabilities, and a deep understanding of incident response, detection engineering, and adversary tradecraft. This position includes approximately one week per month of on-call availability for high-priority incident … ideal for someone who has likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible ...

Incident Response Manager (Cyber Threat) - Global financial services company - Full time permanent role - Salary up to £110,000 plus bonus. Hybrid working (twice a week in the London office) A large global financial services firm is looking for an Incident Response Manager within its cyber threat ...

Title: Incident Manager Job Location: Central London, UK/Onsite Job Type: FTE Job Description: Role Summary The Incident Manager owns end-to-end incident response for critical insurance systems and services, focusing on minimizing customer and business impact across all platforms. This role leads major … incident handling, coordinates cross-functional and vendor teams, ensures regulatory and audit readiness, and drives continuous improvement to reduce recurrence and improve resilience. Key Responsibilities 1. Lead major incident response and coordination across application teams, infrastructure, security, vendor partners, and business stakeholders to restore services quickly. 2. ...

environments. You will lead the design, implementation, and continuous improvement of the organisation's security engineering capabilities across cloud platforms, infrastructure, security tooling, and incident response. As the technical lead for cybersecurity engineering, you will help shape the organisation's security roadmap while remaining close to the technology … Develop and improve detection engineering capabilities and threat monitoring use cases. Partner with the external SOC provider to ensure effective alerting, triage, escalation, and response processes. Lead vulnerability management activities from identification through remediation tracking and reporting. Support and lead technical incident response activities, including investigation, containment ...

operational dashboards for pipeline health, compute utilisation, and deployment status. Collaborate with data engineering teams to ensure upstream data quality and pipeline reliability. Develop incident response procedures and operational runbooks for ML system failures. Infrastructure & Cost Optimisation Manage and optimise AWS compute resources used for model training … version control workflows. Familiarity with SQL and modern data warehousing platforms. Experience implementing monitoring, logging, and alerting for production systems. Strong debugging and incident response skills for distributed systems. Preferred Qualifications Experience deploying models to edge or embedded devices. Background in healthcare, medical devices, or clinical data systems. ...

join the firm in London. Responsibilities: * Undertake efficient, effective and proactive day-to-day cybersecurity operations to minimise the risk of a security incident, enabling the firm to do business. * Maintain the capability to react and respond to incidents in an effective and timely manner, minimising their impact … event data across the firms' systems, and procuring threat intelligence to inform the hunts. Key Skills: * Strong understanding of network and end point security, incident response, threat intelligence, and vulnerability management. * Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS. * Strong ...

Resilience, Continuity & Recovery Manager (DORA) -Incident Manager UK Remote | Permanent Hiring a Senior Resilience, Continuity, Recovery Manager and Incident Manager with strong DORA experience to lead operational resilience, major incident management and recovery planning within a regulated financial services environment. Key experience: * MUST DORA/Operational Resilience … Major Incident Management * Business Continuity & Disaster Recovery * Financial Services/FinTech * ISO 22301/ISO 27001/NIST * Stakeholder & Regulatory Management This role will lead DORA implementation, resilience testing, ICT incident response, third-party risk and enterprise recovery planning across the business. High-impact role with strong ...

ensuring robust coverage against evolving threat landscapes. Key Responsibilities Design and implement detection use cases across SIEM and SOAR platforms using threat intelligence and incident data Develop, map, and maintain detection logic aligned to MITRE ATT&CK frameworks Continuously tune and optimise correlation rules to improve signal-to-noise … engineering teams to ensure efficient data ingestion and parsing Document detection logic, methodologies, and expected outputs for audit and operational use Contribute to post-incident reviews, enhancing detection coverage and response effectiveness Maintain and evolve a repository of use cases, KPIs, and SOC performance metrics Requirements 3+ years ...

with infrastructure, development, and support teams to ensure messaging reliability, scalability, and performance across mission critical systems. You'll play a key role in incident response, monitoring, capacity planning, WAN optimisation, and automation while helping maintain a highly available messaging platform supporting real-time trading and financial applications. ...

architecture and protective controls (IAM, Zero Trust, network, endpoint) Vulnerability management, secure configuration and supply-chain security Security monitoring, SIEM and detection capability assessment Incident response, business continuity and resilience planning Independent assurance, gap analysis and remediation planning Familiarity with frameworks such as ISO 27001, NIST ...

including modernisation and decommissioning of systems. - Operational Excellence and Service Management: Accountable for platform availability, performance and resilience. Oversea 3rd level support and major incident response. - Security & Risk Management: Ensure security is embedded by design across all platforms. - Automation & Continuous Improvement: Drive automation and standardisation across platform services. - Leadership ...

standards DCB0129 and DCB0160, and NHSE governance. You will lead hazard analysis, determine Safety Assurance Levels, develop and review Clinical Safety Cases, and support incident investigations. Your expertise will help embed clinical safety into agile and user-centred design practices, working closely with clinical, technical, and leadership teams … applying DCB0129, DCB0160, and NHSE governance Hands-on digital health delivery experience in NHS or similar settings Expertise in hazard workshops, risk assessment, and incident response Familiarity with digital health architectures, interoperability, and emerging tech risks Strong stakeholder management and communication skills Collaborative team player with a proactive ...

Experience onboarding new technologies from a security perspective • Exposure to AI, cloud, SaaS, or enterprise technology transformation programmes • Strong understanding of security operations, monitoring, incident response, and cloud security • Experience operating across both architecture and hands-on delivery • Ability to work with senior stakeholders across technical and business ...

ownership from day one. You work across a global on-prem infrastructure spanning multiple data centres, handling bare-metal and Kubernetes environments. Performance monitoring, incident response, storage, databases, testing, and continuous platform improvement using open-source tooling are all part of your day. Latency is measured in microseconds ...

vendor management strategy, including FM providers and specialist contractors Ensure SLA adherence for hyperscale and enterprise customers Implement and maintain operational frameworks including SOPs, incident response, change management, and risk mitigation Lead compliance, audits, and certifications (ISO standards, regulatory requirements) Partner cross-functionally with engineering, development, and commercial ...

core M365 services via the M365 Admin Center, including Teams, SharePoint Online, OneDrive, Co-pilot and relevant areas of Entra ID. - Monitor service health, incident response, and change notifications from the Microsoft 365 Message Centre. - Assist with the implementation and maintenance of security & compliance settings such as retention ...

respond to security alerts, analyze real-time data, and provide swift, reliable communication to key stakeholders during incidents. The role also includes creating detailed incident reports, conducting risk assessments, and collaborating with teams to ensure the safety and security of personnel, assets, and operations. Qualifications Proficiency in monitoring security … systems, assessing risks, and implementing security protocols. Strong analytical and problem-solving skills for real-time data analysis and incident response. Excellent communication skills for stakeholder coordination and report writing. Knowledge of digital tools and software used in security operations room environments. Proven ability to work calmly and efficiently ...