17 of 17 Contract Incident Response Jobs in London

This is an initial 6 month contract paying up to £600 per day Outside IR35. The role focuses on supporting security operations monitoring and incident response activities within a large enterprise environment. This role allows remote working with occasional travel to London when required. The successful SOC Analyst … cyber security incidents and responding appropriately • Working with SIEM platforms such as Splunk, Sentinel or QRadar • Conducting threat analysis and triaging security alerts • Supporting incident response and remediation activities • Working with security engineering teams to improve detection capabilities Experience within financial services, fintech or other regulated environments would ...

hybrid working mode. In this role, you will lead the Security Operations Center's day-to-day functions, focusing on operational excellence in incident management and response. This position ensures round-the-clock coverage, drives team performance, and maintains a high standard for incident handling and escalation. … providing leadership in Real Time threat detection and response, you will strengthen organizational resilience and safeguard critical systems against evolving cyber threats. Responsibilities Lead and oversee incident management and response processes within the SOC Manage shift coverage, ensuring continuous and effective operation Monitor and analyze key performance ...

Cyber Security Consultant - Incident and Vulnerability Management +6 months + +1 day a week on site in London/Preston/Birmingham - 4 days WFH +Inside IR35 + 550 - 580 a day +SC cleared role - must have current active clearance +Sole British nationals only due to nature … project Role Description: Security Incident & Vulnerability Management Consultant (Operational Integrator/SIAM - Transition Role) UK Sole National ONLY Security Clearance required Role Summary The Security Incident & Vulnerability Management Consultant operates within the Operational Integrator (OI) function to support the transition to a multi-supplier (SIAM) model within ...

firm's technology environment which includes Microsoft Defender & Sentinel. Key Responsibilities: * Monitor security event identification via the third-party security operations service. * Coordinate incident response activities including containment, evidence collection, documentation, and recovery support. * Contribute to threat hunting activities using KQL queries and intelligence-led techniques. * Support … maintain and tune Microsoft Defender, Sentinel, and Purview policies, analytics rules, alerts, and workflows. * Support the development, testing, and maintenance of automated playbooks and response actions (e.g., Logic Apps). * Verifying compliance with expected practice in the operation of technology services, including security baseline and access right reviews. * Support ...

execution of cyber security across a global environment. This is a high-impact role reporting to the CTO, with responsibility for security operations, risk, incident response, and overall security maturity across the business. Key Responsibilities Lead global IT and product security Own risk management, SOC, and incident response Drive security strategy, governance, and awareness Deliver key programmes (cloud, identity, vulnerability management) Engage at C-suite level , translating risk into business decisions Build and lead a high-performing security team What We're Looking For Proven leadership in enterprise cyber security environments Strong background across multiple ...

security posture. SIEM Mastery: Collaborate with our SOC partner to design and optimise Splunk dashboards, alerts, and data models to identify sophisticated threats. Incident Response: Act as a technical escalation point for high-priority security incidents, utilising EDR and SIEM tools to enable rapid containment. Automation: Develop Security … Orchestration, Automation, and Response (SOAR) workflows to minimise manual intervention and enhance response times. Threat Hunting: Proactively search for undetected malicious activity using specialised queries. Training: Enhance the CrowdStrike, Splunk, and security analysis skills of the existing team, providing opportunities for professional development and leadership. Qualifications – Essential ...

SIEM: Collaborate with our SOC partner to design and optimise Splunk dashboards and alerts, turning raw data into actionable intelligence to combat sophisticated threats. Incident Response: Act as a technical escalation point for high-priority security incidents, employing EDR and SIEM tools for swift containment. Automate Security Processes … Develop Security Orchestration, Automation, and Response (SOAR) workflows to minimise manual intervention and enhance response efficiency. Conduct Threat Hunting: Utilise specialised queries to proactively identify undetected malicious activities within the environment. Train the Team: Elevate the skill level of the existing team in CrowdStrike, Splunk, and security analysis. ...

implement a pragmatic, business aligned security roadmap Lead GRC, security operations and architecture oversight Drive improvements across identity & access management, cloud security and incident response Act as the senior escalation point for security incidents and risk decisions Engage with C-suite and board stakeholders, providing clear, commercially focused ...

hold active SC or DV clearance and have a proven background in Cyber Security, with the following skills and experience: Experience in SOC operations, incident response, and forensic analysis. Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System ...

Island Secure browser). You will explore opportunities to automate & enhance efficiency of systems. The Infrastructure & Enterprise Systems Engineer will be taking care of incident queues and will need to collaborate with business leaders and end users. A key focus of this role is leveraging PowerShell and Agentic … enhance system reliability & efficiency. Occasional London office visit, but mostly remote working. • Core Infrastructure Management: • Modern Workspace & Secure Access: • Advanced Automation & AI Agent Development: • Incident Response & Optimization: Essential: • Extensive experience in IT Operations & engineering, Systems Administration, or a related role with a focus on automation. • Operating Systems: Proficient ...

policies. Deep understanding of integrating and optimizing monitoring, logging, and alerting solutions (Azure Monitor, Log Analytics, and Sentinel) to enhance operational visibility and support incident response. Experience in defining, maintaining, and owning the technical strategy and roadmap for services.. Proven ability to lead technical design initiatives across multiple domains ...

responding to security threats across a Microsoft security stack. Key Skills: Microsoft Sentinel Microsoft Defender Suite KQL (Kusto Query Language) SIEM Engineering & Security Monitoring Incident Response & Threat Detection Previous experience within financial services or investment banking environments is highly desirable. Please apply directly or email Many thanks ...

infrastructure teams to troubleshoot production issues Automate routine administration tasks through scripting and tooling Ensure compliance with security, governance and regulatory standards Participate in incident response and on-call support for production systems What we’re looking for Strong experience in Oracle DBA administration, including ...

Proven experience extending Kubernetes with higher-level platforms and services , not treating it as the finished product Strong understanding of operational fundamentals: monitoring, logging, incident response, reliability, and maintenance Comfortable working directly with engineers and data scientists to support real production workloads MLOps experience (key to the role ...

standards DCB0129 and DCB0160, and NHSE governance. You will lead hazard analysis, determine Safety Assurance Levels, develop and review Clinical Safety Cases, and support incident investigations. Your expertise will help embed clinical safety into agile and user-centred design practices, working closely with clinical, technical, and leadership teams … applying DCB0129, DCB0160, and NHSE governance Hands-on digital health delivery experience in NHS or similar settings Expertise in hazard workshops, risk assessment, and incident response Familiarity with digital health architectures, interoperability, and emerging tech risks Strong stakeholder management and communication skills Collaborative team player with a proactive ...

design architecture Own RBAC, audit trails, anonymisation, and access policies Translate legal and governance rules into technical controls Own CI/CD, monitoring, incident response, SLAs Ensure platform runs on a predictable monthly data cycle Manage cost optimisation and scaling Lead onboarding of external partners (asset owners) Communicate ...

Strong knowledge of ServiceNow and CMDB, particularly in relation to resilience and service mapping. Familiarity with cyber resilience and alignment between DR and security incident response. Strong documentation skills, with the ability to create clear recovery plans, playbooks, and operational procedures. Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio ...