16 of 16 Contract Incident Response Jobs in London

Case Development: Develop and refine detection rules based on threat intelligence and attack patterns Continuously improve detection efficacy and reduce false positives Security Monitoring & Incident Response: Monitor systems for anomalies and malicious activity Contribute to threat hunting and incident response playbooks Provide expert guidance on securing

Case Development: Develop and refine detection rules based on threat intelligence and attack patterns Continuously improve detection efficacy and reduce false positives Security Monitoring & Incident Response: Monitor systems for anomalies and malicious activity Contribute to threat hunting and incident response playbooks Provide expert guidance on securing

other engineers. Monitoring and Operational Excellence: Implement and manage monitoring, logging, and alerting solutions (e.g., Prometheus, Grafana, Stackdriver) to ensure high availability and proactive incident response for all hybrid infrastructure. Required Skills & Qualifications Experience: 5+ years of experience in a DevOps, SRE, or Platform Engineering role. GCVE Expertise

Analyzer) to reduce exposure and prevent repeat issues. Produce clear remediation guidance, runbooks, and reporting dashboards for both technical and non-technical stakeholders. Support incident response and post-remediation validation where high-risk findings are exploited or trending. kills & Experience AWS/Cloud Security Deep, hands

Manage and optimise Microsoft Defender across Endpoint, Identity, Cloud Apps, Office 365, and Cloud Security Posture Management. Monitor alerts and conduct threat investigations. Support incident response with containment and remediation. Conduct proactive threat hunting. Platform administration and governance Configure policy baselines and protection profiles. Maintain governance and compliance … Security teams. Provide security insights to projects. Produce reporting for stakeholders. Identify automation and workflow enhancements. Essential Skills Strong experience with Microsoft Defender platforms. Incident investigation skills across endpoint, identity, and cloud. Understanding of Microsoft 365, Azure, and Zero Trust. Skilled in ASR rules, AV baselines, and KQL analytics.

also translated into actionable insights and long-term improvements across the business. Skills required from the Security Analyst: Proven experience in a Security Analyst , Incident Response , or SOC environment (2nd line or similar). Strong hands-on experience in threat investigation, log analysis, and remediation . Good understanding … management and relevant stakeholders. Advise on security best practices and improvement initiatives across systems, networks, and processes. Contribute to ongoing development of detection, response, and monitoring capabilities. Support reviews and recommendations around security toolsets, processes, and automation opportunities. The Security Analyst can work fully remote for the duration

successful candidate will play a key role in assessing risks, reviewing supplier and project security documentation, responding to security questionnaires and tenders, supporting incident investigations, and helping to maintain security posture and compliance with relevant standards (Cyber Essentials Plus, ISO 27001, DSPT, GDPR, NCSC). This is a hands … equivalent experience. Experience working in healthcare, charity, or public sector environments. Familiarity with NCSC CAF and NHS DSPT frameworks. Experience working with SOCs and incident response partners. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only

expert guidance on cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Develop and enforce security policies, standards, and best practices. Lead incident response and root cause analysis for security-related issues. Mentor and train teams on DevSecOps principles and tools. Contract: 6 Months Rolling Rate

expert guidance on cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Develop and enforce security policies, standards, and best practices. Lead incident response and root cause analysis for security-related issues. Mentor and train teams on DevSecOps principles and tools. Contract: 6 Months Rolling Rate

Deliver timely, high-quality threat briefings and risk assessments to operational stakeholders. Drive continuous improvement of threat intelligence processes, tooling, and automation. Participate in incident response investigations, providing threat context and attribution support. Maintain awareness of global regulatory and compliance requirements related to threat intelligence and offensive security

architecture, implementation, hardening, and continuous improvement of Linux operating systems, platform services, and supporting infrastructure to ensure performance, scalability, and operational excellence. Drive incident and problem management: Take ownership of high-severity incident response, advanced troubleshooting, root-cause analysis, and long-term remediation. Establish engineering best practice

areas. Manage the ISO 27001 certification lifecycle - including audits, remediation, and recertification. Collaborate with technical and product teams to embed security standards and oversee incident response procedures. Drive measurable improvements in risk reduction and compliance maturity through strong audit oversight and playbook management. Digital & Clinical Safety Partner with … working with SIROs, Caldicott Guardians, DPOs, and certification bodies. Knowledge of international regulatory frameworks and multi-site operations. Experience with DCB0129/0160 standards, incident management, and external inspections. *Rates depend on experience and client requirements

Cisco, etc.) Strong background in network security, traffic flows, segmentation, and application security Understanding of OWASP, threat mitigation, and secure configuration principles Experience in incident response, troubleshooting, and performance tuning Excellent communication and documentation skills Click apply to be considered.

validated through automated pipelines. Embed privacy controls and assurance checks within CI/CD workflows, supporting continuous compliance and proactive risk detection. Incident Response & Coaching Act as the primary privacy SME for delivery and platform teams during privacy incidents or investigations. Provide technical insight during incident triage

Business Continuity, Incident & Crisis Management ConsultantLeading Finance company Outside of IR35. Hybrid working - 3 days per week Our client, a leading financial services organisation based in the City of London is looking to hire an experience Business Continuity Consultant. The outcome of the assignment will lead the organisation … preparation for the PRA DyGIST exercise in May 26. The successful candidate will provide leadership, coordination, and delivery oversight for our clients Business Continuity, Incident and Crisis Management framework to deliver a validated and operationally ready Business Continuity and Crisis Management framework. This assignment has been deemed outside

virtualisation (VMware/vSphere, etc.) Configure/manage SAN/storage, Fibre Channel, zoning, LUN provisioning Participate in vulnerability assessments, patches, security hardening, and incident response Required Skills & Experience NPPV3 clearance, either current or active within the last 12 months (non-negotiable) Strong track record with Windows