12 of 12 Contract Incident Response Jobs in London

client is seeking a SOC Analyst to join a security operations team in London. The role is focused on real-time monitoring, investigation, and incident response across a modern enterprise security environment. Key Responsibilities Monitor, triage, and respond to security alerts across multiple platforms, including Microsoft and endpoint … Optimise and tune detection rules, policies, and alerting mechanisms to improve SOC efficiency. Collaborate with internal teams to support security operations, threat analysis, and incident recovery. Produce clear incident documentation, reports, and recommendations for continuous improvement. Contribute to maintaining and enhancing SOC processes, runbooks, and operational workflows. Required ...

client is seeking a SOC Analyst to join a security operations team in London. The role is focused on real-time monitoring, investigation, and incident response across a modern enterprise security environment. Key Responsibilities Monitor, triage, and respond to security alerts across multiple platforms, including Microsoft and endpoint … Optimise and tune detection rules, policies, and alerting mechanisms to improve SOC efficiency. Collaborate with internal teams to support security operations, threat analysis, and incident recovery. Produce clear incident documentation, reports, and recommendations for continuous improvement. Contribute to maintaining and enhancing SOC processes, runbooks, and operational workflows. Required ...

posture aligns with business objectives, regulatory requirements, and recognised industry standards. The Information Security Officer will own security strategy, risk management, policy development, and incident response, while promoting security awareness across the organisation. Key Responsibilities Develop and maintain an organisation-wide information security strategy. Establish and enforce security … policies, standards, and governance processes. Lead incident response and manage security breaches. Ensure compliance with relevant laws, regulations, and security frameworks. Embed security into risk management, application development, and operational processes. Report on security risks and programme performance to senior leadership. Support supplier assurance, audits, penetration testing ...

/CD pipelines and DevOps practices Solid understanding of IAM, PAM/PIM solutions, and SSL/TLS policy implementation Proven experience in incident response and troubleshooting Nice to have: Knowledge of cloud security (Azure or GCP) Experience integrating SIEM platforms Understanding of Zero Trust architecture ...

transformation approach focused on a complete overhaul , not iterative improvement. Greenfield SOC Build Oversee the creation of a full SOC capability including monitoring, incident response, digital forensics, analytics, and automation. Lead the consolidation and modernisation of a complex, fragmented tool and technology landscape. Ensure minimal disruption to operational ...

Manage and optimise Microsoft Defender across Endpoint, Identity, Cloud Apps, Office 365, and Cloud Security Posture Management. Monitor alerts and conduct threat investigations. Support incident response with containment and remediation. Conduct proactive threat hunting. Platform administration and governance Configure policy baselines and protection profiles. Maintain governance and compliance … Security teams. Provide security insights to projects. Produce reporting for stakeholders. Identify automation and workflow enhancements. Essential Skills Strong experience with Microsoft Defender platforms. Incident investigation skills across endpoint, identity, and cloud. Understanding of Microsoft 365, Azure, and Zero Trust. Skilled in ASR rules, AV baselines, and KQL analytics. ...

under contract. The internal security function is responsible for setting policy, direction, assurance, and defining outcomes, while suppliers execute day-to-day monitoring and response activities. The role is critical in supporting the mobilisation and maturation of the SOC capability, addressing challenges in standing up and operationalising the function … complex, multi-supplier environment. Key Responsibilities Lead and manage day-to-day security operations for the delivery of the ESN solution. This will include incident response planning, vulnerability assessment and planning for the target architecture, and threat monitoring. Support the on-going security operations activities, work with various ...

Collaborate with data scientists to ensure that models are production ready. Implement security, compliance, and governance practices for machine learning systems. Support troubleshooting and incident response for deployed ML systems. Your Profile Essential Skills/Knowledge/Experience Strong programming skills in Python; experience with ML libraries such ...

under contract. The internal security function is responsible for setting policy, direction, assurance, and defining outcomes, while suppliers execute day-to-day monitoring and response activities. The role is critical in supporting the mobilisation and maturation of the SOC capability, addressing challenges in standing up and operationalising the function … complex, multi-supplier environment. Key Responsibilities Lead and manage day-to-day security operations for the delivery of the solution. This will include incident response planning, vulnerability assessment and planning for the target architecture, and threat monitoring. Support the on-going security operations activities, work with various suppliers ...

Business Continuity, Operational Resilience, Disaster Recovery, Incident & Crisis Management Consultant Outside of IR35. Hybrid working - 3 days per week Our client, a leading financial services organisation based in the City of London is looking to hire an experience Business Continuity Consultant. The outcome of the assignment will lead … preparation for the PRA DyGIST exercise in May 26. The successful candidate will provide leadership, coordination, and delivery oversight for our clients Business Continuity, Incident and Crisis Management framework to deliver a validated and operationally ready Business Continuity and Crisis Management framework. This assignment has been deemed outside ...

baseline; Azure/GCP to be evaluated) and interconnection locations (carrier-neutral DCs/IX presence). Deliverables or KPIs (e.g. uptime %, response times, resolution targets, etc) Target Architecture Document for cloud edge and DMZ hosting (including diagrams, logical and physical topology). Hybrid Connectivity Design Principles and Standards … Network performance engineering (capacity planning, QoS, traffic engineering). Security Expertise Firewalls, VPNs, IDS/IPS, secure segmentation, Zero Trust architecture. Threat detection/response, SIEM integration, incident response. Compliance frameworks (ISO 27001, NIST, GDPR). Cloud & Hybrid Networking AWS/Azure/GCP networking (VPC/VNet ...

government environments. 2. Creation of the SOC Capability Build out the full operational capability, including monitoring, detection engineering, cyber analytics, threat intelligence, forensics, and incident response. Lead the selection, integration, and alignment of tools, platforms, and cloud-native services into a unified security ecosystem. Embed automation-first … enhanced approaches to uplift detection, response speed, and operational resilience. 3. Security Governance, Assurance and Risk Ownership Provide authoritative leadership across cyber risk, operational assurance, investigative processes, and security governance frameworks. Ensure the SOC supports stringent data protection, identity management, and access control requirements, including PIM/PAM. Develop ...