20 of 20 Contract Incident Response Jobs in London

selection, design, and transition from fragmented security tooling to a unified SIEM platform and security data lake . Drive a fundamental shift from incident-focused, task-based workflows to preventative security activities and platform optimisation . Proactive Threat Focus Guide the evolution from reactive alert handling to proactive threat … prompt injection, data poisoning, and model theft . Deploy and monitor “guardian agents” to provide real-time detection of malicious behaviour within AI systems. Incident Response & Resilience Guide the development, testing, and maintenance of advanced incident response plans , with a focus on high-impact threats such ...

client is seeking a SOC Analyst to join a security operations team in London. The role is focused on real-time monitoring, investigation, and incident response across a modern enterprise security environment. - Key Responsibilities Monitor, triage, and respond to security alerts across multiple platforms, including Microsoft and endpoint … Optimise and tune detection rules, policies, and alerting mechanisms to improve SOC efficiency. Collaborate with internal teams to support security operations, threat analysis, and incident recovery. Produce clear incident documentation, reports, and recommendations for continuous improvement. Contribute to maintaining and enhancing SOC processes, runbooks, and operational workflows. Required ...

Case Development: Develop and refine detection rules based on threat intelligence and attack patterns Continuously improve detection efficacy and reduce false positives Security Monitoring & Incident Response: Monitor systems for anomalies and malicious activity Contribute to threat hunting and incident response playbooks Provide expert guidance on securing ...

Cyber Defence team. Mentor senior leaders within the function, enhancing efficiency, leadership capability, and stakeholder engagement. Review, refine, and where necessary implement improvements to Incident Response plans and operational processes. Support delivery of the broader CISO cyber programme. Develop and enhance operational and performance reporting, including KPIs, metrics … Security Operations function within a large, complex global organisation. Strong operational background with proven ability to stabilise, mentor, and uplift teams. Deep understanding of incident response, cyber operations, and performance management. Confident operating at senior stakeholder level, including CISO and executive audiences. This is a high-impact interim ...

perspective Identify vulnerabilities, weaknesses, and control gaps Drive hardening across Azure, networks, and hybrid workloads Strengthen segmentation, firewall policy, identity security, and logging Support incident-driven remediation and resilience improvements Required Experience Strong hands-on infrastructure/platform engineering background Azure & hybrid cloud security expertise Network security & segmentation (firewalls … Experience with enterprise security controls & remediation Ability to perform deep technical analysis Clear stakeholder communication Security Analyst (Contract) Focus: Detection, Response & Optimisation Key Responsibilities Advanced Microsoft Defender analysis & optimisation Write, tune, and troubleshoot KQL queries Investigate alerts and support incident response workflows Liaise with SOC & technical teams ...

expectations, and readiness for an AEMI application . Key Responsibilities Security Policy & Procedure Audit: Conduct detailed reviews of existing security documentationincluding Access Control, Incident Response, and DLP policiesto validate alignment with industry and regulatory standards. Cyber Essentials Plus Leadership: Lead the end-to-end readiness process, performing ...

.NET. • Experience with Agile ways of working. • Experience with a Microsoft Azure based environment. • Experience in the Financial Services sector. • High level support with incident response and troubleshooting. • Eagerness to learn and improve interpersonal skills. Junior C# Developer Key Responsibilities: • Triaging and resolving technical queries. • Build and maintain ...

SQL. Experience with Agile ways of working. Experience with a Microsoft Azure based environment. Experience in the financial Services sector. High level support with incident response and troubleshooting. Eagerness to learn and improve interpersonal skills. Junior C# Developer Key Responsibilities: Triaging and resolving technical queries. Build and maintain ...

SQL. Experience with Agile ways of working. Experience with a Microsoft Azure based environment. Experience in the financial Services sector. High level support with incident response and troubleshooting. Eagerness to learn and improve interpersonal skills. Junior C# Developer Key Responsibilities: Triaging and resolving technical queries. Build and maintain ...

SQL. Experience with Agile ways of working. Experience with a Microsoft Azure based environment. Experience in the financial Services sector. High level support with incident response and troubleshooting. Eagerness to learn and improve interpersonal skills. Junior C# Developer Key Responsibilities: Triaging and resolving technical queries. Build and maintain ...

implementing a robust cyber security strategy aligned with national standards and local government best practice. The postholder will oversee risk management, compliance, and incident response, ensuring the resilience of critical services and the protection of sensitive information. Acting as the Council's subject matter expert, the Cyber Security ...

months| Inside IR35 You'll be responsible for: Leading and shaping the council's cyber security strategy and risk management approach. Supporting incident response, vulnerability management, and security monitoring. Advising on compliance with GDPR, NCSC guidance, and local-authority frameworks. Working closely with IT, digital, and senior leadership ...

best practices. Establish roadmaps for enhanced operational efficiency. Educating teams in SRE practices and maintaining high standards of compliance. Lead automation initiatives for incident response and self-healing, paving the way for autonomous operations. Work with cross-functional teams to ensure systems are scalable, resilient, and maintainable. Drive … incident management and root cause analysis through automation for continuous improvement. Requirements: Must have experience being a SRE lead. Strong experience in cloud platforms AWS and Azure Strong experience with Datadog and Dynatrace. Experience with Python and Ansible Experience with Docker and Kubernetes Attention to detail and ability ...

such as ISO 27005 and NIST . Review third-party and cloud service provider integrations to ensure appropriate technical and contractual security controls. Support incident response planning and vulnerability management. Define ITHC scope, coordinate penetration testing activities, and prepare pre-assessment documentation. If this is of interest please ...

data protection. Recommend and review security controls for cloud-native environments. Provide guidance on secure coding practices and advisory support for code reviews. Support incident response planning and vulnerability management during development. Review and advise on third-party integrations, ensuring appropriate technical and contractual safeguards. Provide assurance that ...

service owner, ensuring availability, performance, compliance and continuous improvement of the Proxy platform. Develop secure, standards-aligned designs and operating models (patching, DR, capacity, incident response) in line with ISO/NIST frameworks. Support business-as-usual operations through on-call cover, patching, cross-team collaboration and audit ...

deployments with optimised performance and cost controls. Effective service health monitoring via ITSI (accurate KPIs, glass tables, deep dives). Reduced alerting noise, improved incident response through enriched routing and automation. Strong governance, security compliance, and traceability in data ingest/observability pipelines. This role is ideal ...

Networking (either one of the following) EVPN Segment routing (although I would accept someone with significant MPLS depth on their resume) Key Responsibilities Lead Incident Management: Own and resolve critical network incidents, manage outages, andprovideexpert guidance during high-pressure situations. Advanced Troubleshooting: Diagnose and resolve complex issues across routing ...

reliability, performance, and operational excellence of Snowflake + dbt workloads on AWS. Reliability for Snowflake + dbt workloads. Migration reliability engineering. Monitoring, alerting, dashboards. Incident ownership & RCA. Required Skills/Experience The ideal candidate will have the following: AWS core services expertise (EC2, S3, IAM, VPC, CloudWatch, Lambda). … Snowflake operations, tuning, cost governance, incident response. dbt operations & model dependency debugging. Observability with Grafana/Prometheus/Datadog/Splunk. CI/CD with Terraform, GitLab/Jenkins. Strong SRE fundamentals: SLO/SLA/Error Budgets, RCA, automation. Desirable Skills/Experience Although not essential, the following ...

join our global network operations team. This role is critical in ensuring the reliability, scalability, and performance of our network infrastructure. You will lead incident responses, troubleshoot complex issues, and drive automation initiatives to maintain world-class network services. Required Skills: Minimum 10 years’ hands-on experience in network …/Nautobot Prometheus/VictoriaMetrics Salt Networking (either one of the following) EVPN Segment routing (significant MPLS depth can be considered) Key Responsibilities Lead Incident Management: Own and resolve critical network incidents, manage outages, and provide expert guidance during high-pressure situations. Advanced Troubleshooting: Diagnose and resolve complex issues ...