21 of 21 Permanent Incident Response Jobs in Central London

with global impact upon Colt, business units, partners, and customers. While working as part of this team, the successful individual will provide world class incident response functions to detect, protect, respond, and sustain operations within cyberspace. Job description: Support SOC Manager to deliver the followingSIEM, IR tools platform … activities, Technology escalation support, Security Solution assessment, build activities , existing Service maturing and Build activities assist Analyse potential infrastructure security incidents to determine if incident qualifies as a legitimate security breach Establishing and governing the security incident response processes, investigations and security operational processes. Maintenance and enhancement

posture through continuous monitoring and analysis. Key Responsibilities Investigate and respond to cyber security incidents, including malware outbreaks, phishing attempts, and insider threats. Lead incident response efforts and conduct digital forensics. Enhance detection and response capabilities through process improvements and automation. Monitor alerts from SOC tools … perform root cause analysis. Collaborate with IT and security teams to remediate vulnerabilities. Gather and analyse threat intelligence to inform detection strategies. Maintain detailed incident records and conduct post-incident reviews. Technical Skills Hands-on experience with SIEM, EDR, IDS/IPS, and SOAR platforms. Strong knowledge

Company description: As the Lead - SOC Incident Manager, your role will encompass communicating cybersecurity incidents to key partners across the enterprise as well as being the main interface between the Colt business units and the cybersecurity groups. You will be the subject matter expert responsible for coordinating cyber security … incidents across the enterprise. Job description: You will play a key role within the SOC to manage incidents: Coordinate response efforts to cyber security incidents caused by internal and external threats to reduce the impact of these incidents to Colt and its customers. Act as the bridge between

technical environments. Stay current with emerging threats, regulatory changes, and industry best practices in risk management, compensating controls, and evolving enterprise technologies. Assist with incident response planning and post-incident risk evaluation, leveraging broad technical knowledge to assess impacts and recommend improvements. Qualifications/Skills Required Demonstrated

Cyber Security, Computer Science, or equivalent experience. Proven experience within a SOC (Security Operations Centre) or NOC (Network Operations Centre). Strong understanding of incident response methodologies and the MITRE ATT&CK framework. Experience using SIEM, IDS/IPS, vulnerability scanners, and Azure security tools. Technical expertise … Microsoft Defender, EDR (Endpoint Detection and Response), and network architecture. Practical experience managing cyber incidents and implementing secure configurations. Excellent analytical and problem-solving skills, with clear documentation and communication abilities. Familiarity with NIST, ISO 27001, and CIS Controls frameworks. Ability to work under pressure, prioritise effectively, and maintain

industry experience in a similar role, in a technical environment. Good understanding of security principles, technologies, and best practices, including threat detection and security incident response processes. Experience implementing security in AWS environments (in the main) , including proactive configuration of AWS accounts and assets to meet good security

. Proficient in Azure Monitor, Log Analytics, Application Insights, cost management and optimisation, resource tagging strategies, and maintaining platform availability through proactive monitoring and incident response. Infrastructure as Code (Terraform) - Strong working knowledge of Terraform for provisioning and managing Azure infrastructure including writing and maintaining Terraform modules for Azure … high availability architectures using Availability Zones, Azure Load Balancer, Azure Application Gateway, VM Scale Sets, and conducting DR tests to ensure business continuity. Collaboration & Incident Response - Strong team player with experience working across DevOps, infrastructure, security, and development teams. Skilled in incident management and managing status dashboards

including Data Protection Impact Assessments. Manage compliance and supplier security controls. Oversee penetration testing and manage vulnerability fixes. Develop and test the company's incident response plan. Support the secure implementation of new AI-driven tools. Lead, coach, and support a small technical team. Requirements 2+ years

mature security function responsible for global operational security across IT infrastructure and business applications – including privileged access management, threat protection, threat detection and incident management. Working closely with the IT Security Manager, you will help ensure security services are delivered effectively and that core controls remain fully operational … with technologies such as SIEM, PAM, Endpoint Protection, EDR, IPS/IDS, MFA, Encryption and Next Gen Firewalls Experience supporting cyber security event triage, incident response and recovery Strong knowledge of operational security management and tooling This role offers the chance to work in a highly regulated, security

complex cybersecurity concepts into clear, actionable guidance. Assess client cyber risks and recommend practical mitigation strategies. Draft policies and procedures to enhance resilience and incident response. Evaluate vulnerabilities in systems, networks, and supply chains. Manage projects and coordinate team efforts to deliver high-quality outcomes. Prepare detailed client reports

part of an on-call rota, ready to respond if we have a severe, platform-impacting security tooling failure or need second-line security incident response assistance Desirable You have an interest in offensive security, potentially including participation in CTFs and past experience as a red team operator

suits a dependable, punctual AV professional with strong technical understanding and a passion for delivering excellent user experiences in high-profile environments. Key Responsibilities Incident Response & User Support Act as the first line of response for all AV incidents and requests. Troubleshoot and resolve AV and video

clear path toward partnership or leadership, this is that moment.What You'll Do Lead and manage a caseload of complex data-breach and cyber-incident matters, including live ransomware events and regulatory investigations. Act as a trusted adviser during active crises — providing clear, strategic legal guidance under pressure. Supervise … junior lawyers while helping shape the direction of the team. Work alongside leading experts in digital forensics and threat intelligence to deliver fully integrated incident response. Contribute to new products, knowledge, and thought leadership in a rapidly evolving field. Support business development and client-relationship initiatives that will accelerate

system reliability, security, and uptime across multi-cloud setups. Develop internal tools and scripts in Python, Go, or Node.js. Collaborate on architecture, deployments, and incident response. Requirements 5+ years in DevOps or infrastructure engineering. Strong with Docker, Kubernetes, Terraform, AWS/GCP. Scripting in Python/Go/Node.js

Business Resilience, Business Continuity, and Third-Party Risk frameworks. Oversee critical third-party relationships, especially in technology and enterprise services. Deliver scenario testing, incident response, and regulatory reporting that informs senior leadership. Collaborate with internal teams, clients, and market stakeholders to ensure preparedness and compliance. We’re looking

security testing experience Knowledge of Metasploit, Burp Suite, and vulnerability scanning tools Experience with Windows, Linux and Mac operating systems Interest in threat hunting, incident response, and security monitoring CRT/OSCP/Cyber Scheme training or aspirations to achieve them Eligibility for UK Security Clearance

security testing experience Knowledge of Metasploit, Burp Suite, and vulnerability scanning tools Experience with Windows, Linux and Mac operating systems Interest in threat hunting, incident response, and security monitoring CRT/OSCP/Cyber Scheme training or aspirations to achieve them Eligibility for UK Security Clearance

helping drive a full transition to cloud identity.Maintain and optimise Group Policies and Azure Virtual Desktop (AVD) environments.Troubleshoot complex infrastructure issues and lead structured incident response.Support post-acquisition IT integrations, ensuring secure and scalable outcomes.Monitor system health, produce performance reports, and proactively optimise infrastructure.Maintain up-to-date technical documentation

various sectors. We are interested in candidates with experience in one or more of the following: Data protection/GDPR Privacy compliance Cybersecurity or incident response Technology, digital, or regulatory advisory work If you are considering a move within data privacy or cybersecurity, please apply with your most

with global impact upon Colt, business units, partners, and customers. While working as part of this team, the successful individual will provide world class incident response functions to detect, protect, respond, and sustain operations click apply for full job details

London. Responsibilities: Maintain, support, and optimise core TFP applications. Develop custom tools and features to enhance system functionality. Monitor performance, troubleshoot issues, and lead incident resolution. Manage SLAs, service performance metrics, and continuous improvement initiatives. Provide responsive technical support to business users. Drive automation and proactive issue detection through … share knowledge across IT. Skills & Experience: Experience in Application Operations within a Microsoft Azure environment essential. Strong knowledge of Azure services, monitoring, and incident response. Strong working background within a Microsoft tech stack including C# .net. Background in automation and performance optimisation. Excellent communication, problem-solving, and cross-team