IncidentResponse Assistant Manager (Client facing) Hybrid/flexible on location - London, Manchester, Birmingham, ect £50k – £60k A global Risk consultancy is looking for Strong IncidentResponse professionals to join their Cyber Response Team, within an area of huge growth and investment. This is an excellent opportunity for exposure and growth! If you’re looking … for the next step in your incidentresponse career, we’d love to talk to you. Day to day Responsibilities of an IncidentResponse Assistant Manager Manage cyber security incidents for clients, including digital forensics of relevant data Act as an advisor to clients on current cyber threats Liaise with clients on delivery and implementation Requirements … for an IncidentResponse Assistant Manager Broad knowledge and understanding across the cyber security landscape to be able to act as an advisor on the threat landscape Strong technical background (networks and programming knowledge) Proven experience working within Incident management and response Excellent communication both written and verbal. Incident Management Certifications are not necessary but More ❯
london (city of london), south east england, united kingdom
LT Harper - Cyber Security Recruitment
IncidentResponse Assistant Manager (Client facing) Hybrid/flexible on location - London, Manchester, Birmingham, ect £50k – £60k A global Risk consultancy is looking for Strong IncidentResponse professionals to join their Cyber Response Team, within an area of huge growth and investment. This is an excellent opportunity for exposure and growth! If you’re looking … for the next step in your incidentresponse career, we’d love to talk to you. Day to day Responsibilities of an IncidentResponse Assistant Manager Manage cyber security incidents for clients, including digital forensics of relevant data Act as an advisor to clients on current cyber threats Liaise with clients on delivery and implementation Requirements … for an IncidentResponse Assistant Manager Broad knowledge and understanding across the cyber security landscape to be able to act as an advisor on the threat landscape Strong technical background (networks and programming knowledge) Proven experience working within Incident management and response Excellent communication both written and verbal. Incident Management Certifications are not necessary but More ❯
per week required in the office. Reporting into the Security Operations Centre Senior Manager, the role will take the lead across the EMEA region to develop and integrate the IncidentResponse (IR)/SOC security infrastructure to monitor both on premise and cloud environments. The role will serve as a critical bridge between operations and engineering. Responsibilities: - Drive … and improve continuous monitoring and incidentresponse, serving as a senior resource in the SOC and IncidentResponse processes. - Configure and integrate platforms, tools, service providers, and solutions into IR/SOC systems, make recommendations as needed. - Consolidate and improve security logging and monitoring solutions on premise and in the cloud to detect and respond to … security threats in real time. - Drive efforts to automate and accelerate the detection and response processes. - Ensure integration of input from the deployed suite of security tools to SOC systems (e.g. SIEM/SOAR), including, but not limited to, IDS/IPS, End Point Protection, MDR/XDR, PAM, MFA, DNS Security, and cloud security posture management. Required Skills More ❯
City of London, London, United Kingdom Hybrid / WFH Options
Iceberg
Role: As a Cyber Security Manager, you will be responsible for monitoring, analyzing, and improving the security posture of the organization. You will drive the maturity of security monitoring, incidentresponse, and threat intelligence capabilities, working closely with technical and business teams. Key Responsibilities: Develop and refine security monitoring controls and use-cases to detect threats and anomalies. … Investigate security incidents, conduct forensics analysis, and manage incidentresponse processes. Collaborate with independent penetration testing programs and support risk assessment processes. Implement and mature threat intelligence capabilities and integrate with security monitoring frameworks. Develop and oversee vulnerability management programs, ensuring alignment with industry standards. Provide subject matter expertise on cyber security frameworks, including NIST, MITRE ATT&CK … and Kill Chain methodologies. About You: Proven experience in Cyber Security, with a focus on incidentresponse, security monitoring, and threat intelligence. Strong knowledge of security technologies, including SIEM tools, network security, IAM solutions, and DLP tools. Hands-on experience with incident investigation tools and network protocol analysis (e.g., Wireshark). Familiarity with cloud security assessments and More ❯
london (city of london), south east england, united kingdom Hybrid / WFH Options
Iceberg
Role: As a Cyber Security Manager, you will be responsible for monitoring, analyzing, and improving the security posture of the organization. You will drive the maturity of security monitoring, incidentresponse, and threat intelligence capabilities, working closely with technical and business teams. Key Responsibilities: Develop and refine security monitoring controls and use-cases to detect threats and anomalies. … Investigate security incidents, conduct forensics analysis, and manage incidentresponse processes. Collaborate with independent penetration testing programs and support risk assessment processes. Implement and mature threat intelligence capabilities and integrate with security monitoring frameworks. Develop and oversee vulnerability management programs, ensuring alignment with industry standards. Provide subject matter expertise on cyber security frameworks, including NIST, MITRE ATT&CK … and Kill Chain methodologies. About You: Proven experience in Cyber Security, with a focus on incidentresponse, security monitoring, and threat intelligence. Strong knowledge of security technologies, including SIEM tools, network security, IAM solutions, and DLP tools. Hands-on experience with incident investigation tools and network protocol analysis (e.g., Wireshark). Familiarity with cloud security assessments and More ❯
strategy, ensuring robust protection for our IT systems, OT infrastructure, and critical business data. Reporting directly to the Senior European IT Director, you’ll develop and implement policies, lead incidentresponse, ensure compliance with industry standards, and promote best practice in technology risk management. Key Responsibilities: Develop, implement, and maintain a robust cybersecurity strategy and governance framework aligned … with business and regulatory requirements. Oversee technical security controls including firewalls, IDS/IPS, SIEM, IAM, endpoint protection, and cloud security (Azure, AWS). Lead threat detection, incidentresponse, and recovery, ensuring minimal business disruption. Manage patching processes, AI-driven email intelligence tools, and network security across internal and customer-facing systems. Conduct risk assessments, penetration testing, and … plans related to cybersecurity. Act as the primary contact for cybersecurity vendors, regulators, auditors, and third-party assessments. About You: Proven track record in cybersecurity management, including threat detection, incidentresponse, and vulnerability management. Strong knowledge of security frameworks (ISO 27001, NIST, CIS Controls) and regulatory compliance requirements (GDPR, NIS2). Hands-on expertise with firewalls, SIEM, IAM More ❯
london (city of london), south east england, united kingdom
AirSearch
strategy, ensuring robust protection for our IT systems, OT infrastructure, and critical business data. Reporting directly to the Senior European IT Director, you’ll develop and implement policies, lead incidentresponse, ensure compliance with industry standards, and promote best practice in technology risk management. Key Responsibilities: Develop, implement, and maintain a robust cybersecurity strategy and governance framework aligned … with business and regulatory requirements. Oversee technical security controls including firewalls, IDS/IPS, SIEM, IAM, endpoint protection, and cloud security (Azure, AWS). Lead threat detection, incidentresponse, and recovery, ensuring minimal business disruption. Manage patching processes, AI-driven email intelligence tools, and network security across internal and customer-facing systems. Conduct risk assessments, penetration testing, and … plans related to cybersecurity. Act as the primary contact for cybersecurity vendors, regulators, auditors, and third-party assessments. About You: Proven track record in cybersecurity management, including threat detection, incidentresponse, and vulnerability management. Strong knowledge of security frameworks (ISO 27001, NIST, CIS Controls) and regulatory compliance requirements (GDPR, NIS2). Hands-on expertise with firewalls, SIEM, IAM More ❯
matter expert on information security across the organisation Ensure compliance with standards like Cyber Essentials Plus and CIS . Oversee third-party security providers and outsourced ICT services. Manage incidentresponse planning, investigations, and reporting. Deliver engaging training to build a strong security culture. Collaborate with Legal and Data Protection teams to ensure GDPR compliance. Stay ahead of … navigating real-world security challenges and your ability to see both the technical and human side of data protection. You should have: Proven experience in ICT security management and incidentresponse (CIS and Cyber Essential Plus). Strong technical knowledge of Microsoft 365, Azure, and cloud security. Familiarity with frameworks like ISO 27001, NIST, and CIS. Excellent communication More ❯
london (city of london), south east england, united kingdom
TPP Recruitment
matter expert on information security across the organisation Ensure compliance with standards like Cyber Essentials Plus and CIS . Oversee third-party security providers and outsourced ICT services. Manage incidentresponse planning, investigations, and reporting. Deliver engaging training to build a strong security culture. Collaborate with Legal and Data Protection teams to ensure GDPR compliance. Stay ahead of … navigating real-world security challenges and your ability to see both the technical and human side of data protection. You should have: Proven experience in ICT security management and incidentresponse (CIS and Cyber Essential Plus). Strong technical knowledge of Microsoft 365, Azure, and cloud security. Familiarity with frameworks like ISO 27001, NIST, and CIS. Excellent communication More ❯
policies across IT and OT environments. Conduct risk assessments and implement proactive threat mitigation measures. Oversee Microsoft 365 security, endpoint protection, email security, and other key cybersecurity tools. Manage incidentresponse plans and investigations, coordinating with internal teams and external partners. Ensure compliance with standards like ISO 27001, GDPR, and NIST frameworks. Promote security awareness and training across … stakeholder engagement. Strong knowledge of cybersecurity frameworks, ICS/OT security, and risk management. Hands-on experience with Microsoft 365 security tools, EDR, and related technologies. Demonstrated leadership in incidentresponse and cross-functional security initiatives. More ❯
london (city of london), south east england, united kingdom
ConSol Partners
policies across IT and OT environments. Conduct risk assessments and implement proactive threat mitigation measures. Oversee Microsoft 365 security, endpoint protection, email security, and other key cybersecurity tools. Manage incidentresponse plans and investigations, coordinating with internal teams and external partners. Ensure compliance with standards like ISO 27001, GDPR, and NIST frameworks. Promote security awareness and training across … stakeholder engagement. Strong knowledge of cybersecurity frameworks, ICS/OT security, and risk management. Hands-on experience with Microsoft 365 security tools, EDR, and related technologies. Demonstrated leadership in incidentresponse and cross-functional security initiatives. More ❯
Ability to demonstrate any IRM solution and SecOps solutions as and when needed. Knowledge of various modules like Policy Mgmt. Compliance & Audit Mgmt., Vendor Mgmt., Business Continuity Management, Vulnerability Response, IncidentResponse, Security Dashboard on ServiceNow IRM platform Assess as-is IRM processes for maturity and automation on ServiceNow platform Knowledge of Advance risk management and continuous More ❯
london (city of london), south east england, united kingdom
HCLTech
Ability to demonstrate any IRM solution and SecOps solutions as and when needed. Knowledge of various modules like Policy Mgmt. Compliance & Audit Mgmt., Vendor Mgmt., Business Continuity Management, Vulnerability Response, IncidentResponse, Security Dashboard on ServiceNow IRM platform Assess as-is IRM processes for maturity and automation on ServiceNow platform Knowledge of Advance risk management and continuous More ❯
broad range of ServiceNow modules, including but not limited to: Integrated Risk Management (IRM): Policy Management, Compliance & Audit Management, Vendor Risk Management, Business Continuity Management. Security Operations (SecOps): Vulnerability Response, Security IncidentResponse, Security Dashboards. IT Service Management (ITSM). IT Operations Management (ITOM). Customer Service Management (CSM). Integration Design: Design and oversee the implementation More ❯
london (city of london), south east england, united kingdom
HCLTech
broad range of ServiceNow modules, including but not limited to: Integrated Risk Management (IRM): Policy Management, Compliance & Audit Management, Vendor Risk Management, Business Continuity Management. Security Operations (SecOps): Vulnerability Response, Security IncidentResponse, Security Dashboards. IT Service Management (ITSM). IT Operations Management (ITOM). Customer Service Management (CSM). Integration Design: Design and oversee the implementation More ❯
City of London, London, United Kingdom Hybrid / WFH Options
Copello
Principal Security Analyst will support busy pods on more complex issues, lead and coordinate threat hunting activities, perform and lead vulnerability assessment activities and perform SIEM-based event analysis, incident triage and coordinate incidentresponse activities. Furthermore, the Principal Security Analyst will actively collaborate with other analysts and enhance the teams effectiveness through ownership of relevant issues More ❯
City of London, London, United Kingdom Hybrid / WFH Options
Anson Mccade
Benefits Clearance: Must hold or be eligible for SC Clearance Sponsorship: Not available We're seeking a highly skilled SOC Solutions Engineer to enhance security operations and strengthen detection & response strategies. This is a hands-on engineering role focused on IBM QRadar, playbook automation, and advanced threat modelling to deliver cutting-edge security solutions. What you'll do: SIEM … Engineering & Management: Deploy, configure, and optimise QRadar. Onboard log sources from cloud/on-prem environments. Build detection and anomaly rules. Playbook Development & Automation: Design and implement automated response playbooks (phishing, lateral movement, exfiltration) with SOAR tools (e.g., Logic Apps, XSOAR). Threat Detection & Response: Investigate alerts, enrich detection logic with threat intel, coordinate incident response. Threat … in IT security (SOC/NOC environment preferred). Strong knowledge of log parsing, SIEM query languages (KQL, SPL, AQL), and automation with Python/PowerShell. Deep understanding of incidentresponse, threat detection, and frameworks (MITRE, NIST, CIS). Knowledge of vulnerability scanning, penetration testing, and network traffic analysis. Familiarity with ITIL processes (Incident, Problem, Change). More ❯
City of London, London, England, United Kingdom Hybrid / WFH Options
How to Job Ltd
trends and best practices. Qualifications: •Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field. •Basic knowledge of cybersecurity principles, including threat detection, risk management, and incident response. •Familiarity with security tools like SIEM systems, firewalls, or endpoint protection is a plus. •Strong analytical and problem-solving skills. •Excellent communication skills with the ability to explain More ❯
experience of working with Microsoft Sentinel, Defender and Purview • Excellent understanding of security frameworks (NIST and Cyber Essentials) • Ability to lead and manage third party providers • Strong understanding of incidentresponse processes and methodologies including leading and managing incidents • Lead on root cause analysis, providing relevant documentation including recommendations • indemonstrable experience of implementing a robust and trustworthy security More ❯
london (city of london), south east england, united kingdom
InterQuest Group
experience of working with Microsoft Sentinel, Defender and Purview • Excellent understanding of security frameworks (NIST and Cyber Essentials) • Ability to lead and manage third party providers • Strong understanding of incidentresponse processes and methodologies including leading and managing incidents • Lead on root cause analysis, providing relevant documentation including recommendations • indemonstrable experience of implementing a robust and trustworthy security More ❯
Commercial awareness with a track record of delivering profitable portfolio growth. Confident communicator with strong broker relationships and market presence. Familiarity with cyber risk scoring tools, pricing models, and incidentresponse frameworks. Professional qualifications such as ACII, or relevant technical certifications (e.g. CISSP) are an advantage. Experience working in a Lloyd’s, MGA cyber underwriting environment. Exposure to More ❯
london (city of london), south east england, united kingdom
Santam Syndicate 1918
Commercial awareness with a track record of delivering profitable portfolio growth. Confident communicator with strong broker relationships and market presence. Familiarity with cyber risk scoring tools, pricing models, and incidentresponse frameworks. Professional qualifications such as ACII, or relevant technical certifications (e.g. CISSP) are an advantage. Experience working in a Lloyd’s, MGA cyber underwriting environment. Exposure to More ❯
City of London, London, United Kingdom Hybrid / WFH Options
Tenth Revolution Group
others. Strong analytical and communication skills in a distributed team environment. Customer-first mindset with a data-driven approach to problem-solving. Experience with large-scale distributed systems and incident response. Familiarity with LLM technologies (RAG, prompt engineering, evaluation methods). Knowledge of Azure services and Microsoft's ecosystem. Ability to work independently and collaboratively. Degree in Data Science More ❯
City of London, London, United Kingdom Hybrid / WFH Options
Energy Institute
issues efficiently. Excellent customer service skills, with a user-focused approach. Solid cybersecurity awareness and a foundational understanding of penetration testing methodologies or security auditing principles. Demonstrable experience in incidentresponse, particularly in identifying, containing, and escalating cyber incidents. Experience in Microsoft Windows systems administration, particularly Windows Server Demonstrated ability to work effectively in a team environment and More ❯
london (city of london), south east england, united kingdom Hybrid / WFH Options
Energy Institute
issues efficiently. Excellent customer service skills, with a user-focused approach. Solid cybersecurity awareness and a foundational understanding of penetration testing methodologies or security auditing principles. Demonstrable experience in incidentresponse, particularly in identifying, containing, and escalating cyber incidents. Experience in Microsoft Windows systems administration, particularly Windows Server Demonstrated ability to work effectively in a team environment and More ❯