1 to 25 of 31 Permanent Incident Response Jobs in the City of London

Incident Response Manager (Cyber Threat) - Global financial services company - Full time permanent role - Salary up to £100,000 plus bonus. Hybrid working (twice a week in the London office) A large global financial services firm is looking for an Incident Response Manager within its cyber threat … point once a month for weekends) - Deliver on information security projects - Ensuring services provided meet the business requirements To be considered suitable for this Incident Response Manager role you will need the following skills and experience: - Experience in a technical cyber/incident response role - Previous … team management experience - Good understanding of incident response frameworks and methodologies (ICERF) - Good understanding of threats, vulnerabilities and processes - Familiarity with incident response tools and measures - Relevant industry certifications would be seen as advantageous (CISSP, OSCP, OSCE etc. More ❯

Security Incident Response Manager (Cyber Threat) - Global financial services company - Full time permanent role - Salary up to £100,000 plus bonus. Hybrid working (twice a week in the London office) A large global financial services firm is looking for an Incident Response Manager within its cyber … point once a month for weekends) - Deliver on information security projects - Ensuring services provided meet the business requirements To be considered suitable for this Incident Response Manager role you will need the following skills and experience: - Experience in a technical cyber/incident response role - Previous … team management experience - Good understanding of incident response frameworks and methodologies (ICERF) - Good understanding of threats, vulnerabilities and processes - Familiarity with incident response tools and measures - Relevant industry certifications would be seen as advantageous (CISSP, OSCP, OSCE etc. More ❯

Cybersecurity Incident Response Lead Location: Hybrid - must live in comutable distance to Glasgow city centre (maybe a requirement to be on-site in an office at short notice). Excellent Cybersecurity Incident Response Lead opportunity to join a leading UK bank who continue to expand their … Cyber Security capabilities. You will be a sharp, decisive, and highly experienced Cybersecurity Incident Response Specialist looking to join a high-performing Detect & Respond Operations Team. You will thrive working under pressure, excel at solving complex problems, and have a knack for identifying and neutralising threats before they … resilience. Provide clear, concise briefings and reports to senior leadership, offering insight into incidents, risks, and ongoing threat landscapes. 💡 Your background: Proven experience leading incident response operations and cybersecurity investigations. Deep understanding of cyber attack vectors, threat actors, and red team/blue team methodologies. Strong analytical skills More ❯

real-time. Implementation of security best practices, including access control, vulnerability scanning, and secure authentication Be a subject matter expert on the organisation's incident response plan and aid in response to security incidents, ensuring timely resolution and minimal impact. Identify security risks, conduct vulnerability assessments, and … e.g., Snyk, Aqua, SonarQube). Security Scanning & Vulnerability Assessment: Knowledge of static and dynamic analysis tools, and the ability to integrate them into pipelines. Incident Response: Familiarity with security incident response processes, including detection, containment, eradication, and recovery. Offers are subject to satisfactory background checks, including More ❯

enforce security policies, standards, and guidelines. Collaborate with the Compliance Manager/CISO to ensure adherence to regulatory requirements (e.g., GDPR, ISO 27001). Incident Response and Management: Establish and maintain incident response plans and procedures. Lead technical response efforts during security incidents or breaches. … Conduct post-incident analyses to prevent future occurrences. Collaboration: Promote a security-aware culture across the organization. Engage with stakeholders to communicate security strategies and risks effectively. Continuous Improvement: Stay abreast of emerging security threats, trends, and technologies. Proactively identify opportunities to enhance security architecture and processes. Lead initiatives … to improve security monitoring, detection, and response capabilities. Qualifications and Experience: Professional Experience: Minimum of 2 -5 years experience in information security. Proven hands-on experience with DevSecOps practices and tools. Familiarity with cloud security architectures (AWS). Technical Skills: understanding of security principles, protocols, and standards. Proficiency with More ❯

cyber threats. Key Responsibilities: Monitor and assess OT cybersecurity systems, ensuring effective threat detection and response. Conduct threat analysis and vulnerability assessments to support incident response activities. Develop and implement incident response plans tailored to OT environments. Support vulnerability management initiatives and penetration testing exercises. Contribute … understanding of OT/ICS cybersecurity or relevant control systems (SCADA/PLC) – training provided where required. Experience with network security, threat detection, and incident response. Knowledge of security frameworks and regulations including NIST, IEC, NIS Directive, and Cyber Kill Chain. Analytical mindset with the ability to manage complex More ❯

protection, and threat detection and response. Compliance andGovernance: Ensure compliance with industry standards and regulations (e.g.,GDPR, HIPAA) and develop security policies and procedures. Incident Response: Lead and coordinate incident response activities, including investigation,containment, and remediation of security incidents. Collaboration: Workclosely with IT, DevOps, and More ❯

protection, and threat detection and response. Compliance andGovernance: Ensure compliance with industry standards and regulations (e.g.,GDPR, HIPAA) and develop security policies and procedures. Incident Response: Lead and coordinate incident response activities, including investigation,containment, and remediation of security incidents. Collaboration: Workclosely with IT, DevOps, and More ❯

protection, and threat detection and response. Compliance andGovernance: Ensure compliance with industry standards and regulations (e.g.,GDPR, HIPAA) and develop security policies and procedures. Incident Response: Lead and coordinate incident response activities, including investigation,containment, and remediation of security incidents. Collaboration: Workclosely with IT, DevOps, and More ❯

and ensure smooth feature rollouts with minimal downtime. Define and manage monitoring, logging, and telemetry using tools like AWS Cloudwatch, Prometheus, and Datadog. Lead incident response and production troubleshooting with a proactive and preventative mindset. Drive automation initiatives with tools like GitlabCI, Terraform/OpenTofu, Ansible, and scripting … IAM). Experience with Kubernetes and Argo CD in production settings. Deep knowledge of application security protocols and infrastructure-level security practices. Real-time incident response skills. Proficient in infrastructure as code, monitoring, and automation. Excellent communication, collaboration, and problem-solving skills. Relevant certifications in AWS would be More ❯

and ensure smooth feature rollouts with minimal downtime. Define and manage monitoring, logging, and telemetry using tools like AWS Cloudwatch, Prometheus, and Datadog. Lead incident response and production troubleshooting with a proactive and preventative mindset. Drive automation initiatives with tools like GitlabCI, Terraform/OpenTofu, Ansible, and scripting … IAM). Experience with Kubernetes and Argo CD in production settings. Deep knowledge of application security protocols and infrastructure-level security practices. Real-time incident response skills. Proficient in infrastructure as code, monitoring, and automation. Excellent communication, collaboration, and problem-solving skills. Relevant certifications in AWS would be More ❯

and ensure smooth feature rollouts with minimal downtime. Define and manage monitoring, logging, and telemetry using tools like AWS Cloudwatch, Prometheus, and Datadog. Lead incident response and production troubleshooting with a proactive and preventative mindset. Drive automation initiatives with tools like GitlabCI, Terraform/OpenTofu, Ansible, and scripting … IAM). Experience with Kubernetes and Argo CD in production settings. Deep knowledge of application security protocols and infrastructure-level security practices. Real-time incident response skills. Proficient in infrastructure as code, monitoring, and automation. Excellent communication, collaboration, and problem-solving skills. Relevant certifications in AWS would be More ❯

IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO … practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response: Ability to detect, respond to, and mitigate cyber threats using SIEM, endpoint security, and vulnerability management tools. Networking & Infrastructure Security: Understanding of More ❯

followed by appropriate remedial action, to ensure that systems are protected from known and potential threats and are free from known vulnerabilities Collating security incident and event data to produce monthly exception and management reports Reporting unresolved network security exposures, misuse of resources or noncompliance situations using defined escalation … skills (both written and verbal) At least 18 months experience of working with cybersecurity principles, including risk assessment and management, threat and vulnerability management, incident response, and identity and access management Experience in developing, documenting and maintaining security procedures Knowledge of network infrastructure, including routers, switches, firewalls and More ❯

followed by appropriate remedial action, to ensure that systems are protected from known and potential threats and are free from known vulnerabilities Collating security incident and event data to produce monthly exception and management reports Reporting unresolved network security exposures, misuse of resources or noncompliance situations using defined escalation … skills (both written and verbal) At least 18 months experience of working with cybersecurity principles, including risk assessment and management, threat and vulnerability management, incident response, and identity and access management Experience in developing, documenting and maintaining security procedures Knowledge of network infrastructure, including routers, switches, firewalls and More ❯

followed by appropriate remedial action, to ensure that systems are protected from known and potential threats and are free from known vulnerabilities Collating security incident and event data to produce monthly exception and management reports Reporting unresolved network security exposures, misuse of resources or noncompliance situations using defined escalation … skills (both written and verbal) At least 18 months experience of working with cybersecurity principles, including risk assessment and management, threat and vulnerability management, incident response, and identity and access management Experience in developing, documenting and maintaining security procedures Knowledge of network infrastructure, including routers, switches, firewalls and More ❯

add their first EU based Security Analyst to the team. Collaborating closely with the Security team in the US, you'll be responsible for incident response, vulnerability management, risk analysis and detection, with a particular focus on Europe and APAC. This is a brand new hire for a More ❯

add their first EU based Security Analyst to the team. Collaborating closely with the Security team in the US, you'll be responsible for incident response, vulnerability management, risk analysis and detection, with a particular focus on Europe and APAC. This is a brand new hire for a More ❯

add their first EU based Security Analyst to the team. Collaborating closely with the Security team in the US, you'll be responsible for incident response, vulnerability management, risk analysis and detection, with a particular focus on Europe and APAC. This is a brand new hire for a More ❯

vulnerability scans to identify and address potential vulnerabilities and weaknesses. Assist in investigating security breaches, incidents, and unauthorized access attempts, and develop and implement incident response plans. Collaborate with cross-functional teams to ensure security requirements are incorporated into the design and implementation of systems and applications. Lead More ❯

The following skills are essential: Microsoft KQL Network security Web application security API security including OAUTH Experience of the following would be advantageous: Cyber incident response Akamai experience Cequence experience More ❯

understanding of Active Directory, Entra, GPO, DNS, DHCP PowerShell scripting Knowledge of Cyber Security tooling and best practice Assisting with InfoSec policy adherence and incident response Software troubleshooting What’s in it for you? Though initially joining on a 6 month FTC, given where the team are currently More ❯

understanding of Active Directory, Entra, GPO, DNS, DHCP PowerShell scripting Knowledge of Cyber Security tooling and best practice Assisting with InfoSec policy adherence and incident response Software troubleshooting What’s in it for you? Though initially joining on a 6 month FTC, given where the team are currently More ❯

understanding of Active Directory, Entra, GPO, DNS, DHCP PowerShell scripting Knowledge of Cyber Security tooling and best practice Assisting with InfoSec policy adherence and incident response Software troubleshooting What’s in it for you? Though initially joining on a 6 month FTC, given where the team are currently More ❯

training Set usage & security policies & processes for information sharing on internal & external platforms Ensure documented processes & processes exist for all operational security workstreams, prioritising incident response procedures including runbooks exist for specific threat types e.g. Ransomware, Malware etc Oversee vulnerability management Manage IT security incidents, investigations, and reports More ❯