25 of 25 Incident Response Jobs in Central London

Incident Response Manager (Cyber Threat) - Global financial services company - Full time permanent role - Salary up to £110,000 plus bonus. Hybrid working (twice a week in the London office) A large global financial services firm is looking for an Incident Response Manager within its cyber threat … point once a month for weekends) - Deliver on information security projects - Ensuring services provided meet the business requirements To be considered suitable for this Incident Response Manager role you will need the following skills and experience: - Experience in a technical cyber/incident response role - Previous ...

operations. This is a technical role suited to an experienced analyst with strong engineering instincts, hands-on coding capabilities, and a deep understanding of incident response, detection engineering, and adversary tradecraft. This position includes approximately one week per month of on-call availability for high-priority incident … ideal for someone who has likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible ...

Incident Response Manager (Cyber Threat) - Global financial services company - Full time permanent role - Salary up to £110,000 plus bonus. Hybrid working (twice a week in the London office) A large global financial services firm is looking for an Incident Response Manager within its cyber threat ...

Cyber Security Analyst Client: Banking Salary: £65,000-£80,000 + Bonus Location: London/Hybrid Skills: Information Security, Cyber Security, SIEM, EDR, Wireshark, Incident Response, Vulnerability Management The role: My client are seeking a knowledgeable Information & Cyber Security Analyst to join their team. This role is focused … absolutely key in assuring that information is protected and secured at all times. The position is broadly split into a few core areas Incident Response Vulnerability Management SIEM Security Monitoring You will advise on Security best practices, and act as SME when assisting other teams. The ideal candidate ...

scenario-based simulations Run large-scale outage and cyber recovery scenarios with technical teams Capture outcomes and drive continuous improvement in recovery capability Incident Support & Leadership Act as a technical SME during major incidents and recovery events Provide structured support during high-pressure operational disruption scenarios Contribute to post … incident analysis and ensure corrective actions are implemented Collaboration & Governance Work closely with Security teams to align recovery planning with cyber incident response Engage with technical and non-technical stakeholders to ensure resilience requirements are met Embed recovery considerations into architecture, change, and project processes Documentation & Capability ...

leading Commerce organisation is seeking a Senior Security Analyst to support and strengthen its operational cyber security capabilities across detection engineering, incident response, vulnerability management, and secure configuration. This hands on technical role will focus on enhancing monitoring and detection capabilities, developing custom detections, supporting incident response ...

business safe without slowing it down. Key Responsibilities Security Automation Engineering: Design, build, and maintain automation to remove manual toil across detection, triage, response, and reporting. Integrate security tooling (SIEM, EDR, IAM, cloud, ticketing) into seamless, reliable workflows. Build and maintain SOAR-style playbooks and pipelines for enrichment, containment … automation tools you ship. AI & Agent Development: Build LLM-powered tools and autonomous agents for alert triage, threat summarization, runbook generation, and incident documentation. Develop and refine prompts, guardrails, and evaluations to ensure AI workflows are safe and dependable in production. Prototype, test, and ship AI-assisted approaches ...

join the firm in London. Responsibilities: * Undertake efficient, effective and proactive day-to-day cybersecurity operations to minimise the risk of a security incident, enabling the firm to do business. * Maintain the capability to react and respond to incidents in an effective and timely manner, minimising their impact … event data across the firms' systems, and procuring threat intelligence to inform the hunts. Key Skills: * Strong understanding of network and end point security, incident response, threat intelligence, and vulnerability management. * Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS. * Strong ...

ensuring robust coverage against evolving threat landscapes. Key Responsibilities Design and implement detection use cases across SIEM and SOAR platforms using threat intelligence and incident data Develop, map, and maintain detection logic aligned to MITRE ATT&CK frameworks Continuously tune and optimise correlation rules to improve signal-to-noise … engineering teams to ensure efficient data ingestion and parsing Document detection logic, methodologies, and expected outputs for audit and operational use Contribute to post-incident reviews, enhancing detection coverage and response effectiveness Maintain and evolve a repository of use cases, KPIs, and SOC performance metrics Requirements 3+ years ...

Resilience, Continuity & Recovery Manager (DORA) -Incident Manager UK Remote | Permanent Hiring a Senior Resilience, Continuity, Recovery Manager and Incident Manager with strong DORA experience to lead operational resilience, major incident management and recovery planning within a regulated financial services environment. Key experience: * MUST DORA/Operational Resilience … Major Incident Management * Business Continuity & Disaster Recovery * Financial Services/FinTech * ISO 22301/ISO 27001/NIST * Stakeholder & Regulatory Management This role will lead DORA implementation, resilience testing, ICT incident response, third-party risk and enterprise recovery planning across the business. High-impact role with strong ...

with infrastructure, development, and support teams to ensure messaging reliability, scalability, and performance across mission critical systems. You'll play a key role in incident response, monitoring, capacity planning, WAN optimisation, and automation while helping maintain a highly available messaging platform supporting real-time trading and financial applications. ...

architecture and protective controls (IAM, Zero Trust, network, endpoint) Vulnerability management, secure configuration and supply-chain security Security monitoring, SIEM and detection capability assessment Incident response, business continuity and resilience planning Independent assurance, gap analysis and remediation planning Familiarity with frameworks such as ISO 27001, NIST ...

Deployment & Operations Deploy and operate data pipelines and services in AWS. Implement monitoring, logging, alerting, and operational dashboards for data workflows. Support production reliability, incident response, and continuous improvement initiatives. Security, Compliance & Data Quality Ensure all data pipelines meet healthcare security and privacy requirements. Apply best practices ...

controls, elimination of shared/admin accounts), backup and restore strategy, retention and archival, replication, monitoring (Redgate Monitor and equivalents), licensing, performance triage, and incident response. Acting as design authority for the wider data team coaching the SQL Developers on Power BI authorship, dimensional modelling, query optimisation and report ...

evaluate the effectiveness of continuity strategies Conduct and coordinate scenario-based BC exercises Conduct de-briefing sessions with involved teams following continuity tests and incident response exercises. Document and track identified improvements, ensuring that feedback is systematically incorporated into the continuity plan. Evaluate exercise outcomes, identify gaps ...

including modernisation and decommissioning of systems. - Operational Excellence and Service Management: Accountable for platform availability, performance and resilience. Oversea 3rd level support and major incident response. - Security & Risk Management: Ensure security is embedded by design across all platforms. - Automation & Continuous Improvement: Drive automation and standardisation across platform services. - Leadership ...

reviews, guidance, and automation. Respond to security incidents in real time - manage containment, remediation, forensics, and root cause analysis. Also participate in tabletop exercises, incident simulations, and coordinate external penetration tests. Partner with Solutions Engineering to support enterprise customer onboarding, including SSO integrations (SAML/OIDC), network allowlisting … security knowledge (we use AWS). Proficient in programming languages e.g. Typescript, Python, Bash, or similar. Strong skills in log analysis, threat investigation, and incident response. A proactive and solution-oriented mindset, with a bias for action. Desirable It would be a bonus if you have expertise ...

offs. Represent engineering in strategic discussions, planning, and external forums. Operational excellence Ensure quality, reliability, and security are embedded in all engineering processes. Lead incident response and provide expert support for critical issues. Identify and address productivity bottlenecks; drive tooling improvements. Who You Are Extensive experience in system ...

variety of projects from SIEM implementation & management to EDR and other cyber tooling. There will also be a need to be involved with Incident Response and Threat detection work at times, so it's important you are flexible. The environment is Microsoft heavy so strong skills in Sentinel ...

high availability, performance, scaling, backup, and recovery of production systems Define and enforce platform standards, governance, and operating procedures Manage cluster operations, monitoring, and incident response Optimise graph database performance and support large-scale data workloads Integrate Neo4j with broader enterprise data infrastructure (ETL, APIs, data platforms) Support ...

Experience onboarding new technologies from a security perspective • Exposure to AI, cloud, SaaS, or enterprise technology transformation programmes • Strong understanding of security operations, monitoring, incident response, and cloud security • Experience operating across both architecture and hands-on delivery • Ability to work with senior stakeholders across technical and business ...

standards DCB0129 and DCB0160, and NHSE governance. You will lead hazard analysis, determine Safety Assurance Levels, develop and review Clinical Safety Cases, and support incident investigations. Your expertise will help embed clinical safety into agile and user-centred design practices, working closely with clinical, technical, and leadership teams … applying DCB0129, DCB0160, and NHSE governance Hands-on digital health delivery experience in NHS or similar settings Expertise in hazard workshops, risk assessment, and incident response Familiarity with digital health architectures, interoperability, and emerging tech risks Strong stakeholder management and communication skills Collaborative team player with a proactive ...

vendor management strategy, including FM providers and specialist contractors Ensure SLA adherence for hyperscale and enterprise customers Implement and maintain operational frameworks including SOPs, incident response, change management, and risk mitigation Lead compliance, audits, and certifications (ISO standards, regulatory requirements) Partner cross-functionally with engineering, development, and commercial ...

core M365 services via the M365 Admin Center, including Teams, SharePoint Online, OneDrive, Co-pilot and relevant areas of Entra ID. - Monitor service health, incident response, and change notifications from the Microsoft 365 Message Centre. - Assist with the implementation and maintenance of security & compliance settings such as retention ...

respond to security alerts, analyze real-time data, and provide swift, reliable communication to key stakeholders during incidents. The role also includes creating detailed incident reports, conducting risk assessments, and collaborating with teams to ensure the safety and security of personnel, assets, and operations. Qualifications Proficiency in monitoring security … systems, assessing risks, and implementing security protocols. Strong analytical and problem-solving skills for real-time data analysis and incident response. Excellent communication skills for stakeholder coordination and report writing. Knowledge of digital tools and software used in security operations room environments. Proven ability to work calmly and efficiently ...