1 to 25 of 26 Incident Response Jobs in Central London

Incident Response Analyst – London (Hybrid) – Excellent Permanent Package – Financial Services We are looking for a skilled Incident Response Analyst to join our Security Operations team. This role focuses on responding to cyber security incidents while supporting proactive threat intelligence efforts. You will play a key part … posture through continuous monitoring and analysis. Key Responsibilities Investigate and respond to cyber security incidents, including malware outbreaks, phishing attempts, and insider threats. Lead incident response efforts and conduct digital forensics. Enhance detection and response capabilities through process improvements and automation. Monitor alerts from SOC tools ...

Security Lead - Incident Response & Threat Management 4 Months Contract £400 to £500 a day Inside IR35 Remote working *Active Security Clearance is Needed* A well-established consultancy firm is urgently looking for an experienced Security Lead with a strong background in Incident Response and Threat Management … high-profile client. This role requires a professional with active SC Clearance and a deep understanding of SecOps analyst support. Core Responsibilities Incident Management: Directing the full incident response lifecycle, including the triage, investigation, and total resolution of security events. Threat Intelligence: Utilising Recorded Future, OpenCTI ...

client is seeking a SOC Analyst to join a security operations team in London. The role is focused on real-time monitoring, investigation, and incident response across a modern enterprise security environment. - Key Responsibilities Monitor, triage, and respond to security alerts across multiple platforms, including Microsoft and endpoint … Optimise and tune detection rules, policies, and alerting mechanisms to improve SOC efficiency. Collaborate with internal teams to support security operations, threat analysis, and incident recovery. Produce clear incident documentation, reports, and recommendations for continuous improvement. Contribute to maintaining and enhancing SOC processes, runbooks, and operational workflows. Required ...

built for you.We’re hiring a hands-on Senior Security Analyst/Security Engineer to strengthen a Microsoft-centric security posture across detection, response, tooling, and infrastructure hardening. Not a one-lane SOC role. Not governance-heavy. This role blends incident response with security engineering and hardening … Cyber Essentials, NIST, SOC2) Contribute to threat hunting, threat intelligence application and proactive monitoring Support operational resilience: scenario testing, DR exercises, post-incident reviews Assist with security tooling assessments (including AD hardening tools ) Essential Experience (Must Haves) Candidates must have: Security Engineering & Hardening IAM, PIM/PAM , identity lifecycle ...

Security Lead - Incident Response & Threat Management 4 Months Contract £400 to £500 a day Inside IR35 Remote working Active Security Clearance is Needed A well-established consultancy firm is urgently looking for an experienced Security Lead with a strong background in Incident Response and Threat Management ...

analysis to identify and mitigate potential threats. Design and enforce security controls based on identified requirements and gaps in existing structures. Threat Detection and Response Monitor and respond to security incidents ensuring rapid and effective action. Develop comprehensive incident response plans to maintain organisational resilience against threats. ...

e.g., Palo Alto, Fortinet, Cisco). Design and manage enterprise backup and recovery solutions (e.g., Veeam, Commvault, Rubrik). Deploy and operate Endpoint Detection & Response (EDR) solutions (e.g., CrowdStrike Falcon, Microsoft Defender for Endpoint, SentinelOne). Deploy and operate Cloud Detection & Response (CDR) platforms (e.g., Palo Alto Prisma … . Develop and implement Business Continuity and Disaster Recovery (BC/DR) plans. Contribute to the delivery of Managed IT Services, including monitoring, patching, incident response, and ongoing environment optimisation. Emerging Technologies Evaluate automation, workflow tools, and AI-driven operational platforms. Identify opportunities for analytics, modern data tooling ...

first security programme across infrastructure, endpoints and cloud environments. Working directly alongside the CISO, you will architect and implement the firm’s detection and response foundations - designing telemetry strategy, response workflows and supporting security controls in a largely greenfield environment. This is not a SOC management role … from a single senior engineer into a small, high-calibre team... Key Responsibilities Architect and scale the firm’s end-to-end detection and response capability, from telemetry ingestion through to investigation workflows Design high-signal detection logic informed by real attack techniques, not generic vendor rules Build ...

compliance, and best practices across all infrastructure layers. Monitor system performance, troubleshoot issues, and drive reliability improvements. Contribute to the on call rotation for incident response and system uptime. Mentor and support other DevOps engineers. Maintain clear documentation for systems, tooling, and processes. Key Requirements 5+ years’ experience ...

enterprise messaging infrastructure built on Solace PubSub+, ensuring high availability, optimal performance, and reliability across production and non-production environments. This includes working on incident response, capacity planning, WAN optimization, and system observability using tools like Prometheus and Grafana . Key Responsibilities: Administer and maintain Solace PubSub+ appliances ...

embed security-by-design into system architecture, development pipelines, and operational workflows. Support secure configuration, logging, monitoring, and access control practices. Vulnerability and Incident Management Operate vulnerability management processes including: CVE monitoring and triage Patch management coordination Tracking and closure of remediation actions Coordinate penetration testing and security assessments … across products, platforms, and infrastructure. Maintain incident response documentation, support tabletop exercises, and assist with post-incident reviews. Identity, Access and Data Security Support identity and access management (IAM) compliance including: Role-based access control Quarterly access reviews MFA/2FA enforcement Support encryption, key management, backup ...

partnering with a leading trading company to hire a Cyber Threat Specialist to join their Threat Detection & Response Team in London. This is a permanent role focused on building a modern and effective defensive cyber security capability across a critical business environment. The Role As a Cyber Threat Specialist … will lead and deliver defensive security across enterprise and cloud platforms. Your responsibilities will include: Designing, implementing, and validating high-fidelity detection and response rules Testing detection content against recognised frameworks and optimising rules continuously Leading investigations across endpoints, identity, email, SaaS, and cloud workloads Performing forensic analysis ...

improving the environment(s) essentially working to strengthen the IT security position and your BAU work will focus on Disaster Recovery and Security Incident Response during major incidents. Core responsibilities will include: Design, management and enhancement of Security Solutions within VMWare vSphere and related SAN infrastructure environments Operational … SimpliVity, Cisco HyperFlex or Nutanix **DESIRABLE** Understanding of infrastructure security protocols PIM/PAM, PKI etc Experience and understanding of Cyber Security monitoring and response (infrastructure) Excellent communication skills able to engage with process driven depts such as InfoSec Strong opportunity to work across a number of fields within ...

excellence across the platform. Shape the technology roadmap, contributing to architectural decisions and cloud migration strategies. Manage operational risk, security posture, monitoring, alerting and incident response for Home Finance systems. Use data and insights to guide prioritisation, engineering improvements and product decisions. Support the Engineering Manager with talent ...

SQL. Experience with Agile ways of working. Experience with a Microsoft Azure based environment. Experience in the financial Services sector. High level support with incident response and troubleshooting. Eagerness to learn and improve interpersonal skills. Junior C# Developer Key Responsibilities: Triaging and resolving technical queries. Build and maintain ...

prem and cloud platforms Maintain clean documentation, standards, and operating procedures Governance, Audit & Operations Support access reviews, audit requests, and evidence production Contribute to incident response related to privileged access or credential exposure Help mature IAM and PAM processes through automation and continuous improvement Must Have’s Strong ...

reviews, guidance, and automation. Respond to security incidents in real time - manage containment, remediation, forensics, and root cause analysis. Also participate in tabletop exercises, incident simulations, and coordinate external penetration tests. Partner with Solutions Engineering to support enterprise customer onboarding, including SSO integrations (SAML/OIDC), network allowlisting … security knowledge (we use AWS). Proficient in programming languages e.g. Typescript, Python, Bash, or similar. Strong skills in log analysis, threat investigation, and incident response. A proactive and solution-oriented mindset, with a bias for action. Desirable It would be a bonus if you have expertise ...

Platform team on AWS-based deployments and CI/CD processes. Performance & Reliability: Optimise background processing and database performance to maintain system stability. Incident Response: Support investigation and resolution of production issues. Cross-Functional Collaboration: Partner with Frontend and Mobile engineers to deliver robust, scalable APIs. Continuous Improvement … long-term maintainability. Operational Accountability: Act as the technical owner of production systems that directly impact live rail operations, ensuring high availability and rapid incident resolution. Requirements Must Haves 4+ years of professional experience with Ruby on Rails. Strong understanding of object-oriented programming and Rails architecture Extensive experience ...

Provide independent governance oversight (separate from IT Ops) About You Strong experience with ISO 27001 (Annex 8), CE+, and risk management Background in audits, incident response, and governance documentation Confident working with Compliance, IT, and external partners Able to own initiatives and work independently Pragmatic, collaborative, and business ...

partitioning, caching, compute configuration) with mentorship from more senior colleagues. Contribute to monitoring, alerting and observability setup for pipelines, applications and integrations. Participate in incident response and root cause analysis for platform and application issues. Assist in applying non-functional requirements (SLA/SLOs, resilience, backup and recovery … Performance issues or optimisation tasks. Permissions and basic security models. Schema/ontology changes and their impact on downstream use cases. Integration problems and incident recovery in collaboration with senior staff. Some client-facing experience (eg workshops, demos, requirement sessions or design walkthroughs). Any experience helping to train ...

environment used by one of the UK’s leading news and media organisations. This is a hands-on operations role focused on fault finding, incident response and preventative maintenance across studios, master control and file-based production systems. You’ll work at the heart of live output, keeping ...

client solutions are safe, observable and enterprise-ready by: Implementing evaluation frameworks and safety checks across models and agents Designing monitoring, logging, tracing and incident-response patterns Applying governance, risk and compliance principles within client environments Supporting releases, environments and handover into client operations Ensuring reliability, reproducibility, performance ...

support delivery of infrastructure improvement and energy efficiency projects, including development of business cases Review and approve technical aspects of high-risk changes, incident reports, and complex mechanical designs Provide operational support during incidents, including leadership of post-incident investigations and root cause analysis Conduct regular site tours … HVAC systems, including but not limited to cooling systems, evaporative cooling, pumps, and pressure systems Subject matter expert-level understanding of operational principles, including incident response and root cause analysis Working knowledge of continuous improvement frameworks such as Plan-Do-Check-Act (PDCA) is desirable Awareness of recognised ...

ensure high quality and repeatable releases. Provide operational support and incremental enhancements for a 24/7 production environment, contributing to performance tuning and incident response as needed. What we’re looking for Strong software engineering experience writing clean, efficient and well-tested code in statically-typed languages ...

services Define resilience patterns across services (failover, circuit breaking, back-pressure, etc.) Lead large-scale refactoring or reliability improvement initiatives Establish best practices in incident response, observability, and SLO management Drive adoption of modern cloud-native and GitOps practices Mentor senior engineers and influence engineering culture at scale ...