1 to 25 of 31 Incident Response Jobs in Central London

primary escalation point for complex IT and cybersecurity incidents. Manage and secure core client infrastructure and cloud environments. Ensure centralised security, monitoring, and incident response platforms operate effectively. You will collaborate closely with our Service Desk, Projects and Account Management teams to maintain high standards of service, document … infrastructure, cloud services, endpoints, and networks, in alignment with best practices and frameworks such as ISO27001, NIST, and Cyber Essentials Plus. Lead and coordinate incident response efforts, including root cause analysis, threat containment and post-incident reporting for clients. Collaborate with the Project and Service Desk teams ...

Operations Analyst to join a fast-growing Blue Team within our Cyber Practice. You will work with high-profile clients to ensure effective cyber incident detection, response, and threat mitigation across cloud, endpoint, and network environments. Key Responsibilities: Develop, maintain, and enhance security detection content for SIEM platforms … escalation for junior analysts. Serve as a technical subject matter expert on client engagements, presenting findings to senior stakeholders. Participate in alert testing, incident response exercises, and threat hunting activities. Stay up to date with the latest threat intelligence and emerging attacker tactics. Additional Responsibilities (client-dependent): Threat ...

client is seeking a SOC Analyst to join a security operations team in London. The role is focused on real-time monitoring, investigation, and incident response across a modern enterprise security environment. Key Responsibilities Monitor, triage, and respond to security alerts across multiple platforms, including Microsoft and endpoint … Optimise and tune detection rules, policies, and alerting mechanisms to improve SOC efficiency. Collaborate with internal teams to support security operations, threat analysis, and incident recovery. Produce clear incident documentation, reports, and recommendations for continuous improvement. Contribute to maintaining and enhancing SOC processes, runbooks, and operational workflows. Required ...

implementing, operating, and monitoring technical security controls across IT and operational environments. The role is hands-on and delivery-focused, covering vulnerability management, incident response, identity and access controls, security tooling, and technical risk mitigation, while working in alignment with governance and risk requirements. Key Responsibilitie s Security … Controls & Architecture Vulnerability & Threat Management Incident Response Identity, Access & Data Security Risk & Compliance Support Security Training and awareness Required Technical Experience: Proven experience in a hands-on IT security/cybersecurity role Logging and monitoring Security Tooling (vulnerability scanning (Tenable, Qualys, Rapid7) Endpoint or network security platforms ...

high-risk processing activities. Managing third-party vendor data protection risk, from initial due diligence through to ongoing monitoring. Overseeing personal data breach incident response, ensuring timely containment, investigation, and reporting. Monitoring and maintaining data retention processes, ensuring compliance with legal, regulatory, and business requirements. This role offers … compliance (e.g. GDPR or equivalent frameworks). Strong understanding of data protection risk assessment and mitigation processes. Proven experience in data breach management and incident response coordination. Desirable Skills and Attributes Collaboratively curious — keen to engage with colleagues to find pragmatic, compliant solutions. Trustworthy and ethically minded, with ...

including but not limited to: Integrated Risk Management (IRM): Policy Management, Compliance & Audit Management, Vendor Risk Management, Business Continuity Management. Security Operations (SecOps): Vulnerability Response, Security Incident Response, Security Dashboards. IT Service Management (ITSM). IT Operations Management (ITOM). Customer Service Management (CSM). Integration Design ...

industry experience in a similar role, in a technical environment. Good understanding of security principles, technologies, and best practices, including threat detection and security incident response processes. Experience implementing security in AWS environments (in the main) , including proactive configuration of AWS accounts and assets to meet good security ...

. Proficient in Azure Monitor, Log Analytics, Application Insights, cost management and optimisation, resource tagging strategies, and maintaining platform availability through proactive monitoring and incident response. Infrastructure as Code (Terraform) - Strong working knowledge of Terraform for provisioning and managing Azure infrastructure including writing and maintaining Terraform modules for Azure … high availability architectures using Availability Zones, Azure Load Balancer, Azure Application Gateway, VM Scale Sets, and conducting DR tests to ensure business continuity. Collaboration & Incident Response - Strong team player with experience working across DevOps, infrastructure, security, and development teams. Skilled in incident management and managing status dashboards ...

22301. • Maintain the ISMS, risk register, and evidence required for internal and external audits. • Manage security operations processes including vulnerability management, endpoint protection, incident response workflows, and access reviews. • Oversee physical security requirements across multiple data-centre locations and ensure alignment with relevant standards. • Manage asset inventories, patch … similar environment. • CISSP certification (mandatory). • Strong understanding of ISO 27001, SOC 2, NIST CSF, and Cyber Essentials Plus. • Experience working with audits, incident management, and vulnerability workflows. • Strong documentation, communication, and stakeholder management skills. • Hands-on experience with GRC tooling. Desirable • Experience working within large compute clusters ...

services, high-density deployments, extensive interconnection ecosystems, and 24/7 operational demands. This role oversees facilities operations, engineering/M&E teams, and incident management processes while ensuring excellence in service delivery and compliance with strict availability, safety, and security standards. Key Responsibilities Operational Leadership Oversee … Infrastructure & Risk Management Ensure all critical systems are maintained to world-class standards, following rigorous preventive and corrective maintenance programmes. Lead root-cause analysis, incident response, and post-incident reviews for all operational events. Maintain operational risk registers, capacity planning, and resilience strategies. Governance, Compliance & Standards Uphold ...

Cloud, Sentinel, Conditional Access) Manage Identity and Access Management across Azure AD and M365 Implement Zero Trust principles and security best practices Support incident response, vulnerability management, and compliance initiatives Collaborate with IT teams to embed security into cloud-first solutions Experience Required: Solid experience in Cyber Security ...

Analyzer) to reduce exposure and prevent repeat issues. Produce clear remediation guidance, runbooks, and reporting dashboards for both technical and non-technical stakeholders. Support incident response and post-remediation validation where high-risk findings are exploited or trending. kills & Experience AWS/Cloud Security Deep, hands ...

secure identities and access through Microsoft Entra ID. Core responsibilities will include threat management, proactive hunting for vulnerabilities, data protection, security posture management, and incident response. All of these will be based on collaborating with other teams to maintain and improve the organization's overall security posture. Key responsibilities … secure user experience. Act as a subject matter expert for the core components of the Defender XDR suite. Manage endpoint protection, detection, and response across our device fleet. Protect against email-based threats, including phishing, malicious attachments, and compromised links. Monitor on-premises Active Directory signals to identify ...

senior management on the status of projects, operational performance, and security compliance. Facilitate effective communication between IT teams and business units. Problem Solving and Incident Management: Manage and resolve high-priority incidents and critical issues. Conduct root cause analysis and implement corrective actions to prevent recurrence. Develop and maintain … incident response plans and procedures. Requirements: Proven experience as a Digital Operations Manager, IT Manager, Support Manager, or similar role. Strong leadership and team management skills with the ability to mentor and inspire a diverse team. Excellent understanding of IT infrastructure, application support, and digital operations. Demonstrated experience ...

Manage and optimise Microsoft Defender across Endpoint, Identity, Cloud Apps, Office 365, and Cloud Security Posture Management. Monitor alerts and conduct threat investigations. Support incident response with containment and remediation. Conduct proactive threat hunting. Platform administration and governance Configure policy baselines and protection profiles. Maintain governance and compliance … Security teams. Provide security insights to projects. Produce reporting for stakeholders. Identify automation and workflow enhancements. Essential Skills Strong experience with Microsoft Defender platforms. Incident investigation skills across endpoint, identity, and cloud. Understanding of Microsoft 365, Azure, and Zero Trust. Skilled in ASR rules, AV baselines, and KQL analytics. ...

expert guidance on cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Develop and enforce security policies, standards, and best practices. Lead incident response and root cause analysis for security-related issues. Mentor and train teams on DevSecOps principles and tools. Contract: 6 Months Rolling Rate ...

data pipelines. Excellent communication and stakeholder engagement skills across technical and non-technical audiences. Experience designing resilient pipelines with monitoring, logging, error handling, and incident response considerations. Desirable Familiarity with AI Foundry, Copilot, or similar AI-assisted engineering tools. Experience implementing data governance, cataloguing, lineage, and security best ...

environment, and who is confident working with BC/OR technology, data, and tooling. Key Responsibilities Lead business continuity and operational resilience planning and response across the firm, ensuring critical services, processes, and dependencies are identified and protected. Own the firm's BC/OR technology stack, including: Overseeing … reviews, risk assessments, and business impact analyses (BIAs) to ensure frameworks remain aligned to the firm's strategy, risk profile, and regulatory expectations. Oversee incident management, business continuity, and technology recovery planning, using specialist third-party tools to coordinate response, capture actions, and monitor recovery. Deliver and monitor ...

monitoring Collaborate with data scientists to ensure models are production-ready Implement security, compliance, and governance practices for ML systems Support troubleshooting and incident response for deployed ML systems Required Skills and Experience Strong programming skills in Python; experience with ML libraries such as Snowpark, PySpark, or PyTorch ...

friction and accelerate development velocity. Monitor system reliability, performance, and security across environments. Implement robust observability tools including logs, metrics, traces, and alerts. Lead incident response, root-cause analysis, and long-term remediation. Ensure security best practices are embedded across infrastructure and pipelines. Collaborate closely with the wider ...

projects. Proven ability to deliver impactful client engagements, demonstrating both technical depth and a practical understanding of risk. Experience in performing digital forensics and incident response (DFIR) activities during an active engagement and/or management of a DFIR engagement A degree in Cyber Security, Information Technology ...

based in our London, Knutsford or Glasgow locations. Purpose of the role To apply software engineering techniques, automation, and best practices in incident response, to ensure the reliability, availability, and scalability of the systems, platforms, and technology through them. Accountabilities Availability, performance, and scalability of systems and services … through proactive monitoring, maintenance, and capacity planning. Resolution, analysis and response to system outages and disruptions, and implement measures to prevent similar incidents from recurring. Development of tools and scripts to automate operational processes, reducing manual workload, increasing efficiency, and improving system resilience. Monitoring and optimisation of system performance ...

partitioning, caching, compute configuration) with mentorship from more senior colleagues. Contribute to monitoring, alerting and observability setup for pipelines, applications and integrations. Participate in incident response and root cause analysis for platform and application issues. Assist in applying non-functional requirements (SLA/SLOs, resilience, backup and recovery … Performance issues or optimisation tasks. Permissions and basic security models. Schema/ontology changes and their impact on downstream use cases. Integration problems and incident recovery in collaboration with senior staff. Some client-facing experience (eg workshops, demos, requirement sessions or design walkthroughs). Any experience helping to train ...

practices for Linux platforms powering low-latency, high-throughput trading workloads. Architect, optimize, and tune Linux for performance, resilience, and minimal latency. Drive incident response, root cause analysis, and continuous reliability improvement across production systems. Oversee system automation and reproducibility—build, deploy, and fleet-manage bare-metal Linux ...

Deployment: Deliver high-quality support for our trading applications and ensure seamless deployments. Monitoring Systems: Configure, tune, and optimise monitoring systems for maximum efficiency. Incident Response: Manage and resolve incidents effectively to maintain platform stability and client satisfaction. Client Management: Work closely with clients, providing exceptional service ...