20 of 20 Incident Response Jobs in Central London

Security Lead - Incident Response & Threat Management 4 Months Contract £400 to £500 a day Inside IR35 Remote working *Active Security Clearance is Needed* A well-established consultancy firm is urgently looking for an experienced Security Lead with a strong background in Incident Response and Threat Management … high-profile client. This role requires a professional with active SC Clearance and a deep understanding of SecOps analyst support. Core Responsibilities Incident Management: Directing the full incident response lifecycle, including the triage, investigation, and total resolution of security events. Threat Intelligence: Utilising Recorded Future, OpenCTI ...

driving continuous improvement across a large, complex environment. The Role As an IT Security Analyst, you will support all aspects of security operations, incident response, vulnerability management, governance activities, and the development of secure processes across the organisation. You’ll monitor and investigate alerts, analyse threats, lead security … defending large-scale environments from emerging threats. Key Responsibilities Investigate and analyse security events, correlating data and identifying root causes. Perform deep-dive incident analysis using logs, threat intel and IoCs. Conduct proactive and reactive threat hunting. Execute vulnerability assessments and support remediation activities. Carry out risk analysis, identifying ...

posture through continuous monitoring and analysis. Key Responsibilities Investigate and respond to cyber security incidents, including malware outbreaks, phishing attempts, and insider threats. Lead incident response efforts and conduct digital forensics. Enhance detection and response capabilities through process improvements and automation. Monitor alerts from SOC tools … perform root cause analysis. Collaborate with IT and security teams to remediate vulnerabilities. Gather and analyse threat intelligence to inform detection strategies. Maintain detailed incident records and conduct post-incident reviews. Technical Skills Hands-on experience with SIEM, EDR, IDS/IPS, and SOAR platforms. Strong knowledge ...

client is seeking a SOC Analyst to join a security operations team in London. The role is focused on real-time monitoring, investigation, and incident response across a modern enterprise security environment. - Key Responsibilities Monitor, triage, and respond to security alerts across multiple platforms, including Microsoft and endpoint … Optimise and tune detection rules, policies, and alerting mechanisms to improve SOC efficiency. Collaborate with internal teams to support security operations, threat analysis, and incident recovery. Produce clear incident documentation, reports, and recommendations for continuous improvement. Contribute to maintaining and enhancing SOC processes, runbooks, and operational workflows. Required ...

built for you.We’re hiring a hands-on Senior Security Analyst/Security Engineer to strengthen a Microsoft-centric security posture across detection, response, tooling, and infrastructure hardening. Not a one-lane SOC role. Not governance-heavy. This role blends incident response with security engineering and hardening … Cyber Essentials, NIST, SOC2) Contribute to threat hunting, threat intelligence application and proactive monitoring Support operational resilience: scenario testing, DR exercises, post-incident reviews Assist with security tooling assessments (including AD hardening tools ) Essential Experience (Must Haves) Candidates must have: Security Engineering & Hardening IAM, PIM/PAM , identity lifecycle ...

Overall Package The role Join a leading financial services client as a Cyber Threat Specialist (Blue Team) and help strengthen a critical Threat Detection & Response function. You will be a key member of the Threat Detection & Response team, focusing on defensive security across complex, business-critical environments. Working … optimise high-fidelity detections, investigate incidents, and contribute to continuous improvement of cyber defences. What youll be doing Deliver hands-on detection engineering, incident response, threat hunting, security engineering and threat intelligence activities. Investigate and respond to security incidents across host, identity, email, SaaS and cloud workloads. ...

CloudFormation. Embed security checks into GitHub CI/CD pipelines for continuous compliance. Develop automated remediation workflows for security findings. Monitoring & Incident Response: Implement monitoring and alerting for security events using AWS native tools and SIEM integrations. Support incident response and root cause analysis for security ...

protect the firm's data and Technology infrastructure. * VPN Administration - Administer and maintain Virtual Private Networks (VPN) to ensure secure remote access for employees. * Incident Response - Investigate and resolve potential security issues, participate in incident response initiatives, and respond to security-related alerts promptly. * Vulnerability Management ...

Security Lead - Incident Response & Threat Management 4 Months Contract £400 to £500 a day Inside IR35 Remote working Active Security Clearance is Needed A well-established consultancy firm is urgently looking for an experienced Security Lead with a strong background in Incident Response and Threat Management ...

e.g., Palo Alto, Fortinet, Cisco). Design and manage enterprise backup and recovery solutions (e.g., Veeam, Commvault, Rubrik). Deploy and operate Endpoint Detection & Response (EDR) solutions (e.g., CrowdStrike Falcon, Microsoft Defender for Endpoint, SentinelOne). Deploy and operate Cloud Detection & Response (CDR) platforms (e.g., Palo Alto Prisma … . Develop and implement Business Continuity and Disaster Recovery (BC/DR) plans. Contribute to the delivery of Managed IT Services, including monitoring, patching, incident response, and ongoing environment optimisation. Emerging Technologies Evaluate automation, workflow tools, and AI-driven operational platforms. Identify opportunities for analytics, modern data tooling ...

improving the environment(s) essentially working to strengthen the IT security position and your BAU work will focus on Disaster Recovery and Security Incident Response during major incidents. Core responsibilities will include: Design, management and enhancement of Security Solutions within VMWare vSphere and related SAN infrastructure environments Operational … SimpliVity, Cisco HyperFlex or Nutanix **DESIRABLE** Understanding of infrastructure security protocols PIM/PAM, PKI etc Experience and understanding of Cyber Security monitoring and response (infrastructure) Excellent communication skills able to engage with process driven depts such as InfoSec Strong opportunity to work across a number of fields within ...

integrate reliability and performance into the software lifecycle. Managing and evolving CI/CD pipelines to ensure smooth deployments and rollbacks. Contributing to incident response , post-mortems, and reliability improvements. Championing SRE principles such as error budgets, SLIs/SLOs, and automation-first thinking. What We’re Looking ...

environment management, artefact handling, versioning of data/models/code Implement observability for ML systems: monitoring, alerting, logging, dashboards, and incident response for data + model health Establish best practices for data quality and ML quality: validation checks, pipeline tests, lineage, documentation, and SLAs/SLOs Optimise ...

/CD for data pipelines, IaC (Terraform), and/or DataOps practices Experience building observability for data systems (metrics, alerting, data quality checks, incident response ...

technical authority for cyber security operations , owning the end-to-end security lifecycle across enterprise infrastructure. Key responsibilities include: Security monitoring, threat hunting and incident response SIEM, MDR oversight and vulnerability management Firewall, VPN, IDS/IPS and Zero Trust technologies Pen testing coordination and CVSS-led remediation ...

excellence across the platform. Shape the technology roadmap, contributing to architectural decisions and cloud migration strategies. Manage operational risk, security posture, monitoring, alerting and incident response for Home Finance systems. Use data and insights to guide prioritisation, engineering improvements and product decisions. Support talent development, succession planning ...

observability and performance monitoring using Dynatrace. You will have: Demonstrable experience delivering cloud migration, optimisation, or transformation projects Experience with Terraform or Ansible Drive incident response and root cause analysis using Dynatrace data Must have active SC Clearance - this is non-negotiable Hays Specialist Recruitment Limited acts ...

Provide independent governance oversight (separate from IT Ops) About You Strong experience with ISO 27001 (Annex 8), CE+, and risk management Background in audits, incident response, and governance documentation Confident working with Compliance, IT, and external partners Able to own initiatives and work independently Pragmatic, collaborative, and business ...

partitioning, caching, compute configuration) with mentorship from more senior colleagues. Contribute to monitoring, alerting and observability setup for pipelines, applications and integrations. Participate in incident response and root cause analysis for platform and application issues. Assist in applying non-functional requirements (SLA/SLOs, resilience, backup and recovery … Performance issues or optimisation tasks. Permissions and basic security models. Schema/ontology changes and their impact on downstream use cases. Integration problems and incident recovery in collaboration with senior staff. Some client-facing experience (eg workshops, demos, requirement sessions or design walkthroughs). Any experience helping to train ...

client solutions are safe, observable and enterprise-ready by: Implementing evaluation frameworks and safety checks across models and agents Designing monitoring, logging, tracing and incident-response patterns Applying governance, risk and compliance principles within client environments Supporting releases, environments and handover into client operations Ensuring reliability, reproducibility, performance ...