1 to 25 of 48 Incident Response Jobs in Central London

Description Apply (by clicking the relevant button) after checking through all the related job information below. Principal Consultant - Incident ResponseSalary: Up to £85,000 + £4,700 cash benefitsLocation: London, Cardiff, Manchester, Birmingham or EdinburghWorking pattern: Hybrid - 2-3 days per week in the office About the Role … client is seeking an experienced Principal Consultant to join their Incident Response practice. This is a senior, client-facing role within a highly regarded cyber security team, delivering both emergency response services and proactive incident readiness engagements. When not leading live cyber incidents, you will work ...

Incident Response Analyst – London (Hybrid) – Excellent Permanent Package – Financial Services We are looking for a skilled Incident Response Analyst to join our Security Operations team. This role focuses on responding to cyber security incidents while supporting proactive threat intelligence efforts. You will play a key part … posture through continuous monitoring and analysis. Key Responsibilities Investigate and respond to cyber security incidents, including malware outbreaks, phishing attempts, and insider threats. Lead incident response efforts and conduct digital forensics. Enhance detection and response capabilities through process improvements and automation. Monitor alerts from SOC tools ...

driving continuous improvement across a large, complex environment. The Role As an IT Security Analyst, you will support all aspects of security operations, incident response, vulnerability management, governance activities, and the development of secure processes across the organisation. You’ll monitor and investigate alerts, analyse threats, lead security … defending large-scale environments from emerging threats. Key Responsibilities Investigate and analyse security events, correlating data and identifying root causes. Perform deep-dive incident analysis using logs, threat intel and IoCs. Conduct proactive and reactive threat hunting. Execute vulnerability assessments and support remediation activities. Carry out risk analysis, identifying ...

client is seeking a SOC Analyst to join a security operations team in London. The role is focused on real-time monitoring, investigation, and incident response across a modern enterprise security environment. - Key Responsibilities Monitor, triage, and respond to security alerts across multiple platforms, including Microsoft and endpoint … Optimise and tune detection rules, policies, and alerting mechanisms to improve SOC efficiency. Collaborate with internal teams to support security operations, threat analysis, and incident recovery. Produce clear incident documentation, reports, and recommendations for continuous improvement. Contribute to maintaining and enhancing SOC processes, runbooks, and operational workflows. Required ...

built for you.We’re hiring a hands-on Senior Security Analyst/Security Engineer to strengthen a Microsoft-centric security posture across detection, response, tooling, and infrastructure hardening. Not a one-lane SOC role. Not governance-heavy. This role blends incident response with security engineering and hardening … Cyber Essentials, NIST, SOC2) Contribute to threat hunting, threat intelligence application and proactive monitoring Support operational resilience: scenario testing, DR exercises, post-incident reviews Assist with security tooling assessments (including AD hardening tools ) Essential Experience (Must Haves) Candidates must have: Security Engineering & Hardening IAM, PIM/PAM , identity lifecycle ...

Case Development: Develop and refine detection rules based on threat intelligence and attack patterns Continuously improve detection efficacy and reduce false positives Security Monitoring & Incident Response: Monitor systems for anomalies and malicious activity Contribute to threat hunting and incident response playbooks Provide expert guidance on securing ...

role in strengthening cyber resilience and protecting critical enterprise systems. This is a hands-on operational security role focused on threat detection, incident response and continuous improvement of security monitoring capabilities. The position of Cyber Security Analyst is suited to an experienced security professional who thrives in fast … alerts across SIEM platforms and ticketing systems, managing incidents through to resolution Participate in an on-call rota to support live security incidents Manage incident queues and approvals within IT service management tools Act as a subject matter expert for nominated security technologies, ensuring effective configuration and optimisation Support ...

client environments and act as a trusted security advisor. What you’ll be doing: Designing and implementing security solutions (firewalls, endpoint, cloud security) Leading incident response and remediation activities Conducting vulnerability assessments & penetration testing Implementing security monitoring, reporting & best practices Advising clients on Cyber Essentials, CE+, GDPR … similar environment Firewall experience (Palo Alto, Fortinet) EDR/endpoint protection (Microsoft Defender, Sophos, Bitdefender) Network & cloud security knowledge (Azure, AWS, VPNs, VLANs, DNS) Incident response & vulnerability management experience Cyber Essentials/CE+ knowledge or certification Confident communicator, comfortable in client-facing scenarios What’s on offer: Hybrid ...

regions. Key Responsibilities Lead the design and implementation of secure authentication, authorisation, and data protection frameworks. Manage and enhance Data Loss Prevention (DLP) systems, incident response, and risk management processes. Oversee cloud security architecture across Azure, O365, and iManage Cloud environments. Collaborate with global IT, compliance, and risk … experience in information security within a global enterprise environment. Strong knowledge of cloud and network security (Azure, O365). Experienced in DLP, SIEM, and incident response processes. Familiar with ISO 27001/27002 and governance frameworks. CISSP or CEH certification preferred. Excellent communication, stakeholder management, and documentation skills. ...

trust. The Opportunity Acting as an experienced privacy advisor (working under the supervision of qualified privacy counsel), you’ll support global privacy operations across incident response, regulatory engagement, product development, and privacy‐by‐design initiatives. Key to this role is a background in tech, agile, consumer facing roles … have experience in GDPR compliance and regulatory inquiries. What You’ll Be Doing Incident Response Manage low–medium risk personal data breaches and support investigations into more complex cases Coordinate cross‐functional tasks, gather facts, draft assessments and regulatory materials Maintain breach logs, investigative records, and track follow ...

Cyber Defence team. Mentor senior leaders within the function, enhancing efficiency, leadership capability, and stakeholder engagement. Review, refine, and where necessary implement improvements to Incident Response plans and operational processes. Support delivery of the broader CISO cyber programme. Develop and enhance operational and performance reporting, including KPIs, metrics … Security Operations function within a large, complex global organisation. Strong operational background with proven ability to stabilise, mentor, and uplift teams. Deep understanding of incident response, cyber operations, and performance management. Confident operating at senior stakeholder level, including CISO and executive audiences. xkybehq This is a high-impact ...

maintaining, and improving core security controls across network, cloud, and endpoint environments. You will play a key part in strengthening defensive capabilities and supporting incident response activities. You can work remotely but there are also multiple offices for the employees. Client Details A UK-based not for profit … modernising cyber security and cloud infrastructure. Description Manage and enhance security tooling including endpoint protection, content filtering, email security, and vulnerability scanning. Deliver technical incident analysis and response, supporting containment, remediation, and service improvement. Configure and support firewalls, networks, Microsoft security platforms, and cloud security controls. Conduct technical ...

analysis to identify and mitigate potential threats. Design and enforce security controls based on identified requirements and gaps in existing structures. Threat Detection and Response Monitor and respond to security incidents ensuring rapid and effective action. Develop comprehensive incident response plans to maintain organisational resilience against threats. ...

Automate detection, triage, and remediation of infrastructure and application vulnerabilities. Developer Enablement: Provide reusable templates and tooling to help teams deploy quickly and securely. Incident Response: Contribute to operational and security incident handling to minimize downtime and risk. What You Bring: Strong experience designing, managing, and securing ...

alerts. Deploying, scaling, and managing containerised applications using tools like Kubernetes for clients who require container platforms Support patching, vulnerability remediation, and security incident response activities to maintain secure environments. Assist with the operational management of data platforms, including storage, protection, replication, and automation of data workflows. Manage ...

first security programme across infrastructure, endpoints and cloud environments. Working directly alongside the CISO, you will architect and implement the firm’s detection and response foundations - designing telemetry strategy, response workflows and supporting security controls in a largely greenfield environment. This is not a SOC management role … from a single senior engineer into a small, high-calibre team... Key Responsibilities Architect and scale the firm’s end-to-end detection and response capability, from telemetry ingestion through to investigation workflows Design high-signal detection logic informed by real attack techniques, not generic vendor rules Build ...

enterprise messaging infrastructure built on Solace PubSub+, ensuring high availability, optimal performance, and reliability across production and non-production environments. This includes working on incident response, capacity planning, WAN optimization, and system observability using tools like Prometheus and Grafana . Key Responsibilities: Administer and maintain Solace PubSub+ appliances ...

will receive an additional allowance. Specific projects the team are working on include rolling out an observability tool to enhance system monitoring and incident response, streamlining deployment processes to reduce downtime and speed up feature delivery, and developing a CLI tool to automate tasks and boost developer productivity. ...

perspective Identify vulnerabilities, weaknesses, and control gaps Drive hardening across Azure, networks, and hybrid workloads Strengthen segmentation, firewall policy, identity security, and logging Support incident-driven remediation and resilience improvements Required Experience Strong hands-on infrastructure/platform engineering background Azure & hybrid cloud security expertise Network security & segmentation (firewalls … Experience with enterprise security controls & remediation Ability to perform deep technical analysis Clear stakeholder communication Security Analyst (Contract) Focus: Detection, Response & Optimisation Key Responsibilities Advanced Microsoft Defender analysis & optimisation Write, tune, and troubleshoot xkybehq KQL queries Investigate alerts and support incident response workflows Liaise with SOC & technical ...

improving the environment(s) essentially working to strengthen the IT security position and your BAU work will focus on Disaster Recovery and Security Incident Response during major incidents. Core responsibilities will include: Design, management and enhancement of Security Solutions within VMWare vSphere and related SAN infrastructure environments Operational … SimpliVity, Cisco HyperFlex or Nutanix **DESIRABLE** Understanding of infrastructure security protocols PIM/PAM, PKI etc Experience and understanding of Cyber Security monitoring and response (infrastructure) Excellent communication skills able to engage with process driven depts such as InfoSec Strong opportunity to work across a number of fields within ...

prem and cloud platforms Maintain clean documentation, standards, and operating procedures Governance, Audit & Operations Support access reviews, audit requests, and evidence production Contribute to incident response related to privileged access or credential exposure Help mature IAM and PAM processes through automation and continuous improvement Must Have’s Strong ...

skills over certificates, though!) Multi-cloud or hybrid security experience Container security & supply-chain/SBOM tooling Applied cryptography fundamentals (KMS, envelope encryption, etc.) Incident response or red/blue/purple team exposure OSS security contributions or AWS community involvement ...

Build and operate observability stacks (metrics, logging, tracing) Define and monitor SLOs/SLAs for latency, availability, and reliability Create runbooks, playbooks, and incident response processes for production systems Security & Best Practices Implement best practices around secrets management, access control, and network security Support secure, multi-tenant environments ...

excellence across the platform. Shape the technology roadmap, contributing to architectural decisions and cloud migration strategies. Manage operational risk, security posture, monitoring, alerting and incident response for Home Finance systems. Use data and insights to guide prioritisation, engineering improvements and product decisions. Support the Engineering Manager with talent ...

excellence across the platform. Shape the technology roadmap, contributing to architectural decisions and cloud migration strategies. Manage operational risk, security posture, monitoring, alerting and incident response for Home Finance systems. Use data and insights to guide prioritisation, engineering improvements and product decisions. Support the Engineering Manager with talent ...