1 to 25 of 28 Incident Response Jobs in Central London

operationally effective. The role owns information security operations and modern workplace services, spanning identity and access management, endpoint security, data protection, threat detection, incident response and compliance monitoring. Operating across a complex, global technology estate, the Head of Cyber Security and Modern Workplace Operations ensures alignment with recognised … management using platforms such as Intune and Defender. Ensure consistent application of security standards across all user devices and environments. Threat detection, monitoring and incident response Oversee continuous monitoring, threat detection and security event management. Lead incident response readiness, coordination and post-incident analysis. Work ...

with various departments and functions, analysing potential business impact of unpredictable business interruptions such as cyber attacks, security breach, privacy incidents Create and facilitate incident response simulations to ensure business readiness for disasters/unexpected events Collaborate with engineering, IT and cyber security teams to ensure incident response plans are fit for purpose and in line with the incident response policy, and communicated effectively. Highlight risks and areas for improvement after each exercise/incident, and ensure issues are captured, completed, and reviewed for mitigation Maintain and enhance the Supplier Risk Management ...

strong security posture across mission-critical systems. You will operate within a 24/7 Security Operations Centre , leading your assigned shift, coordinating incident response activities, and ensuring operational continuity in the absence of senior management. Key Responsibilities Lead investigations into escalated security incidents, assessing attack vectors, scope … business impact. Correlate telemetry across SIEM, EDR, network, and cloud data sources to form complete incident narratives. Direct containment, eradication, and recovery actions in partnership with IT/OT stakeholders. Own medium- and high-severity incident response activities, producing detailed investigation documentation. Tune and optimise detection content ...

built for you.We’re hiring a hands-on Senior Security Analyst/Security Engineer to strengthen a Microsoft-centric security posture across detection, response, tooling, and infrastructure hardening. Not a one-lane SOC role. Not governance-heavy. This role blends incident response with security engineering and hardening … Cyber Essentials, NIST, SOC2) Contribute to threat hunting, threat intelligence application and proactive monitoring Support operational resilience: scenario testing, DR exercises, post-incident reviews Assist with security tooling assessments (including AD hardening tools ) Essential Experience (Must Haves) Candidates must have: Security Engineering & Hardening IAM, PIM/PAM , identity lifecycle ...

Disaster Recovery (DR) frameworks Technology resilience planning across infrastructure, cloud, networks, applications, and data Organisation-wide Business Continuity Plan ownership and governance Major incident and crisis response coordination DR and continuity testing — scenario, tabletop, live and technology-led Cyber-resilience integration with security and incident response … Operational Resilience, Business Continuity, Disaster Recovery or Technology Risk Strong awareness of IT architecture, cloud services, infrastructure, and tech-led recovery processes Confidence leading incident response and crisis coordination Experience with resilience exercises, DR walkthroughs, failover testing, and scenario simulations Ability to work cross-functionally with Technology, Cyber ...

coverage to ensure visibility into system health, infrastructure, and business-critical workflows. Drive adoption of AI-driven tools and automation for proactive system troubleshooting, incident triage, and root cause analysis. Lead and mentor a team of SRE Engineers embedded within engineering teams. Manage incident response processes, including … call management and post-incident reviews. Collaborate with product and engineering teams to build reliability and observability into new systems. Monitor UI behaviour and end-to-end system performance, not just infrastructure metrics. Essential Skills & Experience: Proven experience as an SRE Lead or Senior SRE in large-scale, high ...

Governance, Risk, and Compliance (GRC). Working closely with our CTO, you will play a pivotal role in protecting our infrastructure, leading incident responses, and embedding security best practices across our entire product suite. The Role As our Senior Security Analyst, you will own the evolution of our security …/SOAR capabilities and the guardian of our SOC 2 Type II and ISO 27001 standards. Key Responsibilities: Security Operations: Lead monitoring, detection, and incident response for internal and client-facing systems. SIEM/SOAR Ownership: Enhance and automate our Azure Sentinel capabilities. Incident Response: Investigate ...

environments Review and shape technical designs to ensure security patterns and principles are applied correctly Support and enhance core cyber processes including vulnerability management, incident response, monitoring, IAM, endpoint security and network protection Work closely with technology teams to embed security into change and project initiatives Assess risk … Strong knowledge of security architecture principles and secure design patterns Experience with Azure, Microsoft Defender, M365 security tooling and firewalls Understanding of vulnerability management, incident response, endpoint protection and identity & access management Familiarity with frameworks such as NIST, ISO27001, OWASP, MITRE, CIS Benchmarks Experience operating within a regulated ...

tools across NOC and SOC environments Gather and analyse information from a wide range of security and infrastructure tools Handle operational tickets, escalations, and incident support across 1st and 2nd line activity Develop and improve NOC and SOC procedures and support operational best practice Work closely with Security Analysts … wider teams on threat mitigation and incident response Support and train monitoring engineers within live operations environments Key Requirements Previous experience in a Network Security Engineer , Security Operations , Technical Assurance , or similar role Strong background in networking , with a solid understanding of secure network design and operations Hands ...

mitigation activities Oversee security architecture to ensure alignment with wider technology strategy Drive continuous improvement through security assessments, testing, and reporting Ensure effective incident detection, response, and recovery capabilities Lead vulnerability management and remediation across all technology environments Oversee third‐party security testing, including penetration testing and phishing … delivering cyber security strategies Strong understanding of security frameworks such as ISO 27001, NIST, Cyber Essentials Expertise in risk management, vulnerability assessment, and incident response Experience with enterprise security tools (e.g. SIEM, IDS, firewalls, encryption technologies) Knowledge of cloud and hybrid security environments Ability to communicate complex technical ...

practices across a live Azure-based platform and a new strategic platform being brought into service. The role is focused on reliability, observability, incident management, resilience, and automation . You’ll help define how services are measured and operated, introducing practical improvements around SLIs, SLOs, error budgets, monitoring … environments Azure cloud environments in enterprise-scale businesses SLO/SLI/error budget design and implementation Observability tooling (Prometheus, Grafana, OpenTelemetry or similar) Incident leadership across Sev1/Sev2 environments Disaster recovery, resilience testing, RTO/RPO Terraform infrastructure as code CI/CD pipelines and engineering enablement ...

microservices, and event-driven architectures. Knowledge of observability tools such as Prometheus, Grafana, ELK Stack, or Datadog. Experience with security best practices, monitoring, and incident response. Familiarity with DevSecOps and compliance frameworks (ISO 27001, SOC 2, GDPR). Exposure to big data processing, ML pipelines, or simulation workflows. Bonus ...

countermeasures aligned with specific risks. SOC Collaboration: Working with an outsourced Security Operations Centre (SOC) to maintain effective threat detection and response. Tooling & Incident Response: Administering technical security tooling (such as Defender for Cloud, Defender for Endpoint, and Nessus) and conducting security incident investigations. Automation: Automating manual ...

output across projects. Operational Excellence Oversee operational support and BAU services across identity platforms. Maintain uptime targets (SLA 99.999) through proactive monitoring and strong incident response. Identify risks and maintain architectural integrity. Participate in the on‐call rota. Stakeholder Engagement Build strong working relationships across technology and business functions. ...

secure identities and access through Microsoft Entra ID. Core responsibilities will include threat management, proactive hunting for vulnerabilities, data protection, security posture management, and incident response. All of these will be based on collaborating with other teams to maintain and improve the organization's overall security posture. Key responsibilities … secure user experience. Act as a subject matter expert for the core components of the Defender XDR suite. Manage endpoint protection, detection, and response across our device fleet. Protect against email-based threats, including phishing, malicious attachments, and compromised links. Monitor on-premises Active Directory signals to identify ...

subject matter expert on cybersecurity practices and emerging threats. Key Engagement Delivery Responsibilities: Develop and execute strategies to enhance the customer’s prevention, detection, response, and recovery measures. Lead and mentor a team of cybersecurity professionals, fostering a culture of continuous improvement and innovation. Conduct assessments and vulnerability analyses … identify and address potential threats and weaknesses. Collaborate with stakeholders to design and implement incident response and business continuity plans. Evaluate customer’s emerging threats and cybersecurity trends to adapt strategies and technologies. Validate that recommendations and deliverables meet compliance and regulatory expectations and industry standards and prepare ...

Responsibilities: Lead and deliver cyber resilience transformation programmes, owning end‐to‐end engagement delivery (scope, quality, timeline, budget) and ensuring outcomes measurably improve preparedness, response, and recovery. Design, run, and continuously enhance cyber crisis simulations and tabletop exercises for executives and operational teams—ensuring scenarios reflect the current threat … intelligence and emerging attacker tactics into practical resilience improvements—linking likely threats to business impact, critical dependencies, and control or capability gaps. Integrate cyber response and recovery into wider enterprise resilience plans, including business continuity, IT disaster recovery, operational resilience, third‐party resilience, and enterprise risk management—ensuring cyber ...

place, this is a completely greenfield SOC buildout, where you will work alongside the Head of SecOps to shape their SOC monitoring, detection and response function. Key Responsibilities: Act as a lead and technical escalation point on the most complex incidents and investigations. Proactively look for opportunities to automate … capabilities. Utilise various internal and external Threat Intelligence feeds to execute proactive threat hunting campaigns. Mentor and train junior team members through complex incident response investigations. Key Requirements: Significant experience working in a SOC environment (5+ Years), responding to and containing the most high-profile, escalated incidents. Comprehensive ...

overseeing budget, risk,delivery, and team management. Deliver high-quality resilience, continuity, and crisis managementprogrammes. Actas a senior subject-matter expert in resilience, crisis response, andIncident management. Build trusted C-suite and Board-level relationships, influencing resilience strategyand regulatory compliance. Expand client accounts by identifying new opportunities and shapingvalue … plans for cyberattacks, supply chain failures, and systemicdisruptions. Supporting operational readiness for major events: mergers, technologygo-lives, product launches. Runningcrisis simulations, resilience testing, and incident response frameworks. Deploying into live crises and leading post-eventreviews. Skills & Experience: Technical Expertise Deepknowledge of operational resilience within Financial Services and relevantglobal ...

partitioning, caching, compute configuration) with mentorship from more senior colleagues. Contribute to monitoring, alerting and observability setup for pipelines, applications and integrations. Participate in incident response and root cause analysis for platform and application issues. Assist in applying non-functional requirements (SLA/SLOs, resilience, backup and recovery … Performance issues or optimisation tasks, Permissions and basic security models, Schema/ontology changes and their impact on downstream use cases, Integration problems and incident recovery in collaboration with senior staff. Some client-facing experience (e.g. workshops, demos, requirement sessions or design walkthroughs). Any experience helping to train ...

with engineering and research teams to improve visibility and developer experience • Scale and optimise telemetry systems handling large volumes of real-time data • Improve incident response through better coverage and monitoring What they’re looking for • Expert-level Python development with a focus on backend systems • Experience designing ...

view on how to keep the production environment both highly and stable and available for daily trading activity. Primary responsibilities will be split across incident management & root cause analysis, working with development teams to resolve issues, whilst facing off to Front Office users to handle queries, provide progress reports … Monitoring and Observability tooling Python and Shell Scripting skills for automation purposes Capability to work across end-to-end Production Support covering initial incident response, root cause, gap analysis, bug fixing through to full recovery and resolution Understanding of the trade life cycle from pre-to-post trade ...

role involves leading the protection of information and systems across global environments, ensuring compliance with recognized frameworks like ISO27001 and NIST. Responsibilities include overseeing incident response, managing endpoint security, and promoting a strong security culture across the organization. The ideal candidate will have a leadership background in cyber ...

supporting professional development within the team. Collaborate with architects and solution designers to align technical delivery with long-term product and technology roadmaps. Lead incident management activities, coordinating major incident responses and ensuring effective communication with stakeholders. Support a 24/7 production environment, including participation ...

standards DCB0129 and DCB0160, and NHSE governance. You will lead hazard analysis, determine Safety Assurance Levels, develop and review Clinical Safety Cases, and support incident investigations. Your expertise will help embed clinical safety into agile and user-centred design practices, working closely with clinical, technical, and leadership teams … applying DCB0129, DCB0160, and NHSE governance Hands-on digital health delivery experience in NHS or similar settings Expertise in hazard workshops, risk assessment, and incident response Familiarity with digital health architectures, interoperability, and emerging tech risks Strong stakeholder management and communication skills Collaborative team player with a proactive ...