1 to 25 of 26 Incident Response Jobs in Central London

Incident Response Manager (Cyber Threat) - Global financial services company - Full time permanent role - Salary up to £100,000 plus bonus. Hybrid working (twice a week in the London office) A large global financial services firm is looking for an Incident Response Manager within its cyber threat … point once a month for weekends) - Deliver on information security projects - Ensuring services provided meet the business requirements To be considered suitable for this Incident Response Manager role you will need the following skills and experience: - Experience in a technical cyber/incident response role - Previous ...

Incident Response Manager (Cyber Threat) - Global financial services company - Full time permanent role - Salary up to £100,000 plus bonus. Hybrid working (twice a week in the London office) A large global financial services firm is looking for an Incident Response Manager within its cyber threat ...

strong security posture across mission-critical systems. You will operate within a 24/7 Security Operations Centre , leading your assigned shift, coordinating incident response activities, and ensuring operational continuity in the absence of senior management. Key Responsibilities Lead investigations into escalated security incidents, assessing attack vectors, scope … business impact. Correlate telemetry across SIEM, EDR, network, and cloud data sources to form complete incident narratives. Direct containment, eradication, and recovery actions in partnership with IT/OT stakeholders. Own medium- and high-severity incident response activities, producing detailed investigation documentation. Tune and optimise detection content ...

built for you.We’re hiring a hands-on Senior Security Analyst/Security Engineer to strengthen a Microsoft-centric security posture across detection, response, tooling, and infrastructure hardening. Not a one-lane SOC role. Not governance-heavy. This role blends incident response with security engineering and hardening … Cyber Essentials, NIST, SOC2) Contribute to threat hunting, threat intelligence application and proactive monitoring Support operational resilience: scenario testing, DR exercises, post-incident reviews Assist with security tooling assessments (including AD hardening tools ) Essential Experience (Must Haves) Candidates must have: Security Engineering & Hardening IAM, PIM/PAM , identity lifecycle ...

Disaster Recovery (DR) frameworks Technology resilience planning across infrastructure, cloud, networks, applications, and data Organisation-wide Business Continuity Plan ownership and governance Major incident and crisis response coordination DR and continuity testing — scenario, tabletop, live and technology-led Cyber-resilience integration with security and incident response … Operational Resilience, Business Continuity, Disaster Recovery or Technology Risk Strong awareness of IT architecture, cloud services, infrastructure, and tech-led recovery processes Confidence leading incident response and crisis coordination Experience with resilience exercises, DR walkthroughs, failover testing, and scenario simulations Ability to work cross-functionally with Technology, Cyber ...

environments Review and shape technical designs to ensure security patterns and principles are applied correctly Support and enhance core cyber processes including vulnerability management, incident response, monitoring, IAM, endpoint security and network protection Work closely with technology teams to embed security into change and project initiatives Assess risk … Strong knowledge of security architecture principles and secure design patterns Experience with Azure, Microsoft Defender, M365 security tooling and firewalls Understanding of vulnerability management, incident response, endpoint protection and identity & access management Familiarity with frameworks such as NIST, ISO27001, OWASP, MITRE, CIS Benchmarks Experience operating within a regulated ...

tools across NOC and SOC environments Gather and analyse information from a wide range of security and infrastructure tools Handle operational tickets, escalations, and incident support across 1st and 2nd line activity Develop and improve NOC and SOC procedures and support operational best practice Work closely with Security Analysts … wider teams on threat mitigation and incident response Support and train monitoring engineers within live operations environments Key Requirements Previous experience in a Network Security Engineer , Security Operations , Technical Assurance , or similar role Strong background in networking , with a solid understanding of secure network design and operations Hands ...

practices across a live Azure-based platform and a new strategic platform being brought into service. The role is focused on reliability, observability, incident management, resilience, and automation . You’ll help define how services are measured and operated, introducing practical improvements around SLIs, SLOs, error budgets, monitoring … environments Azure cloud environments in enterprise-scale businesses SLO/SLI/error budget design and implementation Observability tooling (Prometheus, Grafana, OpenTelemetry or similar) Incident leadership across Sev1/Sev2 environments Disaster recovery, resilience testing, RTO/RPO Terraform infrastructure as code CI/CD pipelines and engineering enablement ...

practices across a live Azure-based platform and a new strategic platform being brought into service. The role is focused on reliability, observability, incident management, resilience, and automation . You’ll help define how services are measured and operated, introducing practical improvements around SLIs, SLOs, error budgets, monitoring … environments Azure cloud environments in enterprise-scale businesses SLO/SLI/error budget design and implementation Observability tooling (Prometheus, Grafana, OpenTelemetry or similar) Incident leadership across Sev1/Sev2 environments Disaster recovery, resilience testing, RTO/RPO Terraform infrastructure as code CI/CD pipelines and engineering enablement ...

countermeasures aligned with specific risks. SOC Collaboration: Working with an outsourced Security Operations Centre (SOC) to maintain effective threat detection and response. Tooling & Incident Response: Administering technical security tooling (such as Defender for Cloud, Defender for Endpoint, and Nessus) and conducting security incident investigations. Automation: Automating manual ...

i.e., GDPR, BCBS 239, FFIEC 101, 3402, CHAP. Working experience and/or knowledge of Security domains including Access management, Threat management, Incident response and recovery, Data protection, Vulnerability management, Monitoring and logging, Physical security, and Security risk management and governance. Working experience and/or knowledge ...

modern service. This is a senior-level position focused on raising operational maturity while coordinating closely across Product Engineering and Platform teams. The Mission Incident Leadership: Act as the hands-on incident commander for priority events—driving triage, containment, and restoration while ensuring structured escalations to engineering teams. … MSSP, ISP, or Telco). Technical Depth: Strong troubleshooting skills in IP networking and security (Routing/Switching, Firewalls, VPNs, NAT, DNS). Incident & Change Command: Experience leading high-pressure incident response and a disciplined approach to change governance. Communication: Ability to provide clear, factual updates ...

drive how the firm builds and operates reliable, observable, secure, and cost-efficient systems on AWS . Working closely with development, platform, and incident management teams, you will define reliability in measurable terms and build the tooling and processes to achieve it, improving platform speed, stability, and scalability. 📍London … chaos engineering experiments to strengthen resilience and recovery. Automate operational processes to reduce manual intervention and toil across the stack. Support major incident response, root-cause analysis, and continual improvement actions. Collaborate cross-functionally to raise standards for stability, security, performance, and compliance. Required skills & experience 3+ years ...

subject matter expert on cybersecurity practices and emerging threats. Key Engagement Delivery Responsibilities: Develop and execute strategies to enhance the customer’s prevention, detection, response, and recovery measures. Lead and mentor a team of cybersecurity professionals, fostering a culture of continuous improvement and innovation. Conduct assessments and vulnerability analyses … identify and address potential threats and weaknesses. Collaborate with stakeholders to design and implement incident response and business continuity plans. Evaluate customer’s emerging threats and cybersecurity trends to adapt strategies and technologies. Validate that recommendations and deliverables meet compliance and regulatory expectations and industry standards and prepare ...

prem and cloud platforms Maintain clean documentation, standards, and operating procedures Governance, Audit & Operations Support access reviews, audit requests, and evidence production Contribute to incident response related to privileged access or credential exposure Help mature IAM and PAM processes through automation and continuous improvement Must Have’s Strong ...

familiar with both Windows and Linux environment administration You're capable of producing high quality technical documentation suitable for use in design assurance, incident response and support You're collaborative and pragmatic with great communication skills Experience with any of the following would also be of benefit: Okta ...

place, this is a completely greenfield SOC buildout, where you will work alongside the Head of SecOps to shape their SOC monitoring, detection and response function. Key Responsibilities: Act as a lead and technical escalation point on the most complex incidents and investigations. Proactively look for opportunities to automate … capabilities. Utilise various internal and external Threat Intelligence feeds to execute proactive threat hunting campaigns. Mentor and train junior team members through complex incident response investigations. Key Requirements: Significant experience working in a SOC environment (5+ Years), responding to and containing the most high-profile, escalated incidents. Comprehensive ...

overseeing budget, risk,delivery, and team management. Deliver high-quality resilience, continuity, and crisis managementprogrammes. Actas a senior subject-matter expert in resilience, crisis response, andIncident management. Build trusted C-suite and Board-level relationships, influencing resilience strategyand regulatory compliance. Expand client accounts by identifying new opportunities and shapingvalue … plans for cyberattacks, supply chain failures, and systemicdisruptions. Supporting operational readiness for major events: mergers, technologygo-lives, product launches. Runningcrisis simulations, resilience testing, and incident response frameworks. Deploying into live crises and leading post-eventreviews. Skills & Experience: Technical Expertise Deepknowledge of operational resilience within Financial Services and relevantglobal ...

partitioning, caching, compute configuration) with mentorship from more senior colleagues. Contribute to monitoring, alerting and observability setup for pipelines, applications and integrations. Participate in incident response and root cause analysis for platform and application issues. Assist in applying non-functional requirements (SLA/SLOs, resilience, backup and recovery … Performance issues or optimisation tasks, Permissions and basic security models, Schema/ontology changes and their impact on downstream use cases, Integration problems and incident recovery in collaboration with senior staff. Some client-facing experience (e.g. workshops, demos, requirement sessions or design walkthroughs). Any experience helping to train ...

with engineering and research teams to improve visibility and developer experience • Scale and optimise telemetry systems handling large volumes of real-time data • Improve incident response through better coverage and monitoring What they’re looking for • Expert-level Python development with a focus on backend systems • Experience designing ...

view on how to keep the production environment both highly and stable and available for daily trading activity. Primary responsibilities will be split across incident management & root cause analysis, working with development teams to resolve issues, whilst facing off to Front Office users to handle queries, provide progress reports … Monitoring and Observability tooling Python and Shell Scripting skills for automation purposes Capability to work across end-to-end Production Support covering initial incident response, root cause, gap analysis, bug fixing through to full recovery and resolution Understanding of the trade life cycle from pre-to-post trade ...

rollout and oversight of controls, and ensuring a consistent approach to managing cyber risks. Within this role you will also be involved in coordinating incident response, supporting audits and assurance activities, and contributing to reporting and governance forums. What They Are Looking For Experience in information security within … focused role. Solid understanding of core security principles, including risk management, controls, and incident response. The ability to clearly communicate security risks to both technical and non-technical audiences. Knowledge of frameworks such as NIST or CIS Experience working across multiple regions in a global organisation. Relevant certifications such ...

standards DCB0129 and DCB0160, and NHSE governance. You will lead hazard analysis, determine Safety Assurance Levels, develop and review Clinical Safety Cases, and support incident investigations. Your expertise will help embed clinical safety into agile and user-centred design practices, working closely with clinical, technical, and leadership teams … applying DCB0129, DCB0160, and NHSE governance Hands-on digital health delivery experience in NHS or similar settings Expertise in hazard workshops, risk assessment, and incident response Familiarity with digital health architectures, interoperability, and emerging tech risks Strong stakeholder management and communication skills Collaborative team player with a proactive ...

with a focus on reliable, scalable, and secure IT environments. Role Overview The role focuses on coordinating hardware deployments, managing data centre changes, supporting incident response, and ensuring operational standards are maintained. The Team Lead will supervise technicians, manage third-party vendors, and ensure installations, monitoring, asset management … perform daily data centre health checks, and carry out walkthroughs to verify alerts for power, cooling, and rack equipment, reporting any issues and raising incident tickets where necessary. Maintain accurate records including cabling inventory, capacity reporting, and hardware spare inventory such as memory, SFPs, and network cards. Manage ...

responsibilities include managing WAF/DDoS, security gateways, SIEM/SOAR/EDR, firewalls, MFA/SSO, MDM/MAM, vulnerability scans, and incident response. Key Responsibilities: Manage WAF/DDoS, web/email security gateways, SIEM/SOAR/EDR (alert response), firewalls, MFA/ ...