20 of 20 Remote Incident Response Jobs in the City of London

assessments and coordinate penetration testing activities with external vendors and internal teams. Track and manage remediation efforts across infrastructure, applications, and cloud environments. Establish and maintain a Product Security Incident Response Team (PSIRT) process to handle reported vulnerabilities, disclosures, and security incidents related to Ipsotek products. Ensure timely triage, investigation, and resolution of product-related security issues. Security … Operations (SecOps) Oversee incident response, monitoring, and reporting processes. Manage security tooling and automation for detection and prevention. Continuously improve threat detection and response capabilities. Cross-Functional Collaboration Work with development teams to embed secure coding practices and DevSecOps principles. Support project operations and presales with security input for bids, proposals, and delivery. Provide security guidance during More ❯

Cyber Security SOC Analyst – London/Remote Atrium EMEA is looking for an accomplished Cyber Security SOC Analyst to support the Security Incident Response Team. The team is growing, we require a strong individual contributor that will investigate, analyse, and contain security incidents. This is a fully remote role, with the occasional London office visit. You can be … based anywhere in the UK • Strong ability to collaborate, delegate tasks and drive deadline compliance in a highly regulated, time sensitive environment. Triage, escalation, and assisting the response of cybersecurity, policy and privacy related events and incidents. Manage containment and remediation efforts of affected assets, IOCs, and TTPs • Integrate and collaborate with other subject matter experts throughout the organization … e.g. Security+, CCNA Cyber Ops, BTL1 and/or BTL2, GCIH, CEH, CySA+, OSCP, CISSP, CCSP etc.) • IT Security or Cyber Security experience in any of the following areas: Incident Response & Digital Forensics. Cybersecurity Detection Engineering and Threat Hunting or Vulnerability Management • Experience analysing attack vectors, current threats, and security remediation strategies • Experience with SIEM technologies, EDR technologies More ❯

on experience designing and implementing security frameworks for enterprise-critical infrastructure (e.g., network security, data protection, vulnerability management, access control). Leading disaster recovery planning, business continuity strategies, and incident response. Familiarity with compliance standards such as NIST, ISO 27001, PCI-DSS, and GDPR in the context of data centers, critical IT infrastructure, and application resilience for business survivability. More ❯

Data Security team, to support analysis and reporting work for data loss and insider threat events in Virgin Money. Your role will involve working closely with our Data Security, Incident Response and Business teams to manage events and progress remediation and represents a great opportunity to work with industry-leading tools and security partners, utilising your analytical, technical … be responsive to these challenges. The DLP Analyst will support the Bank's security controls for Data Loss Prevention, carrying out assessments of DLP and Insider Threat events, including incident management, escalation and resolution, acting as a liaison with key stakeholders, and be responsible for reporting on current status and trends. What you'll be doing Analysis of DLP More ❯

trends and best practices. Qualifications: •Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field. •Basic knowledge of cybersecurity principles, including threat detection, risk management, and incident response. •Familiarity with security tools like SIEM systems, firewalls, or endpoint protection is a plus. •Strong analytical and problem-solving skills. •Excellent communication skills with the ability to explain More ❯

and evolve Terraform modules for automated, consistent, and version-controlled deployments. Security & Access Management: Administer Conditional Access Policies, manage application registrations, and enforce secure identity and access practices. Monitoring & Incident Response: Configure and manage tools like Azure Monitor and Log Analytics to proactively detect and resolve issues. Compliance & Documentation: Maintain accurate technical documentation and ensure adherence to security More ❯

train onboard systems cyber security assessments and risk management Establish and maintain appropriate policies, procedures, and practices in relations to cyber, data and governance practices Manage the information security incident response program Manage implementation and deployment of Information Security Management System (ISMS). Line management of the internal InfoSec specialists. Requirements Extensive experience working with PCI-DSS and More ❯

train onboard systems cyber security assessments and risk management Establish and maintain appropriate policies, procedures, and practices in relations to cyber, data and governance practices Manage the information security incident response program Manage implementation and deployment of Information Security Management System (ISMS). Line management of the internal InfoSec specialists. Requirements Extensive experience working with PCI-DSS and More ❯

testing, and ethical hacking engagements Plan and deliver cyber attack simulations, vulnerability assessments, and social engineering tests Work with SOC teams on purple team exercises to enhance detection and response Produce executive reporting on cyber threats, risks, and remediation progress Collaborate with security and infrastructure teams to strengthen overall cyber resilience Skills & Experience 3+ years in penetration testing/… ethical hacking/red teaming Strong understanding of cyber threats, APTs, threat actor tactics, and exploit development Familiar with SIEM, defensive security monitoring, incident response, and detection engineering Deep knowledge of network, web application, and enterprise architecture security Excellent communication skills to present cyber risk insights to stakeholders Hybrid working model - 3 days in the London office. Competitive More ❯

Whilst they have the fundamentals in place, this is a relatively greenfield SOC buildout, where you will work alongside the SOC Manager to shape their SOC monitoring, detection and response function. Key Responsibilities: Act as a lead and technical escalation point on the most complex incidents and investigations. Develop and engineer new detection rules, automating monotonous tasks where possible. … Proactively research emerging and potential threat actors as a way of developing rules to safeguard against potential future threats. Mentor and train junior team members through complex incident response investigations. Key Requirements: Significant experience working in a SOC environment (5 years minimum) , dealing with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising More ❯

identity/access, encryption, data protection, secrets, and resilience). • Recommend and review controls for containerised and serverless workloads; guide teams on secure coding and code review practices. • Support incident response planning and playbook development; foster a culture of continuous assurance. Your experience will include: • Leading the development of security architecture and design for complex IT requirements, ensuring More ❯

identity/access, encryption, data protection, secrets, and resilience). • Recommend and review controls for containerised and serverless workloads; guide teams on secure coding and code review practices. • Support incident response planning and playbook development; foster a culture of continuous assurance. Your experience will include: • Leading the development of security architecture and design for complex IT requirements, ensuring More ❯

identity/access, encryption, data protection, secrets, and resilience). • Recommend and review controls for containerised and serverless workloads; guide teams on secure coding and code review practices. • Support incident response planning and playbook development; foster a culture of continuous assurance. Your experience will include: • Leading the development of security architecture and design for complex IT requirements, ensuring More ❯

identity/access, encryption, data protection, secrets, and resilience). • Recommend and review controls for containerised and serverless workloads; guide teams on secure coding and code review practices. • Support incident response planning and playbook development; foster a culture of continuous assurance. Your experience will include: • Leading the development of security architecture and design for complex IT requirements, ensuring More ❯

and support other members of the team on privacy and/or AI-related M&A and similar workstreams. You support the cyber, tech & ops and other teams on incident response and cyber investigations. You manage and oversee the implementation of data and AI policies and processes. You support the other members of the team primarily on the More ❯

/7 visibility and threat detection across global environments, driving maturity and constant improvements to support the constantly changing threat landscape and define and monitor KPIs regarding detection, response and containment. You'll also manage 3rd party Penetration Testing and manage key security controls, MSSPs and tolling providers. Location/WFH: There's a hybrid work from home model … operations background with experience of leading SOCs or Security Operations teams within regulated environments You have an indepth knowledge of core security operations practices: SIEM, threat hunting, vulnerability management, incident response You have a good understanding of common threat actor tactics (MITRE ATT&CK), modern malware, and intrusion techniques You have experience of supporting complex security transformations across More ❯

of reliability engineering principles, including SLIs, SLOs, and error budgets. Excellent communication and stakeholder management skills. Ability to lead by influence and build consensus across diverse teams. Experience with incident response, root cause analysis, and implementing preventative measures. Comfortable working in a fast-paced, results-oriented contract environment. Please apply with your up-to-date CV in English. More ❯

of reliability engineering principles, including SLIs, SLOs, and error budgets. Excellent communication and stakeholder management skills. Ability to lead by influence and build consensus across diverse teams. Experience with incident response, root cause analysis, and implementing preventative measures. Comfortable working in a fast-paced, results-oriented contract environment. Please apply with your up-to-date CV in English. More ❯

infrastructure A thoughtful, pragmatic engineering approach Curiosity about security and detection (no prior experience required) Bonus if you’ve worked with: Event-driven or distributed systems Security tooling or incident response workflows Why Join? Work on hard, meaningful problems in cybersecurity Be part of a fast, technical, remote-first team Competitive salary and meaningful equity Founding Engineer - London More ❯

infrastructure A thoughtful, pragmatic engineering approach Curiosity about security and detection (no prior experience required) Bonus if you’ve worked with: Event-driven or distributed systems Security tooling or incident response workflows Why Join? Work on hard, meaningful problems in cybersecurity Be part of a fast, technical, remote-first team Competitive salary and meaningful equity Founding Engineer - London More ❯