126 to 150 of 281 Incident Response Jobs in London

Firm - London Are you a security professional looking to step into a high-profile, enterprise environment? One of the world’s most prestigious law firms is seeking a Senior Incident Response & SOC Engineer to join its global Information Security team, based in London . This is a rare opportunity to play a key role in the operation and … enhancement of a 24/7 SOC , handling incident response and contributing to the development of detection, automation, and reporting tools. Key Responsibilities: Lead and support incident response (IR) and investigation of security threats across a complex enterprise estate. Manage, tune, and develop SIEM and EDR technologies to enhance threat detection and response capabilities. Implement … Proven experience working in or alongside a 24/7 Security Operations Centre . Strong technical exposure to SIEM (ideally Splunk), EDR (CrowdStrike preferred), and SOAR tools. Expertise in incident handling , threat analysis , and digital forensics . Scripting or automation experience (Python, PowerShell, etc.) is highly beneficial. Knowledge of MITRE ATT&CK , NIST CSF , and related security frameworks. Legal More ❯

environment. This fully onsite role (5 days per week) offers exposure to cutting-edge security challenges across multiple domains. This is an opportunity to deep-dive into security engineering, incident response, and automation in a high-impact role. If you're a technically strong, hands-on engineer looking for broad exposure and real security challenges, we want to … hear from you! Responsibilities Owning security projects end to end - from design to execution Engineering, automating, and securing infrastructure, networks, and cloud environments Hands-on engagement in Incident Response, security assessments, and remediation Working across networking, firewalls, and security (Palo Alto, Fortinet, all major cloud providers) Building and automating with Terraform, Ansible, Golang, Python, HashiCorp Leveraging offensive security More ❯

Job Description Job Purpose The ICE Cybersecurity Digital Forensics and Incident Response (DFIR) team is responsible for defending critical financial infrastructure from Global Cyber threats. We leverage an evolving arsenal of controls that require technical proficiency as well as tenacity, professionalism, and strong communication skills. Responsibilities Security Analytics - Efficiently distill actionable information from large data sets for reporting … hunting, and anomaly detection Incident Management - Detect, document, investigate, and resolve security incidents in an efficient manner Endpoint Forensics - Construct meaningful incident timelines from forensic artifact analysis Counter Measures - Ability to design and implement preventative and corrective controls to counteract emerging threats Proactive Threat Hunting - Develop and execute focused plans to discover advanced threats that evade traditional security More ❯

outsourced MDR partner Manage and evolve the Security Operations Centre (SOC), guiding a small team of security professionals Coordinate timely responses to security incidents, ensuring proper documentation and post-incident analysis Collaborate with internal teams to ensure policies, protocols and operations align with business objectives and emerging threats Drive continual improvement in monitoring, incident response, and preventative … Security Service Edge (SSE), and SASE Proven ability to bridge the gap between technical and non-technical stakeholders when communicating security issues A passion for continuous improvement and post-incident analysis to drive security maturity What's on offer: Remote-first working (London office visit only max once per week) 35-hour working week for strong work-life balance More ❯

Job Description Job Purpose The ICE Cybersecurity Digital Forensics and Incident Response (DFIR) team is responsible for defending critical financial infrastructure from Global Cyber threats. We leverage an evolving arsenal of controls that require technical proficiency as well as tenacity, professionalism, and strong communication skills. Responsibilities Security Analytics - Efficiently distill actionable information from large data sets for reporting … hunting, and anomaly detection Incident Management - Detect, document, investigate, and resolve security incidents in an efficient manner Endpoint Forensics - Construct meaningful incident timelines from forensic artifact analysis Counter Measures - Ability to design and implement preventative and corrective controls to counteract emerging threats Proactive Threat Hunting - Develop and execute focused plans to discover advanced threats that evade traditional security More ❯

relationships between business services and underlying infrastructure • Identify and build business applications from discovered/ingested Asset data and mature a ServiceNow-Splunk integration for enhanced security monitoring and incident response. • Configure and enhance ServiceNow SIR and SecOps modules to support CSOC incident response and Vulnerability Management capability. • Develop and maintain documentation for all configurations and customisations. More ❯

relationships between business services and underlying infrastructure • Identify and build business applications from discovered/ingested Asset data and mature a ServiceNow-Splunk integration for enhanced security monitoring and incident response. • Configure and enhance ServiceNow SIR and SecOps modules to support CSOC incident response and Vulnerability Management capability. • Develop and maintain documentation for all configurations and customisations. More ❯

including device setup and account management. Manage global laptop deployment and hardware provisioning for employees worldwide. Maintain network connectivity and infrastructure across multiple sites Assist with security investigations and incident response activities Resolve IT issues and provide technical support within office environments Collaborate closely with security, compliance, and other technical teams Coordinate with vendors and suppliers to procure … efficiency Strong understanding of information security frameworks, particularly ISO27001 Experience with enterprise device management and deployment at scale Knowledge of networking fundamentals and troubleshooting Familiarity with security tools and incident response procedures Experience supporting remote and hybrid work environments Strong vendor management and procurement skills Excellent problem-solving and communication abilities Ability to work across multiple time zones More ❯

within defined limits. Develop, test, and refine our overarching Operational Resilience Framework , including policies, procedures, and test plans. Enhance and manage our Business Continuity Management Framework, Crisis Management, and Incident Response Plans . Coordinate and execute various operational resilience testing exercises, including scenario testing, stress testing, and crisis simulations. Monitor and report on operational incidents, ensuring that valuable … and understanding of PRA, FCA and Bank of England regulations on operational resilience, including SS1/21 and PS6/21. Strong knowledge and experience in BCP, disaster recovery, incident management, and crisis response. Strong risk management knowledge and experience in conducting risk assessments, impact tolerances, scenario testing and developing resilience metrics. Degree in IT, Cybersecurity or equivalent and More ❯

and guide ISO 27001 implementation roadmap. Review and help draft security policies and procedures. Advise on securing Microsoft 365 Cloud PC environment. Support compliance with financial sector regulations. Establish incident response, business continuity, and governance frameworks. Requirements: Proven cybersecurity consultancy experience. Strong knowledge of ISO 27001 (preferably certified). Experience with Microsoft 365 security features (Intune, Defender, etc. More ❯

and external audits and maintaining information security policies and associated document set. - Support on the confidentiality, integrity and availability aspects of the Firm's and client data. - Sustain the Incident Response plans including exercising and training. - Provide information security risk assessments to ensure compliance with the Firm's policies with critical and high risk third parties. - Review and More ❯

etc.) Configure and fine-tune Microsoft Defender for Office 365, Identity, Endpoint and Cloud Apps Define and implement security baselines and compliance policies for M365 workloads Lead investigations and incident response leveraging Microsoft security tools Collaborate with cyber security, infrastructure and architecture teams to ensure alignment with overall cloud strategy Required Skills & Experience: Proven expertise in Microsoft More ❯

etc.) Configure and fine-tune Microsoft Defender for Office 365, Identity, Endpoint and Cloud Apps Define and implement security baselines and compliance policies for M365 workloads Lead investigations and incident response leveraging Microsoft security tools Collaborate with cyber security, infrastructure and architecture teams to ensure alignment with overall cloud strategy Required Skills & Experience: Proven expertise in Microsoft More ❯

governance and internal control arrangements operated by Wallester UK. The UK HoORO will also be a subject matter expert at Wallester Group level for DORA/Operational Resilience, BCP, Incident Management and Data Privacy. Work responsibilities Control and Oversight of Outsourced Technology and Operations Ensure that systems and technology platforms used for Wallester UK operations are set up and … the 'risk owner' for technology, outsourcing and operations risk, including identifying, assessing and mitigating risks related to these areas. Key risk areas include cybersecurity and operational resilience. Maintain effective incident response and business continuity arrangements in partnership with the Wallester UK CCO, including managing operational incidents in a manner that meets FCA requirements. Ensure all applicable regulatory requirements More ❯

Japan team is seeking a Senior Security Consultant who can lead a variety of customer engagements, including building security strategies and roadmaps, architecture design and implementation support technical assessments, incident response and security control implementation support. You will work with AWS sales, engineering, training & certifications and support teams as well as partners to provide technical assistance to customers … Cyber Security. You have experience in the design/implementation in multiple areas of Cyber Security, such as Identity and Access management, Infrastructure Security, Data Security, Application Security or Incident Detection and Response. You've been hands-on as a software developer, system administrator, network engineer, or systems architect and have experience leading larger delivery teams or other IT More ❯

products and services Maintenance and development of the in-house security framework Supporting vulnerability assessment scans and collaborating with other teams on remediation approach Collaborating with technology teams for incident handling, patching disciplines, and system hardening frameworks Collaborating with the Information Technology team on deployment, operation, and continual improvements of security solutions Collaborating with software developers to secure proprietary … management solution Performing periodic risk assessments of Marex's systems Auditing PII data within the environment for proper sanitization, responsible for deployment of DLP controls Assisting technology teams with incident response and disaster recovery planning Communicating Marex's security requirements to 3rd party vendors Assisting with technology audits conducted by internal or external auditors Ensuring organisation's compliance More ❯

using tools like Terraform and Ansible . Provide Cloud security guidance, conduct reviews, and ensure alignment with standards such as NIST. Implement third-party security tools and assist in incident response, working with the CSOC team on Cloud threats and events. Build and enforce Cloud-native security tools, conduct threat modelling, and architectural reviews to improve security practices. More ❯

on back-office flows, particularly around Regulatory and Transaction Reporting support Daily interaction with all internal stakeholders with regards to support issues Efficiently create and track issues within an incident-management system to help identify trends and patterns Create and monitor internal reports and usage queries Assist with product testing and project work Identify and escalate possible platform improvements … At least 7 years hands-on support experience within a financial institution (buy-side, sell-side, venue/platform provider) Experience with Site Reliability Engineering (SRE) practices, including monitoring, incident response, and post-mortem analysis Hands-on experience with containerization technologies such as Docker and Kubernetes Proven experience managing cloud-based infrastructure and services, including AWS, Azure, or More ❯

engaging, multi-format awareness content including digital communications, web-based activities, social collaboration, and live events. Maintain and enhance the Cyber Awareness platform, ensuring accessibility and relevance. Support security incident response with tailored communication and awareness plans. Monitor and report on the effectiveness of training programs, providing actionable insights to Cyber and Business Leadership. Key skills that will More ❯

required operating model to support the solution post-delivery. • Identify and document all user journeys associated with the management of customer access.• Ensure all user journeys, monitoring, alerting, and incident response workflows are tested and operational prior to go live of the new SOC service.• Establish governance processes, services level agreements, and reporting expectations for the CIAM service. More ❯

knowledge of AWS infrastructure and cloud security best practices. Experience with GitHub administration and security controls. Proficiency in SQL for data analysis and security investigations. Hands-on experience with incident response, including detection, triage, and remediation. Strong endpoint management skills across multiple operating systems (Mac, Windows, Linux). Proficiency in at least one scripting language (Python, Bash) and More ❯

elegant, self-healing systems that deploy flawlessly Knowledge of cloud security frameworks and compliance requirements Understanding of cost optimization strategies and cloud financial management Familiarity with monitoring, observability, and incident response best practices Communication & Business Skills Excellent presentation skills with experience speaking to technical and executive audiences Strong written communication abilities, especially for proposals and technical documentation Natural More ❯

elegant, self-healing systems that deploy flawlessly Knowledge of cloud security frameworks and compliance requirements Understanding of cost optimization strategies and cloud financial management Familiarity with monitoring, observability, and incident response best practices Communication & Business Skills Excellent presentation skills with experience speaking to technical and executive audiences Strong written communication abilities, especially for proposals and technical documentation Natural More ❯

with implementation experience Experience designing and managing enterprise device management programs globally Advanced knowledge of networking architecture, security design, and infrastructure planning Experience with security frameworks, risk assessment, and incident response leadership Proven ability to design and support remote and hybrid work environments at scale Strategic vendor management experience, including contract negotiation and relationship building Excellent leadership, communication More ❯

strategy across the company, with a vision to make Equinix one of the most secure and trusted global companies. Oversee all aspects of security operations, governance, architecture, engineering and incident response to protect systems, networks, and our data. Lead the modernization and simplification of the security environment to support Equinix’s digital transformation agenda. Keep us secure but More ❯