51 to 75 of 292 Incident Response Jobs in London

by writing timely , accurate , and relevant customer-facing deliverables covering threat actors, vulnerabilities, campaigns, and malware. Supply intelligence to internal teams to enrich our threat detection, containment, investigation, and response capabilities. Conduct investigations to support fast-turnaround and long-form customer requests for information, including in incident response scenarios. Publish emergency customer advisories to alert on impactful … Experience working in online intelligence investigations and analysis, including strong OSINT skills What makes you uncommon? Understanding of cybersecurity and IT disciplines including networking, operating systems, authentication protocols, security incident response , and enterprise technical security solutions (SIEM, IDS/IPS, firewall solutions, offensive security tools ) Basic knowledge of Linux/Unix operating systems Certifications such as Network+, Security+ More ❯

team of 5 analysts and 3 engineers with diverse technical skills and backgrounds in cyber security. As our Lead Cyber Security Analyst, you'll: Develop and maintain the security incident response process, including all supporting materials. Serve as the technical escalation point for complex security incidents within the SOC team. Oversee incident response activities and ensure … and training for analysts, including malware reverse engineering, threat intelligence, and log analysis. Lead and mentor SOC analysts, fostering a high-performing team. Improve SOC services, including security monitoring, incident detection, analysis, and response. Establish and document processes and workflows. Oversee the development of security tools and technologies like NDR, EDR, Vulnerability Management, SIEM, and SOAR. Collaborate with business … owners to identify and reduce cyber threats and vulnerabilities. We're looking for someone who is: Experienced in information security, especially security operations and incident response. Senior experience within technical or security operations teams. Strong understanding of cyber security concepts, technologies, and best practices. Effective in managing and communicating with diverse stakeholders, including executives. Experienced with security tools such More ❯

on our website . Unilever's Cyber Security team is a global, product-led function aligned to the NIST Cyber Security Framework. We deliver capabilities across governance, protection, detection, response, and recovery to safeguard our people, operations, and digital assets. Operating alongside our Technology and Data teams, Cyber Security enables secure innovation and resilience across our global business. Our … recognizing unusualbehaviors that could indicate accidental, negligent or malicious activity. They manage the Insider Risks Data Loss Prevention service to support detection capabilities to allow for prevention, containment and response controls. Insider Risk also support the management of policies that apply to our data toensure it is safe but usable across our business. Role Summary: A vacancy exists for … any necessary steps to remedy them in a timely manner. Providing sensitive investigative services to other key Unilever investigative functions Reducing any risk or impact caused by a cyber incident Advising the broader organization on security best practices where applicable. RESPONSIBILITIES Define policies for data classification, protection, and handling based on sensitivity and regulatory needs. Ensure coverage across endpoints More ❯

Information Security team, you will help us achieve this mission by actively working to protect our staff, company, and the larger crypto communities we engage with. Ripple's Detection & Response team defends against internal and external threats across our company and services. We are focused on protecting Ripple, our revolutionary payment technology, our employees, and our customers. To accomplish … this, we are building data pipelines and detections, automating incident response, and developing leading-edge solutions to collect and analyze data in both security incidents and investigations. As a Detection and Response Engineer, you will build and grow your career in all of these areas. WHAT YOU'LL DO: Help lead the overall detection and response … logic to reduce false positives and noise Work with technology vendors to optimize security services for peak effectiveness Research and collaborate internally and externally on open-source solutions Automate response processes with SOAR and related technologies Act in a purple team capacity to ensure effectiveness of security systems and controls Participate in cross-functional security functions to help drive More ❯

Threat Modeling & Risk Assessment: Strong knowledge of security risk management. Cloud & Container Security: Expertise in AWS, Azure, GCP, Docker, and Kubernetes. Security Governance: Experience developing and enforcing security standards. Incident Response Leadership: Skilled in leading incident response and root cause analysis. Training & Mentorship: Ability to upskill teams on DevSecOps best practices. Please apply with your updated More ❯

Threat Modeling & Risk Assessment: Strong knowledge of security risk management. Cloud & Container Security: Expertise in AWS, Azure, GCP, Docker, and Kubernetes. Security Governance: Experience developing and enforcing security standards. Incident Response Leadership: Skilled in leading incident response and root cause analysis. Training & Mentorship: Ability to upskill teams on DevSecOps best practices. Please apply with your updated More ❯

and operations with a strong focus on automation, detection and secure by design principles. Additionally, as part of the role you will be leading and participating in threat detection, incident response and vulnerability management remediation. You will be serving as both a technical leader and operational responder, working closely with Product, infrastructure and Security Operations teams. We are … a dedicated security team. Ideally the candidate will have come from related security and architecture roles, focusing on security operations and product development. Key Responsibilities Serve as a senior incident responder, addressing emerging threats across the environment. Collaborate with infrastructure, network, and cross-functional teams to contain, investigate, and remediate security incidents. Conduct root cause analysis and participate in … forensic investigations as needed. Enhance system visibility by expanding logging coverage and implementing additional monitoring capabilities. Maintain, update, and regularly test incident response runbooks, containment strategies, and escalation protocols. Lead the end-to-end vulnerability management process for ION Markets systems, from identification to remediation. Provide support for security architecture reviews of developed systems to ensure alignment with More ❯

matter expert on information security across the organisation Ensure compliance with standards like Cyber Essentials Plus and CIS . Oversee third-party security providers and outsourced ICT services. Manage incident response planning, investigations, and reporting. Deliver engaging training to build a strong security culture. Collaborate with Legal and Data Protection teams to ensure GDPR compliance. Stay ahead of … navigating real-world security challenges and your ability to see both the technical and human side of data protection. You should have: Proven experience in ICT security management and incident response (CIS and Cyber Essential Plus). Strong technical knowledge of Microsoft 365, Azure, and cloud security. Familiarity with frameworks like ISO 27001, NIST, and CIS. Excellent communication More ❯

matter expert on information security across the organisation Ensure compliance with standards like Cyber Essentials Plus and CIS . Oversee third-party security providers and outsourced ICT services. Manage incident response planning, investigations, and reporting. Deliver engaging training to build a strong security culture. Collaborate with Legal and Data Protection teams to ensure GDPR compliance. Stay ahead of … navigating real-world security challenges and your ability to see both the technical and human side of data protection. You should have: Proven experience in ICT security management and incident response (CIS and Cyber Essential Plus). Strong technical knowledge of Microsoft 365, Azure, and cloud security. Familiarity with frameworks like ISO 27001, NIST, and CIS. Excellent communication More ❯

matter expert on information security across the organisation Ensure compliance with standards like Cyber Essentials Plus and CIS . Oversee third-party security providers and outsourced ICT services. Manage incident response planning, investigations, and reporting. Deliver engaging training to build a strong security culture. Collaborate with Legal and Data Protection teams to ensure GDPR compliance. Stay ahead of … navigating real-world security challenges and your ability to see both the technical and human side of data protection. You should have: Proven experience in ICT security management and incident response (CIS and Cyber Essential Plus). Strong technical knowledge of Microsoft 365, Azure, and cloud security. Familiarity with frameworks like ISO 27001, NIST, and CIS. Excellent communication More ❯

matter expert on information security across the organisation Ensure compliance with standards like Cyber Essentials Plus and CIS . Oversee third-party security providers and outsourced ICT services. Manage incident response planning, investigations, and reporting. Deliver engaging training to build a strong security culture. Collaborate with Legal and Data Protection teams to ensure GDPR compliance. Stay ahead of … navigating real-world security challenges and your ability to see both the technical and human side of data protection. You should have: Proven experience in ICT security management and incident response (CIS and Cyber Essential Plus). Strong technical knowledge of Microsoft 365, Azure, and cloud security. Familiarity with frameworks like ISO 27001, NIST, and CIS. Excellent communication More ❯

log parsing Threat Detection & Use Case Development: Develop and refine detection rules based on threat intelligence and attack patterns Continuously improve detection efficacy and reduce false positives Security Monitoring & Incident Response: Monitor systems for anomalies and malicious activity Contribute to threat hunting and incident response playbooks Provide expert guidance on securing applications and infrastructure Security Advisory More ❯

log parsing Threat Detection & Use Case Development: Develop and refine detection rules based on threat intelligence and attack patterns Continuously improve detection efficacy and reduce false positives Security Monitoring & Incident Response: Monitor systems for anomalies and malicious activity Contribute to threat hunting and incident response playbooks Provide expert guidance on securing applications and infrastructure Security Advisory More ❯

Stakeholders: Work with senior executives and business units to align IAM strategies with company objectives. IAM Transformation: Oversee the adoption of new IAM technologies and systems across the business. Incident Response: Lead IAM-related incident response strategies and ensure organizational resilience. Stay Current: Keep up with IAM trends and best practices to inform the company's More ❯

in a follow the sun model. They shall coordinate efforts in Data Engineering and Security Automation to provide regional capability in the support of operational teams such as Cyber Incident Response, the Security Operations Center, and Detection Engineering. In addition, they shall act as a conduit for regional requirements, working alongside local teams and stakeholders to help integrate … Work with Security Operations leadership, Data Engineering and Security Automation resources to design and deliver strategic projects and solutions Support 24/7/365 Security Operations teams, including Incident Response personnel throughout the course of an event if required Work closely with Security Operation Centre analysts to ensure end-user requirements are replicated in the functionality of More ❯

Participate in the information security risk management process to identify, assess, treat and monitor risks. Manage information security incidents and events to protect information assets. Help develop and implement incident response plans and procedures to ensure that information services are recovered in a timely manner in the event of a security breach. Track vendor and media disclosure of … . Familiarity with security frameworks such as ISO27001, NIST, or CIS Controls. Basic understanding of networking, operating systems, and cloud environments. Awareness of common threat vectors, controls and basic incident response principles. Basic knowledge of Windows operating systems, Active Directory, Entra ID Strong analytical and problem-solving skills. Excellent written and verbal communication. Ability to handle sensitive information More ❯

and application support engineer to manage the operation and maintenance of regulatory reporting systems for financial institutions. This role focuses on ensuring stable system operation through continuous monitoring, rapid incident response (including on-call support), root cause analysis, and documentation. The ideal candidate will have experience in maintaining mission-critical systems and strong skills in SQL-based data … weekend support Location: Central London (Hybrid) Position Overview This position supports the stable operation of regulatory reporting systems used by financial institutions. You will be responsible for system monitoring, incident response, root cause analysis, and providing comprehensive incident reports. The role requires attention to detail and a strong sense of ownership, as you will be supporting systems … and provide both temporary and permanent solutions • Extract and analyse data using SQL (Microsoft SQL Server) • Analyse incidents using logs and DB traces to identify root causes • Prepare detailed incident reports, including root cause and preventative actions • Communicate with clients and internal stakeholders in both English and Japanese Must Requirements • Experience in IT system operations and support for financial More ❯

the Bank's ability to withstand and recover from cyber attacks and system disruptions, including technical simulations and controlled attack scenarios (e.g. ransomware, DDoS, data corruption) to evaluate resilience, incident response capabilities, back up integrity, failover procedures and recovery time objectives. Facilitate the identification of vulnerabilities, improvements to defence strategies and aid recovery process validation Analyse test results … and experience are desirable: Experience in Ai/Ml Systems Security, Including LLMs, transformers and model interpretability Certification such as OSCE, CCT, OSEP, OSMR or similar Prior experience in incident response, threat intelligence, or ethical hacking at an enterprise level Background in regulatory environments (e.g. ISO 27001, SOCII, GDPR or AI Act compliance) Software engineering expertise (Java, Kotlin More ❯

incidents using SIEM tools (Splunk) to create detection use cases, analyse security event data for proactive threat hunting and conduct research on the latest threats and vulnerabilities to enhance incident response readiness and capabilities. Location/WFH: You'll join the team in the Frankfurt office three days a week with flexibility to work from home the other … two days. About you: You are degree educated in Cyber Security or Computer Science You have strong experience in Security Operations and Incident Response You have experience of performing analysis with SIEM technologies, Splunk preferred You have experience with proactive threat hunting using MITRE ATT&CK or similar frameworks You have a deep understanding of security appliances/ More ❯

policies across IT and OT environments. Conduct risk assessments and implement proactive threat mitigation measures. Oversee Microsoft 365 security, endpoint protection, email security, and other key cybersecurity tools. Manage incident response plans and investigations, coordinating with internal teams and external partners. Ensure compliance with standards like ISO 27001, GDPR, and NIST frameworks. Promote security awareness and training across … stakeholder engagement. Strong knowledge of cybersecurity frameworks, ICS/OT security, and risk management. Hands-on experience with Microsoft 365 security tools, EDR, and related technologies. Demonstrated leadership in incident response and cross-functional security initiatives. More ❯

policies across IT and OT environments. Conduct risk assessments and implement proactive threat mitigation measures. Oversee Microsoft 365 security, endpoint protection, email security, and other key cybersecurity tools. Manage incident response plans and investigations, coordinating with internal teams and external partners. Ensure compliance with standards like ISO 27001, GDPR, and NIST frameworks. Promote security awareness and training across … stakeholder engagement. Strong knowledge of cybersecurity frameworks, ICS/OT security, and risk management. Hands-on experience with Microsoft 365 security tools, EDR, and related technologies. Demonstrated leadership in incident response and cross-functional security initiatives. More ❯

policies across IT and OT environments. Conduct risk assessments and implement proactive threat mitigation measures. Oversee Microsoft 365 security, endpoint protection, email security, and other key cybersecurity tools. Manage incident response plans and investigations, coordinating with internal teams and external partners. Ensure compliance with standards like ISO 27001, GDPR, and NIST frameworks. Promote security awareness and training across … stakeholder engagement. Strong knowledge of cybersecurity frameworks, ICS/OT security, and risk management. Hands-on experience with Microsoft 365 security tools, EDR, and related technologies. Demonstrated leadership in incident response and cross-functional security initiatives. More ❯

policies across IT and OT environments. Conduct risk assessments and implement proactive threat mitigation measures. Oversee Microsoft 365 security, endpoint protection, email security, and other key cybersecurity tools. Manage incident response plans and investigations, coordinating with internal teams and external partners. Ensure compliance with standards like ISO 27001, GDPR, and NIST frameworks. Promote security awareness and training across … stakeholder engagement. Strong knowledge of cybersecurity frameworks, ICS/OT security, and risk management. Hands-on experience with Microsoft 365 security tools, EDR, and related technologies. Demonstrated leadership in incident response and cross-functional security initiatives. More ❯

systems. 2 years of experience leading projects and providing technical leadership. Preferred qualifications: Experience in Large Language Models/Machine Learning tooling and infrastructure. Experience in automation, monitoring, and incident response. Experience in C++, Java, Python, or Go. Understanding of Site Reliability Engineering (SRE) principles and best practices. Excellent communication, project and stakeholder management skills. About the job Site … scalable and reliable Large Model infrastructure. Scale systems sustainably through mechanisms like automation, and evolve systems by pushing for changes that improve reliability and velocity. Participate in an oncall incident response, be a part of the oncall rotation and practice blameless postmortems. Practice sustainable incident response and blameless postmortems. Implement best practices in SRE, including automation … monitoring, and incident response. Google is proud to be an equal opportunity and affirmative action employer. We are committed to building a workforce that is representative of the users we serve, creating a culture of belonging, and providing an equal employment opportunity regardless of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age More ❯

tests, identifying risks and driving remediation efforts. Monitor infrastructure for security incidents or unauthorised activity, responding swiftly to mitigate potential threats. Investigate security breaches and incidents, and develop robust incident response plans to ensure timely and effective resolution. Collaborate with cross-functional teams to design, implement, and manage security controls and configurations across a range of platforms and … . Relevant security certifications, such as Security+, IAT II/III level, or equivalent. Strong capability in risk assessment, vulnerability management, and data informed decision -making. Solid understanding of incident response procedures, including containment, eradication, and recovery from cybersecurity events. Advanced proficiency in AWS, with experience in multi-region and hybrid cloud architectures Strong grasp of networking protocols More ❯