1 to 25 of 127 Incident Response Jobs in London

to optimize costs year on year- Support M&A activities, ensuring that acquired businesses are integrated into GlobalData’s IT & Security stack- Lead cybersecurity incident response in conjunction with our external cyber security partnersSkills & requirements:- The ideal candidate will have a background and experience in Technology management, including … and empathy to evolving risk back drop and business needs.- Advanced written, numerical and presentation skills.- Demonstrable experience in managing information security operations and incident response activities- Significant, demonstrable experience and expertise in one or more of the following: network and systems security, Windows systems administration, Cybersecurity, IT … at all levels, and effective collaborations with other teams- Ability to plan, prioritize, and manage resources within a collaborative team-based environment, including rapid response to incidents, threats, and new technologies- Exhibit excellent analytical skills, the ability to manage multiple projects under strict timelines, as well as the ability more »

capable of implementing secure rebuilds tailored to customer requirements.Conduct assurance assessments of Third-Party suppliers to uphold security standards.Provide expert technical support during incidents response engagements.Reviewing existing technical environment, propose and manage changes to improve IT Security.Take ownership and responsibility for accomplishing objectives across the team and department.Demonstrate steadfast … NIST, CIS Critical Controls.VMWare or Hyper-V and server integration knowledge and experience.Certified Information Systems Security Professional (CISSP) or equivalent.Exposure to ISO 27001, 9001.Any incident Response or rebuild after disasters experience is a plus.Knowing we’re right for youEmbracing uniqueness, the culture at Grant Thornton thrives on the more »

become a board level issue.You will provide our clients with a full spectrum of services encompassing business and technology resilience. When clients have an incident our Cyber Incident Response (CIR) team gets to work – fast – to identify root causes and evict threats. Our professionals apply their experience … the security of a single component to delivering a holistic security and privacy programme.Our CIR specialists are called to answer client needs regarding proactive incident response advisory services, reactive incident response, post-breach assessments, managed threat hunting as well as implementing response automation technologies.As a … Technical Incident Responder you will be focused on CIR within Risk Advisory, you will typically have responsibility for:Your creative mindset will enable you to solve clients’ issues whilst thinking around corners; You will bring innate ability to lead teams, inspire colleagues and act as a trusted business adviser more »

Manager, you will be responsible for overseeing the day-to-day security operations, implementing security measures, and mitigating security risks. Your expertise in cybersecurity, incident response, and team leadership will be crucial in ensuring the protection of the organisation's assets, information, and systems.Key ResponsibilitiesSecurity Operations Leadership: Lead … and manage the security operations team, providing guidance, mentorship, and performance feedback to ensure the team's effectiveness and efficiency.Incident Response Management: Develop and implement incident response procedures to promptly identify, assess, and respond to security incidents. Lead the team in conducting thorough investigations and root cause … and remediate identified vulnerabilities.Security Policies and Procedures: Establish and maintain security policies, standards, and procedures in line with industry best practices and compliance requirements.Security Incident Reporting: Provide timely and accurate reports on security incidents, threat trends, and the effectiveness of security measures to senior management.Security Awareness Training: Collaborate with more »

regularly review our hybrid work model, and the specific requirements may change at any time.As a direct report to the Head of Threat and Incident Management, you will lead TikTok's Cyber Fusion Center Operations in US, EMEA, or Singapore. The Threat Detection and Response team is responsible … security-related information sources to manage incidents related to cyber, privacy, and data protection for TikTok data, infrastructure, and products. The Threat Detection and Response team operates under a follow-the-sun model, with hubs located in Singapore, Dublin and US. The Threat Detection and Response team will … regularly survey the TikTok networks for signs of a breach, malware, or unauthorized access. Additionally, the Threat Detection and Response team is responsible for developing and maintaining incident response plans, playbooks and procedures. Finally, the Threat Detection and Response team will be responsible for data collection more »

vendor contracts for terms of service, understanding third-party risk, and data privacy issues. The analyst serves as an expert on cybersecurity protection, detection, response, and recovery. This individual is responsible for coordinating penetration testing and managing internal and external cybersecurity analysts to detect, mitigate, and analyze threats. Works … developing selection criteria to identify appropriate security solutions to support strategic, operational needs, and security requirements.Participate in the development and testing of the security incident response plan, act as the incident response leader. Develop security, risk, and compliance reports and alerts.Participate in the yearly review of … includes a minimum of 5-years experience in Information Security.Proficiency in security framework models such as NIST, etc., implementing and auditing security measures, security response, and incident management. Possess a working knowledge of Cisco network switches, routers, firewalls and VPN, network security, administration of DLP, antivirus\antimalware, IDS more »

use of management information from the following Security tools : SIEM, EDR, Vulnerability Intelligence or Behavioural Analysis.Project Management Experience (PRINCE2, AGILE etc)CompTIA Security.Understanding of incident response and Cyber Kill Chain.ITIL Foundation Level (v3 or v4).Background in a customer facing environment.Demonstrable track record of maintaining strong relationships with more »

root cause analyses, and monitoring the implementation of corrective measures.Assess and contribute to the ongoing development of documentation concerning cloud security policies, procedures, and incident response plans, including the delivery of management KPIs.Assist in creating and implementing security controls that align with regulatory requirements and business goals.Engage in more »

Global Information Security Operations ManagerThis is a senior technical lead position that will focus on MLP’s security incident response and manage global security operations staff. The role will also include maintenance, monitoring and administration of key information security technologies. The Information Security Team fosters a collaborative environment … activities across our log aggregation and SIEM platforms.Recommend, test, tune and implement SIEM and other tooling correlation rules.Identify false-positives from alerting, and perform incident response, triage, incident analysis and remediation tasks.Recommend and develop new SIEM use cases/rules with engineering teams.Maintain documentation for the SOC … function, including training program for new Security Operations personnel.Participate in Information Security Incident Response activities for the Firm’s environment.Enforce security policies and procedures by administering and monitoring appropriate systems, events and answering client queries.Perform threat and vulnerability management functions including vulnerability scans and/or analyze results more »

areas of focus for Perimeter Security are Firewalls (Cloud, Physical, Virtual, WAF), Proxies, IPS, and VPN. This includes but is not limited to Major Incident Response and Resolution, Tuning and maintaining solutions, providing mentoring to junior staff, improving security posture, operational projects, and overall operational process improvement. To more »

sustain our insurance panel memberships and maintain a market leading offering on the panel. You will partner with breach coaches and other complementary breach response vendors to drive alignment to enhance customer experience. Role Responsibilities Evaluate and vet potential cyber-insurance and legal partnerships that will deliver a positive … a wide variety of perspectives represented by different, internal and external groups Experience building and/or managing and growing a portfolio that includes incident response services. Secureworks is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment more »

Our Incident Response Associates are a critical part of our Cyber Security division's success. As a Response Associate (Technical Lead), you will deploy your incident response expertise in a senior delivery role across our incident response services. You will work across the … full lifecycle of security incidents to help our clients respond and recover, including: Leading technical incident response from first contact through to closure: you will be the primary technical resource on response cases, deploying your own expertise, creating tailored strategies for response workstreams, and offering guidance … to colleagues on your project team. Overseeing host- and network-based incident response investigations: including triage, system recovery, technical evidence collection, and forensics, log, malware and root cause analyses. Developing and sharing domain expertise: we will support you in growing your cyber expertise, including sharing it with the more »

experience with SIEM (Security Information and Event Management) tools will be instrumental in identifying and mitigating security threats proactively. Responsibilities: 1. Security Monitoring and Incident Response: - Utilize SIEM tools such as Microsoft Sentinel to monitor security events and respond promptly to potential threats. - Investigate security incidents, analyse root … causes, and implement necessary remediation actions. - Develop and maintain incident response procedures to ensure timely and effective handling of security breaches. 2. Vulnerability Management: - Conduct regular vulnerability assessments and penetration tests to identify weaknesses in our systems and infrastructure. - Collaborate with system administrators and developers to remediate vulnerabilities more »

Develop and maintain strong relationships with key stakeholders. Lead and manage a security pillar, ensuring the delivery of high-quality work. Document and maintain incident response plans for various cybersecurity incidents. Maintain Business Continuity Policies and Plans to ensure uninterrupted operations. Prepare and maintain Disaster Recovery plans to … mitigate potential disruptions. Collaborate with teams for data center operations and backup, ensuring compliance and risk management. Manage crisis response professionals and conduct simulation exercises to test preparedness. Qualifications and Experience: Bachelor’s degree in a related technical area. One or more relevant certifications such as CISSP, CISM, GCIH … CEH, or OSCP. Proficiency in SIEM Platforms, vulnerability management tools, and incident management processes. Experience in managing security functions or SOC capabilities. Strong analytical skills to analyze security monitoring data and identify threats. Ability to make considered decisions and ensure successful delivery in a fast-paced environment. Why Join more »

solutions that align with industry best practices and regulatory compliance requirements. Collaborate with other teams to integrate security controls seamlessly into the network infrastructure. Incident Response and Threat Mitigation: Monitor network traffic for security events and respond to security incidents in a timely manner. Conduct in-depth analysis … IPS, SIEM, and endpoint security solutions. Experience working within an ITIL framework. Hands-on experience with security tools and platforms for monitoring, analysis, and incident response. Excellent analytical skills with the ability to troubleshoot complex network security issues. Experience with cloud security solutions and architectures, particularly AWS or Azure. more »

switches, load-balancers, security device management systems, IDS/IPS, and DDoS mitigation systems. - Work in line with change control and configuration management processes. Incident Response: - Manage day-to-day network and security incident response, - Investigate, research, and analyze security incidents. - Use established procedures for incident more »

python or PowerShell - Desired Basic knowledge of designing and deploying information technology and solutions in one or more of the core domains: Endpoint protection; Incident Response; Malware Analysis; Application and Data security; Infrastructure and Endpoint; and Security Intelligence/SIEM. Understanding and experience working with structured design methodologies. more »

enhance privacy awareness across the organisation. Act as a liaison with regulatory authorities, external auditors, and third-party vendors on privacy-related matters. Support incident response activities, including investigating and remediating privacy incidents in a timely manner. Prepare and present reports to senior management, outlining key privacy risks more »

Best Practice Working with various other Security personnel Mitigating Information and Cyber based risks Identifying potential threats and risks Assisting with resolution of incidents Incident response and threat hunting Working with threat management frameworks Threat intelligence and continuous improvement Security monitoring and traffic analysis Vulnerability management You will … will be a requirement to cover 7am-7pm on a shift basis to ensure that full coverage is achieved. The ideal candidate will have: Incident response and security monitoring Understanding of threat modelling Investigation experience into Information and Cyber security incidents Broad technical understanding covering Windows, Linux, Unix more »

as code using tools like Terraform. Monitor and troubleshoot applications and infrastructure. Promote and implement best practices in observability (monitoring, tracing, alerting, logging) and incident response. What We're Looking For Strong background in Linux/Unix administration. Experience with Azure Cloud Services. Proficiency in infrastructure as code, preferably more »

and intelligence services and provides: Subscription and bespoke research services to public and private sector intelligence clients globally; Intelligence support to, and collection from incident response and managed threat hunting teams; Insight to our adversary emulation team on novel tools and techniques used by cyber threat actors; and … defining the threats to Critical National Infrastructure, to defining strategic collection requirements, generating intelligence reporting as part of our subscription intelligence service or in response to RFIs, you will have the opportunity to lead interactions with a wide ranging internal and external consumer base. You’ll also get to more »

policies and audit requirements. Contribute to the development of a Cybersecurity Operations Resource and Capacity planner managed through BDO's Azure DevOps environment. Oversee incident response, threat detection, and mitigation efforts You'll be someone with: A good understanding of monitoring frameworks eg MITRE ATT&CK and SIEM more »

these services, safeguarding the skies for countless travellers. As the custodian of these vital systems, your responsibilities will include meticulous oversight of daily operations, incident response, and strategic long-term management. Your role is crucial in ensuring the continuous availability of aviation safety services, and you will be more »

skills and Experience -you will have prior experience as acting as either a lead or an escalation point to the SOC -prior experience with incident response, threat and vulnerability management -development of incident response plans, processes and procedures -Working with Security frameworks MITRE, cyber kill chain more »

Work with vendors to diagnose, reproduce, and resolve technical problems. Monitor attacks, intrusions and unusual, unauthorised, or illegal activity, investigate security alerts and provide incident response. Maintain physical local network and telephone cabling, switches, and hubs. Provide assistance and support to colleagues in IT-related matters. QUALIFICATIONS AND SKILLS more »