×
Register Here to Apply for Jobs or Post Jobs. X

Security Analyst; Incident Response Lead

Job in Greater London, London, Greater London, W1B, England, UK
Listing for: Government Recruitment Service
Full Time position
Listed on 2026-02-28
Job specializations:
  • IT/Tech
    Cybersecurity, IT Project Manager, Security Manager
Salary/Wage Range or Industry Benchmark: 80000 - 100000 GBP Yearly GBP 80000.00 100000.00 YEAR
Job Description & How to Apply Below
Position: Security Analyst (Incident Response Lead)
Location: Greater London

Overview

The Cabinet Office supports the Prime Minister and ensures the effective running of government. It is also the corporate headquarters for government, in partnership with HM Treasury, and takes the lead in certain critical policy areas.

The Cyber Defence team delivers cyber threat intelligence, threat detection and incident response capabilities for the Cabinet Office, and is responsible for defending both internal IT infrastructure and citizen-facing services. As an Incident Response Lead, you’ll take a primary role in building and delivering these core capabilities, focusing on managing and responding to incidents.

Security Vetting

IMPORTANT:
SECURITY VETTING

This role requires SC (Security Check) which will be conducted by the NSV (National Security vetting). You need to have been resident in the UK within the past five years in order to apply. Here is a short video why this is necessary.

Responsibilities
  • Lead the investigation of security alerts to understand the nature and extent of possible cyber incidents
  • Lead the forensic analysis of systems, files, network traffic and cloud environments
  • Lead the technical response to cyber incidents by identifying and implementing (or coordinating the implementation of) containment, eradication and recovery actions
  • Support the wider coordination of cyber incidents
  • Review previous incidents to identify lessons and actions
  • Identify and deliver opportunities for continual improvement of the incident response capability
  • Work closely alongside other Cyber Defence functions, supporting the continual improvement of wider capabilities
  • Develop and update internal plans, playbooks and knowledge base articles
  • Act as an escalation point for, and provide coaching and mentoring to, security analysts
  • Be responsible for leadership and line management of security analysts

Cyber incidents can and do arise on a 24/7 basis. The team operates an out-of-hours on call rota, which you will be expected to join.

#J-18808-Ljbffr
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary