1 to 25 of 55 Threat Analysis Jobs in London

tooling. Take ownership of end-to-end handling of medium to high-severity incidents, coordinating containment and remediation efforts. Maintain detailed incident records, including timelines, impact assessments, root cause analysis, and mitigation steps. Act as an escalation point for Tier 1 analysts, guiding initial response actions and validating escalations. Participate in on-call or out-of-hours technical support … where appropriate. Threat Intelligence and Analysis Perform in-depth analysis of suspicious activity, identifying indicators of compromise and attribution patterns. Lead threat intelligence sharing within the organization and with external partners. Mentor Tier 1 staff in interpreting threat data and logs during investigations. Security Monitoring and Detection Engineering Conduct continuous security monitoring of network traffic … Coordinate and support risk-based prioritization of vulnerability remediation efforts. Support vulnerability lifecycle management, including exception handling, patch validation, and reporting. Provide vulnerability remediation guidance based on CVSS scores, threat context, and business impact. Collaboration and Knowledge Sharing Act as a technical mentor to Tier 1 analysts, supporting their development and escalation handling. Work closely with other IT teams More ❯

for both cloud and traditional infrastructures. This position is designated for weekend coverage. The role's standard 5-day work week will include Saturday and Sunday. Responsibilities: Perform technical analysis on a wide range of cybersecurity issues Monitor, triage, prioritize, and coordinate events with global and regional teams, and respond to alerts for further investigation Integrate lessons learned to … to determine if an incident has occurred Recognize attacker and APT activity; tactics, techniques, and procedures (TTPs); and indicators of compromise (IOCs) that can be used to improve monitoring, analysis and incident response - integrate threat intelligence reporting & indicators of compromise to improve defenses and proactively mitigate new threats Coordinate the response for confirmed security incidents, to include efforts … and remediate - function as the first line of cyber defense as part of the Global Security Team Maintain situational awareness and keep current with cyber security news and latest threat actor TTPs, in part to support the production of effective situational awareness products with relevant metrics and visualizations for key stakeholders and leadership Review of multiple log types including More ❯

qualifications (e.g., CISM, CISSP) preferred Experience leading security teams or senior security analysts Project management experience (preferred) Leadership skills for managing security analysts and specialists Expertise in incident detection, analysis, response, and coordination Deep understanding of cybersecurity principles and technologies Proficiency with SOC tools (SIEM, IDS/IPS, EDR) Risk assessment and prioritization skills Knowledge of regulations like GDPR … to adapt to evolving threats and technologies Experience Extensive security operations experience Prior CIRT team experience Leadership in Security Incident Response Experience with SIEM/SOAR tools Knowledge of threat intelligence, vulnerability management, network security Experience with threat analysis and security alerts Familiarity with frameworks like MITRE ATT&CK, NIST CSF Leadership or strong potential in security More ❯

management, network security, cloud security (AWS & Azure), firewalls and intrusion detection systems. You will monitor networks and systems for security breaches, enhance the performance of SecOps tools, perform regular threat analysis and act as a subject matter expert for mitigating cyber risks. This is an outstanding opportunity for an accomplished Information Security Engineer to join a market leading More ❯

MITRE ATT&CK, NIST/NICE, and others, identify gaps in coverage, and assist in the development of new content to address those gaps. This individual will also monitor threat intelligence feeds to ensure our labs remain relevant and valuable to our customers. The fellowship you’ll be joining You will contribute to our growing Content team and report … a Content Analyst at Hack The Box Content Documentation: Create detailed walkthroughs and hints for our labs. Ensure all documentation is clear, concise, and user-friendly. Framework Mapping and Analysis: Map each lab to relevant vulnerabilities, techniques, and frameworks such as MITRE ATT&CK, NIST/NICE, OWASP Top 10, etc. Maintain a centralized database to track mappings and … content alignment. Gap Analysis and Content Enhancement: Evaluate gaps between existing labs and industry frameworks to identify areas for new content development. Work closely with the content development teams to create labs that address these gaps. Content Categorization and Utilization: Develop a system to categorize content by domain, sector, threat actor, or other relevant criteria. Provide insights on More ❯

Tenable, NCSC's Active Cyber Defence Toolkit) and Attack Surface Management tools. Deliver a seamless vulnerability management service across infrastructure and business units, ensuring the effectiveness of security measures. Threat Analysis: Utilize various sources of information to identify, analyze, and report on relevant threats and vulnerabilities. Continuously monitor and assess the threat landscape to adjust security measures … to effectively communicate security issues to diverse stakeholders. Strong stakeholder management skills, with a proven track record of working with cross-functional teams. In-depth understanding of the current threat landscape and security best practices. Preferred Qualifications: Relevant certifications (e.g., CISSP, CEH, CompTIA Security+). Experience with the NCSC's Active Cyber Defence Toolkit. Familiarity with regulatory requirements and More ❯

The team you'll be working with: Consultant - Offensive Security Testing Role Overview: We are seeking a highly skilled and experienced Offensive Security Consultant with a strong focus on threat intelligence and attack methods. The ideal candidate will manage and conduct advanced penetration testing engagements, leveraging threat intelligence to simulate real-world attacks across various environments, including OT … provide strategic, actionable recommendations to enhance our clients' security posture. What you'll be doing: Responsibilities: Lead and manage the full lifecycle of complex penetration testing engagements, applying a threat intelligence-led approach. Execute advanced penetration tests across environments such as applications, infrastructure, web, APIs, O365, Azure, AWS, and OT, using current threat landscape knowledge and attacker TTPs. … Develop and maintain detailed test plans and use cases informed by threat intelligence analysis. Identify and prioritize critical OT and IT assets based on potential threats and exposure. Plan and schedule testing engagements based on threat assessments and client needs. Produce clear, detailed reports with technical findings, business impact, and strategic remediation recommendations for diverse audiences. Communicate complex More ❯

to learn more about this opportunity, feel free to reach out and apply today! Responsibilities: Monitor and analyse security events within the SOC, ensuring timely detection and response. Perform threat analysis, vulnerability assessments, and implement mitigation strategies. Develop and refine incident response playbooks and procedures. Conduct root cause analysis (RCA) for high-priority incidents to prevent recurrence. … team. Requirements: Minimum of two years' experience in a SOC or managed security environment. Strong knowledge of network security (firewalls, IDS/IPS, VPNs). Proficiency in incident response, threat analysis, and vulnerability management. Experience working with SIEM tools for monitoring and event analysis. Understanding of malware analysis, forensic investigations, and endpoint security. Strong analytical and problem More ❯

Operations Center team. The SOC Analyst will be responsible for monitoring, analyzing, and responding to cybersecurity incidents and threats. The ideal candidate will have experience with security monitoring tools, threat analysis, and incident response. Key Responsibilities: Monitor and analyze security events and alerts from various sources (SIEM, IDS/IPS, firewall, antivirus, etc.). Perform initial triage and … procedures. Investigate and escalate potential security incidents as needed. Maintain accurate documentation of incidents, investigations, and findings. Collaborate with IT and security teams to coordinate response and resolution. Conduct threat hunting to proactively detect malicious activity. Maintain and improve SOC procedures and playbooks. Stay current on cybersecurity trends, threats, and vulnerabilities. Participate in regular security audits and assessments. Assist … equivalent work experience). Experience: 13 years of experience in a security operations, cybersecurity, or IT role. Experience with SIEM platforms (e.g., Splunk, QRadar, ArcSight). Familiarity with log analysis and intrusion detection systems. Certifications (Preferred but not required): CompTIA Security+ Certified SOC Analyst (CSA) GIAC Security Essentials (GSEC) Certified Ethical Hacker (CEH) Skills: Strong analytical and problem-solving More ❯

and industry standards. They will be responsible to leverage and optimise a number of tools including, MS Defender, Sentinel, Azure and our SOC partner to enhance cyber resilience, conduct threat analysis and proactive risk assessments to design effective controls. They will support the Group's Cyber Security operations function, by designing and day-to-day delivery of threat intelligence, threat detection, incident response, vulnerability management and ethical hacking capabilities. They will play a key role in the Technology Directorate, to improve cyber resilience, reporting and effectiveness. As a Cloud Security Engineer, you will have a technical background and are looking to specialise in offering exceptional support and the effective operation of the technology infrastructure by means More ❯

management, network security, cloud security (AWS & Azure), firewalls and intrusion detection systems. You will monitor networks and systems for security breaches, enhance the performance of SecOps tools, perform regular threat analysis and act as a subject matter expert for mitigating cyber risks. This is an outstanding opportunity for an accomplished Cyber Security Engineer to join a market leading More ❯

help identify and analyse potential threats utilising a number of different SIEM & EDR tools. Responsibilities To be a key member of Security Operations Centre (SOC) and provide real-time threat analysis and detection. Respond to system generated alerts, analyse logs and traffic patterns. Provide analysis and trending of security log data from many monitoring points. Support multiple … to pre-emptively eliminate the possibility of system breaches. Other duties as assigned. About You Requirements A passion for Cyber Security and enjoys solving problems. Knowledge of the security threat landscape. Knowledge of various security methodologies and processes, and technical security solutions (firewall and intrusion detection systems). Knowledge of TCP/IP Protocols, network analysis, and network More ❯

and regulations. You will be responsible for leveraging and optimising a number of tools including, MS Defender, Sentinel, Azure and the external SOC partner to enhance cyber resilience, conduct threat analysis, and proactive risk assessments to design effective controls. You will be leading the Cyber Security operations function, by providing strategic direction and coordinating day-to-day delivery … of threat intelligence, threat detection, incident response, vulnerability management, and ethical hacking capabilities. You will be leading a team of Infrastructure Engineers, ensuring strong data controls are in place, whilst working closely with key stakeholders to establishing responsibilities and ensure an end-to-end approach to cyber resilience Is embedded in other functions. What you'll need to More ❯

to contain & mitigate security risks. Security analysts will also need to review & address any detected false positives. The day-to-day Security monitoring, managing security cases & tickets, security incident analysis, and other security tasks. Analysing a variety of security logs to identify actionable events (SIEM reports-alerts-tickets, system, network, security monitoring tools). Determine the attack type based … need A University degree level education or equivalent in Information Security, Forensics, or Computer Science; related experience and/or training in the field of IT security monitoring and analysis, cyber threat analysis, and vulnerability analysis. Understanding of performing technical level analysis and interpretation of information from SOC systems; incident identification/analysis, escalation procedures More ❯

with network service providers, ensuring optimal WAN, LAN, and hardware performance. Configuration & Optimization: Create and modify configurations on Cisco/Arista switches, routers, and firewalls (Firepower & Palo Alto). Threat Analysis & Mitigation: Utilise threat intelligence services and security tools to identify and address vulnerabilities. Automation & Scripting: Implement network automation using Python and Ansible for improved efficiency. Technical More ❯

with network service providers, ensuring optimal WAN, LAN, and hardware performance. Configuration & Optimization: Create and modify configurations on Cisco/Arista switches, routers, and firewalls (Firepower & Palo Alto). Threat Analysis & Mitigation: Utilise threat intelligence services and security tools to identify and address vulnerabilities. Automation & Scripting: Implement network automation using Python and Ansible for improved efficiency. Technical More ❯

with network service providers, ensuring optimal WAN, LAN, and hardware performance. Configuration & Optimization: Create and modify configurations on Cisco/Arista Switches, Routers, and Firewalls (Firepower & Palo Alto). Threat Analysis & Mitigation: Use threat intelligence services and security tools to identify and address vulnerabilities. Automation & Scripting: Implement network automation using Python and Ansible for efficiency. Technical Documentation More ❯

relationships with network service providers, ensuring optimal WAN, LAN, and hardware performance Configuration & Optimization: Create and modify configurations on Cisco/Arista switches, routers, and firewalls (Firepower & Palo Alto) Threat Analysis & Mitigation: Utilise threat intelligence services and security tools to identify and address vulnerabilities Automation & Scripting: Implement network automation using Python and Ansible for improved efficiency Technical More ❯

potential weaknesses and vulnerabilities. Performing vulnerability testing and penetration testing: Using various tools and techniques (like Nessus, Burp Suite, Metasploit), you'll simulate attacks to uncover exploitable flaws. Developing threat analysis schedules and staying updated on emerging threats: Keeping abreast of the latest attack vectors, malware, and security trends is crucial. Developing and implementing security policies, standards, and More ❯

potential weaknesses and vulnerabilities. Performing vulnerability testing and penetration testing: Using various tools and techniques (like Nessus, Burp Suite, Metasploit), you'll simulate attacks to uncover exploitable flaws. Developing threat analysis schedules and staying updated on emerging threats: Keeping abreast of the latest attack vectors, malware, and security trends is crucial. Developing and implementing security policies, standards, and More ❯

potential weaknesses and vulnerabilities. Performing vulnerability testing and penetration testing: Using various tools and techniques (like Nessus, Burp Suite, Metasploit), you'll simulate attacks to uncover exploitable flaws. Developing threat analysis schedules and staying updated on emerging threats: Keeping abreast of the latest attack vectors, malware, and security trends is crucial. Developing and implementing security policies, standards, and More ❯

take a number of modules throughout the apprenticeship programme, including; Introduction to cyber security, networking fundamentals, operating systems, security foundations, security management, active defence, cloud security, programming scripting and threat analysis. This learning will be fundamental in helping you to build an understanding of cyber threats, hazards, risks, controls, measures and mitigations to help protect Coppers systems and people. More ❯

About Apexanalytix At Apexanalytix, we help some of the world’s largest companies stay ahead of risk. Our Cyber Threat & Vulnerability team provides cutting-edge analysis, monitoring, and intelligence on third-party and supplier cyber threats — helping procurement and risk leaders understand and act on the hidden risks in their extended supply chains. The Opportunity We’re looking … for a smart, curious, and capable individual to join our growing cyber threat team. This is a junior role, ideal for someone entering their first or second cybersecurity position who wants to step into a fast-paced, high-impact environment. You’ll be working directly with the Head of Cyber Threat Analysis, helping to assess supplier exposure … track threat actor behaviours, and identify vulnerabilities across global supply chains. It’s a rare chance to be part of a tight-knit team tackling real-world threats at scale. What You'll Be Doing Supporting the delivery of threat intelligence and vulnerability assessments for global clients in the form of reports, briefings and alerts. Monitoring threat More ❯

About Apexanalytix At Apexanalytix, we help some of the world’s largest companies stay ahead of risk. Our Cyber Threat & Vulnerability team provides cutting-edge analysis, monitoring, and intelligence on third-party and supplier cyber threats — helping procurement and risk leaders understand and act on the hidden risks in their extended supply chains. The Opportunity We’re looking … for a smart, curious, and capable individual to join our growing cyber threat team. This is a junior role, ideal for someone entering their first or second cybersecurity position who wants to step into a fast-paced, high-impact environment. You’ll be working directly with the Head of Cyber Threat Analysis, helping to assess supplier exposure … track threat actor behaviours, and identify vulnerabilities across global supply chains. It’s a rare chance to be part of a tight-knit team tackling real-world threats at scale. What You'll Be Doing Supporting the delivery of threat intelligence and vulnerability assessments for global clients in the form of reports, briefings and alerts. Monitoring threat More ❯

and strategic stakeholders. The Role This is more than just a hands-on analyst role. You’ll be looking at the bigger picture; investigating threats, guiding incident flow, analysing threat data, and playing a key role in improving detection and response processes. You’ll be working across platforms like: Elastic SIEM Microsoft Sentinel Defender for Endpoint CrowdStrike Falcon MISP … s also the option to step into a management role if you’re interested in developing others. What We’re Looking For Significant experience in a SOC or cyber threat analysis role, ideally within a multi-client (MSSP or consultancy) environment Strong analytical mindset – focused on not just what happened, but why, how, and how to prevent it More ❯