15 of 15 Permanent Threat Detection Jobs in Central London

Financial Service firm seeks a Senior Threat Detection Engineer to join. In this role you will be tasked with threat profiling, building out CI/CD detections as code using a repository like Git to store detection rules, rule base tuning, and helping to develop … prioritises process improvement and enhancement this role is the perfect fit for you. I am keen to speak to those with a background in Threat Detection Engineering who have experience using MITRE ATT&CK, Sentinel, Microsoft KQL and have experience in process implemention. This is very flexible role ...

Cybersecurity Analyst Stockley Park, England - work on implementing and analyzing security event logs from SAP solutions - operate and enhance SAP Enterprise Threat Detection solution - calibrate detections for SAP ABAP, SAP Java, SAP HANA, SAP Commerce (Hybris) and SAP BTP - assist with securing SAP on AWS implementation - help securing … least 1 year Is Required Application Security Testing At least 1 year Is Required SAP System Hardening 2-5 years Is Required SAP Enterprise Threat Detection 2-5 years Is Required Enterprise Key Management 2-5 years Is Required SAP Business Technology Platform 2-5 years Is Required ...

Analyst to join a fast-growing Blue Team within our Cyber Practice. You will work with high-profile clients to ensure effective cyber incident detection, response, and threat mitigation across cloud, endpoint, and network environments. Key Responsibilities: Develop, maintain, and enhance security detection content for SIEM platforms … e.g., Splunk) to detect threats across diverse environments. Collaborate with security teams to identify gaps in detection, logging, and alerting based on business risks and threats. Review and improve SecOps standards and capabilities, highlighting optimization opportunities. Monitor, triage, and investigate triggered alerts, suggesting improvements where necessary. Respond ...

looking for a hands-on technical expert to join our team and enhance our Microsoft Sentinel & Azure SIEM threat detection capabilities. The Role: Design, implement & tune advanced detection rules and analytics. Translate threat intelligence into actionable detection logic. Lead SIEM enhancements, integrations & content migration. Mentor … junior engineers and drive best practices. Collaborate with IR & threat intel teams to refine detections. Skills: Proven experience in SIEM content development & threat detection. Strong expertise with Microsoft Sentinel, Azure & Logic Apps. Deep knowledge of MITRE ATT&CK, attacker TTPs & security principles. Strong analytical & problem-solving skills. ...

looking for a hands-on technical expert to join our team and enhance our Microsoft Sentinel & Azure SIEM threat detection capabilities. The Role: Design, implement & tune advanced detection rules and analytics. Translate threat intelligence into actionable detection logic. Lead SIEM enhancements, integrations & content migration. Mentor … junior engineers and drive best practices. Collaborate with IR & threat intel teams to refine detections. Skills: Proven experience in SIEM content development & threat detection. Strong expertise with Microsoft Sentinel, Azure & Logic Apps. Deep knowledge of MITRE ATT&CK, attacker TTPs & security principles. Strong analytical & problem-solving skills. ...

access events. Monitor, analyse, and respond to alerts from client security platforms (MDR/XDR, SentinelOne, Huntress, Fortinet, Mimecast, Avanan, Defender) to ensure rapid threat mitigation. Conduct vulnerability assessments, risk analyses and security audits across client environments, providing actionable recommendations and remediation guidance. Implement and maintain security hardening across … alignment with best practices and frameworks such as ISO27001, NIST, and Cyber Essentials Plus. Lead and coordinate incident response efforts, including root cause analysis, threat containment and post-incident reporting for clients. Collaborate with the Project and Service Desk teams to embed security into deployments, migrations, upgrades, and automation ...

will play a pivotal role in securing critical national infrastructure. You will lead technical delivery across two primary workstreams: the deployment of Advanced Threat Protection (ATP) and the implementation of the broader VMware vDefend security suite. Key Responsibilities 1. vDefend Firewall (DFW) Implementation You will support the platform deployment … Operational Design: Establishing the operating model, standardisation goals, and capacity management frameworks. Technical Integration: Implementing Identity Firewalls, logging, monitoring, and visibility metrics. 2. Advanced Threat Protection (ATP) You will oversee the enablement and tuning of ATP features to ensure robust threat detection, including: Detection & Prevention: Enabling ...

hands-on, proven industry experience in a similar role, in a technical environment. Good understanding of security principles, technologies, and best practices, including threat detection and security incident response processes. Experience implementing security in AWS environments (in the main) , including proactive configuration of AWS accounts and assets … security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. We value teamwork, collaboration & technical excellence – the company are heavily weighted toward technical staff (as you would hope ...

Splunk (preferably Splunk Enterprise Security). Strong experience in SPL (Search Processing Language) and log analysis. Deep understanding of security monitoring, incident response, and threat detection methodologies. Familiarity with MITRE ATT&CK, cyber kill chain, and common attack vectors (phishing, malware, insider threats). Experience with EDR tools ...

security controls • Experience remediating findings using native Azure security tooling and/or SIEM/CSPM platforms • Working knowledge of Azure logging, monitoring, and threat detection capabilities Additional Skills • Ability to work independently on remediation tasks while coordinating with multiple teams • Experience working in project-based or programme ...

permanent basis. You will help to establish and lead local security operations capability across European offices, providing strategic technical leadership in incident response, cyber threat visibility, and security resilience. This role will bridge the gap between our centralized corporate security services and regional business needs. Key Responsibilities Incident Response … Security Operations Lead and mature security incident response capabilities across the organisation Oversee incident investigations, alert triage, and threat hunting activities Develop and execute tabletop exercises and incident response playbooks Provide expert technical guidance during security incidents and recovery efforts Build real-time visibility into organisational cyber telemetry ...

lifecycle from in-depth investigation to collaborating with the Head of SOC to contain and resolve threats. Ideally you will have experience with Splunk, threat detection and have worked with MITRE ATT&CK. This role offers the chance to work in a fast-paced, global environment with opportunities ...

strong vendor management, contract negotiation, and service performance governance. solid grounding in data architecture, governance, BI, and data-driven KPIs. experience implementing cybersecurity strategies, threat detection, and incident response. financial acumen across budgeting, forecasting, and ROI optimisation. an eye to the future - showing a passion for emerging technologies ...

governance, AWS Config. Hybrid Networking & Connectivity - AWS Direct Connect, VPN, Transit Gateway, PrivateLink, and BGP routing. AWS Security & Monitoring - logging, and threat detection. Cloud Cost Optimisation & Performance Tuning - Right-sizing, auto-scaling, and FinOps principles. Minorities, women, LGBTQ+ candidates, and individuals with disabilities are encouraged to apply. Interviews will ...

governance, AWS Config. Hybrid Networking & Connectivity - AWS Direct Connect, VPN, Transit Gateway, PrivateLink, and BGP routing. AWS Security & Monitoring - logging, and threat detection. Cloud Cost Optimisation & Performance Tuning - Right-sizing, auto-scaling, and FinOps principles. Minorities, women, LGBTQ+ candidates, and individuals with disabilities are encouraged to apply. Interviews will ...