1 to 25 of 68 Cyber Defence Jobs in the UK

West Midlands, United Kingdom Posted on 21/03/2025 The Cyber Defence Engineer will join agrowing security team responsible for the testing, implementation, deployment,maintenance, configuration and troubleshooting of the SOC's technology stack(hardware and software). The engineer will also assist with the continueddevelopment and maintenance of data pipelines and signature updates and theprofessional … development of the system engineering team. Tasks: Perform systemadministration on specific cyber defence applications and systems to includeinstallation, configuration, maintenance, troubleshooting, backup, andrestoration. Manage system/serverresources including performance, capacity, availability, serviceability, andrecoverability. Diagnose and resolvecustomer reported system incidents, problems, and events to ensure continuingoperability. Coordinatewith Cyber Defence and CTI Analysts in the management and administration … principles. Working knowledge inconfigurating collection sensors for enterprise networks. Knowledgeof system administration concepts for operating systems such as but not limitedto Linux, Android, and Windows operating systems. Knowledge of cyberdefence and information security policies, procedures, and regulations. Knowledge of networksecurity architecture concepts including topology, protocols, components, andprinciples. Knowledgeof cyber incident response frameworks and handling methodologies. Knowledge of data backup More ❯

Element has an opportunity for a Senior Cyber Engineer to become part of our growing Cyber Engineering Services. A successful candidate for the Cyber Engineer role will possess a solid foundation as a security engineer, responsible for ensuring the security of complex global environments and designing security solutions at scale. This includes extensive expertise in application, cloud … and infrastructure domains. In this hybrid role you will design and implement highly secure technical solutions to protect against cyber threats and potential cyber-attacks. The role will be focused on detection engineering within the strategic Element security tooling. Core Responsibilities Assist in the design and implementation of technical solutions and security toolsets to address security vulnerabilities, mitigate … cyber threats, and automate tasks. Contribute to the planning, implementation, and management of the security operations tooling roadmap. Collaborate on the engineering, implementation, management, monitoring, and upgrades of cyber security infrastructure and technologies. Create and maintain detection rules and logic to identify suspicious activity and potential security threats. Participate in the creation, implementation, and optimisation of SIEM event More ❯

We are seeking passionate people to grow the Cyber Security team within WTW and provide an excellent service and trusted expertise to all parts of our business. As part of a business wide transformation, we have an exciting opening for a new role of Global Head of Threat Intelligence. As part of the Cyber Defence and Security … Operations department, you will be a senior leader managing the Threat Intelligence service ensuring WTW can prevent and better understand cyber-attacks against our environment. You will need to have a good technical aptitude, excellent communicative skills to technical and non-technical audiences, and a solid business acumen to deal with other senior stakeholders across the business. This role … managing geographically dispersed teams across different time-zones. The Role As the Global Head of Incident Response, your primary responsibilities will be: Manage and develop a global team of Cyber Threat Intelligence analysts, providing expert assistance during a cyber incident and for routine investigations escalated by the SOC. Manage a team of analysts spread out cross the globe More ❯

Cyber Threat Intelligence & Vulnerability Lead £65,000 GBP 10% bonus + £7,000 DV Clearance Bonus (once obtained) Hybrid WORKING Location: Manchester, North West - United Kingdom Type: Permanent Cyber Threat Intelligence & Vulnerability Lead Location: Leeds, UK (100% office-based) Salary: up to £65,000 + 10% bonus + £7,000 DV clearance bonus once obtained. Security Clearance Required … DV (Developed Vetting) eligibility Are you ready to lead the charge in defending critical national infrastructure from sophisticated cyber threats? Join a high-impact Security Operations Centre (SOC) team protecting hundreds of cloud-hosted systems in one of the UK's most vital sectors. This is your opportunity to shape the future of cyber defence in a … role that demands technical excellence, strategic thinking, and strong leadership. What You'll Be Doing As the Cyber Threat Intelligence & Vulnerability Lead, you will: Oversee the detection, triage, and reporting of cyber threats and vulnerabilities. Deliver high-quality intelligence and vulnerability reports on time, every time. Select and monitor key threat actors posing the greatest risk. Develop and More ❯

Threat and Incident Response Lead Analyst Permanent or Contract | Hybrid 12 Days in Office (North West) Threat and Incident Response Lead Analyst is needed for a growing Cyber team who are looking to strengthen its cyber defence capabilities with the hire of a Threat and Incident Response Lead Analyst . This is a pivotal, hands-on role … in a growing cyber team. Youll lead threat intelligence and incident response efforts, shape defensive strategy and play a critical role in ensuring the organisation stays ahead of evolving threats. What Youll Be Doing: Lead all aspects of Threat Intelligence and Incident Response Perform gap analysis across tooling, processes and detection capabilities Implement and embed modern IR and threat … detection rules and improve response workflows Work with tools such as Microsoft Sentinel, Defender, Splunk, or similar What Were Looking For: Proven experience in hands-on incident response and cyber threat intelligence Strong understanding of modern detection and response strategies Familiarity with SOC tooling (Sentinel, Defender, QRadar, Cortex XDR, etc.) Knowledge of threat frameworks like MITRE ATT&CK and More ❯

Are you ready to lead the evolution of cyber defence at one of the UK's leading Universities? Your leadership will be instrumental as Man Met embarks on a major security and risk transformation programme-building a resilient, agile, and forward-looking security capability that supports innovation across the University. Manchester Metropolitan University is seeking an experienced and … evolve our capability at Manchester Metropolitan University. This is a key leadership role at the forefront of our efforts to protect the University's systems, data, and people from cyber threats. As Head of Security Architecture and Compliance, you'll be responsible for managing a skilled team of operational and enterprise security architects, ensuring the effective design and implementation … frameworks, and driving continual improvements in policy, guidance, testing and reference architectures. You'll play a crucial role in shaping compliance strategy, embedding a measurable, proactive approach to validating cyber defence. This is a highly collaborative role, requiring strong technical knowledge, excellent leadership skills, and the ability to communicate effectively across technical and non-technical audiences. You'll work More ❯

SecOps Engineer Location – Fully Remote Salary - £80-90k + Bonus + Benefits Currently working with a UK Fintech firm who are in the process of building out their Cyber Defence capability and looking to bring in a Senior SecOps Engineer with experience working in cloud-native environment and automation-first mindset. This is a wide ranging role … SecOps specialist with experience of both SecOps Analysis and Engineering to join a growing yet established firm at a crucial point as they completely build out their Information and Cyber Security capability. Whilst they have the fundamentals in place, this is a relatively greenfield SOC buildout, where you will work alongside the SOC Manager to shape their SOC monitoring … specific to SecOps Engineering and Automation. If you’re an experienced SecOps Engineer, looking to shape how one of the most innovative Mobile Payments FinTech firms build out their cyber defence capability and leave a lasting impact on one of the most reputable organisations whilst working alongside a team of genuine Cyber Security SMEs, click the to More ❯

facing role where you will be engaged in some of the most exciting, complex, and leading-edge projects. You will play an active role in transforming our client's Cyber Defence strategy, capabilities, and operations through the design and implementation of predominantly Microsoft Threat Protection technologies. You will also be part of the Avanade Security presales and Architecture … Sentinel. • Understand threat modelling, risk, and how to mitigate risks concerning applications from internal and external threat actors. • Have a deep understanding of incident response processes and techniques for cyber recovery. • Understand security operations centres, their functions, and roles. • Have a good understanding of the Microsoft platforms across Windows, Microsoft 365, and Azure. • Understand techniques and approaches used by … threat actors to compromise companies. • Apply the MITRE ATT&CK framework to help customers improve their cyber defence. • Understand the business, privacy, security, and compliance challenges surrounding client data and articulate the types of assets that would be seen as valuable and susceptible to attack. • Be aware of emerging technologies in the Cyber Defence and cloud security More ❯

of our digital transformation, and it's our job within the Chief Security Office (CSO) to ensure that we keep our customers, colleagues and assets safe from threat. Our Cyber & Physical Defence Centre is undertaking an end-to-end modernisation to increase our ability to stay one step ahead of cyber adversaries. We pride ourselves on our … innovative approach and our commitment to excellence in cyber security. Join us as a skilled and proactive Detection and Response Engineer and play a pivotal role in safeguarding our organisation against cyber threats! What you'll do Design, code and operationalise detection rules based on threat models and intelligence Fine-tune detection rules and monitor their performance Support … detection automation and playbook editing Conduct proactive threat hunting and threat modelling Perform cyber event triage, classification, and investigation Complete containment, remediation, and recovery activities Build and maintain reporting mechanisms and documentation Perform root cause analysis and support post-incident reviews Why Lloyds Banking Group Like the modern Britain we serve, we're evolving. Investing billions in our people More ❯

Lead the Charge in Securing Global Animal Health Are you ready to take the lead in defending a global veterinary business from evolving cyber threats? As our Cyber Defense Manager, you'll head up the Cyber Defence "Blue Team," driving operational excellence and strategic resilience across a complex, distributed digital landscape. Your leadership will directly support … ll Do This is a hands-on leadership role where you'll shape and execute our cybersecurity strategy, working across IT, digital, and regional teams to embed a strong cyber culture and robust defenses. Key responsibilities include: Strategic Leadership: Own and evolve the security roadmap, including tooling optimisation and risk management. Secure Design & Architecture: Provide expert guidance across IT … teams. Flexibility for occasional travel and out-of-hours support. Exposure to MxDR/SOC environments and advanced security protocols (SIEM, IDS/IPS, firewalls). Knowledge of GDPR, Cyber Essentials+, PCI-DSS, and other compliance standards. Strong grasp of data protection legislation (e.g., GDPR, Data Protection Act). Global Impact: Your leadership will help protect the digital infrastructure More ❯

We are seeking passionate people to grow the Cyber Security team within WTW and provide an excellent service and trusted expertise to all parts of our business. As part of a business wide transformation, we have an exciting opening for a new role of Global Head of Cyber Detections. As part of the Cyber Defence and … Security Operations department, you will manage the SOC and other cyber-attack detection services within WTW to ensure a world-leading and comprehensive monitoring capability is delivered to all parts of the business. You will need to have excellent communicative skills to technical and non-technical audiences, and a solid business acumen to deal with multiple types of stakeholders … services for global organisations and are used to working in a high-pressure environment with geographically dispersed teams across different time-zones. The Role To detect and investigate all cyber security related incidents across WTW and escalate cases to relevant Incident Response teams Manage a geographically dispersed team supporting SOC based detection services on a 24/7/ More ❯

of broader, deeper expertise, which is delivered to our clients faster than ever. Our connected propositions stretch across a range of specialisms too. From human-centred design, technology transformation, cyber and risk management through to security operations, data and analytics, product engineering, automation, powered apps and Cloud. The way we collaborate gives us an edge. It's about bringing … helping our clients to navigate the ever-changing business and technology landscape. As organisations strive to push the boundaries of innovation and digital transformation, we're helping them embed Cyber Security at the heart of their business. With our assistance, our clients are building more resilient operations, understanding their cyber threat landscape and building the capabilities to detect … protect and respond to high end attacks on their most critical assets. For us, Cyber Security is about technical issues, but it is also so much more than this; it's a holistic approach to understanding and addressing risk, and empowering our clients to harness business opportunities securely to adapt and grow. The solutions we provide are helping organisations More ❯

developing yourself along the way. Why Join Us? Work with a talented team of security professionals in a threat-driven environment. Ability to help shape the future of our cyber defence capabilities across a wide and diverse range of businesses. Competitive compensation and benefits package. Flexible work environment with opportunities for remote work and professional development. Key responsibilities … incyber threat management, advising our various businesses on adversary activities, situational awareness and defensive actions. Designing tactical and strategic responses to emerging security threats Define, implement and manage our cyber threat capability working with our local IT teams, MSSP partners, vendors and other key stakeholders. Provide our IT teams with guidance on adversary intentions, objectives and potential opportunities. Maintain … similar). Expert in cybersecurity, with a focus on threat management and defensive security in regulated environments. Proficient in threat management, incident response and remediation tools. Strategic development in cyber threat intelligence research, process automation, knowledge sharing and team training. Skilled in using threat frameworks (e.g. MITRE ATT&CK, Cyber Kill chain). Experienced in using OSINT and More ❯

Simulate the Threats. Strengthen the Defenses. Are you passionate about uncovering vulnerabilities before they become headlines? Join a global veterinary business where your expertise in cyber security testing will help protect the digital infrastructure that supports animal health worldwide. As our Cyber Security Testing Lead, you'll lead proactive testing efforts to expose weaknesses, validate controls, and drive … real-world resilience across our systems. What You'll Do This is a hands-on leadership role within our Cyber Defence Red Team, focused on simulating real-world attack techniques to identify and close security gaps before they're exploited. Key responsibilities include: Security Testing Strategy: Design and execute end-to-end testing-from basic port scans to … testing providers and ensure alignment with internal standards. Continuous Improvement: Help close the gap between theoretical controls and real-world threats. What You Bring Significant hands-on experience in cyber security testing, including penetration testing and live control attack simulations. Proficiency with tools like Metasploit, Nessus, and similar platforms. Strong understanding of network security protocols and standards. Proven ability More ❯

Party services for security compliance to MOD policy and industry best practices Help to define and document security elements of the Architectural runway, setting the direction for Platform and cyber teams. (to include logging, AV, Cyber Defence, FW config etc.) as required Essential skills Detailed understanding of security architecture and experience in applying it to the following … PKI and proxy services e.g. ADFS in line with MOD Security assurance processes. Past experience of working with accredited secure solutions within the UK Public Sector. Relevant Security/Cyber accreditations Proven track record of working with NCSC design patterns. Desirable skills, qualifications, and experience In order to deliver this service, it is desirable that individuals have: Experience of … Working within the public sector, preferably Defence, and ideally with Defence Digital (formerly ISS). The design and configuration of Two Factor Authentication Solutions. More ❯

Party services for security compliance to MOD policy and industry best practices Help to define and document security elements of the Architectural runway, setting the direction for Platform and cyber teams. (to include logging, AV, Cyber Defence, FW config etc.) as required Essential skills Detailed understanding of security architecture and experience in applying it to the following … PKI and proxy services e.g. ADFS in line with MOD Security assurance processes. Past experience of working with accredited secure solutions within the UK Public Sector. Relevant Security/Cyber accreditations Proven track record of working with NCSC design patterns. Desirable skills, qualifications, and experience In order to deliver this service, it is desirable that individuals have: Experience of … Working within the public sector, preferably Defence, and ideally with Defence Digital (formerly ISS). The design and configuration of Two Factor Authentication Solutions. More ❯

Analyst ready to play a crucial role in defending the UK's most critical systems? Join a top-tier consultancy that operates at the sharp end of cybersecurity within defence, aerospace, and national security. We’re looking for an experienced SOC Analyst to join our high-performing Security Operations Centre in Farnborough. This is a unique chance to contribute … to real-world cyber defence, on country critical technology, pitting your SCO skills against state of the art attacks. As the SOC Analyst, you will: Monitoring and triaging alerts across secure client environments Investigating threats using logs, network traffic, and endpoint telemetry Supporting response efforts during live security incidents Improving detection rules, playbooks, and tooling with MITRE ATT More ❯

Identify system vulnerabilities and advise on mitigation strategies. Assess and review third-party services for security compliance. Define and document security elements within the architectural runway, guiding platform and cyber teams (e.g., logging, antivirus, cyber defence, firewall configuration). Essential Skills & Experience: Proven experience delivering secure architecture within complex, large-scale government or defence programmes. Deep … infrastructure and software solution design MOD security standards and NCSC design patterns Public and private cloud solutions using Software Defined Datacentre (SDDC) Secure cryptographic provisioning, PKI, ADFS, proxy services Defence Lines of Development and MOD Capability Integration Technical expertise across: VMware Horizon, ESXi, vCentre, vSAN Microsoft Server (Apply online only , Windows 10, Exchange, SQL, Skype, Group Policy Linux-based More ❯

a well-established Security Operations Centre (SOC) team in Corsham. This is a unique opportunity to be embedded with a government-sector client, working on the front lines of cyber defence to protect critical infrastructure and information assets. What You'll Do As a Security Analyst, you will: Monitor and respond to security alerts across a range of … Conduct impact assessments and develop mitigation strategies for escalated incidents. Support and improve existing cybersecurity policies, procedures, and processes. Stay current with evolving threats, vulnerabilities, and best practices in cyber defence. What We're Looking For We're looking for a confident and capable individual with: At least 2 years' experience in a Security Analyst role , ideally in a More ❯

across a diverse range of client environments and technologies, with real scope for career progression. The Role As a SOC Analyst, you’ll be on the front lines of cyber defence—monitoring security events, responding to alerts, and assisting in incident investigations across multiple client networks. This is a hands-on role suited for someone with solid technical More ❯

across a diverse range of client environments and technologies, with real scope for career progression. The Role As a SOC Analyst, you’ll be on the front lines of cyber defence—monitoring security events, responding to alerts, and assisting in incident investigations across multiple client networks. This is a hands-on role suited for someone with solid technical More ❯

the impact on the organisation. You ensure that we have the visibility needed to be able to protect the organisation and its customers' data. You have a passion for Cyber defence and Threat intelligence. You'll be responsible for building the strategy and capabilities needed to be successful as well as maintain relationships with our various external partners. More ❯

Security Engineer | Microsoft Solutions Partner | Edinburgh | Highly Competitive Pay, Performance Bonus + Exceptional Benefits Strengthen Defences. Hunt Threats. Shape the Future of Cybersecurity. Are you ready to take your cyber security expertise to the next level? Join Quorum, a leading Microsoft Solutions Partner and Tier 1 CSP based in Scotland. We’re not your average IT consultancy—we’re … with low turnover What You'll Be Doing: As a Senior Security Engineer, you'll be a key player in our mission to protect, detect, and respond to evolving cyber threats. Your day-to-day will include: Leading as an escalation point for cyber incidents and alerts Integrating threat intelligence into Microsoft Defender and Sentinel Developing, tuning, and … Supporting internal and client teams with technical reporting and analysis Mentoring junior engineers and contributing to a culture of continuous improvement What We’re Looking For: 3+ years in cyber security, ideally within a Managed Service Provider Deep experience with Microsoft Defender suite (MDE, MDO, MDCA, MDI) and Microsoft Sentinel Strong knowledge of KQL, Logic Apps, and automation/ More ❯

Security Engineer | Microsoft Solutions Partner | Edinburgh | Highly Competitive Pay, Performance Bonus + Exceptional Benefits Strengthen Defences. Hunt Threats. Shape the Future of Cybersecurity. Are you ready to take your cyber security expertise to the next level? Join Quorum, a leading Microsoft Solutions Partner and Tier 1 CSP based in Scotland. We're not your average IT consultancy—we're … with low turnover What You'll Be Doing: As a Senior Security Engineer, you'll be a key player in our mission to protect, detect, and respond to evolving cyber threats. Your day-to-day will include: Leading as an escalation point for cyber incidents and alerts Integrating threat intelligence into Microsoft Defender and Sentinel Developing, tuning, and … Supporting internal and client teams with technical reporting and analysis Mentoring junior engineers and contributing to a culture of continuous improvement What We're Looking For: 3+ years in cyber security, ideally within a Managed Service Provider Deep experience with Microsoft Defender suite (MDE, MDO, MDCA, MDI) and Microsoft Sentinel Strong knowledge of KQL, Logic Apps, and automation/ More ❯

Overview We are seeking an experienced Cyber Security Architect to join a major MOD project focused on the evolution and security of the New Style of IT (NSOIT) platform. This is a contract role based in Corsham with hybrid working available. The role sits inside IR35 and requires active SC clearance as a minimum. Key Responsibilities Collaborate with the … Evaluate third-party services for alignment with MOD security policy and industry best practices. Contribute to the definition of the security architecture runway, influencing the direction for platform and cyber teams. This includes areas such as: Logging Antivirus (AV) Cyber defence tooling Firewall configuration Other key security infrastructure components Essential Skills & Experience Proven experience in cyber More ❯