1 to 25 of 36 Cyber Defence Jobs in the UK excluding London

We are seeking passionate people to grow the Cyber Security team within WTW and provide an excellent service and trusted expertise to all parts of our business. As part of a business wide transformation, we have an exciting opening for a new role of Global Head of Threat Intelligence. As part of the Cyber Defence and Security … Operations department, you will be a senior leader managing the Threat Intelligence service ensuring WTW can prevent and better understand cyber-attacks against our environment. You will need to have a good technical aptitude, excellent communicative skills to technical and non-technical audiences, and a solid business acumen to deal with other senior stakeholders across the business. This role … managing geographically dispersed teams across different time-zones. The Role As the Global Head of Incident Response, your primary responsibilities will be: Manage and develop a global team of Cyber Threat Intelligence analysts, providing expert assistance during a cyber incident and for routine investigations escalated by the SOC. Manage a team of analysts spread out cross the globe More ❯

Cyber Threat Intelligence & Vulnerability Lead £65,000 GBP 10% bonus + £7,000 DV Clearance Bonus (once obtained) Hybrid WORKING Location: Manchester, North West - United Kingdom Type: Permanent Cyber Threat Intelligence & Vulnerability Lead Location: Leeds, UK (100% office-based) Salary: up to £65,000 + 10% bonus + £7,000 DV clearance bonus once obtained. Security Clearance Required … DV (Developed Vetting) eligibility Are you ready to lead the charge in defending critical national infrastructure from sophisticated cyber threats? Join a high-impact Security Operations Centre (SOC) team protecting hundreds of cloud-hosted systems in one of the UK's most vital sectors. This is your opportunity to shape the future of cyber defence in a … role that demands technical excellence, strategic thinking, and strong leadership. What You'll Be Doing As the Cyber Threat Intelligence & Vulnerability Lead, you will: Oversee the detection, triage, and reporting of cyber threats and vulnerabilities. Deliver high-quality intelligence and vulnerability reports on time, every time. Select and monitor key threat actors posing the greatest risk. Develop and More ❯

Threat and Incident Response Lead Analyst Permanent or Contract | Hybrid 12 Days in Office (North West) Threat and Incident Response Lead Analyst is needed for a growing Cyber team who are looking to strengthen its cyber defence capabilities with the hire of a Threat and Incident Response Lead Analyst . This is a pivotal, hands-on role … in a growing cyber team. Youll lead threat intelligence and incident response efforts, shape defensive strategy and play a critical role in ensuring the organisation stays ahead of evolving threats. What Youll Be Doing: Lead all aspects of Threat Intelligence and Incident Response Perform gap analysis across tooling, processes and detection capabilities Implement and embed modern IR and threat … detection rules and improve response workflows Work with tools such as Microsoft Sentinel, Defender, Splunk, or similar What Were Looking For: Proven experience in hands-on incident response and cyber threat intelligence Strong understanding of modern detection and response strategies Familiarity with SOC tooling (Sentinel, Defender, QRadar, Cortex XDR, etc.) Knowledge of threat frameworks like MITRE ATT&CK and More ❯

of our digital transformation, and it's our job within the Chief Security Office (CSO) to ensure that we keep our customers, colleagues and assets safe from threat. Our Cyber & Physical Defence Centre is undertaking an end-to-end modernisation to increase our ability to stay one step ahead of cyber adversaries. We pride ourselves on our … innovative approach and our commitment to excellence in cyber security. Join us as a skilled and proactive Detection and Response Engineer and play a pivotal role in safeguarding our organisation against cyber threats! What you'll do Design, code and operationalise detection rules based on threat models and intelligence Fine-tune detection rules and monitor their performance Support … detection automation and playbook editing Conduct proactive threat hunting and threat modelling Perform cyber event triage, classification, and investigation Complete containment, remediation, and recovery activities Build and maintain reporting mechanisms and documentation Perform root cause analysis and support post-incident reviews Why Lloyds Banking Group Like the modern Britain we serve, we're evolving. Investing billions in our people More ❯

Lead the Charge in Securing Global Animal Health Are you ready to take the lead in defending a global veterinary business from evolving cyber threats? As our Cyber Defense Manager, you'll head up the Cyber Defence "Blue Team," driving operational excellence and strategic resilience across a complex, distributed digital landscape. Your leadership will directly support … ll Do This is a hands-on leadership role where you'll shape and execute our cybersecurity strategy, working across IT, digital, and regional teams to embed a strong cyber culture and robust defenses. Key responsibilities include: Strategic Leadership: Own and evolve the security roadmap, including tooling optimisation and risk management. Secure Design & Architecture: Provide expert guidance across IT … teams. Flexibility for occasional travel and out-of-hours support. Exposure to MxDR/SOC environments and advanced security protocols (SIEM, IDS/IPS, firewalls). Knowledge of GDPR, Cyber Essentials+, PCI-DSS, and other compliance standards. Strong grasp of data protection legislation (e.g., GDPR, Data Protection Act). Global Impact: Your leadership will help protect the digital infrastructure More ❯

We are seeking passionate people to grow the Cyber Security team within WTW and provide an excellent service and trusted expertise to all parts of our business. As part of a business wide transformation, we have an exciting opening for a new role of Global Head of Cyber Detections. As part of the Cyber Defence and … Security Operations department, you will manage the SOC and other cyber-attack detection services within WTW to ensure a world-leading and comprehensive monitoring capability is delivered to all parts of the business. You will need to have excellent communicative skills to technical and non-technical audiences, and a solid business acumen to deal with multiple types of stakeholders … services for global organisations and are used to working in a high-pressure environment with geographically dispersed teams across different time-zones. The Role To detect and investigate all cyber security related incidents across WTW and escalate cases to relevant Incident Response teams Manage a geographically dispersed team supporting SOC based detection services on a 24/7/ More ❯

developing yourself along the way. Why Join Us? Work with a talented team of security professionals in a threat-driven environment. Ability to help shape the future of our cyber defence capabilities across a wide and diverse range of businesses. Competitive compensation and benefits package. Flexible work environment with opportunities for remote work and professional development. Key responsibilities … incyber threat management, advising our various businesses on adversary activities, situational awareness and defensive actions. Designing tactical and strategic responses to emerging security threats Define, implement and manage our cyber threat capability working with our local IT teams, MSSP partners, vendors and other key stakeholders. Provide our IT teams with guidance on adversary intentions, objectives and potential opportunities. Maintain … similar). Expert in cybersecurity, with a focus on threat management and defensive security in regulated environments. Proficient in threat management, incident response and remediation tools. Strategic development in cyber threat intelligence research, process automation, knowledge sharing and team training. Skilled in using threat frameworks (e.g. MITRE ATT&CK, Cyber Kill chain). Experienced in using OSINT and More ❯

Simulate the Threats. Strengthen the Defenses. Are you passionate about uncovering vulnerabilities before they become headlines? Join a global veterinary business where your expertise in cyber security testing will help protect the digital infrastructure that supports animal health worldwide. As our Cyber Security Testing Lead, you'll lead proactive testing efforts to expose weaknesses, validate controls, and drive … real-world resilience across our systems. What You'll Do This is a hands-on leadership role within our Cyber Defence Red Team, focused on simulating real-world attack techniques to identify and close security gaps before they're exploited. Key responsibilities include: Security Testing Strategy: Design and execute end-to-end testing-from basic port scans to … testing providers and ensure alignment with internal standards. Continuous Improvement: Help close the gap between theoretical controls and real-world threats. What You Bring Significant hands-on experience in cyber security testing, including penetration testing and live control attack simulations. Proficiency with tools like Metasploit, Nessus, and similar platforms. Strong understanding of network security protocols and standards. Proven ability More ❯

Party services for security compliance to MOD policy and industry best practices Help to define and document security elements of the Architectural runway, setting the direction for Platform and cyber teams. (to include logging, AV, Cyber Defence, FW config etc.) as required Essential skills Detailed understanding of security architecture and experience in applying it to the following … PKI and proxy services e.g. ADFS in line with MOD Security assurance processes. Past experience of working with accredited secure solutions within the UK Public Sector. Relevant Security/Cyber accreditations Proven track record of working with NCSC design patterns. Desirable skills, qualifications, and experience In order to deliver this service, it is desirable that individuals have: Experience of … Working within the public sector, preferably Defence, and ideally with Defence Digital (formerly ISS). The design and configuration of Two Factor Authentication Solutions. More ❯

Party services for security compliance to MOD policy and industry best practices Help to define and document security elements of the Architectural runway, setting the direction for Platform and cyber teams. (to include logging, AV, Cyber Defence, FW config etc.) as required Essential skills Detailed understanding of security architecture and experience in applying it to the following … PKI and proxy services e.g. ADFS in line with MOD Security assurance processes. Past experience of working with accredited secure solutions within the UK Public Sector. Relevant Security/Cyber accreditations Proven track record of working with NCSC design patterns. Desirable skills, qualifications, and experience In order to deliver this service, it is desirable that individuals have: Experience of … Working within the public sector, preferably Defence, and ideally with Defence Digital (formerly ISS). The design and configuration of Two Factor Authentication Solutions. More ❯

Analyst ready to play a crucial role in defending the UK's most critical systems? Join a top-tier consultancy that operates at the sharp end of cybersecurity within defence, aerospace, and national security. We’re looking for an experienced SOC Analyst to join our high-performing Security Operations Centre in Farnborough. This is a unique chance to contribute … to real-world cyber defence, on country critical technology, pitting your SCO skills against state of the art attacks. As the SOC Analyst, you will: Monitoring and triaging alerts across secure client environments Investigating threats using logs, network traffic, and endpoint telemetry Supporting response efforts during live security incidents Improving detection rules, playbooks, and tooling with MITRE ATT More ❯

Identify system vulnerabilities and advise on mitigation strategies. Assess and review third-party services for security compliance. Define and document security elements within the architectural runway, guiding platform and cyber teams (e.g., logging, antivirus, cyber defence, firewall configuration). Essential Skills & Experience: Proven experience delivering secure architecture within complex, large-scale government or defence programmes. Deep … infrastructure and software solution design MOD security standards and NCSC design patterns Public and private cloud solutions using Software Defined Datacentre (SDDC) Secure cryptographic provisioning, PKI, ADFS, proxy services Defence Lines of Development and MOD Capability Integration Technical expertise across: VMware Horizon, ESXi, vCentre, vSAN Microsoft Server (Apply online only , Windows 10, Exchange, SQL, Skype, Group Policy Linux-based More ❯

a well-established Security Operations Centre (SOC) team in Corsham. This is a unique opportunity to be embedded with a government-sector client, working on the front lines of cyber defence to protect critical infrastructure and information assets. What You'll Do As a Security Analyst, you will: Monitor and respond to security alerts across a range of … Conduct impact assessments and develop mitigation strategies for escalated incidents. Support and improve existing cybersecurity policies, procedures, and processes. Stay current with evolving threats, vulnerabilities, and best practices in cyber defence. What We're Looking For We're looking for a confident and capable individual with: At least 2 years' experience in a Security Analyst role , ideally in a More ❯

Security Engineer | Microsoft Solutions Partner | Edinburgh | Highly Competitive Pay, Performance Bonus + Exceptional Benefits Strengthen Defences. Hunt Threats. Shape the Future of Cybersecurity. Are you ready to take your cyber security expertise to the next level? Join Quorum, a leading Microsoft Solutions Partner and Tier 1 CSP based in Scotland. We’re not your average IT consultancy—we’re … with low turnover What You'll Be Doing: As a Senior Security Engineer, you'll be a key player in our mission to protect, detect, and respond to evolving cyber threats. Your day-to-day will include: Leading as an escalation point for cyber incidents and alerts Integrating threat intelligence into Microsoft Defender and Sentinel Developing, tuning, and … Supporting internal and client teams with technical reporting and analysis Mentoring junior engineers and contributing to a culture of continuous improvement What We’re Looking For: 3+ years in cyber security, ideally within a Managed Service Provider Deep experience with Microsoft Defender suite (MDE, MDO, MDCA, MDI) and Microsoft Sentinel Strong knowledge of KQL, Logic Apps, and automation/ More ❯

Security Engineer | Microsoft Solutions Partner | Edinburgh | Highly Competitive Pay, Performance Bonus + Exceptional Benefits Strengthen Defences. Hunt Threats. Shape the Future of Cybersecurity. Are you ready to take your cyber security expertise to the next level? Join Quorum, a leading Microsoft Solutions Partner and Tier 1 CSP based in Scotland. We're not your average IT consultancy—we're … with low turnover What You'll Be Doing: As a Senior Security Engineer, you'll be a key player in our mission to protect, detect, and respond to evolving cyber threats. Your day-to-day will include: Leading as an escalation point for cyber incidents and alerts Integrating threat intelligence into Microsoft Defender and Sentinel Developing, tuning, and … Supporting internal and client teams with technical reporting and analysis Mentoring junior engineers and contributing to a culture of continuous improvement What We're Looking For: 3+ years in cyber security, ideally within a Managed Service Provider Deep experience with Microsoft Defender suite (MDE, MDO, MDCA, MDI) and Microsoft Sentinel Strong knowledge of KQL, Logic Apps, and automation/ More ❯

Overview We are seeking an experienced Cyber Security Architect to join a major MOD project focused on the evolution and security of the New Style of IT (NSOIT) platform. This is a contract role based in Corsham with hybrid working available. The role sits inside IR35 and requires active SC clearance as a minimum. Key Responsibilities Collaborate with the … Evaluate third-party services for alignment with MOD security policy and industry best practices. Contribute to the definition of the security architecture runway, influencing the direction for platform and cyber teams. This includes areas such as: Logging Antivirus (AV) Cyber defence tooling Firewall configuration Other key security infrastructure components Essential Skills & Experience Proven experience in cyber More ❯

assurance, pension scheme, and a generous flexible benefits fund Key Requirements We are seeking a highly capable Security Operations Centre Shift Lead to support critical infrastructure within the Aerospace, Defence and Security sector. You will lead from the frontmentoring analysts, managing incident triage, and driving operational improvements in a mission-critical environment. This is a shift-based position , following … will ensure the smooth operation and continual enhancement of SOC processes and personnel. You will play a pivotal role in protecting client systems and guiding the team through sophisticated cyber defence challenges. Your responsibilities will include: Monitoring, triaging, and investigating alerts across host and network security systems Performing deep analysis of traffic, logs, and system events to identify More ❯

Location(s):UK, Europe & Africa : UK : Great Baddow BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Role Purpose We are seeking … RF simulation/modelling tools. Experience with either Radar or electronic warfare techniques and military threat environments. Understanding of system-level testing and validation of RF systems. Familiarity with defence standards and system engineering frameworks (e.g., DOORS, SysML, NAF). Qualifications Degree (or higher) in Electronic Engineering, Physics, Systems Engineering, or a related discipline. Chartered Engineer status (or working … vetting level required for the role, to allow for meaningful security vetting checks. Division overview: Capabilities At BAE Systems DigitalIntelligence, we pride ourselves in being a leader in the cyber defence industry, and Capabilities is the engine that keeps the business moving forward. It is the largest area of DigitalIntelligence, containing our Engineering, Consulting and Project Management teams More ❯

Identify system vulnerabilities and advise on mitigation strategies. • Assess and review third-party services for security compliance. • Define and document security elements within the architectural runway, guiding platform and cyber teams (eg, logging, antivirus, cyber defence, Firewall configuration). This role is an immediate need with interviews as soon as possible. Think you'd be a good More ❯

Identify system vulnerabilities and advise on mitigation strategies.• Assess and review third-party services for security compliance.• Define and document security elements within the architectural runway, guiding platform and cyber teams (eg, logging, antivirus, cyber defence, Firewall configuration). This role is an immediate need with interviews as soon as possible. Think you’d be a good More ❯

Location(s):UK, Europe & Africa : UK : Manchester BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. AWS Engineer Job Title: AWS Engineer … for its clients but also gives back to the community with plenty of opportunities to get involved with local community engagement and outreach activities to help build tech and cyber skills in the region. AWS Engineer: We are looking for experienced AWS Engineers to join our team following continuous growth and success in the UK Government sector. Our people … can work together to achieve excellence and realise individual and organisational potential. Division overview: Government At BAE Systems Digital Intelligence, we pride ourselves in being a leader in the cyber defence industry, and Government contracts are an area we have many decades of experience in. Government and key infrastructure networks are critical targets to defend as the effects More ❯

Data Scientist to work with our Analytics and Data Management feature teams. In this role, you'll be at the forefront of redefining how we detect, mitigate, and prevent cyber threats using sophisticated AI and machine learning. This is a rare opportunity to craft the future of cybersecurity in one of the UK's most data-rich environments. What … security automation, including prompt engineering, RAG pipelines, and fine-tuning of models. Collaborate with Data Engineers to build scalable, secure, and production-ready ML pipelines on GCP. Partner with cyber defence, risk, and compliance teams to ensure models are explainable, ethical, and aligned with regulatory standards (e.g. SOC2, SWIFT, SOX). Mentor junior data scientists and contribute to … operations. Excellent communication and customer engagement skills Innovators Attitude - An innovator and change agent who keeps up to date with the latest trends and developments in data engineering and cyber security to ensure our strategies remain at the forefront of the industry. In addition, any experience of these would be useful Understanding of the emerging threats within Cyber More ❯

Location(s):UK, Europe & Africa : UK : Manchester BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Job Title: Tech Lead Requisition ID … for its clients but also gives back to the community with plenty of opportunities to get involved with local community engagement and outreach activities to help build tech and cyber skills in the region. Technical Lead: We are looking for experienced Technical Leads to join our teams following continuous growth and success in the UK Government sector. Our people … can work together to achieve excellence and realise individual and organisational potential. Division overview: Government At BAE Systems Digital Intelligence, we pride ourselves in being a leader in the cyber defence industry, and Government contracts are an area we have many decades of experience in. Government and key infrastructure networks are critical targets to defend as the effects More ❯

Location(s):UK, Europe & Africa : UK : Leeds BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Job Title: Tech Lead Requisition ID … for its clients but also gives back to the community with plenty of opportunities to get involved with local community engagement and outreach activities to help build tech and cyber skills in the region. Technical Lead: We are looking for experienced Technical Leads to join our teams following continuous growth and success in the UK Government sector. Our people … can work together to achieve excellence and realise individual and organisational potential. Division overview: Government At BAE Systems Digital Intelligence, we pride ourselves in being a leader in the cyber defence industry, and Government contracts are an area we have many decades of experience in. Government and key infrastructure networks are critical targets to defend as the effects More ❯

Location(s):UK, Europe & Africa : UK : Manchester BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Job Title: Scrum Master/Engineering … for its clients but also gives back to the community with plenty of opportunities to get involved with local community engagement and outreach activities to help build tech and cyber skills in the region. Scrum Master/Engineering Lead: We are looking for experienced Scrum Masters/Engineering Leads to join our teams following continuous growth and success in … can work together to achieve excellence and realise individual and organisational potential. Division overview: Government At BAE Systems Digital Intelligence, we pride ourselves in being a leader in the cyber defence industry, and Government contracts are an area we have many decades of experience in. Government and key infrastructure networks are critical targets to defend as the effects More ❯