1 to 25 of 101 Cyber Intelligence Jobs in the UK excluding London

Social network you want to login/join with: Cyber Threat Intelligence and Vulnerability Lead, Leeds col-narrow-left Client: BAE Location: Leeds, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Reference: 557b41254c55 Job Views: 31 Posted: 24.06.2025 Expiry Date: 08.08.2025 col-wide Job Description: BAE Systems Digital Intelligence is home … to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Cyber Threat Intelligence and Vulnerability Lead Job Title: Cyber Threat Intelligence and Vulnerability Lead … subject to. This role requires a minimum of DV clearance. This role reports to the Service Delivery Manager. The Role You will be: Accountable for ensuring all relevant potential cyber threat and key vulnerabilities are detected, triaged and reported on daily Accountable for all regular reporting and ensuring the efficient delivery of all threat intelligence and vulnerability products More ❯

Select how often (in days) to receive an alert: Create Alert BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. … Cyber Threat Hunter Job Title: Cyber Threat Analyst Requisition ID: 121703 Location: Leeds and surrounding area Grade: GG08 - GG09 Role Description BAE Systems have been contracted to undertake the day-to-day operation of (and incremental improvement of) a dedicated Security Operations Centre (SOC) to support the defence of a major UK Critical National Infrastructure (CNI) organisation. The … capacity that all ADHOC and regular products are completed and are at a sufficient quality for distribution In-depth knowledge of the various techniques and frameworks used within the Cyber Threat Intelligence Domain, Including the Cyber Kill Chain and MITRE ATT&CK Development of new analytics and playbooks that result in creation of new detection rules/ More ❯

Cyber Threat Analyst - National Security West View more categories View less categories Clearance Level DV ,SC ,None/Undisclosed Sector Defence ,Engineering ,Information Technology Job Type Permanent Location(s): UK, Europe & Africa : UK : Leeds BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect … connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Cyber Threat Hunter Job Title: Cyber Threat Analyst Requisition ID: 121703 Location: Leeds and surrounding area Grade: GG08 - GG09 Referral Bonus: £5,000 Role Description BAE Systems have been contracted to undertake the day … capacity that all ADHOC and regular products are completed and are at a sufficient quality for distribution In-depth knowledge of the various techniques and frameworks used within the Cyber Threat Intelligence Domain, Including the Cyber Kill Chain and MITRE ATT&CK Development of new analytics and playbooks that result in creation of new detection rules/ More ❯

Location(s): UK, Europe & Africa : UK : Leeds BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Cyber Threat Hunter … Job Title: Cyber Threat Analyst Requisition ID: # Location: Leeds and surrounding area Grade: GG08 - GG09 Referral Bonus: £5,000 Role Description BAE Systems has been contracted to operate and improve a dedicated Security Operations Centre (SOC) supporting a major UK Critical National Infrastructure (CNI) organisation. The networks protected are mainly cloud-based, with numerous systems requiring safeguarding. The … queries independently Experienced in Incident Response and Management Ensuring high-quality Threat Hunt Reports and effective documentation Providing analysis, context, and predictions in deliverables Assessing and improving the threat intelligence function within the client Point of contact for intrusion analysis, forensics, and incident response queries Developing new analytics and playbooks for detection rules Requirements Technical 3+ years in Cyber More ❯

Location(s): UK, Europe & Africa: UK: Leeds BAE Systems Digital Intelligence employs 4,500 experts in digital, cyber, and intelligence fields. We collaborate across 10 countries to analyze complex data, enabling governments, armed forces, and businesses to gain a digital advantage in demanding environments. Cyber Threat Hunter Job Title: Cyber Threat Analyst Requisition ID … maturity, developing and delivering improvements. Serving as a point of contact for intrusion analysis, forensics, and incident response queries. Managing ADHOC and regular products during capacity constraints. Knowledge of Cyber Kill Chain, MITRE ATT&CK, and developing new analytics and playbooks. Requirements Technical: 3+ years in Cyber Threat Intelligence, research, and investigation. Experience in incident response and … Excellent open-source research skills. High-level knowledge of Windows, Azure, networking, and cloud platforms. Non-Technical: Bachelor’s in Cybersecurity, Computer Science, or equivalent. Experience in SOC, Threat Intelligence, or Vulnerability Management. Strong communication skills for technical and non-technical audiences. Team player, self-motivated, and capable of mentoring. Desirable Qualifications: Degree in Cyber Security or related. More ❯

drive the future of our Managed Detection and Response capability, you will bring experience and knowledge in: Providing Managed Detection and Response as a Managed Services Provider Delivering effective Cyber Incident Management and Response Communicating effectively with technical specialists, leaders and peers Leadership and people management skills Strategic Problem solver and Motivator Demonstrable experience of managing 3rd Party Managed … Security and Director Threat and Vulnerability Management for developing the strategy and vision for Managed Detection and Response, and the execution of the responsibilities within the Proactive Analysis and Cyber Incident Management and Response functions. The Security Tooling team is a pivotal support function that manages the end to end operations of Group Security’s tooling and works with … intent to ultimately provide these services to our B2B markets. Lead day-to-day operations of Proactive Analysis, Security Tooling and CERT teams including oversight and direction of complex cyber security incidents and investigations Establish and maintain partnerships across Liberty Global, retained markets, joint ventures, external vendors and partners Manage the implementation of the strategic planning in-line with More ❯

Base pay range Leeds – 5 days on-site Up to £65,000 + DV Cleared Bonus Candidates must hold Active SC Clearance We are currently recruiting for a Threat Intelligence Lead to join one of the UK’s most critical national defence programmes. This is an opportunity to lead a high-performance team operating at the forefront of cyber threat intelligence, helping to protect sensitive cloud-hosted environments against sophisticated nation-state actors and advanced cyber adversaries. As Threat Intelligence Lead, you will be responsible for managing the production of actionable threat intelligence and vulnerability assessments, ensuring high-quality outputs that directly inform security operations and strategic defence decisions. Responsibilities of the Threat Intelligence Lead: • Lead the development and delivery of threat intelligence and vulnerability products. • Select and profile key threat actors posing the greatest risk to the client’s estate. • Own the continuous development of Priority Intelligence Requirements (PIRs) and the associated collection plan. • Ensure timely delivery of daily, weekly, and ad hoc intelligence reporting. • Provide in-depth contextual More ❯

environment (both on-prem and cloud) Be aware of the latest threats in cybersecurity to guide and advise the organization regarding the protection of systems Monitor and translate threat intelligence feeds into actionable detection and response actions Monitor and analyze security logs for attacker tactics, techniques and procedures (TTPs), filtering through suspicious activities to determine their root cause and … information systems, cybersecurity, or a related field Security certifications: GCIA, GCFA, GCFE, CISSP (Associate), CEH, or comps. Experience in one or more areas: identity and access management, security operations, cyber threat hunting, Endpoint Detection and Response (EDR), detection signatures and analytics Experience with open standards such as SAML, OAuth or Open ID Experience with encryption, logging, log aggregation and …/or Linux environments, cloud/hybrid environments Proficient in SIEM and log management configuration and analysis Experience with Security Orchestration Automation and Response tools Experience/familiarity with Cyber Intelligence, Threat Operations, Penetration Testing, Red Teaming, Incident Response and Threat Hunting methodologies Experience with intrusion detection systems and intrusion prevention systems Familiarity with managing Linux servers Familiarity More ❯

Job Description: Senior Threat Intelligence Analyst Hybrid: Office/WFH London, Manchester or Staines Permanent Up to £75k + 10% bonus + fantastic benefits 37.5 hours per week We consider all types of flexibility, including locations, hours and working patterns. We make health happen At Bupa, we’re passionate about technology. With colleagues, customers, patients and residents in mind … you’ll have the opportunity to work on innovative projects and make a real impact on their lives. You will be responsible for all aspects of Cyber Threat Intelligence Management, Situational Awareness, Threat Hunting, and defense and prevention tuning activities to protect Bupa from all types of cyber adversaries. How you’ll help us make health happen … Provide threat-driven cyber security expertise, overseeing end-to-end process design, implementation and coordination of all tactical and strategic activities Working with the Head of Threat Intelligence and Lead Threat Intelligence Analyst to ensure a proactive defensive security posture Ensure that all technology, cloud services, and third-party solutions follow the established Threat Management standards Collaborate More ❯

About the Role:We are seeking a highly motivated and detail-oriented SOC Analyst to join our on-site team in Wiltshire. This is a critical role within our cyber security operations, responsible for monitoring, detecting, and responding to security incidents, ensuring compliance, and maintaining the integrity of our systems and networks. Key Responsibilities: * Monitor and analyse security events … Collaborate with internal teams to enhance security posture* Document incidents, findings, and recommendations clearly and accurately* Stay current with emerging threats and vulnerabilities* Demonstrate an understanding of the wider cyber security landscape and risks Essential Skills & Experience: * Minimum of 2 years' experience in a SOC or cyber security role* Strong understanding of SIEM technologies and incident response processes … security monitoring, logging, and compliance frameworks* Excellent analytical skills and a keen eye for detail* Strong written and verbal communication skills Desirable: * An interest in or basic understanding of cyber threat intelligence, including how attackers operate and how to spot signs of compromise (e.g., suspicious files, unusual behaviour, or known attack patterns)* Relevant cyber security or networking More ❯

About the role Our Cyber Threat Intelligence (CTI) team drives proactive cybersecurity defence by collecting, analysing, and disseminating actionable intelligence to protect the organisation from evolving threats. We focus on anticipating and mitigating risks by identifying emerging threats and reducing uncertainty. Our CTI team collaborates closely with internal teams, including Security Operations, Incident Response, Vulnerability Management, and … Security Engineering, as well as external intelligence-sharing communities, to enhance detection, response, and our understanding of the global threat landscape. We are committed to continuous improvement, evolving our tools, processes, and methodologies to ensure Tesco remains secure. If you're looking to join a forward-thinking team that values impactful collaboration and a shared mission to protect a … fit for you. As a Security Analyst in the CTI team, you will be responsible for delivering day-to-day operations, including the collection, processing, and analysis of threat intelligence to produce actionable insights. You will support strategic and operational intelligence initiatives by researching, monitoring, and assessing cyber threats, tactics, techniques, and procedures (TTPs), and ensuring it More ❯

About the Role: We are seeking a highly motivated and detail-oriented SOC Analyst to join our on-site team in Wiltshire. This is a critical role within our cyber security operations, responsible for monitoring, detecting, and responding to security incidents, ensuring compliance, and maintaining the integrity of our systems and networks. Key Responsibilities: Monitor and analyse security events … Collaborate with internal teams to enhance security posture Document incidents, findings, and recommendations clearly and accurately Stay current with emerging threats and vulnerabilities Demonstrate an understanding of the wider cyber security landscape and risks Essential Skills & Experience: Minimum of 2 years' experience in a SOC or cyber security role Strong understanding of SIEM technologies and incident response processes … security monitoring, logging, and compliance frameworks Excellent analytical skills and a keen eye for detail Strong written and verbal communication skills Desirable: An interest in or basic understanding of cyber threat intelligence, including how attackers operate and how to spot signs of compromise (e.g., suspicious files, unusual behaviour, or known attack patterns) Relevant cyber security or networking More ❯

detections to improve the CDO's efficiency, scalability, and incident response capabilities. Design, implement, and maintain automated workflows and playbooks to streamline CDO operations, including incident response, threat hunting, cyber threat intelligence and vulnerability management. Collaborate with CDO analysts to identify repetitive tasks and automate them to improve operational efficiency. Collaborate with Threat Intelligence, Incident Response, and More ❯

Cyber Security Analyst Applicants for this role should currently hold a valid Security (SC) Clearance. Responsibilities: * Support mission to coordinate the response to critical and cross-cutting cyber threats, incidents and vulnerabilities, and enable cyber defenders to defend as one. * Become part of the Watch Officer rota to provide initial triage and escalation of reports and requests … from Government organisations. * Support Incident Management when required during periods of heightened operational activity. * Maintain an understanding of the real-world cyber threat, identifying trends and emerging threats. * Maintain an understanding of the cyber threats likely to target the business. * Facilitate the timely sharing of high-quality actionable Cyber Threat Intelligence, both through regular and ad … Work collaboratively with Incident Management, providing insights on adversaries to enable a more effective response, and capturing insights for wider use. * Support the implementation and ongoing management of Threat Intelligence tooling and infrastructure, including, malware sandboxes, and threat intelligence platforms. * Engage with the wider public sector cyber security, cyber threat intelligence and assessment communities on More ❯

About Apexanalytix At Apexanalytix, we help some of the world’s largest companies stay ahead of risk. Our Cyber Threat & Vulnerability team provides cutting-edge analysis, monitoring, and intelligence on third-party and supplier cyber threats — helping procurement and risk leaders understand and act on the hidden risks in their extended supply chains. The Opportunity We’re … looking for a smart, curious, and capable individual to join our growing cyber threat team. This is a junior role, ideal for someone entering their first or second cybersecurity position who wants to step into a fast-paced, high-impact environment. You’ll be working directly with the Head of Cyber Threat Analysis, helping to assess supplier exposure … It’s a rare chance to be part of a tight-knit team tackling real-world threats at scale. What You'll Be Doing Supporting the delivery of threat intelligence and vulnerability assessments for global clients in the form of reports, briefings and alerts. Monitoring threat actor activity, emerging vulnerabilities and cyber trends relevant to third-party risk. More ❯

or stage in your digital journey. With offices in North America, Europe, and Asia, Resillion will be by your side, helping you and your organization realize your ambitions in cyber security, testing of digital media content, and quality assurance. Job Description: As a Senior Red Teamer, you will play a crucial role in simulating sophisticated cyber attacks to … will help us identify vulnerabilities and develop strategies to mitigate potential threats. The ideal candidate will have extensive experience working with TIBER EU standards and a deep understanding of cyber threat intelligence. Key Responsibilities: Conduct comprehensive red team assessments to identify security weaknesses and vulnerabilities. Simulate advanced persistent threats (APTs) and other cyber attack scenarios. Collaborate with the … and techniques in cybersecurity. Ensure all activities align with TIBER EU standards and guidelines. Requirements: At least five years of experience in red team testing, including three years managing intelligence-led red team tests in the financial services industry. Proven experience as a Red Teamer or similar role in cybersecurity. In-depth knowledge of TIBER EU standards and their More ❯

HL's Cyber Apprenticeship Salary: Real Living Wage About the role Hargreaves Lansdown are looking for 2 apprentices to join our Cyber team, one in our Cyber Defence team and one in our Security Architecture and Product Security team. You'll be based at our offices in central Bristol. You don't need to have any prior … work experience or training in Cyber, just a passion for technology and willingness to learn. The apprenticeship You will complete the 18 month-long, Level 4 Information Cyber Security Technologist apprenticeship. The apprenticeship will give you an understanding of working in Cyber Security, covering legislation and ethics, networking and system security, identifying and responding threats and assessing … risk. Cyber Defence: As part of your apprenticeship, you will rotate through the four pillars of Cyber Defence, supporting the Security Operations Centre, Vulnerability Management, Cyber Threat Intelligence and Security Testing functions to protect HL clients and colleagues from cyber-attacks. Help assist with ongoing development and project activities Continually improve your knowledge through technical More ❯

Location(s): UK, Europe & Africa : UK : Leeds BAE Systems Digital Intelligence is home to 4,500 digital, cyber, and intelligence experts. We work across 10 countries to collect, connect, and understand complex data, enabling governments, armed forces, and commercial businesses to unlock digital advantage in demanding environments. Job Title: Front Line Analyst Requisition ID: 121791 Location: Leeds … We offer hybrid and flexible working arrangements. Please speak to your recruiter about options for this role. Grade: GG08 Referral Bonus: £2,000 Job Description Conduct Cyber Security Monitoring to detect hacking/malware intrusion attempts against customer IT. Perform full triage of detection alarms to identify the cause, such as active infection, intrusion attempts, or false positives. Identify … complexity KQL analytics and hunt queries, conduct IOC and anomaly-based threat hunts. Identify and tag incorrect alert logic or high false positive detection rules for review. Transform Threat Intelligence into actionable detections. Coach junior analysts and colleagues as needed. Lead Threat Hunting workgroups during events for complex TTPs across industries. Deliver ad-hoc training and workshops to promote More ❯

APIs, and Case Management tools for data enrichment. Key Skills and Experience Experience contributing to large-scale, sprint-based, security automation and detection engineering projects in a SOC/Cyber Defense or similar environment Recent hands-on experience with managing and implementing Microsoft Sentinel log sources and detection, with knowledge of the related technical best practices in Sentinel and … and platforms and their integration into SOC operations. Responsibilities: Lead technical migration of log sources into Microsoft Sentinel SIEM. Build security automations, logging, and SIEM detections to improve the Cyber Defence Operation’s efficiency, scalability, and incident response capabilities. Design, implement, and maintain automated workflows and playbooks to streamline CDO operations, including incident response, threat hunting, cyber threat … intelligence and vulnerability management. Collaborate with Cyber Defence Operation analysts to identify repetitive tasks and automate them to improve operational efficiency. Collaborate with Threat Intelligence, Incident Response, and Attack Surface Management to build and tune robust SIEM detections for both proactive and reactive response actions. Continuously evaluate automation solutions for performance, reliability, and scalability, making improvements, as More ❯

APIs, and Case Management tools for data enrichment. Key Skills and Experience Experience contributing to large-scale, sprint-based, security automation and detection engineering projects in a SOC/Cyber Defense or similar environment Recent hands-on experience with managing and implementing Microsoft Sentinel log sources and detection, with knowledge of the related technical best practices in Sentinel and … and platforms and their integration into SOC operations. Responsibilities: Lead technical migration of log sources into Microsoft Sentinel SIEM. Build security automations, logging, and SIEM detections to improve the Cyber Defence Operation’s efficiency, scalability, and incident response capabilities. Design, implement, and maintain automated workflows and playbooks to streamline CDO operations, including incident response, threat hunting, cyber threat … intelligence and vulnerability management. Collaborate with Cyber Defence Operation analysts to identify repetitive tasks and automate them to improve operational efficiency. Collaborate with Threat Intelligence, Incident Response, and Attack Surface Management to build and tune robust SIEM detections for both proactive and reactive response actions. Continuously evaluate automation solutions for performance, reliability, and scalability, making improvements, as More ❯

Location(s): UK, Europe & Africa : UK : Leeds BAE Systems Digital Intelligence is home to 4,500 digital, cyber, and intelligence experts. We work collaboratively across 10 countries to collect, connect, and understand complex data, enabling governments, armed forces, and commercial businesses to unlock digital advantage in demanding environments. Job Title: Front Line Analyst Requisition ID: 121791 Location … We offer a range of hybrid and flexible working arrangements. Please speak to your recruiter about options for this role. Grade: GG08 Referral Bonus: £2,000 Job Description Conduct cyber security monitoring to detect hacking/malware intrusion attempts against customer IT. Perform full triage of detection alarms to identify the cause, such as active infection, intrusion attempt, or … IOC and anomaly-based threat hunts, and identify root causes. Identify and tag incorrect alert logic and high false positive detection rules for review. Transform internal and partner threat intelligence into actionable detections. Coach junior analysts and colleagues as needed. Lead threat hunting workgroups during events for complex TTPs across industries. Deliver ad-hoc training and workshops to promote More ❯

APIs, and Case Management tools for data enrichment. Key Skills and Experience Experience contributing to large-scale, sprint-based, security automation and detection engineering projects in a SOC/Cyber Defense or similar environmentRecent hands-on experience with managing and implementing Microsoft Sentinel log sources and detection, with knowledge of the related technical best practices in Sentinel and Azure … tools and platforms and their integration into SOC operations. Responsibilities:Lead technical migration of log sources into Microsoft Sentinel SIEM.Build security automations, logging, and SIEM detections to improve the Cyber Defence Operation's efficiency, scalability, and incident response capabilities.Design, implement, and maintain automated workflows and playbooks to streamline CDO operations, including incident response, threat hunting, cyber threat intelligence and vulnerability management.Collaborate with Cyber Defence Operation analysts to identify repetitive tasks and automate them to improve operational efficiency.Collaborate with Threat Intelligence, Incident Response, and Attack Surface Management to build and tune robust SIEM detections for both proactive and reactive response actions.Continuously evaluate automation solutions for performance, reliability, and scalability, making improvements, as necessary.Collaborate with third-party More ❯

Job Category: Other - EU work permit required: Yes col-narrow-right Job Reference: be332973ce3e Job Views: 11 Posted: 22.06.2025 Expiry Date: 06.08.2025 col-wide Job Description: BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation … Location: Leeds - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Grade: GG08 Job Description Conducting Cyber Security Monitoring to detect hacking/malware intrusion attempts against customer IT. · Full triage of detection alarms to accurately identify the cause of the alarm, be it active infection … threat hunts, including root cause identification of findings · Identification and tagging of incorrect alert logic/high false positive detection rules for the attention of senior analysts. · Consume Threat Intelligence from internal and partner tools and transform into actionable hunting and detections. · Coaching of junior analysts and colleagues when required · Lead Threat Hunting workgroups during Hunting Events for specific More ❯

detections to improve the CDO's efficiency, scalability, and incident response capabilities. • Design, implement, and maintain automated workflows and playbooks to streamline CDO operations, including incident response, threat hunting, cyber threat intelligence and vulnerability management. • Collaborate with CDO analysts to identify repetitive tasks and automate them to improve operational efficiency. • Collaborate with Threat Intelligence, Incident Response, and More ❯

the Security Architecture Group meetings, contributing to the development of essential architecture strategies and patterns for NESO. Building and managing relationships with the business is key to delivering our cyber security strategy. Whether implementing new solutions, driving operational effectiveness and efficiency, or providing guidance to further enhance our strategy, the Senior Security Architect will engage with stakeholders to enable … interpersonal skills and a team-oriented mindset. A proactive approach to problem-solving, with the ability to think critically and strategically about architectural challenges and opportunities. Significant experience in cyber security Strong Cloud knowledge and demonstrable experience - (Azure) Relevant cyber security qualification(s), for example Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified in … Application Security: Possess knowledge of secure software development lifecycles, application architectures, key attack vectors, and corresponding compensating controls. Cloud Security (Microsoft): Demonstrated experience and proficiency in securing cloud environments. Cyber Threat Intelligence: Ability to analyse and respond to emerging cyber threats and how this can be used to update secure architecture principles. About What You'll Get More ❯