Bradford, West Yorkshire, Yorkshire, United Kingdom
Anson Mccade
CyberThreatIntelligence Lead £75000 GBP Onsite WORKING Location: Leeds, Yorkshire and the Humber - United Kingdom Type: Permanent CyberThreatIntelligence and Vulnerability Lead Location: Leeds (100% office-based) Salary: Up to £75,000 Security Clearance: DV Clearance required The Opportunity: A unique and mission-critical opportunity has arisen for an experienced CyberThreatIntelligence and Vulnerability Lead to join a high-impact programme protecting vital UK infrastructure. You'll work within a dedicated Security Operations Centre (SOC) focused on safeguarding cloud-hosted environments across hundreds of systems. Key Responsibilities: As a CyberThreatIntelligence and Vulnerability Lead , you will: Oversee the daily detection, triage, and reporting … of cyber threats and vulnerabilities affecting the client environment. Direct the development and execution of collection plans and Priority Intelligence Requirements (PIRs), ensuring relevance and accuracy. Lead and mentor a team of analysts, ensuring timely delivery of high-quality intelligence and vulnerability reports. Maintain operational readiness even during periods of reduced capacity by managing team output and More ❯
CyberThreatIntelligence Lead £75000 GBP Onsite WORKING Location: Leeds, Yorkshire and the Humber - United Kingdom Type: Permanent CyberThreatIntelligence and Vulnerability Lead Location: Leeds (100% office-based) Salary: Up to £75,000 Security Clearance: DV Clearance required The Opportunity: A unique and mission-critical opportunity has arisen for an experienced CyberThreatIntelligence and Vulnerability Lead to join a high-impact programme protecting vital UK infrastructure. You'll work within a dedicated Security Operations Centre (SOC) focused on safeguarding cloud-hosted environments across hundreds of systems. Key Responsibilities: As a CyberThreatIntelligence and Vulnerability Lead , you will: Oversee the daily detection, triage, and reporting … of cyber threats and vulnerabilities affecting the client environment. Direct the development and execution of collection plans and Priority Intelligence Requirements (PIRs), ensuring relevance and accuracy. Lead and mentor a team of analysts, ensuring timely delivery of high-quality intelligence and vulnerability reports. Maintain operational readiness even during periods of reduced capacity by managing team output and More ❯
ThreatIntelligence Lead £55000-65000 GBP Onsite WORKING Location: Leeds, Yorkshire and the Humber - United Kingdom Type: Permanent ThreatIntelligence Lead Leeds - 5 days on-site Up to £65,000 + DV Cleared Bonus We are currently recruiting for a ThreatIntelligence Lead to join one of the UK's most critical national defence … programmes. This is an opportunity to lead a high-performance team operating at the forefront of cyberthreatintelligence, helping to protect sensitive cloud-hosted environments against sophisticated nation-state actors and advanced cyber adversaries. As ThreatIntelligence Lead, you will be responsible for managing the production of actionable threatintelligence and … vulnerability assessments, ensuring high-quality outputs that directly inform security operations and strategic defence decisions. Responsibilities of the ThreatIntelligence Lead: Lead the development and delivery of threatintelligence and vulnerability products. Select and profile key threat actors posing the greatest risk to the client's estate. Own the continuous development of Priority IntelligenceMore ❯
bradford, yorkshire and the humber, united kingdom
Anson Mccade
ThreatIntelligence Lead £55000-65000 GBP Onsite WORKING Location: Leeds, Yorkshire and the Humber - United Kingdom Type: Permanent ThreatIntelligence Lead Leeds - 5 days on-site Up to £65,000 + DV Cleared Bonus We are currently recruiting for a ThreatIntelligence Lead to join one of the UK's most critical national defence … programmes. This is an opportunity to lead a high-performance team operating at the forefront of cyberthreatintelligence, helping to protect sensitive cloud-hosted environments against sophisticated nation-state actors and advanced cyber adversaries. As ThreatIntelligence Lead, you will be responsible for managing the production of actionable threatintelligence and … vulnerability assessments, ensuring high-quality outputs that directly inform security operations and strategic defence decisions. Responsibilities of the ThreatIntelligence Lead: Lead the development and delivery of threatintelligence and vulnerability products. Select and profile key threat actors posing the greatest risk to the client's estate. Own the continuous development of Priority IntelligenceMore ❯
CyberThreatIntelligence Lead £65000 GBP Onsite WORKING Location: Leeds, Yorkshire and the Humber - United Kingdom Type: Permanent Location: Leeds (on-site) Salary: Up to £65,000 depending one experience, 10% annual bonus Clearance Requirement: Eligibility for DV clearance (British-born candidates only) NOTE: Due to the nature of the role, candidates must be eligible for DV … clearance and therefore must be British-born. Are you ready to lead in one of the most critical roles in the cybersecurity industry? We are seeking a CyberThreatIntelligence and Vulnerability Lead to play a pivotal role in the operation and improvement of a Security Operations Centre (SOC) dedicated to safeguarding a major UK organisation. This … position offers an opportunity to make a tangible impact in protecting the systems that power the nation. About the Role As the CyberThreatIntelligence and Vulnerability Lead, you will: Take accountability for detecting, triaging, and reporting potential cyber threats and key vulnerabilities daily. Oversee the delivery and quality of all threatintelligence and More ❯
CyberThreatIntelligence and Vulnerability Lead £55,000- 65,000 GBP Onsite WORKING Location: Leeds, Yorkshire and the Humber - United Kingdom Type: Permanent CyberThreatIntelligence and Vulnerability Lead Location: Leeds - on site Clearance Required: DV (Developed Vetting) Salary: £55,000- 65,000 Grade: GG10 - GG11 A major UK Critical National Infrastructure (CNI) programme … is seeking a highly skilled CyberThreatIntelligence and Vulnerability Lead to join a dedicated Security Operations Centre (SOC). This role is central to protecting hundreds of cloud-hosted systems from advanced cyber threats and ensuring the continuous improvement of threatintelligence and vulnerability management capabilities. Key Responsibilities: Lead the detection, triage, and … reporting of cyber threats and vulnerabilities on a daily basis. Oversee the timely delivery of all threatintelligence and vulnerability reports, ensuring high quality and relevance. Select and monitor key threat actors posing the greatest risk to the organisation. Develop and maintain Priority Intelligence Requirements (PIRs) and a tailored collection plan. Provide clear, well-reasoned More ❯
bradford, yorkshire and the humber, united kingdom
Anson Mccade
CyberThreatIntelligence and Vulnerability Lead £55,000- 65,000 GBP Onsite WORKING Location: Leeds, Yorkshire and the Humber - United Kingdom Type: Permanent CyberThreatIntelligence and Vulnerability Lead Location: Leeds - on site Clearance Required: DV (Developed Vetting) Salary: £55,000- 65,000 Grade: GG10 - GG11 A major UK Critical National Infrastructure (CNI) programme … is seeking a highly skilled CyberThreatIntelligence and Vulnerability Lead to join a dedicated Security Operations Centre (SOC). This role is central to protecting hundreds of cloud-hosted systems from advanced cyber threats and ensuring the continuous improvement of threatintelligence and vulnerability management capabilities. Key Responsibilities: Lead the detection, triage, and … reporting of cyber threats and vulnerabilities on a daily basis. Oversee the timely delivery of all threatintelligence and vulnerability reports, ensuring high quality and relevance. Select and monitor key threat actors posing the greatest risk to the organisation. Develop and maintain Priority Intelligence Requirements (PIRs) and a tailored collection plan. Provide clear, well-reasoned More ❯
Hemel Hempstead, England, United Kingdom Hybrid / WFH Options
Fynity
CyberThreatIntelligence Analyst Hemel Hempstead | Hybrid: 3 Days WFH/2 Days On-Site Up to £60,000 + Excellent Benefits Security Clearance: SC Cleared + Eligible for DV Clearance A great opportunity to take your cyberthreatintelligence skills to the next level? This is an exciting opportunity to join a fast … growing, mission-driven cyber team working at the forefront of Defence and National Security. The CyberThreatIntelligence Analyst will play a key role in identifying and neutralising emerging threats that could impact our most critical national infrastructure. This is a hands-on, high-impact role where you’ll shape the threat intel capability and … directly support security operations in a cutting-edge SOC environment. As a Cyberthreat Analyst, you will: Managing and automating threat intel feeds from multiple open and closed sources Monitoring OSINT, dark web forums, and internal telemetry for threat indicators Translating raw technical data into actionable insights for security teams Collaborating with SOC and Incident Response More ❯
Hemel Hempstead, Hertfordshire, England, United Kingdom Hybrid / WFH Options
Fynity
CyberThreatIntelligence Analyst Hemel Hempstead | Hybrid: 3 Days WFH/2 Days On-SiteUp to £60,000 + Excellent Benefits Security Clearance: SC Cleared + Eligible for DV ClearanceA great opportunity to take your cyberthreatintelligence skills to the next level? This is an exciting opportunity to join a fast-growing, mission … driven cyber team working at the forefront of Defence and National Security.The CyberThreatIntelligence Analyst will play a key role in identifying and neutralising emerging threats that could impact our most critical national infrastructure. This is a hands-on, high-impact role where you’ll shape the threat intel capability and directly support security … operations in a cutting-edge SOC environment.As a Cyberthreat Analyst, you will: Managing and automating threat intel feeds from multiple open and closed sources Monitoring OSINT, dark web forums, and internal telemetry for threat indicators Translating raw technical data into actionable insights for security teams Collaborating with SOC and Incident Response teams to support real More ❯
What You'll Be Working On: ️ Collecting, analyzing, and disseminating cyberthreatintelligence to identify emerging threats and attack patterns ️ Working with internal teams to integrate threatintelligence into security operations and incident response processes ️ Using advanced tools and techniques to track and analyze threat actors, APTs, and malware campaigns ️ Developing and presenting actionable … intelligence reports to stakeholders to improve proactive defense strategies ️ Collaborating with external partners, industry groups, and threatintelligence vendors to gather and share threat data What We're Looking For: ️ Proven experience as a CyberThreatIntelligence Specialist or in a similar threat analysis role ️ Strong knowledge of threatintelligence frameworks (e.g., STIX/TAXII, MITRE ATT&CK) and tools (e.g., SIEM, threatintelligence platforms) ️ Experience with threat hunting, incident response, and malware analysis ️ Familiarity with cyberthreat actors, attack methodologies, and geopolitical threat landscapes ️ Certifications such as GIAC CyberThreatIntelligence (GCTI), CISSP, or CompTIA Security+ are highly desirable More ❯
the role, candidates must be eligible for DV clearance. Are you ready to lead in one of the most critical roles in the cybersecurity industry? We are seeking a CyberThreatIntelligence and Vulnerability Lead to play a pivotal role in the operation and improvement of a Security Operations Centre (SOC) dedicated to safeguarding a major UK … organisation. This position offers an opportunity to make a tangible impact in protecting the systems that power the nation. About the Role As the CyberThreatIntelligence and Vulnerability Lead, you will: Take accountability for detecting, triaging, and reporting potential cyber threats and key vulnerabilities daily. Oversee the delivery and quality of all threatintelligence and vulnerability products, ensuring deadlines are met with excellence. Develop and continuously review tailored Priority Intelligence Requirements (PIRs) and collection plans to align intelligence products with client needs. Provide in-depth analysis, context, and predictive insights to support threat mitigation. Assess and enhance the maturity of the SOC's existing functions, driving continuous improvement. Lead, mentor More ❯
We are seeking passionate people to grow the Cyber Security team within WTW and provide an excellent service and trusted expertise to all parts of our business. As part of a business wide transformation, we have an exciting opening for a new role of Global Head of Threat Intelligence. As part of the Cyber Defence and Security … Operations department, you will be a senior leader managing the ThreatIntelligence service ensuring WTW can prevent and better understand cyber-attacks against our environment. You will need to have a good technical aptitude, excellent communicative skills to technical and non-technical audiences, and a solid business acumen to deal with other senior stakeholders across the business. … managing geographically dispersed teams across different time-zones. The Role As the Global Head of Incident Response, your primary responsibilities will be: Manage and develop a global team of CyberThreatIntelligence analysts, providing expert assistance during a cyber incident and for routine investigations escalated by the SOC. Manage a team of analysts spread out cross More ❯
We are seeking passionate people to grow the Cyber Security team within WTW and provide an excellent service and trusted expertise to all parts of our business. As part of a business wide transformation, we have an exciting opening for a new role of Global Head of Threat Intelligence. As part of the Cyber Defence and Security … Operations department, you will be a senior leader managing the ThreatIntelligence service ensuring WTW can prevent and better understand cyber-attacks against our environment. You will need to have a good technical aptitude, excellent communicative skills to technical and non-technical audiences, and a solid business acumen to deal with other senior stakeholders across the business. … managing geographically dispersed teams across different time-zones. The Role As the Global Head of Incident Response, your primary responsibilities will be: Manage and develop a global team of CyberThreatIntelligence analysts, providing expert assistance during a cyber incident and for routine investigations escalated by the SOC. Manage a team of analysts spread out cross More ❯
Description ActiveFence is seeking a Senior ThreatIntelligence Analyst to join our growing CyberThreat Team . In this role, you will conduct advanced research and analysis into online cyber threats and malicious activity targeting platforms, organizations, and communities. You will also engage directly with clients, presenting insights and recommendations to help them proactively mitigate … risk. The ideal candidate combines deep expertise in cyberthreatintelligence with strong analytical skills and client communication abilities. This role is a 6-month maternity leave coverage. Responsibilities Conduct in-depth research on cyber threats, actors, and trends, including malware, phishing, credential theft, fraud, abuse of platforms, and other forms of malicious activity to understand … threat actor tactics, techniques, and procedures. Analyze diverse data sources (OSINT, dark web forums, closed communities, social media, etc.) to produce actionable intelligence. Evaluate the credibility and relevance of intelligence sources and identify actionable intelligence for our clients. Continuously monitor the threat landscape and emerging TTPs (Tactics, Techniques & Procedures). Produce clear, concise written reports, strategic More ❯
CyberThreatIntelligence & Vulnerability Lead £65,000 GBP 10% bonus + £7,000 DV Clearance Bonus (once obtained) Hybrid WORKING Location: Manchester, North West - United Kingdom Type: Permanent CyberThreatIntelligence & Vulnerability Lead Location: Leeds, UK (100% office-based) Salary: up to £65,000 + 10% bonus + £7,000 DV clearance bonus once … obtained. Security Clearance Required: DV (Developed Vetting) eligibility Are you ready to lead the charge in defending critical national infrastructure from sophisticated cyber threats? Join a high-impact Security Operations Centre (SOC) team protecting hundreds of cloud-hosted systems in one of the UK's most vital sectors. This is your opportunity to shape the future of cyber defence in a role that demands technical excellence, strategic thinking, and strong leadership. What You'll Be Doing As the CyberThreatIntelligence & Vulnerability Lead, you will: Oversee the detection, triage, and reporting of cyber threats and vulnerabilities. Deliver high-quality intelligence and vulnerability reports on time, every time. Select and monitor key threatMore ❯
Citi's CyberIntelligence Center (CIC) is a global team that delivers timely threatintelligence to technical teams and decision makers, in support of threat detection, preparation, and incident response activities. The Regional Lead will oversee the team's operations in the UK/EU time-zone, including oversight of regional staff, driving quality control … collaboration with other cyber-technical functions in the region, and working with senior leaders. The role will also help maintain our network of global intelligence partners. Direct experience in cyberthreatintelligence is a necessity. This is a hybrid role with an in-office attendance component. Experience in fusion center operating environments or crisis response … will be helpful. Responsibilities: Lead the regional co-ordination of a cyberthreatintelligence function Support local leadership and business in their intelligence needs Provide intelligence support to adjacent teams in a fusion center environment. Oversee quality control and production strategy for the region Conduct internal and external briefings on a regular basis, including to More ❯
ThreatIntelligence Analyst page is loaded ThreatIntelligence Analyst Apply locations London Office Tampa Office Dublin Salt Lake City Office Las Vegas Office time type Full time posted on Posted 30 Days Ago job requisition id R14383 Why it's worth it: The ReliaQuest ThreatIntelligence team provides timely , comprehensive intelligence that empowers … identifies known and emerging threats, and equips our customers with the knowledge to act decisively. Via our industry-leading security operations platform, GreyMatter , we produce operational, strategic, and tactical intelligence that delivers actionable insights into threat actor tactics, techniques, and procedures . Beyond this, we act as a thought leader in cybersecurity by offering original insights that highlight … performance environment, this role will challenge you to push your boundaries, innovate continually, and operate at pace. The everyday hustle: Identify and evaluate trends, dynamics, and developments in the cyberthreat landscape by conducting primary-source research and analyzing telemetry. Maintain the GreyMatter platform's threatintelligence library by writing timely , accurate , and relevant customer-facing More ❯
Analyst, ThreatIntelligence Analyst page is loaded Analyst, ThreatIntelligence Analyst Apply locations London time type Full time posted on Posted Yesterday job requisition id -WD Do you want your voice heard and your actions to count? Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world's leading financial groups. Across the … in talent, technologies, and tools that empower you to own your career. Join MUFG, where being inspired is expected and making a meaningful impact is rewarded. The department covers Cyber Security, Information Security, IT Audit, IT Risks, IT Controls, Access Management and the portfolio for change for all these areas. MAIN PURPOSE OF THE ROLE To ensure latest cyberthreat information is monitored and raise awareness across MUFG EMEA by disseminating reports and interacting with the stakeholders to sort out the issues. The role will involve liaising and coordinating with the other information security functions within MUFG EMEA and global stakeholders to ensure a consistent approach to all controls, standards and policies is adopted across the organisation. More ❯
Hemel Hempstead, Hertfordshire, South East, United Kingdom Hybrid / WFH Options
Sopra Steria Limited
We are building a CyberThreat team. It's a great time to join us in our expansion, and work with a portfolio of high profile clients, with the opportunity to work on a large client base. Our CyberThreat |Intelligence Analyst will be a critical member of the dedicated SOC team and run our … Malware Information Sharing Platform (MISP) instance, to deliver actionable operational and tactical threat intelligence. This involves monitoring, analysis, and dissemination of threat information to support our customer security posture. We need strong analytical skills, deep knowledge of threatintelligence frameworks, and the ability to collaborate optimally across teams with varied strengths and partners. You do need … What you'll be doing: Develop and integrate automated feeds and enrichment sources. Provide training sessions and documentation for SOC staff on effective usage of MISP. Supervise various sources (threat feeds, OSINT, dark web, internal logs) for emerging threats; and facilitate threat intelligence. Analyse collected data to identify patterns, indicators of compromise, and emerging adversary behaviours. Produce monthly More ❯
Rickmansworth, Hertfordshire, South East, United Kingdom Hybrid / WFH Options
Senior plc
our continual information security strategy, joining us on our journey and developing yourself along the way. Why Join Us? Work with a talented team of security professionals in a threat-driven environment. Ability to help shape the future of our cyber defence capabilities across a wide and diverse range of businesses. Competitive compensation and benefits package. Flexible work … environment with opportunities for remote work and professional development. Key responsibilities: Reporting to the Director of Information Security & Information Technology, you will be responsible for: - Build and own Seniors threatintelligence strategy. Develop and own the threat management program with regular assessments, threat modelling, risk prioritisation and remediation activities. The individual will serve as a subject … matter expert incyber threat management, advising our various businesses on adversary activities, situational awareness and defensive actions. Designing tactical and strategic responses to emerging security threats Define, implement and manage our cyberthreat capability working with our local IT teams, MSSP partners, vendors and other key stakeholders. Provide our IT teams with guidance on adversary intentions, objectives More ❯
Bristol, Gloucestershire, United Kingdom Hybrid / WFH Options
BT Group
Press Tab to Move to Skip to Content Link Select how often (in days) to receive an alert: Posting Date: 30 Jul 2025 Function: Cyber Security Unit: Networks Location: Assembly, Bristol, United Kingdom Salary: Competitive with Great Benefits Defending BT Group against cyber-attacks is the focus of PBT Cyber Operations. BT faces threats from the full … range of threat actors from sophisticated threat nation state actors developing their tactics to new heights and targeting our industry, through to criminal groups seeking to monetize efforts attacks on BT and customers, to hacktivist groups who see BT as a visible UK and impactful UK target. It is the role of the CyberThreatIntelligence Group (CTIG) to understand and track this ever-evolving threat landscape. Our Capability Development Team is key part of this equipping us with the tools to do carry out this function and keep BT Group and the UK critical networks safe. BT takes a threat led approach to cyber security. Intelligence generated within CTIG to More ❯
Data Engineering Specialist (Assembly, Bristol, United Kingdom) Why this job matters Defending BT Group against cyber-attacks is the focus of PBT Cyber Operations. BT faces threats from the full range of threat actors from sophisticated threat nation state actors developing their tactics to new heights and targeting our industry, through to criminal groups seeking to … monetize efforts attacks on BT and customers, to hacktivist groups who see BT as a visible UK and impactful UK target. It is the role of the CyberThreatIntelligence Group (CTIG) to understand and track this ever-evolving threat landscape. Our Capability Development Team is key part of this equipping us with the tools to … do carry out this function and keep BT Group and the UK critical networks safe. BT takes a threat led approach to cyber security. Intelligence generated within CTIG to identify, prioritize and track those threats which are of greatest significance to BT drives security decision making impacting all levels of the organization. As a large, distributed, multinational More ❯
Data Engineering Specialist (Assembly, Bristol, United Kingdom) Why this job matters Defending BT Group against cyber-attacks is the focus of PBT Cyber Operations. BT faces threats from the full range of threat actors from sophisticated threat nation state actors developing their tactics to new heights and targeting our industry, through to criminal groups seeking to … monetize efforts attacks on BT and customers, to hacktivist groups who see BT as a visible UK and impactful UK target. It is the role of the CyberThreatIntelligence Group (CTIG) to understand and track this ever-evolving threat landscape. Our Capability Development Team is key part of this equipping us with the tools to … do carry out this function and keep BT Group and the UK critical networks safe. BT takes a threat led approach to cyber security. Intelligence generated within CTIG to identify, prioritize and track those threats which are of greatest significance to BT drives security decision making impacting all levels of the organization. As a large, distributed, multinational More ❯
CyberThreatIntelligence & Vulnerability Lead Leeds – 5 days per week on site Up to £65,000 + Bonus + Package Urgent hire!! We’re looking for an experienced CTI and Vulnerability Lead to step into a senior leadership role supporting national security programmes within a critical infrastructure environment. This is a hands-on, high-impact opportunity in … major defence consultancy. This role is fully onsite in Leeds and will require DV clearance (or eligibility to gain it). You’ll be leading a team of cleared cyber professionals, driving delivery across threatintelligence and vulnerability management, and playing a key part in safeguarding systems targeted by sophisticated threat actors. What you’ll be … doing: Leading day-to-day CTI and vulnerability operations across a high-profile CNI environment Setting direction for threat actor tracking and tailored intelligence collection plans Owning the quality, consistency, and relevance of all reporting deliverables Line managing a team of experienced analysts and guiding their technical and professional development Reviewing and improving PIRs, process documentation, and internal More ❯
colleagues, generates £315m in revenue, and supports more than 60,000 clients across a diverse range of sectors and markets. Role Purpose We're hunting for a Senior ThreatIntelligence Analyst who lives and breathes adversary tradecraft. Someone who gets excited about TTPs, thinks in kill chains, and automates everything they touch.As a senior member of our threatintelligence team, you'll dive deep into adversary infrastructure, behavioral patterns, and attack chains. This isn't about writing reports from vendor feeds - it's about getting your hands dirty with PCAP analysis, malware reversing, and building detection logic that actually catches bad actors. What You'll Actually Do Hunt Adversaries: Track APTs across infrastructure, analyze C2 patterns … and map adversary playbooks Build & Automate: Develop custom tooling for threat hunting, automate IOC enrichment, and create detection pipelines Deep Technical Analysis: Reverse engineer malware samples, analyze memory dumps, and dissect attack chains at the assembly level Lead Regulated Engagements: Execute TIBER/CBEST/STAR-FS assessments with technical depth that goes beyond compliance checkboxes Operationalize IntelligenceMore ❯
