1 to 25 of 28 Threat Detection Jobs in the East of England

software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. Responsibilities Infrastructure Security: Architect and secure Azure … and optimize Azure DevOps pipelines with security embedded at every stage. Cloud Security Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and Microsoft Sentinel for advanced security monitoring. Threat Detection & SOAR Automation: Oversee Security Orchestration, Automation, and Response (SOAR) solutions including SOC Prime. Network & Application Security: Manage Web Application Firewalls (WAF) and Intrusion Prevention Systems (IPS). … to prevent cyber threats. Incident Response: Formulating and documenting a solid process utilising a 3rd party support partner Security Monitoring & Logging: Develop SIEM solutions, logging strategies, and real-time threat intelligence. Monitor, audit, and improve infrastructure security posture using automated tooling. Policy & Procedures: Define and enforce security policies, incident response strategies, and structured action plans for proactive risk mitigation. More ❯

software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. Responsibilities Infrastructure Security: Architect and secure Azure … and optimize Azure DevOps pipelines with security embedded at every stage. Cloud Security Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and Microsoft Sentinel for advanced security monitoring. Threat Detection & SOAR Automation: Oversee Security Orchestration, Automation, and Response (SOAR) solutions including SOC Prime. Network & Application Security: Manage Web Application Firewalls (WAF) and Intrusion Prevention Systems (IPS). … to prevent cyber threats. Incident Response: Formulating and documenting a solid process utilising a 3rd party support partner Security Monitoring & Logging: Develop SIEM solutions, logging strategies, and real-time threat intelligence. Monitor, audit, and improve infrastructure security posture using automated tooling. Policy & Procedures: Define and enforce security policies, incident response strategies, and structured action plans for proactive risk mitigation. More ❯

Develop and implement a comprehensive security architecture strategy tailored to the unique risks and operational needs of the semiconductor design, manufacturing and high-tech partner ecosystem. Define reference architectures, threat models, and security design patterns across hybrid, cloud-native, and on-premise environments. Mentor a technically excellent team, with a solid focus on domain-specific expertise (cloud, semiconductors, AI … with industry standards (NIST, MITRE ATT&CK) and semiconductor-specific regulatory requirements including export control and SoX compliance. Drive innovation by utilising AI and machine learning technologies to enhance threat detection, incident response, and overall cyber defense posture. Partner with senior leadership to communicate security architecture roadmaps, risk mitigation strategies, and compliance postures. Champion a culture of continuous More ❯

You’ll collaborate with technical teams to deepen understanding of operational activities, develop defensive strategies, analyze alerts, logs, network traffic, and endpoint data using tools like Splunk, and develop detection content. You will also utilize threat intelligence to proactively enhance security measures and respond swiftly to incidents, including digital forensics support. The role offers unique challenges due to … house, on-the-job, and external training, including industry-recognized certifications with SANS Institute and OFFSEC. You will be paired with a mentor and gain hands-on experience in threat detection, incident response, and operational strategies. Opportunities for travel, conferences, and staying abreast of cyber security innovations are available but not mandatory. Rewards and Benefits Starting salary of More ❯

unparalleled access to Microsoft’s security product roadmap, security previews, and frontline support. You'll work at the forefront of cyber defense, directly contributing to investigations involving nation-state threat actors (including IR, CH, and NK based campaigns) while refining your craft across enterprise-scale log ingestion and customized Sentinel integration engineering. This will stretch your skills, give you … ll own and optimize enterprise-wide log onboarding into Microsoft Sentinel – deploying standard and custom connectors, Function Apps, and parsers to build tailored SIEM solutions that drive real-world threat detection and response. Log ingestion at scale across numerous hybrid and multi-cloud environments Enhance custom Function Apps and ingestion pipelines Parse, normalize, and optimize log telemetry to … ensure precision and cost control Partner with IR teams on real attacks – tuning rules against live threat actor activity Collaborate closely with Microsoft teams to build cutting-edge detection capabilities Contribute to internal knowledge bases and help shape engineering standards What's needed? Experience building and integrating complex Microsoft Sentinel solutions at SMC and enterprise levels Understanding of More ❯

SOC Analysts (BBBH37824) Stevenage, England MERITUS are recruiting for x2 SOC Analysts specialising in Threat Detection to join our client on an initial 12 month contract with very likely extensions (or employment) thereafter. SOC ANALYST (THREAT DETECTION) - INSIDE IR35 - £650 PER DAY - STEVENAGE - DV CLEARED (CAN START ON SC) - 12 MONTHS - FAST INTERVIEW PROCESS To support … and investigation activity utilising a wide variety of security platforms including AI/ML and behavioural analytics, SIEM (Security Information Event Management), Network Packet Capture platform, Anti Malicious Code, Threat Detection technologies and platforms across the UK Network Perimeter working with the best standard technologies. KEY RESPONSIBILITIES: Effective Tier 1 to 2 alert triage of security events Monitoring … Cyber Security tools Monitoring the SOC email notification mailboxes Assists with the maintenance of our client's Security technologies Assisting the SOC Solutions Lead with project activity Conduct proactive threat hunting in collaboration with the CTI function Conduct HR and InfoSec related investigations Ensure the timely triage and remediation of any incident or request tickets raised to the SOC More ❯

in collaboration with IT and infrastructure teams. In addition to alert triage and incident response, you will be responsible for maintaining and tuning key security solutions such as endpoint detection and response (EDR), antivirus, and vulnerability management platforms. You will also provide technical support to internal security-aligned projects and initiatives. About us Elysium Healthcare is an established, stable … in collaboration with IT and infrastructure teams.a In addition to alert triage and incident response, you will be responsible for maintaining and tuning key security solutions such as endpoint detection and response (EDR), antivirus, and vulnerability management platforms. This role ensures these tools operate effectively, remain aligned to evolving threats, and support compliance with organisational standards and frameworks. You … and that operational feedback is embedded into project delivery. Ultimately, the role plays a key part in strengthening the organisation’s cyber defence posture by bridging the gap between threat detection, technical resolution, and continuous improvement. As a Security Operations Engineer, you will be: Act as the primary point of contact for the managed SOC provider. Triage and More ❯

Security team and use your experience to provide technical guidance and mentorship to existing team members. You'll help keep our systems safe by setting up security alerts, improving threat detection, and automating incident response. Managing logs and ensuring our most important assets are protected will be part of your daily tasks. You'll monitor security threats, analyze More ❯

Centre (SOC) is at the heart of monitoring and investigating cybersecurity incidents for the Tesco Group. They operate closely with other cybersecurity teams, including Digital Forensics and Incident Response, Threat Intelligence, Automation and Detection Engineering, to protect, detect, and respond to security threats across Tesco’s complex estate. Beyond investigating security incidents, they maximise their expertise to collaborate … s capabilities. Drawing on extensive security operations experience and strong critical thinking skills, the SOC Manager will support incident analysis and maintain a clear view of the operational and threat landscape, ensuring a coordinated and effective response to emerging incidents. At Tesco, we believe in the power of spending more time together, face to face, than apart. So, during … flexible working. So, talk to us throughout your application about how we can support. You will be responsible for Lead an effective and efficient SOC service that delivers timely detection, analysis, and response to security alerts and incidents. Ensure continuous improvement and alignment of new initiatives with the broader security strategy, keeping it central to all planning and execution More ❯

security initiatives with business goals. SaaS Product Security & Risk Management Implement application and cloud security best practices (e.g., DevSecOps, CI/CD security, secure coding). Deploy and monitor threat detection, logging, and incident response programs for our cloud infrastructure. Conduct security risk assessments and work with development teams to remediate vulnerabilities. Internal IT Security & Risk Management Establish … internal IT security policies and access controls. Oversee endpoint security and identity & access management (IAM). Implement and maintain security team tools, such as SIEM, vulnerability scanning, and endpoint detection solutions. Training & Awareness Develop and run organization-wide security training programs to foster a strong security culture company-wide. Educate employees on phishing, data protection, secure development, and compliance More ❯

threats across client environments Investigating events using system logs, network traffic, and endpoint telemetry Supporting containment and recovery efforts during active security incidents Continuously enhancing SOC capabilities, tooling, and detection rules using threat-informed approaches like MITRE ATT&CK Producing detailed incident reports and documentation for both technical and non-technical stakeholders Assisting with threat intelligence activities … Hands-on experience working in a Security Operations Centre (SOC) Solid knowledge of SIEM tools such as Microsoft Sentinel or Splunk Familiarity with the MITRE ATT&CK framework and threat detection methodologies Strong analytical skills with a keen eye for detail in log analysis and network monitoring Basic understanding of enterprise security architecture including firewalls, VPNs, AV, and More ❯

needs of local government. To read more about our business area, please visit Corporate Services and Transformation Key Responsibilities: Lead and develop an active Security Operations team focused on threat detection, incident management, and prevention of data breaches or service disruptions. Build and mature the Security Operations Centre (SOC) with a focus on cyber risks, threat intelligence More ❯

needs of local government. To read more about our business area, please visit Corporate Services and Transformation Key Responsibilities: Lead and develop an active Security Operations team focused on threat detection, incident management, and prevention of data breaches or service disruptions. Build and mature the Security Operations Centre (SOC) with a focus on cyber risks, threat intelligence More ❯

needs of local government. To read more about our business area, please visit Corporate Services and Transformation Key Responsibilities: Lead and develop an active Security Operations team focused on threat detection, incident management, and prevention of data breaches or service disruptions. Build and mature the Security Operations Centre (SOC) with a focus on cyber risks, threat intelligence More ❯

Job overview: This is an opportunity to lead global Security Operations focused on safeguarding Arm's digital environment through exemplary threat detection, incident response, and vulnerability management capabilities. This senior role, reporting directly into the CISO, is accountable for driving the strategic direction of Arm's Detect & Response function, delivering outstanding performance and ensuring we are resilient against … an evolving threat landscape! In addition to operations, you will lead cyber crisis management, C-Suite level stress testing, team development, and top-level cybersecurity thought leadership. Responsibilities: Own and deliver the strategic roadmap for cyber incident and vulnerability detection & response in line with Arm's threat profile and business objectives. You will guide and develop a … high-performing team, driven with context of emerging threats and strategic objectives. Ensure Threat Intelligence, Proactive Security Testing, and Security Analytics functions develop under your leadership to deliver maximum context into the operational team, as well as enabling real-time risk validation and actionable security insights. Continue delivering automation and detection as code for security operations, enabling increased More ❯

the underlying cloud-based infrastructure. This makes this a unique role where you will be able to utilize a broad skill set. Role Requirements Experience in cybersecurity matters (e.g., threat detection, malware intelligence, cloud security posture management, or identity and access management systems). Understanding of the following functions: TCP/IP stack, OSI Model, DHCP, DNS, Subnets More ❯

to safeguard critical systems, data, and operations across an international footprint. Key Responsibilities Lead and evolve the organisation’s information security framework across multiple technology environments Manage cyber risk, threat detection, incident response, and policy development efforts Provide expert advice to senior leadership and maintain regular engagement with executive stakeholders Collaborate cross-functionally to embed security best practices More ❯

Senior Embedded Software Engineer, Hemel Hempstead Client: Smiths Detection Location: Hemel Hempstead, United Kingdom Job Category: Other EU work permit required: Yes Job Reference: c1396340bb21 Job Views: 5 Posted: 02.06.2025 Expiry Date: 17.07.2025 Job Description Smiths Detection is a global leader in threat detection and screening solutions, making the world a safer place through innovative technology … computer science, and AI/ML in an international environment. Role: As a Senior Embedded Software Engineer, you will develop, test, and integrate software for embedded systems in Smiths Detection's next-generation chemical and explosive trace detection products. You will be part of an Agile team reporting to a software team leader. Responsibilities Design, implement, and test … Hempstead regularly. Diversity & Inclusion: We are committed to an inclusive environment where all qualified applicants receive equal consideration, regardless of background or characteristics. Note: During the hiring process, Smiths Detection and its partners will never request payment for participation. Apply directly through our careers website or LinkedIn. #J-18808-Ljbffr More ❯

new Security Information and Event Management (SIEM) solution. The scope of work includes replacing the existing Trend Micro infrastructure and rolling out CrowdStrike across all server environments to enhance threat detection and response capabilities. Job Title: Security Consultant Job Type: 3 month Contract Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting More ❯

new Security Information and Event Management (SIEM) solution. The scope of work includes replacing the existing Trend Micro infrastructure and rolling out CrowdStrike across all server environments to enhance threat detection and response capabilities. Job Title: Security Consultant Job Type: 3 month Contract Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting More ❯

new Security Information and Event Management (SIEM) solution. The scope of work includes replacing the existing Trend Micro infrastructure and rolling out CrowdStrike across all server environments to enhance threat detection and response capabilities. Job Title: Security Consultant Job Type: 3 month Contract Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting More ❯

new Security Information and Event Management (SIEM) solution. The scope of work includes replacing the existing Trend Micro infrastructure and rolling out CrowdStrike across all server environments to enhance threat detection and response capabilities. Job Title: Security Consultant Job Type: 3 month Contract Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting More ❯

new Security Information and Event Management (SIEM) solution. The scope of work includes replacing the existing Trend Micro infrastructure and rolling out CrowdStrike across all server environments to enhance threat detection and response capabilities. Job Title: Security Consultant Job Type: 3-month Contract Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting More ❯

This job is brought to you by Jobs/Redefined, the UK's leading over-50s age inclusive jobs board. Company Description Every minute of every day, Smiths Detection's threat detection and security screening technology helps to protect people and infrastructure, making the world a safer place. Smiths Detection, part of Smiths Group is a … global leader in the development, manufacture and management of security and detection solutions designed to make the world a safer place. Our technology provides threat detection and screening solutions for customers in our key markets: aviation, ports and borders, defence, and urban security. Our expertise spans 21 global offices, seven manufacturing sites and five R&D centres … of integrated sensing and situational awareness solutions. This high-impact role sits at the heart of our Chemical, Biological, Radiological, Narcotics, and Explosives (CBRNE) portfolio, shaping the future of threat detection and digital connectivity. What you'll do: Develop strategies and plans to allow SD to win in the CBRNE Digital & Innovation market. Provide CBRNE Digital & Innovation technical More ❯

Social network you want to login/join with: Every minute of every day, Smiths Detection’s threat detection and security screening technology helps to protect people and infrastructure, making the world a safer place. Smiths Detection, part of Smiths Group is a global leader in the development, manufacture and management of security and detection solutions designed to make the world a safer place. Our technology provides threat detection and screening solutions for customers in our key markets: aviation, ports and borders, defence, and urban security. Our expertise spans 21 global offices, seven manufacturing sites and five R&D centres, with a global network of 3,000 dedicated colleagues contributing towards over More ❯