7 of 7 Threat Detection Jobs in the East of England

and enforce compliance. Log Management & Analysis: Oversee the ingestion, parsing, and normalization of security logs from Azure, AWS, M365, and hybrid environments to improve threat visibility. Security Event Correlation & Automation: Develop advanced correlation rules, alerts, playbooks, and automation workflows using Sentinel, KQL, and SOAR integrations to enhance threat detection and response capabilities. Cloud Threat Protection: Monitor, analyse, and strengthen security postures across cloud platforms, utilising Defender for Cloud and SIEM insights. Compliance & Governance: Ensure alignment with industry best practices, regulatory frameworks, and internal security policies for cloud security. Threat Intelligence & Enrichment: Integrate threat intelligence feeds with Sentinel and Defender for Cloud to enhance real-time threat analysis. Collaboration & Advisory: Work closely with security analysts, cloud engineers, and IT teams to optimize security monitoring, threat detection, and risk mitigation strategies. On-Call Support: Provide 24/7 on-call support More ❯

part of this position will also involve mentoring an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. Responsibilities Infrastructure … with security embedded at every stage. Cloud Security Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and Microsoft Sentinel for advanced security monitoring. Threat Detection & SOAR Automation: Oversee Security Orchestration, Automation, and Response (SOAR) solutions including SOC Prime. Network & Application Security: Manage Web Application Firewalls (WAF) and … Response: Formulating and documenting a solid process utilising a 3rd party support partner Security Monitoring & Logging: Develop SIEM solutions, logging strategies, and real-time threat intelligence. Monitor, audit, and improve infrastructure security posture using automated tooling. Policy & Procedures: Define and enforce security policies, incident response strategies, and structured action More ❯

events using system logs, network traffic, and endpoint telemetry Supporting containment and recovery efforts during active security incidents Continuously enhancing SOC capabilities, tooling, and detection rules using threat-informed approaches like MITRE ATT&CK Producing detailed incident reports and documentation for both technical and non-technical stakeholders Assisting … with threat intelligence activities as needed Staying current on evolving threats, attack techniques, and industry best practices For the SOC role you will have: Hands-on experience working in a Security Operations Centre (SOC) Solid knowledge of SIEM tools such as Microsoft Sentinel or Splunk Familiarity with the MITRE … ATT&CK framework and threat detection methodologies Strong analytical skills with a keen eye for detail in log analysis and network monitoring Basic understanding of enterprise security architecture including firewalls, VPNs, AV, and web applications Good grasp of network protocols such as TCP/IP, HTTP, SMTP, and More ❯

to provide technical guidance and mentorship to the existing team members. You'll help keep our systems safe by setting up security alerts, improving threat detection, and automating incident response. Managing logs and ensuring our most important assets are protected will be part of your daily tasks. You More ❯

to provide technical guidance and mentorship to the existing team members. You'll help keep our systems safe by setting up security alerts, improving threat detection, and automating incident response. Managing logs and ensuring our most important assets are protected will be part of your daily tasks. You More ❯

This makes this a unique role where you will be able to utilize a broad skill set. Role Requirements Experience in cybersecurity matters (e.g., threat detection, malware intelligence, cloud security posture management, or identity and access management systems). Understanding of the following functions: TCP/IP stack More ❯

Smiths Detection, part of Smiths Group (), is a global leader in threat detection and screening technologies. The business caters to the markets like defense, urban security, ports and borders, and aviation. We provide the solutions required to defend society from the threat and unauthorized movement of …/contracts for complex asset/equipment maintenance. Understanding of how costing and pricing translates to contractual terms and conditions. Strong IT skills. Smiths Detection product knowledge. Expertise in modelling tools. Experience of SAP systems. Proficient in all basic MS programs, including advanced MS Excel skills. Excellent written and More ❯