8 of 8 Threat Detection Jobs in the North of England

Title: Lead Threat Detection Analyst Location: Preston Security Clearance: SC or eligibility to obtain (higher clearance advantageous) We are seeking a Lead Threat Detection Analyst to join a high-performing Cyber Operations function responsible for protecting critical national and defence infrastructure from sophisticated cyber threats. This … hands-on leadership role combining technical threat detection expertise with operational oversight. You will lead triage and detection activities, mentor analysts, and continuously improve people, process and technology across the security operations capability. You will play a key role in identifying, analysing and mitigating threats before they ...

SecOps Lead, you will manage security monitoring and incident response activities while providing strategic direction for security tools including SIEM and Endpoint Detection & Response (EDR) platforms. You will work closely with internal teams and external security partners to strengthen our threat detection capabilities and improve the organisation … overall cyber resilience. This is an excellent opportunity for a security professional who enjoys leading teams, improving security operations, and driving proactive threat detection strategies. Key Responsibilities Lead and mentor the internal Security Operations team, overseeing daily operational activities and performance. Define and implement the strategy and operational ...

operational security function responsible for protecting the organisation's information assets, technology services, and users. This role oversees all security operation functions, incident response, threat detection, vulnerability management, and continuous improvement of the organisation's security posture. Working closely with Infrastructure, Cloud, Architecture, Governance, Compliance and Risk teams … relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection, triage, containment, eradication ...

Your mandate is to take ownership of the Technical Implementation & Engineering Functions, shifting the SOC from a Reactive State to a Proactive, High-Fidelity Detection Powerhouse. You will have the autonomy to set the direction for the practice, architecting how the team utilises SIEM, EDR & IDS Tools. … SIEM Platforms (specifically Microsoft Sentinel) & EDR solutions. You should be comfortable managing these within Complex, Multi-Tenant Environments. The Engineering Edge: Good Background in Detection Engineering, Custom Rule Creation & Log Orchestration. You should be highly proficient in KQL & have good Scripting Capabilities (Python or PowerShell). Onboarding & Architecture: Proven ...

response. Embed recognised frameworks such as ISO 27001, NIST CSF, NIS2, and DORA into policies, processes, and technology platforms. Oversee security operations, including monitoring, threat detection, incident response, and vulnerability management. Conduct and support risk assessments, ensuring robust controls are implemented and maintained. Partner with Technology, Risk, Compliance ...

Police Digital Services and provides visibility and control of information risks for policing. It supports the 24x7x365 nature of police operations, providing a threat detection and response capability for digital services before, during and after cyber-attacks, enabling stakeholders to understand and proactively manage risk across the technology … onboarding and maintenance of system log sources. Configuring and maintaining the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Developing, maintaining, and deploying detection rules and other SIEM content. Creating custom solutions using both low-code and traditional development approaches. Providing support to forces for the configuration of Sentinel ...

exceptional service delivery. Provide expert, hands-on support across cloud environments such as Microsoft 365, Azure, and AWS. Drive security service delivery, including threat detection, incident response, vulnerability remediation, and security configuration. Manage complex technical escalations to ensure outstanding security outcomes. Act as a trusted security advisor, helping ...

Compliance Implement and maintain security and access policies for web traffic aligned to enterprise risk frameworks. Integrate with SIEM and analytics platforms to support threat detection and response. Balance security controls with usability, particularly in the browser and colleague web‐access journey. Participate in security reviews, risk assessments ...