12 of 12 Threat Detection Jobs in Scotland

Cyber Threat Intelligence Analyst – AVP Location: Manchester or Glasgow Do you have over 2 years of hands-on experience working in a dedicated Cyber Threat Intelligence (CTI) team? (This is essential) A Global, Tier 1 Financial institution is looking to strengthen and grow their Threat intelligence team. … They are looking for a Cyber Threat Intelligence Analyst to join their global security teams supporting critical detection and response operations. This is a hands on role requiring strong technical skills and the ability to execute in highly regulated/high pressure environments. Key Responsibilities: Monitor and manage … threat detection tools (SIEM, IDS/IPS, DLP, etc.) Investigate, triage, and respond to security incidents Analyse emerging cyber threats and assess relevance to the business Collaborate with teams to improve incident response processes and security controls Contribute to threat intelligence reporting and recommendations What We’re More ❯

Cisco Talos Security Intelligence and Research Group is at the forefront of detecting and correlating threats in real-time, using the world's largest threat detection network. We collaborate extensively across Cisco's security ecosystem, driving innovation in threat detection technologies to safeguard the Internet from … as a member of a multi-disciplinary team, providing domain expertise when needed, sharing ideas and knowledge. What you'll do Proactively analyze potential detection gaps, propose projects and ideas, and define and implement a plan to make them real. Analyze large datasets to extract complex data patterns. Monitor … changes in the threat landscape via automation and visualization techniques and develop models to identify new threats. You will have the opportunity to build or enhance machine-learning pipelines to support Cisco's security products and tools, covering from model selection and training, to optimization, deployment, and monitoring. You More ❯

The Tier 2 Cyber Security Analyst - is a mid-Tier position within the Cyber Threat Analysis Centre (CTAC), responsible for advancing the initial work conducted by Tier 1 Analysts and providing more in-depth analysis of potential threats to the organization. This role is crucial in the escalated investigation … Analyst works closely with senior and Junior Analysts to ensure a seamless SOC operation and acts as a bridge between foundational and advanced threat detection and response functions. Responsibilities: Conduct escalated triage and analysis on security events identified by Tier 1 Analysts, determining threat severity and advising … events and identifying patterns or anomalies that may indicate suspicious or malicious activity. Use OSINT (Open-Source Intelligence) to enrich contextual data and enhance detection capabilities, contributing to a proactive stance on emerging threats. Monitor the threat landscape and document findings on evolving threat vectors, sharing relevant More ❯

Consultancy company, based in Glasgow, on multiple workstreams of a variety of complexity and scale. This is a mid-Tier position within the Cyber Threat Analysis Centre (CTAC), responsible for advancing the initial work conducted by Tier 1 Analysts and providing more in-depth analysis of potential threats to … Analyst will work closely with senior and junior analysts to ensure a seamless SOC operation and act as a bridge between foundational and advanced threat detection and response functions. This is a full-time on-site role, covering a 24x7 shift pattern, which will come with a shift … SIEM solutions utilising Kusto Query Language (KQL) Identify and escalate critical threats to Tier 3 Analysts with detailed analysis for further action Monitor the threat landscape and document findings on evolving threat vectors Follow established incident response playbooks, providing feedback for enhancements and streamlining CTAC processes Co-ordinate More ❯

Consultancy company, based in Glasgow, on multiple workstreams of a variety of complexity and scale. This is a mid-Tier position within the Cyber Threat Analysis Centre (CTAC), responsible for advancing the initial work conducted by Tier 1 Analysts and providing more in-depth analysis of potential threats to … Analyst will work closely with senior and junior analysts to ensure a seamless SOC operation and act as a bridge between foundational and advanced threat detection and response functions. This is a full-time on-site role, covering a 24x7 shift pattern, which will come with a shift … SIEM solutions utilising Kusto Query Language (KQL) Identify and escalate critical threats to Tier 3 Analysts with detailed analysis for further action Monitor the threat landscape and document findings on evolving threat vectors Follow established incident response playbooks, providing feedback for enhancements and streamlining CTAC processes Co-ordinate More ❯

proficiency in writing KQL and SPL; log sources, ingestion patterns, and correlation rules). DevOps knowledge (Git/BitBucket/GitLab). Security Fundamentals (threat detection, incident response, threat intel; knowledge of the MITRE ATT&CK framework and security operations). Some other highly valued skills may More ❯

great opportunity for anyone looking to progress their career in a supportive and fast paced environment. What you'll be responsible for: Security Monitoring & Threat Detection - Specializing in SIEM tools to identify anomalies across cloud and data center environments, while developing and maintaining security monitoring during the Azure … transition. Incident Response & Threat Hunting - Assisting in containment, eradication, and recovery of incidents, proactively hunting for threats, and mitigating operational risks. Risk & Threat Management - Staying updated on emerging threats, assessing risks, and implementing detection rules using security tools. Project & Stakeholder Support - Providing security guidance to ensure SOC More ❯

resilience. Design, Deliver and Implement High Availability & Resilience: Develop disaster recovery solutions, resilient architectures, and governance controls, including Security Hub, Audit Manager, and proactive threat detection. Implement, Maintain & Optimise AWS Best Practices & Governance: Enforce compliance through IAM, encryption, Control Tower, Security Hub, and cost-optimisation tools like AWS Cost More ❯

refine their processes, enhance readiness, and build resilience. Provide clear, concise briefings and reports to senior leadership, offering insight into incidents, risks, and ongoing threat landscapes. 💡 Your background: Proven experience leading incident response operations and cybersecurity investigations. Deep understanding of cyber attack vectors, threat actors, and red team … Confident communicator with the ability to influence and engage at all levels. Expertise in Cyber Security Incident Response best practices. Background in security operations, threat detection, and digital forensics. Comfortable with flexible hours and on-call responsibilities. ⭐ Desirable Certifications: CISSP, CISM, CEH, GIAC Familiarity with ITIL processes and … You'll be a crucial part of the team that ensures the organisations stays safe, secure, and always one step ahead in an evolving threat landscape. They’re investing in cutting-edge tech, building strong teams, and shaping a future where cybersecurity is a core business enabler. This role More ❯

initiatives. Organise internal audits and lead training on cybersecurity awareness and best practices. Coordinate responses to incidents and ensure timely resolution and documentation. Oversee threat detection and vulnerability remediation processes. What We're Looking For: Previous experience in an Information Security Management or similar leadership role. Familiarity with More ❯

initiatives. Organise internal audits and lead training on cybersecurity awareness and best practices. Coordinate responses to incidents and ensure timely resolution and documentation. Oversee threat detection and vulnerability remediation processes. What We're Looking For: Previous experience in an Information Security Management or similar leadership role. Familiarity with More ❯

You’ll Bring To The Table Oversee the deployment, configuration, and management of Zscaler and CyberArk solutions to ensure secure internet access and advanced threat protection for clients. Oversee the design, implementation, and management of managed firewall solutions, ensuring robust perimeter security and effective threat detection and More ❯