5 of 5 Threat Detection Jobs in West Yorkshire

heart of the managed SOC services, monitoring, investigating, and responding to security incidents across client environments. You’ll leverage Microsoft Sentinel, Defender XDR, and KQL to detect threats, improve detection rules, and help clients stay secure. What You’ll Do: Monitor and analyse security alerts in Microsoft Sentinel & Defender XDR Investigate and respond to incidents, threats, and suspicious activity … KQL queries, analytics rules, and automation playbooks Assist in onboarding new clients into Sentinel (connectors, log sources, playbooks) Collaborate with engineers and clients to enhance security visibility Contribute to threat hunting, detection tuning, and SOC process improvements Skills You’ll Need: 2-5+ years in a SOC, threat detection, or incident response role Hands-on More ❯

triage, and investigate alerts and network traffic using SIEM tools. Analyse and categorise security incidents in line with internal policies. Conduct in-depth incident investigations, reporting, and remediation. Utilise threat intelligence to detect and respond to potential threats. Support incident response activities for national-scale cyber events. Help improve SOC workflows, including automation and threat detection use … this role). Experience in security operations, including SIEM tools (e.g., Sentinel, Splunk). Solid understanding of cloud environments (Azure and/or AWS). Knowledge of network protocols, threat actors, and attack vectors. Ability to analyse complex data and deliver actionable insights. Familiarity with scripting (Python or similar) and security automation (SOAR). Understanding of threat intelligence More ❯

operations. The Opportunity This is not your average SOC role. As a Microsoft Sentinel Specialist , you'll be front and center in our managed SOC, leading the charge in threat detection, incident response, and security monitoring across client environments. You'll bring deep expertise in Microsoft Sentinel and the wider Defender XDR suite , working directly with clients and … internal teams to detect real threats, fine-tune detection logic, and elevate visibility across complex infrastructures. What You'll Do Monitor and investigate security alerts in Microsoft Sentinel and Microsoft 365 Defender (Endpoint, Identity, Cloud, etc.). Respond to incidents - quickly, accurately, and with technical depth - following industry-standard IR playbooks. Threat hunt using advanced KQL queries; develop … integrating data connectors and building automation playbooks (Logic Apps). Create and maintain clear documentation , client reports, and actionable runbooks. Collaborate with client stakeholders and internal engineers to optimize detection coverage and incident resolution . Drive continuous improvement through automation, process refinement, and operational enhancements. What You Bring Must-Have Experience: 2-5+ years in a SOC or More ❯

creating custom use-cases, log-source integration, and Logs Parsing. Implement actions to contain and eliminate threats, restore systems to a secure state, and minimize damage. Continuously monitor the threat landscape for emerging threats, vulnerabilities, and evolving attack tactics. Communicate with clients, internal teams, and vendors regarding security incidents and recommendations. Develop and improve SOC processes and designing training … programs. Provide guidance on effective cyber defenses and actionable, cost-effective solutions. Focus on utilizing SOAR platforms to automate and improve security processes, incident response, and threat detection. Develop and implement plans to mitigate identified risks, including security controls and countermeasures. Your Profile: Essential knowledge/experience: Experience with Alerts/Threats Investigation. Driving Major Incident Response. Proficient in … ago Leeds, England, United Kingdom 3 weeks ago Multi skilled fire and security engineer Mirfield, England, United Kingdom 1 week ago Leeds, England, United Kingdom 2 weeks ago Cyber Threat Intelligence and Vulnerability Lead Leeds, England, United Kingdom 2 days ago Cyber Threat Intelligence and Vulnerability Lead Leeds, England, United Kingdom 2 months ago Senior Business Analyst - Cyber More ❯

SIEM activities such as creating custom use-cases, log-source integration, and log parsing. Implement actions to contain and eliminate threats, restore systems, and minimize damage. Continuously monitor the threat landscape for emerging threats and attack tactics. Communicate with clients, internal teams, and vendors regarding security incidents and recommendations. Develop and improve SOC processes and training programs. Provide guidance … on cyber defenses and cost-effective solutions. Utilize SOAR platforms to automate security processes, incident response, and threat detection. Develop and implement risk mitigation plans, including security controls and countermeasures. Your Profile: Essential knowledge/experience: Experience with alert and threat investigation. Experience in major incident response management. Desirable skills/knowledge/experience: Proficiency in SOC operations. More ❯