15 of 15 Threat Detection Jobs in Yorkshire

Cloud Security Architecture & Implementation Design and implement cloud security architectures across AWS, Azure, or Google Cloud. Develop and enforce cloud security controls , including IAM policies, encryption, and network security. Threat Monitoring & Incident Response Monitor cloud environments for security threats, vulnerabilities, and misconfigurations . Lead incident response efforts related to cloud security breaches and misconfigurations. Implement SIEM and security monitoring … tools for real-time threat detection. Cloud Security Assessments & Compliance Conduct cloud security assessments, penetration testing, and risk analysis . Ensure compliance with ISO 27001, NIST, CIS Benchmarks, GDPR , and other security standards. Collaborate with DevOps teams to integrate security into CI/CD pipelines. Security Automation & Infrastructure as Code (IaC) Automate security policies and compliance enforcement using Python More ❯

by delivering tailored security solutions that keep them resilient and secure. The Role We are seeking a Security Analyst to join our team and play a key role in threat detection, incident response, and security monitoring. The ideal candidate will have a strong analytical mindset, an understanding of cyber threats and attack techniques, and the ability to implement … learning, staying up to date with emerging threats, attack techniques, and security technologies . You are proactive, adaptable, and always looking for ways to improve security operations. Key Responsibilities Threat Detection & Security Monitoring Continuously monitor SIEM, IDS/IPS, firewalls, and endpoint security tools to identify suspicious activity. Analyze and correlate security alerts to detect potential cyber threats … and data breaches. Perform log analysis and anomaly detection to identify patterns indicative of compromise. Incident Response & Threat Investigation Investigate security incidents, phishing attempts, malware infections, and unauthorized access events. Develop and implement remediation strategies to mitigate security risks. Conduct digital forensics and root cause analysis on security breaches. Work closely with internal teams and clients to ensure More ❯

of AWS Security, Identity, and Compliance services, including IAM, AWS Organizations, SCPs, Secrets Manager, AWS Config, GuardDuty, Security Hub, CloudTrail, and AWS KMS for encryption, ensuring robust cloud security. Threat Detection & Compliance: Implementation of AWS security tools like Amazon Detective, AWS Shield, WAF, AWS Firewall Manager, enforcing security compliance standards such as ISO 27001, SOC2, GDPR, and NIST More ❯

heart of the managed SOC services, monitoring, investigating, and responding to security incidents across client environments. You’ll leverage Microsoft Sentinel, Defender XDR, and KQL to detect threats, improve detection rules, and help clients stay secure. What You’ll Do: Monitor and analyse security alerts in Microsoft Sentinel & Defender XDR Investigate and respond to incidents, threats, and suspicious activity … KQL queries, analytics rules, and automation playbooks Assist in onboarding new clients into Sentinel (connectors, log sources, playbooks) Collaborate with engineers and clients to enhance security visibility Contribute to threat hunting, detection tuning, and SOC process improvements Skills You’ll Need: 2-5+ years in a SOC, threat detection, or incident response role Hands-on More ❯

triage, and investigate alerts and network traffic using SIEM tools. Analyse and categorise security incidents in line with internal policies. Conduct in-depth incident investigations, reporting, and remediation. Utilise threat intelligence to detect and respond to potential threats. Support incident response activities for national-scale cyber events. Help improve SOC workflows, including automation and threat detection use … this role). Experience in security operations, including SIEM tools (e.g., Sentinel, Splunk). Solid understanding of cloud environments (Azure and/or AWS). Knowledge of network protocols, threat actors, and attack vectors. Ability to analyse complex data and deliver actionable insights. Familiarity with scripting (Python or similar) and security automation (SOAR). Understanding of threat intelligence More ❯

operations. The Opportunity This is not your average SOC role. As a Microsoft Sentinel Specialist , you'll be front and center in our managed SOC, leading the charge in threat detection, incident response, and security monitoring across client environments. You'll bring deep expertise in Microsoft Sentinel and the wider Defender XDR suite , working directly with clients and … internal teams to detect real threats, fine-tune detection logic, and elevate visibility across complex infrastructures. What You'll Do Monitor and investigate security alerts in Microsoft Sentinel and Microsoft 365 Defender (Endpoint, Identity, Cloud, etc.). Respond to incidents - quickly, accurately, and with technical depth - following industry-standard IR playbooks. Threat hunt using advanced KQL queries; develop … integrating data connectors and building automation playbooks (Logic Apps). Create and maintain clear documentation , client reports, and actionable runbooks. Collaborate with client stakeholders and internal engineers to optimize detection coverage and incident resolution . Drive continuous improvement through automation, process refinement, and operational enhancements. What You Bring Must-Have Experience: 2-5+ years in a SOC or More ❯

digital assets while staying updated on the latest security threats and trends. If you are interested in this opportunity, apply today! Responsibilities: Implement and manage Azure Sentinel SIEM for threat detection, incident response, and security monitoring. Configure and maintain Microsoft Defender for endpoint protection and threat detection. Develop and maintain KQL scripts for querying and analysing data More ❯

and network professionals; provide mentorship and development opportunities. Collaborate with the wider IT and business teams to align infrastructure with business goals. Ensure compliance with cybersecurity standards and manage threat detection and response strategies. Maintain documentation of infrastructure topology, configurations, and procedures. Manage relationships with third-party vendors, service providers, and contractors. Monitor system performance, identify bottlenecks, and More ❯

and network professionals; provide mentorship and development opportunities. Collaborate with the wider IT and business teams to align infrastructure with business goals. Ensure compliance with cybersecurity standards and manage threat detection and response strategies. Maintain documentation of infrastructure topology, configurations, and procedures. Manage relationships with third-party vendors, service providers, and contractors. Monitor system performance, identify bottlenecks, and More ❯

adoption. Serve as the voice of the customer within the business, ensuring their expectations are understood and consistently met. Contribute to comprehensive customer reporting, including analysis of service performance, threat detection trends, investigation outcomes, and related metrics such as SLAs, ingestion data, and vulnerability findings. Collaborate with engineering to identify opportunities for service enhancement and implement technical upgrades. More ❯

creating custom use-cases, log-source integration, and Logs Parsing. Implement actions to contain and eliminate threats, restore systems to a secure state, and minimize damage. Continuously monitor the threat landscape for emerging threats, vulnerabilities, and evolving attack tactics. Communicate with clients, internal teams, and vendors regarding security incidents and recommendations. Develop and improve SOC processes and designing training … programs. Provide guidance on effective cyber defenses and actionable, cost-effective solutions. Focus on utilizing SOAR platforms to automate and improve security processes, incident response, and threat detection. Develop and implement plans to mitigate identified risks, including security controls and countermeasures. Your Profile: Essential knowledge/experience: Experience with Alerts/Threats Investigation. Driving Major Incident Response. Proficient in … ago Leeds, England, United Kingdom 3 weeks ago Multi skilled fire and security engineer Mirfield, England, United Kingdom 1 week ago Leeds, England, United Kingdom 2 weeks ago Cyber Threat Intelligence and Vulnerability Lead Leeds, England, United Kingdom 2 days ago Cyber Threat Intelligence and Vulnerability Lead Leeds, England, United Kingdom 2 months ago Senior Business Analyst - Cyber More ❯

Level 1 (BLT1) or SC-200, this could be the perfect opportunity to transition into security and gain hands-on experience with cutting-edge technology. Gain hands on experience: - Threat Detection & Response – Monitor security alerts using SIEM platforms (Splunk, Sentinel, QRadar etc.) and act fast to counter potential threats. Incident Investigation – Analyse security incidents, conduct forensic investigations, and … support remediation efforts. Vulnerability Management – Identify, assess, and report on security risks, ensuring proactive mitigation strategies. Security Automation & Intelligence – Leverage SOAR platforms and threat intelligence tools to enhance detection capabilities and streamline responses. Collaboration & Communication – Work closely and collaborate with senior analysts and clients to keep security operations running smoothly. The Ideal Profile: - Experience in an IT-focused … cybersecurity and SOC operations. Proactive and analytical thinker with a strong problem-solving mindset. Passionate about emerging security technologies and best practices. Knowledge of core security concepts such as threat intelligence, phishing analysis, malware detection, and attack mitigation strategies. Eager to learn and contribute to a dynamic SOC environment where innovation and collaboration drive success. Ready to elevate More ❯

Level 1 (BLT1) or SC-200. This could be the perfect opportunity to transition into security and gain hands-on experience with cutting-edge technology. Gain hands-on experience: Threat Detection & Response: Monitor security alerts using SIEM platforms (Splunk, Sentinel, QRadar, etc.) and respond quickly to potential threats. Incident Investigation: Analyze security incidents, conduct forensic investigations, and support … remediation efforts. Vulnerability Management: Identify, assess, and report on security risks, ensuring proactive mitigation strategies. Security Automation & Intelligence: Leverage SOAR platforms and threat intelligence tools to enhance detection capabilities and streamline responses. Collaboration & Communication: Work closely with senior analysts and clients to maintain smooth security operations. The Ideal Profile: Experience in an IT-focused role with a keen … cybersecurity and SOC operations. Proactive and analytical thinker with a strong problem-solving mindset. Passionate about emerging security technologies and best practices. Knowledge of core security concepts such as threat intelligence, phishing analysis, malware detection, and attack mitigation strategies. Eager to learn and contribute to a dynamic SOC environment where innovation and collaboration drive success. Ready to elevate More ❯

SIEM activities such as creating custom use-cases, log-source integration, and log parsing. Implement actions to contain and eliminate threats, restore systems, and minimize damage. Continuously monitor the threat landscape for emerging threats and attack tactics. Communicate with clients, internal teams, and vendors regarding security incidents and recommendations. Develop and improve SOC processes and training programs. Provide guidance … on cyber defenses and cost-effective solutions. Utilize SOAR platforms to automate security processes, incident response, and threat detection. Develop and implement risk mitigation plans, including security controls and countermeasures. Your Profile: Essential knowledge/experience: Experience with alert and threat investigation. Experience in major incident response management. Desirable skills/knowledge/experience: Proficiency in SOC operations. More ❯

creating custom use-cases, log-source integration, and Logs Parsing. Implement actions to contain and eliminate threats, restore systems to a secure state, and minimize damage. Continuously monitor the threat landscape for emerging threats, vulnerabilities, and evolving attack tactics. Communicate with clients, internal teams, and vendors regarding security incidents and recommendations. Develop and improve SOC processes and designing training … programs. Provide guidance on effective cyber defenses and actionable, cost-effective solutions. Focus on utilizing SOAR platforms to automate and improve security processes, incident response, and threat detection. Develop and implement plans to mitigate identified risks, including security controls and countermeasures. Your Profile: Essential knowledge/experience: Experience with Alerts/Threats Investigation. Driving Major Incident Response. Desirable skills More ❯