21 of 21 Threat Detection Jobs in the North West

stakeholders. Key Responsibilities Lead and manage cyber incident response activities from identification through to recovery. Conduct digital forensic investigations across multiple environments. Support threat detection, threat hunting, and security monitoring activities. Develop and enhance incident response processes, playbooks, and best practices. Produce clear technical and executive-level … Clearance Proven ability to lead complex cyber investigations and incident response engagements during live events. Experience with forensic tools, SIEM platforms, and threat detection methodologies. Knowledge of Windows and cloud environments. Excellent analytical, problem-solving, and communication skills. Customer-focused with the ability to remain calm under pressure. ...

helping shape the future of cyber security operations across the business, working closely with infrastructure, cloud and technology teams to improve security posture, strengthen detection and response capabilities, and ensure the organisation remains protected against emerging threats. This role offers a blend of leadership, technical oversight and strategic influence. … What You'll Be Doing * Leading and developing the Security Operations capability * Managing cyber security incidents and coordinating effective responses * Driving improvements across monitoring, threat detection and vulnerability management * Working closely with technology teams to improve security across cloud, infrastructure and end-user environments * Helping optimise security tools ...

Cyber Operations Analyst to join their Cyber Security team. This role will focus on leading cyber incident response activities, managing security monitoring capabilities, driving threat detection and containment, and supporting the bank's wider cyber defence strategy. Key Requirements: * Strong experience within Cyber Operations, SOC or Incident Response … environments * Hands-on expertise with SIEM technologies (Splunk, Sentinel, QRadar etc.) * Knowledge of threat detection, malware analysis, endpoint, network or cloud security * Scripting experience (Python, PowerShell or similar) * Strong understanding of cyber risk, controls and security governance * Excellent stakeholder management and communication skills Desirable: * Financial Services experience * Threat ...

contain, and remediate cyber threats, while enhancing both client and internal cyber resilience. The successful candidate will bring deep technical expertise in digital forensics, threat analysis, and incident response, combined with the ability to operate effectively in a fast paced, client-facing environment. Key Responsibilities Lead … procedures, and best practices for both client engagements and internal use Provide expert guidance during major incidents, including stakeholder communication and reporting Support proactive threat hunting initiatives in collaboration with SOC teams Produce clear, structured forensic reports suitable for both technical and non technical audiences Ensure evidence is handled ...

firewall policy, network segmentation and workload segmentation Managing and hardening Palo Alto Networks firewalls, including Panorama, App-ID/User-ID, NAT, VPN and threat prevention Supporting Cisco security technologies, including ASA/FTD firewalls, ISE and secure routing/switching Working with VMware NSX/vDefend security controls … including distributed firewall policies and micro-segmentation Working with Elastic Stack/Elastic Security for logging, SIEM, monitoring, threat detection and dashboards Supporting AWS/public cloud security across secure and regulated environments Hardening Windows Server environments, Active Directory, Group Policy and endpoint configurations Implementing, auditing and remediating ...

assessments and remediation tracking Support implementation of security controls across cloud and on-prem environments Contribute to security policies, standards, and procedures Assist with threat detection engineering and rule tuning Required Skills & Experience Strong understanding of core security technologies (NGFW, WAF, EDR, SIEM) Experience in a SOC, security … ISC2 certifications Experience with cloud platforms such as Amazon Web Services, Microsoft Azure, or Google Cloud Scripting experience (PowerShell, Python, or Bash) Exposure to threat hunting or SIEM rule development What's On Offer Salary up to £55,000 depending on experience Opportunity to work with modern security tools ...

assessments and remediation tracking Support implementation of security controls across cloud and on-prem environments Contribute to security policies, standards, and procedures Assist with threat detection engineering and rule tuning Required Skills & Experience Strong understanding of core security technologies (NGFW, WAF, EDR, SIEM) Experience in a SOC, security … ISC2 certifications Experience with cloud platforms such as Amazon Web Services, Microsoft Azure, or Google Cloud Scripting experience (PowerShell, Python, or Bash) Exposure to threat hunting or SIEM rule development What's On Offer Salary up to £55,000 depending on experience Opportunity to work with modern security tools ...

security event identification via the third-party security operations service. * Coordinate incident response activities including containment, evidence collection, documentation, and recovery support. * Contribute to threat hunting activities using KQL queries and intelligence-led techniques. * Support the triage and processing of data subject rights (DSR) requests, including subject access requests … Skills: * Microsoft Defender XDR * Microsoft Sentinel (SIEM/SOAR) * Privacy Management Solutions (e.g. Purview, OneTrust) * Understanding of key cybersecurity and privacy concepts, such as Threat detection and analysis, Incident response lifecycle, Vulnerability and exposure management, Data privacy principles and data subject rights. PLEASE NOTE: This role will fall ...

Police Digital Services and provides visibility and control of information risks for policing. It supports the 24x7x365 nature of police operations, providing a threat detection and response capability for digital services before, during and after cyber-attacks, enabling stakeholders to understand and proactively manage risk across the technology … ensure security issues are addressed quickly upon discovery. NMC Cyber Detect Analyst duties involve but are not limited to: Initial Triage of alerts - evaluation & detection Confirmation of false positive Incident data gathering and feedback on any gaps and issues in respect to Platform Content or tuning opportunities Reflection ...

Compliance Implement and maintain security and access policies for web traffic aligned to enterprise risk frameworks. Integrate with SIEM and analytics platforms to support threat detection and response. Balance security controls with usability, particularly in the browser and colleague web‐access journey. Participate in security reviews, risk assessments ...

Cyber Operations Analyst to join their Cyber Security team. This role will focus on leading cyber incident response activities, managing security monitoring capabilities, driving threat detection and containment, and supporting the bank's wider cyber... CRWG1_UKTJ ...

senior contractor position will play a key role in driving strategic cyber initiatives, enhancing operational models, and delivering transformation programmes that improve cyber resilience, threat detection, incident response, and risk intelligence capabilities. The role sits at the convergence of technology, operational process, and stakeholder engagement. You will work … prioritised product backlogs. Solid understanding of software development lifecycles and experience working closely with engineering and technical delivery teams. Knowledge of cybersecurity risk management, threat landscapes, controls, and regulatory considerations within enterprise environments. Exposure to enterprise-scale data and analytics platforms, including technologies supporting reporting, insights, and decision intelligence. ...

work closely with Security Operations Centre engineers. The successful candidate will need significant DFIR experience, strong client management skills, and a good understanding of threat detection methodologies. Competitive benefits include private medical cover, discretionary bonuses, 25 days holiday and more. #J-18808-Ljbffr ...

Complete this 8-10 week online training with just 2 hours per day of study time. You will learn industry-recognised methodologies, network security, threat detection, vulnerability management, and incident response, while building practical experience with Live Labs. The programme includes earning CompTIA certifications (A+, Network+, Security+) recognised ...

Complete this 8-10 week online training with just 2 hours per day of study time. You will learn industry-recognised methodologies, network security, threat detection, vulnerability management, and incident response, while building practical experience with Live Labs. The programme includes earning CompTIA certifications (A+, Network+, Security+) recognised ...

Complete this 8-10 week online training with just 2 hours per day of study time. You will learn industry-recognised methodologies, network security, threat detection, vulnerability management, and incident response, while building practical experience with Live Labs. The programme includes earning CompTIA certifications (A+, Network+, Security+) recognised ...

Complete this 8-10 week online training with just 2 hours per day of study time. You will learn industry-recognised methodologies, network security, threat detection, vulnerability management, and incident response, while building practical experience with Live Labs. The programme includes earning CompTIA certifications (A+, Network+, Security+) recognised ...

Complete this 8-10 week online training with just 2 hours per day of study time. You will learn industry-recognised methodologies, network security, threat detection, vulnerability management, and incident response, while building practical experience with Live Labs. The programme includes earning CompTIA certifications (A+, Network+, Security+) recognised ...

Complete this 8-10 week online training with just 2 hours per day of study time. You will learn industry-recognised methodologies, network security, threat detection, vulnerability management, and incident response, while building practical experience with Live Labs. The programme includes earning CompTIA certifications (A+, Network+, Security+) recognised ...

Police Digital Services and provides visibility and control of information risks for policing. It supports the 24x7x365 nature of police operations, providing a threat detection and response capability for digital services bef... CRWG1_UKTJ ...

Police Digital Services and provides visibility and control of information risks for policing. It supports the 24x7x365 nature of police operations, providing a threat detection and response xkybehq capability for digital services bef Want to apply Read all the information about this position below, then hit the apply ...