1 to 25 of 86 Threat Intelligence Jobs

function as the principal contact point for key clients and counterparts in other functions and business divisions. Responsibilities Lead and evolve the enterprise Cyber Threat Intelligence (CTI) programme, delivering strategic, operational and tactical intelligence to proactively identify, assess and mitigate threats targeting the organisation and the broader … financial services sector. Direct and develop a global team of threat intelligence analysts, setting priorities, allocating resources, and leveraging advanced technologies, including AI and LLM capabilities, to maximise intelligence collection, effectiveness and operational efficiency. Oversee threat research and analysis, including threat actor profiling, indicators ...

Cyber Threat Detection/SIEM Analyst - SANS/GIAC Cyber Threat Detection Analyst Location: Wokingham, Berkshire (On-site) Salary: Competitive (dependent on experience) + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC Role Overview As a Cyber Threat Detection Analyst, you will play … hands-on role within an advanced cyber defence function, focused on proactive threat hunting, adversary behaviour analysis, and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data, and threat intelligence ...

Required qualifications Bachelor's degree or equivalent practical experience. 5 years of experience working in a government or military environment, leveraging and developing Cyber Threat Intelligence (CTI) for network, host, and log analysis to enable the detection of and response to cyber threats. Experience leveraging CTI data … tooling to describe, track, and develop new intelligence on Advanced Persistent Threats (APTs). Experience analyzing network data, Intrusion Detection System (IDS) monitoring, Endpoint Detection and Response (EDR) solutions, and contributing CTI into a threat intelligence platform. Preferred qualifications Experience in the analysis of CTI, supporting monitoring ...

carbon energy. We work at the cutting edge of the transition to a sustainable, net zero world. We're looking for a Head of Threat Defence. Based at our Paddington Head Office the role is to build on the existing capabilities to develop a best practice threat defence … capability for URENCO. The role offers an opportunity for end-to-end ownership of a threat defence strategy and service. The role will focus on leading a team responsible for security operations, incident detection and response and threat intelligence which will be delivered through partnership with outsourced ...

Threat and Vulnerability Manager £55k Newport (x1 day a week) Benefits: 28.9% pension & Flexi-working The Opportunity Yolk Recruitment Public Sector & Not-for-Profit team has partnered with a specialised Civil Service Organisation who are presently undergoing an interesting transformation into the cloud space. In this role, you will … oversee and continuously improve the management of vulnerability assessments across our hybrid IT environment. Using a risk-based, threat-informed approach, you will prioritise remediation efforts and work closely with stakeholders to enhance the security posture of our systems and services. Vulnerability Management (Primary Focus) Lead and improve ...

Cyber Threat Intelligence Analyst Summer-Browning Associates is supporting our client in the Central Government, who is seeking a Cyber Threat Intelligence Analyst for an initial 12-month assignment, with the possibility of extension. Location: London | Hybrid The ideal candidates will hold an active Security clearance … have a proven background in Cyber Security Threat Intelligence, with the following skills and experience: Experience in risk and threat modelling within high-threat government environments. Experience with cyber threat frameworks, such as MITRE ATT&CK, the Diamond Model, and the Intelligence Cycle. Proficiency ...

Cyber Threat Intelligence Analyst - Central Government - 12 month contract - DV clearance - London Hybrid We are looking for 2x Cyber Threat Intelligence Analysts to join a busy team for our central government client. Due to the nature and urgency of the role, ideal candidates will hold active … clearance. I am keen to speak with candidates who have: Experience in an intelligence role with practical use of the intelligence lifecycle, ideally for government/public sector clients. Hands-on experience researching, analysing and reporting on cyber threats or closely related security issues. Familiarity with cyber threat ...

tier global MSSPs (excluding GSI/Big 4 relationships). These are security‐specialist firms operating at scale — running 24×7 SOCs, delivering managed threat intelligence, and integrating platform‐grade tooling into their service stack. This is not a transactional sales role. It is a strategic ecosystem play … managed services. Define a structured, tiered MSSP engagement playbook covering acquisition, activation, ramp, and expansion — with clear milestones for each stage. Maintain deep competitive intelligence on MSSP buying behaviour, vendor preferences, and integration strategies across US, Europe, and beyond. Identify white space across the MSSP landscape where Cyble ...

Cyber Threat Intelligence Practitioner Applying for this role is straight forward Scroll down and click on Apply to be considered for this position. 12 Month Contract Based: Preston Hourly Rate: £27.03 Paye or £36.30 umbrella Onsite – 1 – 2 days per month Full time – 37 hours Monday – Friday Overview … Systems is seeking a skilled Cyber Threat Intelligence Practitioner to support tactical and operational cyber threat intelligence activities across the organisation. xkybehq In this role, you will take owners Please click on the apply button to read the full job description ...

drive effective remediation activity. Accountabilities Allocation of the correct risk rating and remediation prioritisation to a vulnerability based on industry standards for assessment, available threat intelligence concerning exploitation, the reachability of the host (or asset) and the value of the service(s) running on the impacted host. Development … stakeholders, vendors, external security partners and affect business units using reports and dashboards and provide recommendations for improvement in vulnerability management practices. Collaboration with Threat intelligence and Cyber Operations teams to assess and contextualise exposure to latest threat trends and exploits and set appropriate remediation timescales. Definition ...

Google Inc. is seeking a Cyber Threat Intelligence (CTI) specialist to support a strategic UK government client onsite for four days a week. This role involves leveraging and developing cyber threat intelligence for proactive threat detection and response. Join a dedicated team at Mandiant Intelligence, part of Google Cloud, to enhance cyber defenses and deliver exceptional intelligence capabilities. Candidates should have significant CTI experience and a strong grasp of network security principles. #J-18808-Ljbffr ...

Cyber Threat Intelligence Analyst - Central Government - 12 month contract - DV clearance - London Hybrid We are looking for 2x Cyber Threat Intelligence Analysts to join a busy team for our central government client. Due to the nature and urgency of the role, ideal candidates will hold active ...

Barclays - BX - UK is seeking a Cyber Threat Intelligence Lead primarily responsible for managing the CTI programme and overseeing a global team of analysts. This role focuses on proactive threat identification and mitigation strategies. The ideal candidate will have deep expertise in cybersecurity, proven leadership skills … experience with security technologies including Threat Intelligence Platforms and SIEM. Strong communication skills and a track record in financial services are essential. #J-18808-Ljbffr ...

cyber security leader responsible for developing and executing enterprise-wide cyber defence strategies to protect critical business systems, data, and infrastructure. Leads security operations, threat detection, incident response, and cyber resilience initiatives while ensuring alignment with organisational risk management objectives. Key Responsibilities Lead and manage the Cyber Defence function … overseeing security operations, threat intelligence, vulnerability management, and incident response capabilities. Develop and implement cyber defence strategies, policies, and procedures to protect against evolving cyber threats. Direct Security Operations Centre (SOC) activities, ensuring effective monitoring, detection, investigation, and response to security incidents. Oversee threat intelligence programmes ...

looking for a Cyber Threat & Vulnerability Analyst to join our Cyber Security team, helping protect the systems that deliver essential water services to millions of customers every day. You'll play a key role in identifying, assessing, and reducing cyber risk across a large and complex technology estate, making … closely with technical teams and business stakeholders to keep our services safe, resilient, and running smoothly. What you'll be doing as a Cyber Threat & Vulnerability Analyst: As a Cyber Threat & Vulnerability Analyst, you'll be responsible for supporting and improving how we identify, assess, and manage cyber ...

response activities, ensuring effective containment, eradication, recovery, and lessons learned. Develop, maintain, and test cyber incident response plans, procedures, and playbooks. Oversee security monitoring, threat detection, threat intelligence, and vulnerability management activities. Provide enterprise-wide oversight of network security technologies, controls, and architectures. Ensure the effective management … gateways, and network access controls. Strong understanding of enterprise network security principles and architectures. Experience managing security incidents across complex technology environments. Knowledge of threat intelligence, vulnerability management, and cyber risk management practices. Excellent stakeholder management and communication skills, with the ability to translate technical issues into business ...

critical in improving, developing and maintaining IT/OT vulnerability management programs and processes. This role performs and leads important tasks specialized at threat hunting, SIEM/SOAR, Network Security and other operational security tasks such as performance and availability monitoring, log monitoring, security incident detection and response, security … analysis. Designs and executes advanced vulnerability assessments using both automated and manual techniques; collaborates with stakeholders to prioritize remediation based on business risk and threat intelligence. Oversees continuous monitoring of threat intelligence feeds and security alerts, proactively identifying emerging risks and recommending strategic countermeasures. Interprets and synthesizes ...

operational state across all in scope assets and are tuned to incorporate new features or changes to the operational environment. Co-ordinate and undertake threat modelling to identify and analyse potential security threats, and ensure the necessary controls are in place to manage the threat and associated risks. … ordinate and undertake regular threat hunting, analysing logs and event data across the firms' systems, and procuring threat intelligence to inform the hunts. Provide technical leadership during security incident response, from identification through to containment, eradication, recovery and post incident review, reporting and recommendations; liaising with external ...

available throughout the hiring process. This is an opportunity to play a key role in protecting critical customer environments, leading complex investigations, driving proactive threat hunting activities, and helping shape the future of our security monitoring services. Were looking for someone who enjoys solving difficult security challenges, mentoring others … across high-security customer environments Act as a senior escalation point for Tier 1 and Tier 2 analysts during active security events Drive proactive threat hunting campaigns to identify emerging threats, vulnerabilities, and anomalous behaviour Develop and improve detection logic, alerting, and monitoring content within SIEM platforms including Elastic ...

monitoring, analysing and responding to security threats, while driving continuous improvement across our security operations capability. Youll play a key role in incident response, threat intelligence, vulnerability management and ensuring effective use of our security tools and processes to reduce risk across the technology estate. Key responsibilities Monitor … activities, validating effectiveness through vulnerability scanning Oversee and operate key security technologies, including SIEM, email and web gateways, and endpoint protection tools Monitor external threat intelligence sources and assess relevance to the organisation Produce and report on security metrics, KPIs and operational performance Technical expertise Good understanding ...

well-established cyber security capability supporting mission-critical environments. Cyber security is central to the organisation's strategy, with ongoing investment in tooling, threat intelligence, and specialist talent. The security function operates at a mature level, combining Security Operations, threat detection, incident response, and continuous improvement practices … SIEM and security tooling. This role combines hands-on SIEM analysis, alert triage, investigation, and detection improvement, alongside exposure to incident response and proactive threat detection activities. You will work across multiple data sources to identify suspicious behaviour, analyse events, and support the organisation's cyber defence posture through ...

PROTECT, DETECT, and RESPOND toolsets, including SIEM, SOAR, and vulnerability scanning tools. Support the development, configuration, and automation of security tooling to enhance threat detection and incident response. Conduct forensic analysis, malware reverse engineering, and develop IOCs and detection signatures. Manage and integrate logs from various sources, ensuring full … visibility and compliance. Analyse attacker TTPs and manage threat intelligence, including incident assessment and reporting. Collaborate with stakeholders to ensure operational effectiveness and continuous process improvement. Maintain knowledge of current cyber threats and emerging trends. What you'll bring: Proven hands-on experience with SIEM and SOAR platforms ...

ensure that security good practise is fully embedded into change initiatives, and security by design principles are applied. * Co-ordinate and undertake regular threat hunting, analysing logs and event data across the firms' systems, and procuring threat intelligence to inform the hunts. Key Skills: * Strong understanding … network and end point security, incident response, threat intelligence, and vulnerability management. * Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS. * Strong knowledge of Microsoft Azure cloud security technologies and concepts. * Familiar with cybersecurity frameworks such as NIST CSF, ISO27001 ...

holistic view of the organisation's security posture. Present findings and recommendations to senior leadership and governance forums. Collaborate with internal teams (e.g., threat intelligence, compliance, audit) to ensure assurance activities reflect current threat landscapes. Act as a primary interface for business units, ensuring alignment between assurance … technical and business information to assess risk. Experience in supply chain security assurance. Knowledge of secure by design principles and accreditation processes. Understanding of threat intelligence and its application in assurance. Experience working in regulated or high-assurance environments (e.g., government, finance, defence). Familiarity with risk management ...

client engagements; present findings and recommendations to senior stakeholders. Participate in alert testing, readiness exercises, and incident response tabletop sessions. Stay current on emerging threat intelligence, attacker techniques, and relevant research. Required Experience 2+ years experience as a Cyber Security Operations Analyst Experience working with Splunk Familiarity with … threat intelligence frameworks and methodologies End-to-end incident response lifecycle experience Detection engineering and alert development expertise. Strong scripting or programming skills (Python, Bash, C/C++, Java). Solid grounding in cybersecurity fundamentals: network security, cloud security, cryptography, forensics. Understanding of common network protocols and attacker ...