1 to 25 of 68 Threat Intelligence Jobs

Cyber Threat Detection/SIEM Analyst - SANS/GIAC Cyber Threat Detection Analyst Location: Wokingham, Berkshire (On-site) Salary: Competitive (dependent on experience) + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC Role Overview As a Cyber Threat Detection Analyst, you will play … hands-on role within an advanced cyber defence function, focused on proactive threat hunting, adversary behaviour analysis, and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data, and threat intelligence ...

carbon energy. We work at the cutting edge of the transition to a sustainable, net zero world. We're looking for a Head of Threat Defence. Based at our Paddington Head Office the role is to build on the existing capabilities to develop a best practice threat defence … capability for URENCO. The role offers an opportunity for end-to-end ownership of a threat defence strategy and service. The role will focus on leading a team responsible for security operations, incident detection and response and threat intelligence which will be delivered through partnership with outsourced ...

Threat and Vulnerability Manager £55k Newport (x1 day a week) Benefits: 28.9% pension & Flexi-working The Opportunity Yolk Recruitment Public Sector & Not-for-Profit team has partnered with a specialised Civil Service Organisation who are presently undergoing an interesting transformation into the cloud space. In this role, you will … oversee and continuously improve the management of vulnerability assessments across our hybrid IT environment. Using a risk-based, threat-informed approach, you will prioritise remediation efforts and work closely with stakeholders to enhance the security posture of our systems and services. Vulnerability Management (Primary Focus) Lead and improve ...

Cyber Threat Intelligence Analyst Summer-Browning Associates is supporting our client in the Central Government, who is seeking a Cyber Threat Intelligence Analyst for an initial 12-month assignment, with the possibility of extension. Location: London | Hybrid The ideal candidates will hold an active Security clearance … have a proven background in Cyber Security Threat Intelligence, with the following skills and experience: Experience in risk and threat modelling within high-threat government environments. Experience with cyber threat frameworks, such as MITRE ATT&CK, the Diamond Model, and the Intelligence Cycle. Proficiency ...

Cyber Threat Intelligence Analyst - Central Government - 12 month contract - DV clearance - London Hybrid We are looking for 2x Cyber Threat Intelligence Analysts to join a busy team for our central government client. Due to the nature and urgency of the role, ideal candidates will hold active … clearance. I am keen to speak with candidates who have: Experience in an intelligence role with practical use of the intelligence lifecycle, ideally for government/public sector clients. Hands-on experience researching, analysing and reporting on cyber threats or closely related security issues. Familiarity with cyber threat ...

Cyber Threat Intelligence Analyst (x2) Location : London, East Kilbride or Milton Keynes Type: Hybrid (2 days on-site, flexible) Rate : £680 - £780 IR35 : Inside Length : 12 months Clearance: UKSV DV Essential Familiarity with cyber threat frameworks - for example, MITRE ATT&CK, Diamond Model, and the Intelligence Cycle Experience using open-source and commercial research methods, threat intelligence platforms or security tooling. Experience of working in an intelligence role, with practical application of the intelligence lifecycle. Demonstrable analytical capability, including the ability to identify patterns and produce balanced, evidenced judgements. Experience researching ...

Cyber Threat Intelligence Practitioner Applying for this role is straight forward Scroll down and click on Apply to be considered for this position. 12 Month Contract Based: Preston Hourly Rate: £27.03 Paye or £36.30 umbrella Onsite – 1 – 2 days per month Full time – 37 hours Monday – Friday Overview … Systems is seeking a skilled Cyber Threat Intelligence Practitioner to support tactical and operational cyber threat intelligence activities across the organisation. xkybehq In this role, you will take owners Please click on the apply button to read the full job description ...

critical cyber incidents, guiding them from initial detection through containment, recovery and post-incident assurance. With deep expertise across incident response, digital forensics and threat intelligence, the team is trusted to operate in high-pressure environments where precision, clarity and sound judgement are essential.Joining the business means becoming … incident documentation, including timelines, technical findings and executive-level reports.- Contribute to the continuous improvement of incident response playbooks, tooling and investigative techniques.- Incorporate threat intelligence to enhance investigations and strengthen future detection and response strategies.- Support proactive consultancy activities such as incident response exercises, client briefings ...

cyber security leader responsible for developing and executing enterprise-wide cyber defence strategies to protect critical business systems, data, and infrastructure. Leads security operations, threat detection, incident response, and cyber resilience initiatives while ensuring alignment with organisational risk management objectives. Key Responsibilities Lead and manage the Cyber Defence function … overseeing security operations, threat intelligence, vulnerability management, and incident response capabilities. Develop and implement cyber defence strategies, policies, and procedures to protect against evolving cyber threats. Direct Security Operations Centre (SOC) activities, ensuring effective monitoring, detection, investigation, and response to security incidents. Oversee threat intelligence programmes ...

looking for a Cyber Threat & Vulnerability Analyst to join our Cyber Security team, helping protect the systems that deliver essential water services to millions of customers every day. You'll play a key role in identifying, assessing, and reducing cyber risk across a large and complex technology estate, making … closely with technical teams and business stakeholders to keep our services safe, resilient, and running smoothly. What you'll be doing as a Cyber Threat & Vulnerability Analyst: As a Cyber Threat & Vulnerability Analyst, you'll be responsible for supporting and improving how we identify, assess, and manage cyber ...

Threat-Led Detection Engineer will design, build, and maintain high-quality threat detections within WTW's Global Information and Cyber Security Defence (ICSD) function, helping WTW detect adversary activity quickly and accurately across its global estate. This is a hands-on engineering role for someone with a strong … tune detection rules, map coverage to real adversary behaviour, and contribute to a well-maintained, version-controlled detection library. Working closely with SOC, Threat Hunting, Cyber Threat Intelligence (CTI), and Incident Response, you will turn intelligence and hunt findings into reliable detections, embracing a threat ...

response activities, ensuring effective containment, eradication, recovery, and lessons learned. Develop, maintain, and test cyber incident response plans, procedures, and playbooks. Oversee security monitoring, threat detection, threat intelligence, and vulnerability management activities. Provide enterprise-wide oversight of network security technologies, controls, and architectures. Ensure the effective management … gateways, and network access controls. Strong understanding of enterprise network security principles and architectures. Experience managing security incidents across complex technology environments. Knowledge of threat intelligence, vulnerability management, and cyber risk management practices. Excellent stakeholder management and communication skills, with the ability to translate technical issues into business ...

critical in improving, developing and maintaining IT/OT vulnerability management programs and processes. This role performs and leads important tasks specialized at threat hunting, SIEM/SOAR, Network Security and other operational security tasks such as performance and availability monitoring, log monitoring, security incident detection and response, security … analysis. Designs and executes advanced vulnerability assessments using both automated and manual techniques; collaborates with stakeholders to prioritize remediation based on business risk and threat intelligence. Oversees continuous monitoring of threat intelligence feeds and security alerts, proactively identifying emerging risks and recommending strategic countermeasures. Interprets and synthesizes ...

operational state across all in scope assets and are tuned to incorporate new features or changes to the operational environment. Co-ordinate and undertake threat modelling to identify and analyse potential security threats, and ensure the necessary controls are in place to manage the threat and associated risks. … ordinate and undertake regular threat hunting, analysing logs and event data across the firms' systems, and procuring threat intelligence to inform the hunts. Provide technical leadership during security incident response, from identification through to containment, eradication, recovery and post incident review, reporting and recommendations; liaising with external ...

available throughout the hiring process. This is an opportunity to play a key role in protecting critical customer environments, leading complex investigations, driving proactive threat hunting activities, and helping shape the future of our security monitoring services. Were looking for someone who enjoys solving difficult security challenges, mentoring others … across high-security customer environments Act as a senior escalation point for Tier 1 and Tier 2 analysts during active security events Drive proactive threat hunting campaigns to identify emerging threats, vulnerabilities, and anomalous behaviour Develop and improve detection logic, alerting, and monitoring content within SIEM platforms including Elastic ...

monitoring, analysing and responding to security threats, while driving continuous improvement across our security operations capability. Youll play a key role in incident response, threat intelligence, vulnerability management and ensuring effective use of our security tools and processes to reduce risk across the technology estate. Key responsibilities Monitor … activities, validating effectiveness through vulnerability scanning Oversee and operate key security technologies, including SIEM, email and web gateways, and endpoint protection tools Monitor external threat intelligence sources and assess relevance to the organisation Produce and report on security metrics, KPIs and operational performance Technical expertise Good understanding ...

well-established cyber security capability supporting mission-critical environments. Cyber security is central to the organisation's strategy, with ongoing investment in tooling, threat intelligence, and specialist talent. The security function operates at a mature level, combining Security Operations, threat detection, incident response, and continuous improvement practices … SIEM and security tooling. This role combines hands-on SIEM analysis, alert triage, investigation, and detection improvement, alongside exposure to incident response and proactive threat detection activities. You will work across multiple data sources to identify suspicious behaviour, analyse events, and support the organisation's cyber defence posture through ...

PROTECT, DETECT, and RESPOND toolsets, including SIEM, SOAR, and vulnerability scanning tools. Support the development, configuration, and automation of security tooling to enhance threat detection and incident response. Conduct forensic analysis, malware reverse engineering, and develop IOCs and detection signatures. Manage and integrate logs from various sources, ensuring full … visibility and compliance. Analyse attacker TTPs and manage threat intelligence, including incident assessment and reporting. Collaborate with stakeholders to ensure operational effectiveness and continuous process improvement. Maintain knowledge of current cyber threats and emerging trends. What you'll bring: Proven hands-on experience with SIEM and SOAR platforms ...

ensure that security good practise is fully embedded into change initiatives, and security by design principles are applied. * Co-ordinate and undertake regular threat hunting, analysing logs and event data across the firms' systems, and procuring threat intelligence to inform the hunts. Key Skills: * Strong understanding … network and end point security, incident response, threat intelligence, and vulnerability management. * Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS. * Strong knowledge of Microsoft Azure cloud security technologies and concepts. * Familiar with cybersecurity frameworks such as NIST CSF, ISO27001 ...

holistic view of the organisation's security posture. Present findings and recommendations to senior leadership and governance forums. Collaborate with internal teams (e.g., threat intelligence, compliance, audit) to ensure assurance activities reflect current threat landscapes. Act as a primary interface for business units, ensuring alignment between assurance … technical and business information to assess risk. Experience in supply chain security assurance. Knowledge of secure by design principles and accreditation processes. Understanding of threat intelligence and its application in assurance. Experience working in regulated or high-assurance environments (e.g., government, finance, defence). Familiarity with risk management ...

client engagements; present findings and recommendations to senior stakeholders. Participate in alert testing, readiness exercises, and incident response tabletop sessions. Stay current on emerging threat intelligence, attacker techniques, and relevant research. Required Experience 2+ years experience as a Cyber Security Operations Analyst Experience working with Splunk Familiarity with … threat intelligence frameworks and methodologies End-to-end incident response lifecycle experience Detection engineering and alert development expertise. Strong scripting or programming skills (Python, Bash, C/C++, Java). Solid grounding in cybersecurity fundamentals: network security, cloud security, cryptography, forensics. Understanding of common network protocols and attacker ...

client engagements; present findings and recommendations to senior stakeholders. Participate in alert testing, readiness exercises, and incident response tabletop sessions. Stay current on emerging threat intelligence, attacker techniques, and relevant research. Required Experience 2+ years experience as a Cyber Security Operations Analyst Experience working with Splunk Familiarity with … threat intelligence frameworks and methodologies End-to-end incident response lifecycle experience Detection engineering and alert development expertise. Strong scripting or programming skills (Python, Bash, C/C++, Java). Solid grounding in cybersecurity fundamentals: network security, cloud security, cryptography, forensics. Understanding of common network protocols and attacker ...

client engagements; present findings and recommendations to senior stakeholders. Participate in alert testing, readiness exercises, and incident response tabletop sessions. Stay current on emerging threat intelligence, attacker techniques, and relevant research. Required Experience 2+ years experience as a Cyber Security Operations Analyst or equivalent Experience working with Splunk … Familiarity with threat intelligence frameworks and methodologies End-to-end incident response lifecycle experience Detection engineering and alert development expertise. Strong scripting or programming skills (Python, Bash, C/C++, Java). Solid grounding in cybersecurity fundamentals: network security, cloud security, cryptography, forensics. Understanding of common network protocols ...

client engagements; present findings and recommendations to senior stakeholders. Participate in alert testing, readiness exercises, and incident response tabletop sessions. Stay current on emerging threat intelligence, attacker techniques, and relevant research. Required Experience 2+ years experience as a Cyber Security Operations Analyst or equivalent Experience working with Splunk … Familiarity with threat intelligence frameworks and methodologies End-to-end incident response lifecycle experience Detection engineering and alert development expertise. Strong scripting or programming skills (Python, Bash, C/C++, Java). Solid grounding in cybersecurity fundamentals: network security, cloud security, cryptography, forensics. Understanding of common network protocols ...

client engagements; present findings and recommendations to senior stakeholders. Participate in alert testing, readiness exercises, and incident response tabletop sessions. Stay current on emerging threat intelligence, attacker techniques, and relevant research. Required Experience 2+ years experience as a Cyber Security Operations Analyst or equivalent Experience working with Splunk … Familiarity with threat intelligence frameworks and methodologies End-to-end incident response lifecycle experience Detection engineering and alert development expertise. Strong scripting or programming skills (Python, Bash, C/C++, Java). Solid grounding in cybersecurity fundamentals: network security, cloud security, cryptography, forensics. Understanding of common network protocols ...