1 to 25 of 105 Threat Intelligence Jobs

Security Operations Unit (CSOU) Cyber Delivery Unit (CDU) Cyber Improvement Programme Chief Information Security Office Function (CISO) This role is within the Cyber Security Threat Intelligence team within NHS England National CSOC, part of CSOU. The CSOU function provides centralised monitoring and response across NHSE, and the system … which consists of Threat Operations, Protective Monitoring, Incident Management & response and DevOps. The Threat Intelligence function is comprised of four primary functions: Performing intelligence collection, aggregation, analysis and contextualisation of healthcare and security information to produce actionable cyber threat intelligence Performing high-level risk ...

Purpose: You will lead the development and delivery of threat intelligence capabilities that directly support advanced offensive security services, including Red Team and Adversary Emulation engagements. Your mission is to identify, analyse, and translate real-world threat actor behaviour into actionable intelligence that enables realistic, threat … readiness for all client engagements, working closely with internal teams (Offensive Security, CRS, and Sales) to deliver integrated cybersecurity solutions. This includes defining relevant threat scenarios, identifying priority targets, and mapping adversary Tactics, Techniques, and Procedures (TTPs) to support structured, intelligence-driven engagements. As a senior cybersecurity specialist ...

CSOU & SIO) Cyber Delivery Unit (CDU) Cyber Improvement Programme Chief Information Security Office Function (CISO) The role sits within the NHS England National CSOC Threat Intelligence team, comprised of four primary functions: Intelligence Collection & Analysis - Perform collection, aggregation, analysis and contextualisation of healthcare and security information … produce actionable CTI. Cybersecurity Threat & Risk Assessment - Perform high-level risk assessments of current and emerging threats to the health & social care estate. Intelligence Dissemination & Reporting - Produce stakeholder-specific intelligence reporting for stakeholders. Specialist CTI Support - Provides specialist CTI support to CSOC during high complexity incidents Main ...

SIEM Analyst/Cyber Threat Detection Analyst - SANS/GIAC Cyber Threat Detection Analyst Location: Wokingham, Berkshire (On-site) Salary: Competitive (dependent on experience) + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC Role Overview As a SIEM Analyst Cyber Threat Detection … will play a hands-on role within an advanced cyber defence function, focused on proactive threat hunting, adversary behaviour analysis, and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data, and threat ...

/Cyber Threat Detection Analyst - SANS/GIAC Cyber Threat Detection Analyst Location: Wokingham, Berkshire (On-site) Salary: Competitive (dependent on experience) + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC Role Overview As a Cyber Threat Detection Analyst, you will play … hands-on role within an advanced cyber defence function, focused on proactive threat hunting, adversary behaviour analysis, and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data, and threat intelligence ...

client, a reputable organisation within the Defence & Security sector, is currently seeking a Cyber Threat Intelligence Practitioner for a contracting role. This position presents a unique opportunity to apply your analytical skills and knowledge in cyber intelligence to protect critical infrastructure and national security. Key Responsibilities: Takes … ownership of a geographic or thematic area of responsibility for focused threat research. Produces operational and tactical level reports on cyber threats. Delivers threat intelligence briefs to internal cross-functional stakeholders. Supports a collaborative culture within cyber operations that is intelligence-informed and proactive. Collaborates with ...

Backend Engineer – Threat Intelligence & Data Operations Location: United Kingdom (Remote) Employment Type: Permanent About the Opportunity Join a fast-growing, venture-backed cybersecurity technology company building cutting-edge solutions in Threat Intelligence, Exposure Management, Vulnerability Research, and Automated Red Teaming . This is an opportunity … work on highly scalable backend systems that power global cyber threat detection, security automation, and intelligence operations. We are looking for a skilled Backend Engineer with strong expertise in Python, Django, Kubernetes, Celery, Cloud Infrastructure, and Data Pipelines to help scale high-throughput platforms that process massive volumes ...

Financial Services firm seeks a CTI Lead to join its growing Threat Intelligence function. In this role, you’ll apply data science techniques such as machine learning, statistical analysis, and data engineering to help identify, analyse, and mitigate cyber threats across the organisation. Working closely with Cyber Threat Intelligence, Cyber Operations, and Threat Hunting teams, you’ll use large and complex security datasets (from sources like SIEMs, endpoints, and firewalls) to detect patterns of malicious activity, anticipate potential attack vectors, and support incident response efforts. You’ll also leverage external threat intelligence ...

Software-Based Organisation at the forefront of Pre-Emptive Exposure Management. As a market leader backed by significant venture funding, they are expanding their Threat Intelligence Operations by scaling the robust backend infrastructure that powers their Global Vulnerability Research & Automated Red Teaming. Role Overview: Step … engine behind their Intelligence Operations. You will build and scale the high-throughput Python ( Django ) Backend that Collects, Processes & Analyses Large Volumes of Threat Telemetry. By operationalising Complex Data Pipelines & Integrating LLM Workflows, you will directly fuel the Research that enables our enterprise clients to outmanoeuvre Real-World ...

Powered Binary Analysis Platform About Us We are building an AI-native binary analysis and reverse engineering platform designed to transform how malware analysis, threat research, and vulnerability discovery are performed. Our platform combines large language models, program analysis, symbolic reasoning, and automated reverse engineering to accelerate malware triage … enable scalable threat intelligence workflows. Our mission is to augment human analysts with AI-driven tooling capable of understanding binaries, deobfuscating malware, automating reverse engineering tasks, and generating actionable intelligence at machine speed. We are looking for a Malware Engineer who combines deep malware analysis expertise with ...

oversees the company's security program, ensuring S&P Global is protected from existing and emerging threats. In close partnership with Security Operations and Threat Intelligence, you will detect, analyze, and decisively respond to security incidents, enrich investigations with timely intelligence, and help drive proactive defences. While … based in the UK, you will support response and intelligence needs globally. Candidates should have a genuine interest in cyber security and a strong grasp of attacker tactics, techniques, and procedures (TTPs). This role requires a detail-oriented, critical thinker who understands how adversaries exploit systems, networks ...

become trusted advisors to our clients. You will help our clients to build cyber resilience, enhance their understanding of the threat landscape and become better prepared to face dynamic and evolving security risks. This will involve being on the front foot of new and emerging threats, and ensuring … affected and actions they can take. Technical testing ; vulnerability scanning, attack surface discovery, manual exploit validation, light‐touch pentesting and Open‐Source Intelligence (OSINT) gathering Client Engagement ; translating client challenges into solutions that fit S‐RM’s ASM service offerings and value proposition, understanding and supporting the proposal process ...

Lead 6 months Bath - hybrid x3 days onsite x2 remote Active SC/DV clearance required £700 per day outside IR35 The SOC Lead - Threat Hunting & Investigations is responsible for leading advanced threat detection, proactive threat hunting, and complex security investigations across the enterprise. This role focuses … elevating the maturity of SOC investigative and hunting capabilities. The role combines technical leadership, hands-on expertise, and mentorship of analysts. Key Responsibilities Threat Hunting Lead proactive, hypothesis-driven threat hunting activities across endpoint, network, cloud, identity, and SaaS environments Develop and maintain threat hunting playbooks aligned ...

aligned with the NIST Incident Response Lifecycle and help maintain cybersecurity incident response documentation. This position requires strong expertise in incident response, digital forensics, threat hunting, and security monitoring technologies. You will collaborate across teams, contribute to detection engineering efforts, and participate in 24x7 on‐call rotations. The role … from our London, UK office. We’d love for you to join us! Impact You’ll Have Proactively monitor Marqeta’s environment for cyber threat activity and manage day‐to‐day security alerts through timely analysis, triage, and appropriate response actions Serve as incident commander during security events, directing ...

well-established biotech company using large-scale genetic data and AI to predict disease risk and advance precision healthcare. We’re looking for a Threat Detection Engineer who thrives on innovation and technical ownership. This role is not a traditional SOC position, you’ll focus on building high-impact … closely with internal teams and an outsourced SOC partner Mission-focused : Protect critical healthcare data that supports precision medicine Key Responsibilities Design and develop threat-led detections using threat intelligence and threat-hunting outputs Create novel analytic techniques for incident detection Collaborate with ...

well-established biotech company using large-scale genetic data and AI to predict disease risk and advance precision healthcare. We’re looking for a Threat Detection Engineer who thrives on innovation and technical ownership. This role is not a traditional SOC position, you’ll focus on building high-impact … closely with internal teams and an outsourced SOC partner Mission-focused : Protect critical healthcare data that supports precision medicine Key Responsibilities Design and develop threat-led detections using threat intelligence and threat-hunting outputs Create novel analytic techniques for incident detection Collaborate with ...

clear progression opportunities and will require someone to come with both technical and GRC security experience. Key Responsibilities: Oversee security incident management and response Threat management Configure, implement and maintain security tools such as SIEM, XDR, EDR, vulnerability management Implement and maintain security controls Conduct vendor risk assessments, support … internal and external audits Governance, risk and compliance Skills & Experience: Proven experience in cyber Security operations, threat management and threat analysis Threat management - actively develop and refine threat intelligence, threat hunting capabilities, and prevention/detection measures Strong knowledge of SIEM, XDR, EDR, vulnerability ...

enhance their Managed Detection & Response capability. This is a highly technical, hands-on role focused on improving detection quality, reducing false positives, and strengthening threat visibility across a wide range of security technologies. You’ll play a key role in shaping detection engineering strategy while collaborating closely with … Incident Response teams. You’ll be working with frameworks such as MITRE ATT&CK, threat intelligence feeds, SIEM technologies, and adversary emulation techniques to continuously evolve detection capabilities and operational efficiencies. What You’ll Be Doing Improving and tuning detections to reduce false positives and improve SOC efficiency ...

Managed Security Services (MSSP) function, reporting directly to the Head of SOC Operations. You will act as the senior technical authority, driving excellence in threat detection, incident response, and security operations across a diverse, multi-client portfolio. While you will lead and mentor a team, this … training, coaching, and technical mentoring Ensure accurate and timely case management (HALO) and delivery against SLAs Technical Leadership & Continuous Improvement Provide expert guidance on threat detection, incident response, and threat hunting Lead escalations for complex or high-severity incidents across client environments Develop and optimise detection rules, playbooks ...

Midlands. Practitioner CERT capabilities and several team management experience is required – meaning you will be technically capable and experienced within Incident Response & Detection, Threat Intelligence & Hunting, Vulnerability Management, Attack Surface Reduction, Cyber Analysis, etc. You will also have large team leadership and motivation experience in some … monitoring and detecting cyber security threats and incidents in real-time. Collaborate with teams to conduct incident investigations and develop response plans. Lead proactive threat hunting initiatives. Manage vulnerability assessments and penetration testing programs. Develop and maintain threat intelligence capabilities. Essential experience includes: Extensive experience in managing ...

capability continues to grow. Lead and personally deliver cybersecurity engagements for Financial Services clients. Own and drive work across security implementation, testing, and threat intelligence. Act as a trusted advisor to client stakeholders, from security teams to senior leaders. Project‐manage and guide consultants, setting direction and maintaining quality. … depending on the engagement. What we’re looking for Cyber Security, cyber risk, cyber controls, and associated engineering and implementation work. Security testing (e.g. threat‐led testing, vulnerability management, scenario testing, ISO Standards). Threat intelligence or proactive threat monitoring. Experience working in Financial Services environments ...

role in the technical sales process, helping organisations understand, evaluate, and successfully implement advanced cybersecurity solutions focused on malware analysis, sandboxing, and threat intelligence. The role combines deep technical expertise with customer-facing engagement, working closely with Sales, Product, Engineering, and Customer Success teams to deliver successful outcomes throughout … success and long-term adoption. Represent the business at cybersecurity conferences, trade shows, and industry events. Act as a trusted advisor on malware analysis, threat detection, incident response, and threat intelligence use cases. Gather market and customer feedback to help influence future product strategy and roadmap direction. ...

continuously improve the cyber incident response plan, ensuring readiness across the organisation Provide strategic cyber security advice to senior leadership on monitoring, logging, and threat response Establish a use-case driven monitoring and alerting capability to improve threat detection and response times Oversee threat intelligence, vulnerability … capability Core Experience Required Proven experience leading a Security Operations Centre (SOC/CSOC) or cyber security operations function Strong background in incident response, threat detection, and cyber resilience Hands-on experience with SIEM, IDS/IPS, endpoint security, and monitoring tools Solid understanding of threat intelligence ...

continuously improve the cyber incident response plan, ensuring readiness across the organisation Provide strategic cyber security advice to senior leadership on monitoring, logging, and threat response Establish a use-case driven monitoring and alerting capability to improve threat detection and response times Oversee threat intelligence, vulnerability … capability Core Experience Required Proven experience leading a Security Operations Centre (SOC/CSOC) or cyber security operations function Strong background in incident response, threat detection, and cyber resilience Hands-on experience with SIEM, IDS/IPS, endpoint security, and monitoring tools Solid understanding of threat intelligence ...

system to be cyber resilient, supporting Transformation Directorate's purpose of delivering the best care and outcomes for the NHS. The Senior Security Analyst - Threat Hunting will proactively and iteratively search and analyse for specific TTPs, IOCs or evidence in the NHS England infrastructure in order to detect … traditional rule or signature-based security controls or even by use cases or for suspicious scenarios notified by qualified sources (e.g. CERT, Security Threat Monitoring, Threat Intelligence, etc.). This role is within the Cyber Security - Threat Hunting team which is one of three core pillars ...