1 to 25 of 97 Threat Intelligence Jobs

Security Operations Unit (CSOU) Cyber Delivery Unit (CDU) Cyber Improvement Programme Chief Information Security Office Function (CISO) This role is within the Cyber Security Threat Intelligence team within NHS England National CSOC, part of CSOU. The CSOU function provides centralised monitoring and response across NHSE, and the system … which consists of Threat Operations, Protective Monitoring, Incident Management & response and DevOps. The Threat Intelligence function is comprised of four primary functions: Performing intelligence collection, aggregation, analysis and contextualisation of healthcare and security information to produce actionable cyber threat intelligence Performing high-level risk ...

SIEM Analyst/Cyber Threat Detection Analyst - SANS/GIAC Cyber Threat Detection Analyst Location: Wokingham, Berkshire (On-site) Salary: Competitive (dependent on experience) + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC Role Overview As a SIEM Analyst Cyber Threat Detection … will play a hands-on role within an advanced cyber defence function, focused on proactive threat hunting, adversary behaviour analysis, and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data, and threat ...

/Cyber Threat Detection Analyst - SANS/GIAC Cyber Threat Detection Analyst Location: Wokingham, Berkshire (On-site) Salary: Competitive (dependent on experience) + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC Role Overview As a Cyber Threat Detection Analyst, you will play … hands-on role within an advanced cyber defence function, focused on proactive threat hunting, adversary behaviour analysis, and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data, and threat intelligence ...

client, a reputable organisation within the Defence & Security sector, is currently seeking a Cyber Threat Intelligence Practitioner for a contracting role. This position presents a unique opportunity to apply your analytical skills and knowledge in cyber intelligence to protect critical infrastructure and national security. Key Responsibilities: Takes … ownership of a geographic or thematic area of responsibility for focused threat research. Produces operational and tactical level reports on cyber threats. Delivers threat intelligence briefs to internal cross-functional stakeholders. Supports a collaborative culture within cyber operations that is intelligence-informed and proactive. Collaborates with ...

Backend Engineer – Threat Intelligence & Data Operations Location: United Kingdom (Remote) Employment Type: Permanent About the Opportunity Join a fast-growing, venture-backed cybersecurity technology company building cutting-edge solutions in Threat Intelligence, Exposure Management, Vulnerability Research, and Automated Red Teaming . This is an opportunity … work on highly scalable backend systems that power global cyber threat detection, security automation, and intelligence operations. We are looking for a skilled Backend Engineer with strong expertise in Python, Django, Kubernetes, Celery, Cloud Infrastructure, and Data Pipelines to help scale high-throughput platforms that process massive volumes ...

Financial Services firm seeks a CTI Lead to join its growing Threat Intelligence function. In this role, you’ll apply data science techniques such as machine learning, statistical analysis, and data engineering to help identify, analyse, and mitigate cyber threats across the organisation. Working closely with Cyber Threat Intelligence, Cyber Operations, and Threat Hunting teams, you’ll use large and complex security datasets (from sources like SIEMs, endpoints, and firewalls) to detect patterns of malicious activity, anticipate potential attack vectors, and support incident response efforts. You’ll also leverage external threat intelligence ...

Software-Based Organisation at the forefront of Pre-Emptive Exposure Management. As a market leader backed by significant venture funding, they are expanding their Threat Intelligence Operations by scaling the robust backend infrastructure that powers their Global Vulnerability Research & Automated Red Teaming. Role Overview: Step … engine behind their Intelligence Operations. You will build and scale the high-throughput Python ( Django ) Backend that Collects, Processes & Analyses Large Volumes of Threat Telemetry. By operationalising Complex Data Pipelines & Integrating LLM Workflows, you will directly fuel the Research that enables our enterprise clients to outmanoeuvre Real-World ...

oversees the company's security program, ensuring S&P Global is protected from existing and emerging threats. In close partnership with Security Operations and Threat Intelligence, you will detect, analyze, and decisively respond to security incidents, enrich investigations with timely intelligence, and help drive proactive defences. While … based in the UK, you will support response and intelligence needs globally. Candidates should have a genuine interest in cyber security and a strong grasp of attacker tactics, techniques, and procedures (TTPs). This role requires a detail-oriented, critical thinker who understands how adversaries exploit systems, networks ...

become trusted advisors to our clients. You will help our clients to build cyber resilience, enhance their understanding of the threat landscape and become better prepared to face dynamic and evolving security risks. This will involve being on the front foot of new and emerging threats, and ensuring … affected and actions they can take. Technical testing ; vulnerability scanning, attack surface discovery, manual exploit validation, light‐touch pentesting and Open‐Source Intelligence (OSINT) gathering Client Engagement ; translating client challenges into solutions that fit S‐RM’s ASM service offerings and value proposition, understanding and supporting the proposal process ...

Lead 6 months Bath - hybrid x3 days onsite x2 remote Active SC/DV clearance required £700 per day outside IR35 The SOC Lead - Threat Hunting & Investigations is responsible for leading advanced threat detection, proactive threat hunting, and complex security investigations across the enterprise. This role focuses … elevating the maturity of SOC investigative and hunting capabilities. The role combines technical leadership, hands-on expertise, and mentorship of analysts. Key Responsibilities Threat Hunting Lead proactive, hypothesis-driven threat hunting activities across endpoint, network, cloud, identity, and SaaS environments Develop and maintain threat hunting playbooks aligned ...

aligned with the NIST Incident Response Lifecycle and help maintain cybersecurity incident response documentation. This position requires strong expertise in incident response, digital forensics, threat hunting, and security monitoring technologies. You will collaborate across teams, contribute to detection engineering efforts, and participate in 24x7 on‐call rotations. The role … from our London, UK office. We’d love for you to join us! Impact You’ll Have Proactively monitor Marqeta’s environment for cyber threat activity and manage day‐to‐day security alerts through timely analysis, triage, and appropriate response actions Serve as incident commander during security events, directing ...

well-established biotech company using large-scale genetic data and AI to predict disease risk and advance precision healthcare. We’re looking for a Threat Detection Engineer who thrives on innovation and technical ownership. This role is not a traditional SOC position, you’ll focus on building high-impact … closely with internal teams and an outsourced SOC partner Mission-focused : Protect critical healthcare data that supports precision medicine Key Responsibilities Design and develop threat-led detections using threat intelligence and threat-hunting outputs Create novel analytic techniques for incident detection Collaborate with ...

well-established biotech company using large-scale genetic data and AI to predict disease risk and advance precision healthcare. We’re looking for a Threat Detection Engineer who thrives on innovation and technical ownership. This role is not a traditional SOC position, you’ll focus on building high-impact … closely with internal teams and an outsourced SOC partner Mission-focused : Protect critical healthcare data that supports precision medicine Key Responsibilities Design and develop threat-led detections using threat intelligence and threat-hunting outputs Create novel analytic techniques for incident detection Collaborate with ...

clear progression opportunities and will require someone to come with both technical and GRC security experience. Key Responsibilities: Oversee security incident management and response Threat management Configure, implement and maintain security tools such as SIEM, XDR, EDR, vulnerability management Implement and maintain security controls Conduct vendor risk assessments, support … internal and external audits Governance, risk and compliance Skills & Experience: Proven experience in cyber Security operations, threat management and threat analysis Threat management - actively develop and refine threat intelligence, threat hunting capabilities, and prevention/detection measures Strong knowledge of SIEM, XDR, EDR, vulnerability ...

Managed Security Services (MSSP) function, reporting directly to the Head of SOC Operations. You will act as the senior technical authority, driving excellence in threat detection, incident response, and security operations across a diverse, multi-client portfolio. While you will lead and mentor a team, this … training, coaching, and technical mentoring Ensure accurate and timely case management (HALO) and delivery against SLAs Technical Leadership & Continuous Improvement Provide expert guidance on threat detection, incident response, and threat hunting Lead escalations for complex or high-severity incidents across client environments Develop and optimise detection rules, playbooks ...

Midlands. Practitioner CERT capabilities and several team management experience is required – meaning you will be technically capable and experienced within Incident Response & Detection, Threat Intelligence & Hunting, Vulnerability Management, Attack Surface Reduction, Cyber Analysis, etc. You will also have large team leadership and motivation experience in some … monitoring and detecting cyber security threats and incidents in real-time. Collaborate with teams to conduct incident investigations and develop response plans. Lead proactive threat hunting initiatives. Manage vulnerability assessments and penetration testing programs. Develop and maintain threat intelligence capabilities. Essential experience includes: Extensive experience in managing ...

capability continues to grow. Lead and personally deliver cybersecurity engagements for Financial Services clients. Own and drive work across security implementation, testing, and threat intelligence. Act as a trusted advisor to client stakeholders, from security teams to senior leaders. Project‐manage and guide consultants, setting direction and maintaining quality. … depending on the engagement. What we’re looking for Cyber Security, cyber risk, cyber controls, and associated engineering and implementation work. Security testing (e.g. threat‐led testing, vulnerability management, scenario testing, ISO Standards). Threat intelligence or proactive threat monitoring. Experience working in Financial Services environments ...

continuously improve the cyber incident response plan, ensuring readiness across the organisation Provide strategic cyber security advice to senior leadership on monitoring, logging, and threat response Establish a use-case driven monitoring and alerting capability to improve threat detection and response times Oversee threat intelligence, vulnerability … capability Core Experience Required Proven experience leading a Security Operations Centre (SOC/CSOC) or cyber security operations function Strong background in incident response, threat detection, and cyber resilience Hands-on experience with SIEM, IDS/IPS, endpoint security, and monitoring tools Solid understanding of threat intelligence ...

continuously improve the cyber incident response plan, ensuring readiness across the organisation Provide strategic cyber security advice to senior leadership on monitoring, logging, and threat response Establish a use-case driven monitoring and alerting capability to improve threat detection and response times Oversee threat intelligence, vulnerability … capability Core Experience Required Proven experience leading a Security Operations Centre (SOC/CSOC) or cyber security operations function Strong background in incident response, threat detection, and cyber resilience Hands-on experience with SIEM, IDS/IPS, endpoint security, and monitoring tools Solid understanding of threat intelligence ...

system to be cyber resilient, supporting Transformation Directorate's purpose of delivering the best care and outcomes for the NHS. The Senior Security Analyst - Threat Hunting will proactively and iteratively search and analyse for specific TTPs, IOCs or evidence in the NHS England infrastructure in order to detect … traditional rule or signature-based security controls or even by use cases or for suspicious scenarios notified by qualified sources (e.g. CERT, Security Threat Monitoring, Threat Intelligence, etc.). This role is within the Cyber Security - Threat Hunting team which is one of three core pillars ...

monitoring, analysing and responding to security threats, while driving continuous improvement across our security operations capability. Youll play a key role in incident response, threat intelligence, vulnerability management and ensuring effective use of our security tools and processes to reduce risk across the technology estate. Key responsibilities Monitor … activities, validating effectiveness through vulnerability scanning Oversee and operate key security technologies, including SIEM, email and web gateways, and endpoint protection tools Monitor external threat intelligence sources and assess relevance to the organisation Produce and report on security metrics, KPIs and operational performance Technical expertise Good understanding ...

available throughout the hiring process. This is an opportunity to play a key role in protecting critical customer environments, leading complex investigations, driving proactive threat hunting activities, and helping shape the future of our security monitoring services. Were looking for someone who enjoys solving difficult security challenges, mentoring others … across high-security customer environments Act as a senior escalation point for Tier 1 and Tier 2 analysts during active security events Drive proactive threat hunting campaigns to identify emerging threats, vulnerabilities, and anomalous behaviour Develop and improve detection logic, alerting, and monitoring content within SIEM platforms including Elastic ...

Proven experience delivering an effective security monitoring capability, with continuous improvements that reflect changes from risks and threats in a timely manner, including proactive threat hunting and intrusion detection . Proven experience delivering threat intelligence and assessment in the context of the organisation to stakeholders by gathering … analysing information to identify and mitigate cyber threats from both open-source (OSINT) and commercial threat intelligence. Proven experience operating cyber security solutions and tools e.g. Security Information and Event Management ( SIEM ), maintaining security records and documentation in accordance with security operating procedures. Demonstrated experience in managing relationships with ...

client engagements; present findings and recommendations to senior stakeholders. Participate in alert testing, readiness exercises, and incident response tabletop sessions. Stay current on emerging threat intelligence, attacker techniques, and relevant research. Required Experience & Attributes 3+ years experience as a Cyber Security Operations Analyst Familiarity with threat intelligence ...

holistic view of the organisation's security posture. Present findings and recommendations to senior leadership and governance forums. Collaborate with internal teams (e.g., threat intelligence, compliance, audit) to ensure assurance activities reflect current threat landscapes. Act as a primary interface for business units, ensuring alignment between assurance … technical and business information to assess risk. Experience in supply chain security assurance. Knowledge of secure by design principles and accreditation processes. Understanding of threat intelligence and its application in assurance. Experience working in regulated or high-assurance environments (e.g., government, finance, defence). Familiarity with risk management ...