1 to 25 of 76 Threat Intelligence Jobs

carbon energy. We work at the cutting edge of the transition to a sustainable, net zero world. We're looking for a Head of Threat Defence. Based at our Paddington Head Office the role is to build on the existing capabilities to develop a best practice threat defence … capability for URENCO. The role offers an opportunity for end-to-end ownership of a threat defence strategy and service. The role will focus on leading a team responsible for security operations, incident detection and response and threat intelligence which will be delivered through partnership with outsourced ...

Threat and Vulnerability Manager £55k Newport (x1 day a week) Benefits: 28.9% pension & Flexi-working The Opportunity Yolk Recruitment Public Sector & Not-for-Profit team has partnered with a specialised Civil Service Organisation who are presently undergoing an interesting transformation into the cloud space. In this role, you will … oversee and continuously improve the management of vulnerability assessments across our hybrid IT environment. Using a risk-based, threat-informed approach, you will prioritise remediation efforts and work closely with stakeholders to enhance the security posture of our systems and services. Vulnerability Management (Primary Focus) Lead and improve ...

Cyber Threat Intelligence Analyst Summer-Browning Associates is supporting our client in the Central Government, who is seeking a Cyber Threat Intelligence Analyst for an initial 12-month assignment, with the possibility of extension. Location: London | Hybrid The ideal candidates will hold an active Security clearance … have a proven background in Cyber Security Threat Intelligence, with the following skills and experience: Experience in risk and threat modelling within high-threat government environments. Experience with cyber threat frameworks, such as MITRE ATT&CK, the Diamond Model, and the Intelligence Cycle. Proficiency ...

tier global MSSPs (excluding GSI/Big 4 relationships). These are security‐specialist firms operating at scale — running 24×7 SOCs, delivering managed threat intelligence, and integrating platform‐grade tooling into their service stack. This is not a transactional sales role. It is a strategic ecosystem play … managed services. Define a structured, tiered MSSP engagement playbook covering acquisition, activation, ramp, and expansion — with clear milestones for each stage. Maintain deep competitive intelligence on MSSP buying behaviour, vendor preferences, and integration strategies across US, Europe, and beyond. Identify white space across the MSSP landscape where Cyble ...

Cyber Threat Intelligence Analyst (x2) Location : London, East Kilbride or Milton Keynes Type: Hybrid (2 days on-site, flexible) Rate : £680 - £780 IR35 : Inside Length : 12 months Clearance: UKSV DV Essential Familiarity with cyber threat frameworks - for example, MITRE ATT&CK, Diamond Model, and the Intelligence Cycle Experience using open-source and commercial research methods, threat intelligence platforms or security tooling. Experience of working in an intelligence role, with practical application of the intelligence lifecycle. Demonstrable analytical capability, including the ability to identify patterns and produce balanced, evidenced judgements. Experience researching ...

drive effective remediation activity. Accountabilities Allocation of the correct risk rating and remediation prioritisation to a vulnerability based on industry standards for assessment, available threat intelligence concerning exploitation, the reachability of the host (or asset) and the value of the service(s) running on the impacted host. Development … stakeholders, vendors, external security partners and affect business units using reports and dashboards and provide recommendations for improvement in vulnerability management practices. Collaboration with Threat intelligence and Cyber Operations teams to assess and contextualise exposure to latest threat trends and exploits and set appropriate remediation timescales. Definition ...

Please do not contact the recruiter directly. Job Summary To our office in London we are looking for a Digital Executive Protection and Protective Intelligence Specialist. This role will be responsible for: • Building and leading the Bank's executive-focused digital protection capability and supporting Standard Chartered Bank … reporting on threats targeting key executives and higher-risk employees • Designing and operationalizing workflows for executive digital protection, driving collection and analysis strategy, intelligence consumption, finished intelligence production and delivery means and methods. • Supporting complex executive risk assessments, by integrating and providing intelligence across cyber/online ...

critical cyber incidents, guiding them from initial detection through containment, recovery and post-incident assurance. With deep expertise across incident response, digital forensics and threat intelligence, the team is trusted to operate in high-pressure environments where precision, clarity and sound judgement are essential.Joining the business means becoming … incident documentation, including timelines, technical findings and executive-level reports.- Contribute to the continuous improvement of incident response playbooks, tooling and investigative techniques.- Incorporate threat intelligence to enhance investigations and strengthen future detection and response strategies.- Support proactive consultancy activities such as incident response exercises, client briefings ...

cyber security leader responsible for developing and executing enterprise-wide cyber defence strategies to protect critical business systems, data, and infrastructure. Leads security operations, threat detection, incident response, and cyber resilience initiatives while ensuring alignment with organisational risk management objectives. Key Responsibilities Lead and manage the Cyber Defence function … overseeing security operations, threat intelligence, vulnerability management, and incident response capabilities. Develop and implement cyber defence strategies, policies, and procedures to protect against evolving cyber threats. Direct Security Operations Centre (SOC) activities, ensuring effective monitoring, detection, investigation, and response to security incidents. Oversee threat intelligence programmes ...

looking for a Cyber Threat & Vulnerability Analyst to join our Cyber Security team, helping protect the systems that deliver essential water services to millions of customers every day. You'll play a key role in identifying, assessing, and reducing cyber risk across a large and complex technology estate, making … closely with technical teams and business stakeholders to keep our services safe, resilient, and running smoothly. What you'll be doing as a Cyber Threat & Vulnerability Analyst: As a Cyber Threat & Vulnerability Analyst, you'll be responsible for supporting and improving how we identify, assess, and manage cyber ...

future threats in an ever-changing cyber landscape. You will join our comprehensive Cyber Defence Department as a senior member of the dedicated Threat Hunt team. You will operate within a robust security ecosystem, partnering directly with Cyber Operations, Threat Intelligence, Engineering, and Threat Vulnerability Management. … What you’ll do : Conduct proactive threat hunts across the enterprise, broadcast, and telco networks to identify abnormal activity, emerging attack techniques, and advanced threats. ·Develop and execute hypothesis-driven threat hunts utilising datasets across a variety of security tooling, including EDR, SIEM, and network-layer defences. ·Collaborate ...

employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly. Description The Threat-Led Detection Engineer will design, build, and maintain high-quality threat detections within WTW’s Global Information and Cyber Security Defence (ICSD) function … tune detection rules, map coverage to real adversary behaviour, and contribute to a well-maintained, version-controlled detection library. Working closely with SOC, Threat Hunting, Cyber Threat Intelligence (CTI), and Incident Response, you will turn intelligence and hunt findings into reliable detections, embracing a threat ...

response activities, ensuring effective containment, eradication, recovery, and lessons learned. Develop, maintain, and test cyber incident response plans, procedures, and playbooks. Oversee security monitoring, threat detection, threat intelligence, and vulnerability management activities. Provide enterprise-wide oversight of network security technologies, controls, and architectures. Ensure the effective management … gateways, and network access controls. Strong understanding of enterprise network security principles and architectures. Experience managing security incidents across complex technology environments. Knowledge of threat intelligence, vulnerability management, and cyber risk management practices. Excellent stakeholder management and communication skills, with the ability to translate technical issues into business ...

critical in improving, developing and maintaining IT/OT vulnerability management programs and processes. This role performs and leads important tasks specialized at threat hunting, SIEM/SOAR, Network Security and other operational security tasks such as performance and availability monitoring, log monitoring, security incident detection and response, security … analysis. Designs and executes advanced vulnerability assessments using both automated and manual techniques; collaborates with stakeholders to prioritize remediation based on business risk and threat intelligence. Oversees continuous monitoring of threat intelligence feeds and security alerts, proactively identifying emerging risks and recommending strategic countermeasures. Interprets and synthesizes ...

operational state across all in scope assets and are tuned to incorporate new features or changes to the operational environment. Co-ordinate and undertake threat modelling to identify and analyse potential security threats, and ensure the necessary controls are in place to manage the threat and associated risks. … ordinate and undertake regular threat hunting, analysing logs and event data across the firms' systems, and procuring threat intelligence to inform the hunts. Provide technical leadership during security incident response, from identification through to containment, eradication, recovery and post incident review, reporting and recommendations; liaising with external ...

available throughout the hiring process. This is an opportunity to play a key role in protecting critical customer environments, leading complex investigations, driving proactive threat hunting activities, and helping shape the future of our security monitoring services. Were looking for someone who enjoys solving difficult security challenges, mentoring others … across high-security customer environments Act as a senior escalation point for Tier 1 and Tier 2 analysts during active security events Drive proactive threat hunting campaigns to identify emerging threats, vulnerabilities, and anomalous behaviour Develop and improve detection logic, alerting, and monitoring content within SIEM platforms including Elastic ...

monitoring, analysing and responding to security threats, while driving continuous improvement across our security operations capability. Youll play a key role in incident response, threat intelligence, vulnerability management and ensuring effective use of our security tools and processes to reduce risk across the technology estate. Key responsibilities Monitor … activities, validating effectiveness through vulnerability scanning Oversee and operate key security technologies, including SIEM, email and web gateways, and endpoint protection tools Monitor external threat intelligence sources and assess relevance to the organisation Produce and report on security metrics, KPIs and operational performance Technical expertise Good understanding ...

well-established cyber security capability supporting mission-critical environments. Cyber security is central to the organisation's strategy, with ongoing investment in tooling, threat intelligence, and specialist talent. The security function operates at a mature level, combining Security Operations, threat detection, incident response, and continuous improvement practices … SIEM and security tooling. This role combines hands-on SIEM analysis, alert triage, investigation, and detection improvement, alongside exposure to incident response and proactive threat detection activities. You will work across multiple data sources to identify suspicious behaviour, analyse events, and support the organisation's cyber defence posture through ...

PROTECT, DETECT, and RESPOND toolsets, including SIEM, SOAR, and vulnerability scanning tools. Support the development, configuration, and automation of security tooling to enhance threat detection and incident response. Conduct forensic analysis, malware reverse engineering, and develop IOCs and detection signatures. Manage and integrate logs from various sources, ensuring full … visibility and compliance. Analyse attacker TTPs and manage threat intelligence, including incident assessment and reporting. Collaborate with stakeholders to ensure operational effectiveness and continuous process improvement. Maintain knowledge of current cyber threats and emerging trends. What you'll bring: Proven hands-on experience with SIEM and SOAR platforms ...

ensure that security good practise is fully embedded into change initiatives, and security by design principles are applied. * Co-ordinate and undertake regular threat hunting, analysing logs and event data across the firms' systems, and procuring threat intelligence to inform the hunts. Key Skills: * Strong understanding … network and end point security, incident response, threat intelligence, and vulnerability management. * Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS. * Strong knowledge of Microsoft Azure cloud security technologies and concepts. * Familiar with cybersecurity frameworks such as NIST CSF, ISO27001 ...

Head of Marketing – Cyber Threat Intelligence & Managed Detection & Response Location: UK (Hybrid). Sector: Cybersecurity Consultancy. Reporting to: Senior Leadership. Package: c£90-100,000 Basic + Benefits. The Opportunity This is a rare, genuinely greenfield opportunity to build a marketing function from the ground … most credible and operationally grounded cybersecurity consultancies. Founded in 2019 and built on a foundation of military intelligence, law enforcement and national security expertise, this business has earned a reputation as a trusted, differentiated operator in a crowded market. Following a significant investment from a leading UK private equity ...

holistic view of the organisation's security posture. Present findings and recommendations to senior leadership and governance forums. Collaborate with internal teams (e.g., threat intelligence, compliance, audit) to ensure assurance activities reflect current threat landscapes. Act as a primary interface for business units, ensuring alignment between assurance … technical and business information to assess risk. Experience in supply chain security assurance. Knowledge of secure by design principles and accreditation processes. Understanding of threat intelligence and its application in assurance. Experience working in regulated or high-assurance environments (e.g., government, finance, defence). Familiarity with risk management ...

client engagements; present findings and recommendations to senior stakeholders. Participate in alert testing, readiness exercises, and incident response tabletop sessions. Stay current on emerging threat intelligence, attacker techniques, and relevant research. Required Experience 2+ years experience as a Cyber Security Operations Analyst Experience working with Splunk Familiarity with … threat intelligence frameworks and methodologies End-to-end incident response lifecycle experience Detection engineering and alert development expertise. Strong scripting or programming skills (Python, Bash, C/C++, Java). Solid grounding in cybersecurity fundamentals: network security, cloud security, cryptography, forensics. Understanding of common network protocols and attacker ...

client engagements; present findings and recommendations to senior stakeholders. Participate in alert testing, readiness exercises, and incident response tabletop sessions. Stay current on emerging threat intelligence, attacker techniques, and relevant research. Required Experience 2+ years experience as a Cyber Security Operations Analyst Experience working with Splunk Familiarity with … threat intelligence frameworks and methodologies End-to-end incident response lifecycle experience Detection engineering and alert development expertise. Strong scripting or programming skills (Python, Bash, C/C++, Java). Solid grounding in cybersecurity fundamentals: network security, cloud security, cryptography, forensics. Understanding of common network protocols and attacker ...

client engagements; present findings and recommendations to senior stakeholders. Participate in alert testing, readiness exercises, and incident response tabletop sessions. Stay current on emerging threat intelligence, attacker techniques, and relevant research. Required Experience 2+ years experience as a Cyber Security Operations Analyst or equivalent Experience working with Splunk … Familiarity with threat intelligence frameworks and methodologies End-to-end incident response lifecycle experience Detection engineering and alert development expertise. Strong scripting or programming skills (Python, Bash, C/C++, Java). Solid grounding in cybersecurity fundamentals: network security, cloud security, cryptography, forensics. Understanding of common network protocols ...