1 to 25 of 30 Threat Intelligence Jobs in the South East

Primary Details Time Type: Full time Worker Type: Employee Threat Intelligence Specialist London Permanent (Hybrid) At QBE, our purpose is to enable a more resilient future. We are an international insurer and reinsurer with a local presence in 27 countries. The Opportunity We’re excited to be hiring … Threat Intelligence Specialist to join our Advanced Threat Services (ATS) Teamon a full-time, permanent basis! You’ll be part of a supportive team that thrives on teamwork and innovation, where your expertise will be valued as we work together to tackle the ever-evolving cyber threat ...

department Covers Cybersecurity, Information Security, IT Audit, IT Risks, IT Controls,Access Management, Security Operation, Threat Management and the portfolio for Change for all these areas.This is a rolling fixed term contract, initially 6 months. Mandatory 5 days on site. You will play a key role in overseeing … threat intelligence activities while ensuring alignment withour global cybersecurity strategy. Develop and maintaindetailed activity plans, timelines, budgets, and resource allocations. Manage ThreatIntelligence Centre accounting, financial operations, and budget forecasts toensure cost optimisation and alignment with strategic objectives. Facilitatecommunication and coordination with global stakeholders across multiple regionsto ensure alignment ...

Defence (ICSD) function. This role is pivotal in designing and implementing next-generation cloud security architectures, securing WTW cloud environments, and driving automation and intelligence within Cybe r Defence Security Platforms & SOC Engineering. This is a hybrid role at London office with a requirement to be in the office … business need. The Role: Agentic AI for Security & Sentinel Advanced Capabilities Lead the adoption and integration of Agentic AI for Security to enable autonomous threat detection, adaptive response, and continuous security posture improvement. Architect and optimise Microsoft Sentinel for SIEM, UEBA, and threat intelligence integration, leveraging Microsoft ...

will include: Triaging security incidents SIEM monitoring for incident investigations/for the development of monitoring dashboards. Use of playbooks, on-line resources and threat intelligence to enhance attack detection Creation of new\ updating existing playbooks Keep up to date with current vulnerabilities and attack techniques Threat intelligence - proving Threat Intelligence services/information to the wider security team Key skills needed: 5 years of experience in a Senior Security Operations role role, with a focus on incident response and reporting within the financial services sector. Proficiency in using SIEM tools, specifically Splunk ...

Adword Job Title: SOC Threat hunting Analyst Location: Remote Duration: 04 months contract Active SC Clearance required Experience and knowledge Key Responsibilities: Threat Detection Use Case Development: Design and implement detection logic aligned to specific threat scenarios, using industry frameworks such as MITRE ATT&CK. Maintain detection … testing to deployment and tuning. Work with client Lead Analysts to ensure content relevance and effectiveness in detecting threats across various environments. Proactive Threat Hunting: Conduct hypothesis-driven threat hunts based on client telemetry, threat intelligence, and observed anomalies. Use available data sources and tools ...

team members have every opportunity to grow and learn with the organisation. As part of our Blue Team, you’ll use the latest intelligence and tooling to analyse information systems to ensure effective incident detection and response. Job Description If you are looking to make your mark … ideal candidate will be a self-starter with an inquisitive nature and a keen interest when it comes to technical cybersecurity topics such as threat hunting, attacker tactics and techniques, monitoring and alerting, threat intelligence, and incident readiness and response. Key responsibilities of the role are summarised ...

organisation's Adversarial Exposure Validation (AEV)- including Red and Purple Team activities The role ensures detection, response, and control validation against real-world threat actor tactics, techniques, and procedures (TTPs). Salary : £50,000 - £60,000 depending on experience Dynamic (hybrid) working : Minimum 2 days per week on-site … organisation's Adversarial Exposure Validation (AEV)- including Red and Purple Team activities. The role ensures detection, response, and control validation against real-world threat actor tactics, techniques, and procedures (TTPs). This is a Next step role for an experienced Analyst with a passion for Incident response and Threat ...

team of full-time employees, contractors, and managed services, ensuring clear roles, accountability, and alignment. Oversee key security technologies, including SIEM, SOAR, EDR, and threat-intelligence platforms Align operations with Astellas’ enterprise security framework, NIST CSF, ISO 27001, and internal risk management policies. Essential Knowledge & Experience Previous work … roles overseeing global security operations. Proven experience managing mixed teams of employees, contractors, and managed service providers Deep expertise with SIEM, SOAR, EDR, and threat-intelligence tools Strong familiarity with frameworks such as NIST CSF, MITRE ATT&CK, and incident response methodologies Excellent communication, influencing, and cross-functional ...

hours work. Key Responsibilities: Handle escalations from Level 1 analysts and validate complex alerts. Conduct in-depth analysis using SIEM, EDR, XDR and threat intelligence sources to establish root cause, scope and impact. Lead containment and remediation actions in coordination with senior engineers and incident response leads. Develop … tooling. Provide customers with clear incident summaries, technical explanations and remediation guidance. Identify emerging threats and document relevant tactics, techniques, and procedures. Support structured threat hunting activities and contribute to improving detection coverage. Maintain accurate and comprehensive investigation records within the SOC ticketing platform. Mentor junior analysts, helping improve ...

functional teams to develop comprehensive assessment reports – including detailed findings, risk assessments, and remediation recommendations – making data-driven decisions that encourage continuous improvement Utilize threat intelligence and security research to stay informed about emerging threats, vulnerabilities, industry best practices, and regulations. Apply this knowledge to enhance the firm … assessment strategy and risk management. Engage with peers and industry groups that share threat intelligence analytics Required Qualifications, Capabilities, And Skills 3+ years of experience in delivering covert red teaming, purple teaming, or network exploitation operations using industry-standard tools (e.g., Cobalt Strike or other C2 frameworks), with ...

Responder - IR, Cyber, Salary: Competitive, based on experience + benefitsLocation: London/Hybrid (some travel European travel) About the Organisation This forward-thinking cybersecurity intelligence organisation is recognised as a European leader, partnering with some of the most prominent brands to anticipate, prevent, and respond to emerging threats. … Incident Responder, DFIR, Digital Forensics, SOC Analyst, Lead Incident Responder, Cybersecurity Analyst, SIEM, Microsoft Sentinel, Microsoft Defender, EDR, Azure Security, AWS Security, GCP Security, Threat Hunting, Cyber Threat Intelligence, MITRE ATT&CK, Red Team, Purple Team, Malware Analysis, Cyber Forensics, Security Operations, Security Engineer, On-Call ...

access events. Monitor, analyse, and respond to alerts from client security platforms (MDR/XDR, SentinelOne, Huntress, Fortinet, Mimecast, Avanan, Defender) to ensure rapid threat mitigation. Conduct vulnerability assessments, risk analyses and security audits across client environments, providing actionable recommendations and remediation guidance. Implement and maintain security hardening across … alignment with best practices and frameworks such as ISO27001, NIST, and Cyber Essentials Plus. Lead and coordinate incident response efforts, including root cause analysis, threat containment and post-incident reporting for clients. Collaborate with the Project and Service Desk teams to embed security into deployments, migrations, upgrades, and automation ...

Location(s): UK, Europe & Africa : UK : Frimley || UK, Europe & Africa : UK : London || UK, Europe & Africa : UK : Manchester BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation … week every 2 months and occasional travel to the offce – Frimley, Guildford, Manchester, Gloucester, London Grade: GG10 Referral Bonus: £5,000 BAE Systems Digital Intelligence offers world class Incident Response services to customers across the globe. Our team investigates some of the most complex nation state threat actors ...

rules to reduce false positives and enhance detection fidelity. Monitor, analyse, and investigate security alerts to identify potential threats and malicious activity. Conduct threat hunting activities to proactively discover hidden or advanced threats. Collaborate with Incident Response teams to provide detection insights and support investigations. Maintain and improve detection … coverage based on emerging threats, adversary tactics (MITRE ATT&CK), and threat intelligence. Develop automation scripts and playbooks to streamline detection and alert triage processes. Document detection processes, use cases, and provide knowledge transfer to SOC analysts. Qualifications: Relevant qualification(s) in Cyber Security, or other related technical roles ...

site** Key Responsibilities SIEM Management & Optimization: Design, implement, and maintain Microsoft Sentinel workspaces, connectors, analytics rules, and playbooks Develop advanced KQL queries for threat hunting and reporting Optimize SIEM performance, cost, and data retention policies Troubleshoot log ingestion and parsing issues Log Source Integration: Onboard and configure critical … sources (AD, firewalls, servers, cloud infrastructure) Manage event collection and forwarding infrastructure Implement data filtering and custom log parsing Threat Detection & Use Case Development: Develop and refine detection rules based on threat intelligence and attack patterns Continuously improve detection efficacy and reduce false positives Security Monitoring & Incident ...

enjoys uncovering the story behind complex data. This is an opportunity to join a pioneering start-up transforming raw security data into actionable intelligence, helping shape the future of threat detection across global networks. This role sits within their Security Research function and is ideal for someone with … your career. About the Role You'll support the wider security research team by 'farming' the data they generate - turning raw network and threat information into structured, meaningful insights that feed directly into ongoing research projects such as proxy detection, bot activity and, over time, AI-driven threat ...

driven team that responds to some of the most complex and high-impact cybersecurity incidents in the world. You’ll work alongside experts in threat hunting, reverse engineering, infrastructurecontainment and recovery, helping to shape the future of Microsoft’s incident response capabilities. Join a world-class security team dedicated … travel to deliver onsite with customers may be required. Responsibilities Lead Proactive Security Initiatives - Develop and launch advanced resilience programs, readiness assessments, and threat modeling engagements. - Drive continuous improvement and measurable risk reduction. - Elevate Incident Response Readiness - Deliver tabletop exercises, cyber range simulations, and playbook development to prepare customers ...

heartbeat of what we do. We’re the people on the front line, keeping our customers secure and connected. Whether it’s spotting a threat, fixing an issue, or finding a smarter way of doing things, we’re united by one goal: delivering an exceptional customer experience with speed … loop and building trust during incidents. Spot opportunities to make things faster, smarter, and better through AI and Automation. Always growing: Dive into threat intelligence, security tools, and triage techniques, sharpening your skills every day. Get it done: Work with engineers and senior analysts to protect customers ...

team members have every opportunity to grow and learn with the organisation. As part of our Blue Team, you’ll use the latest intelligence and tooling to analyse information systems to ensure effective incident detection and response. Job Description If you are looking to make your mark … ideal candidate will be a self-starter with an inquisitive nature, keen attention to detail, and a strong background in cybersecurity topics such as threat hunting, attacker tactics and techniques, monitoring and alerting, threat intelligence, and incident readiness and response. ...

focus on Azure cloud platforms, while ensuring robust security practices are embedded throughout Main Responsibilities: Support the day-to-day operations of the Counter Threat Unit, ensuring security controls are effectively implemented across infrastructure and cloud environments. Configure, maintain, and optimise security tools and solutions (e.g., SIEM … protect enterprise systems. Monitor systems and networks for anomalies, gather and analyse threat intelligence, and contribute to situational awareness. Skills and experience: Minimum 4 years’ experience within IT Infrastructure Engineering similar roles. Strong knowledge of cloud environments, particularly Azure, and experience managing solutions and tooling within these platforms. ...

Deliver end-to-end security testing engagements, from scoping to client wash-up meetings. Perform application, web, mobile, and infrastructure testing, including intelligence-led and objective-based assessments. Produce clear, detailed reports and presentations for technical and non-technical stakeholders. Develop tools, scripts, and techniques to enhance testing capabilities. … Collaborate with adjacent teams such as Threat Intelligence and Incident Response. What We're Looking For: Proven experience in security testing projects and familiarity with industry tools and techniques. Strong technical skills and interest in areas like adversary emulation, vulnerability discovery, or reverse engineering. Current CHECK Team Leader ...

leading leaders — not just individual contributors. Proven success scaling high-throughput distributed systems in production. Strong background in early-stage B2B SaaS (ideally cybersecurity, threat intelligence, or offensive security tools). Deep technical expertise across: Cloud: AWS, Azure IaC: Terraform, Ansible Platforms: Kubernetes (EKS), ECS, Docker, Lambda, Airflow ...

What You Will Do as a Pen Tester: Lead end-to-end security testing projects including scoping, execution, and reporting Conduct application, infrastructure, and intelligence-led tests to identify vulnerabilities Produce clear technical and non-technical reports for diverse stakeholders Ensure safe use of testing tools and develop improvements … scripts and techniques Collaborate with Threat Intelligence, Incident Response, and broader security teams to share knowledge What We Look For in a good Pen Tester: Proven experience in delivering security testing projects and understanding client risk mitigation needs Technical skills in adversary emulation, vulnerability discovery, and reverse engineering ...

surface, vendor ecosystem, workforce, and trust relationships. Our integrated cyber risk posture management platform combines comprehensive security ratings, instant risk assessments, templated security questionnaires, threat intelligence capabilities, and agentic AI to give organizations a holistic view of their risk surface. At UpGuard, our Sales team has not only … check and reference checks. Also please note that at this time, we cannot support candidates requiring visa sponsorship or relocation. We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team ...

content creation agency is building a superb reputation for partnering B2B tech brands and disruptive innovators. It tackles really topical issues such as threat intelligence across the dark web, sustainability, fintech, AI and cyber security. Led by experienced industry professionals with proven track records growing top ranked … professional services and fintech clients on integrated communications campaigns targeting b2b, business and national press. Projects include: News-jacking current affairs - using data and intelligence spanning the dark web to position spokespeople on global affairs and risks. Proactive media relations led work spanning national, business and trade press. Content ...