16 of 16 Threat Intelligence Jobs in the South West

Cyber Threat Intelligence Specialist Permanent Location: London, Selby, Northampton, Glasgow or Ipswich About the role: Were looking for a Cyber Threat Intelligence Specialist to join our Cyber Security function in a pivotal role as we continue to advance Drax cyber resilience. As a Cyber Threat Intelligence Analyst, youll produce high quality cyber threat intelligence that identifies, analyses and communicates threats, vulnerabilities and emerging trends to Draxs IT, OT and cloud environments. Youll support vulnerability management by assessing exploitability, impact and likelihood, and advising on prioritisation. Youll also develop and maintain threat ...

Cyber Threat Intelligence Specialist A variety of soft skills and experience may be required for the following role Please ensure you check the overview below carefully. Permanent Location: London, Selby, Northampton, Glasgow or Ipswich About the role: We're looking for a Cyber Threat Intelligence Specialist … join our Cyber Security function in a pivotal role as we continue to advance Drax' cyber resilience. As a Cyber Threat Intelligence Analyst, you'll produce high quality cyber threat intelligence that identifies, analyses and communicates threats, vulnerabilities and emerging trends to Drax ...

Lead 6 months Bath - hybrid x3 days onsite x2 remote Active SC/DV clearance required £700 per day outside IR35 The SOC Lead - Threat Hunting & Investigations is responsible for leading advanced threat detection, proactive threat hunting, and complex security investigations across the enterprise. This role focuses … elevating the maturity of SOC investigative and hunting capabilities. The role combines technical leadership, hands-on expertise, and mentorship of analysts. Key Responsibilities Threat Hunting Lead proactive, hypothesis-driven threat hunting activities across endpoint, network, cloud, identity, and SaaS environments Develop and maintain threat hunting playbooks aligned ...

Lead 6 months Bath - hybrid x3 days onsite x2 remote Active SC/DV clearance required £700 per day outside IR35 The SOC Lead - Threat Hunting & Investigations is responsible for leading advanced threat detection, proactive threat hunting, and complex security investigations across the enterprise. This role focuses … elevating the maturity of SOC investigative and hunting capabilities. The role combines technical leadership, hands-on expertise, and mentorship of analysts. Key Responsibilities Threat Hunting Lead proactive, hypothesis-driven threat hunting activities across endpoint, network, cloud, identity, and SaaS environments Develop and maintain threat hunting playbooks aligned ...

develop a security operations capability within a fast-paced environment. This role is key to maintaining strong cyber resilience through effective incident response, threat detection, and continuous service improvement. Key Responsibilities Team Leadership: Lead and manage a cyber security operations team, ensuring strong communication, decision-making and service delivery. … incident response, ensuring processes are maintained and critical incidents are effectively managed. Security Monitoring: Deliver and improve security monitoring, including SIEM management, threat hunting, and intrusion detection. Threat Intelligence: Collect and analyse OSINT and commercial threat intelligence, providing actionable insight to stakeholders. Cyber Operations: Manage ...

develop a security operations capability within a fast-paced environment. This role is key to maintaining strong cyber resilience through effective incident response, threat detection, and continuous service improvement. Key Responsibilities Team Leadership: Lead and manage a cyber security operations team, ensuring strong communication, decision-making and service delivery. … incident response, ensuring processes are maintained and critical incidents are effectively managed. Security Monitoring: Deliver and improve security monitoring, including SIEM management, threat hunting, and intrusion detection. Threat Intelligence: Collect and analyse OSINT and commercial threat intelligence, providing actionable insight to stakeholders. Cyber Operations: Manage ...

develop a security operations capability within a fast-paced environment. This role is key to maintaining strong cyber resilience through effective incident response, threat detection, and continuous service improvement. Key Responsibilities Team Leadership: Lead and manage a cyber security operations team, ensuring strong communication, decision-making and service delivery. … incident response, ensuring processes are maintained and critical incidents are effectively managed. Security Monitoring: Deliver and improve security monitoring, including SIEM management, threat hunting, and intrusion detection. Threat Intelligence: Collect and analyse OSINT and commercial threat intelligence, providing actionable insight to stakeholders. Cyber Operations: Manage ...

develop a security operations capability within a fast-paced environment. This role is key to maintaining strong cyber resilience through effective incident response, threat detection, and continuous service improvement. Key Responsibilities Team Leadership: Lead and manage a cyber security operations team, ensuring strong communication, decision-making and service delivery. … incident response, ensuring processes are maintained and critical incidents are effectively managed. Security Monitoring: Deliver and improve security monitoring, including SIEM management, threat hunting, and intrusion detection. Threat Intelligence: Collect and analyse OSINT and commercial threat intelligence, providing actionable insight to stakeholders. Cyber Operations: Manage ...

develop a security operations capability within a fast-paced environment. This role is key to maintaining strong cyber resilience through effective incident response, threat detection, and continuous service improvement. Key Responsibilities Team Leadership: Lead and manage a cyber security operations team, ensuring strong communication, decision-making and service delivery. … incident response, ensuring processes are maintained and critical incidents are effectively managed. Security Monitoring: Deliver and improve security monitoring, including SIEM management, threat hunting, and intrusion detection. Threat Intelligence: Collect and analyse OSINT and commercial threat intelligence, providing actionable insight to stakeholders. Cyber Operations: Manage ...

develop a security operations capability within a fast-paced environment. This role is key to maintaining strong cyber resilience through effective incident response, threat detection, and continuous service improvement. Key Responsibilities Team Leadership: Lead and manage a cyber security operations team, ensuring strong communication, decision-making and service delivery. … incident response, ensuring processes are maintained and critical incidents are effectively managed. Security Monitoring: Deliver and improve security monitoring, including SIEM management, threat hunting, and intrusion detection. Threat Intelligence: Collect and analyse OSINT and commercial threat intelligence, providing actionable insight to stakeholders. Cyber Operations: Manage ...

continuously improve the cyber incident response plan, ensuring readiness across the organisation Provide strategic cyber security advice to senior leadership on monitoring, logging, and threat response Establish a use-case driven monitoring and alerting capability to improve threat detection and response times Oversee threat intelligence, vulnerability … capability Core Experience Required Proven experience leading a Security Operations Centre (SOC/CSOC) or cyber security operations function Strong background in incident response, threat detection, and cyber resilience Hands-on experience with SIEM, IDS/IPS, endpoint security, and monitoring tools Solid understanding of threat intelligence ...

security posture through continuous monitoring Security Operations Perform daily alert reviews across SIEM and security tooling Contribute to runbooks, playbooks, and operational documentation Support threat intelligence analysis and apply findings to detection and response activities Work closely with Engineering, DevOps, and IT teams to drive remediation Essential Requirements … Understanding of cloud security concepts (Azure, AWS, or GCP) Ability to assess alert context, prioritise effectively, and follow structured processes Desirable Skills Experience with threat hunting and threat intelligence Knowledge of MITRE ATT&CK or Cyber Kill Chain frameworks Exposure to SaaS and cloud-native security tooling ...

client engagements; present findings and recommendations to senior stakeholders. Participate in alert testing, readiness exercises, and incident response tabletop sessions. Stay current on emerging threat intelligence, attacker techniques, and relevant research. Required Experience 5+ years experience as a Cyber Security Operations Analyst Familiarity with threat intelligence ...

SIEM and IDS rules to reduce false positives and maintain good security alerting Create reporting for management and clients on security incidents and threat intelligence trends What you’ll bring Ability to excellently communicate at all levels - working with customers is a must, so we need … sound knowledge of IT security best practice, common attack types & detection/prevention methods Have an understanding of Incident Response, Cyber Kill Chain, Threat Modelling and pertinent Attack Vectors Have a collaborative working ethos in order to work across the team to create pertinent Playbooks, Use Cases ,etc Demonstrate ...

including Wiz, Zscaler, and CrowdStrike Security Operations Perform daily alert reviews across SIEM and security tooling Contribute to runbooks, playbooks, and operational documentation Support threat intelligence analysis and apply findings to detection and response activities Work closely with Engineering, DevOps, and IT teams to drive remediation Essential Requirements ...

Global are recruiting a Cyber Security Operations Manager to lead SOC delivery in a critical UK government agency. Drive threat detection, response, resilience, and strategy for national infrastructure. Type of Contract: Contract (Inside IR35) Location: Hybrid (Exeter HQ) Key Duties Will Include: Design/lead CSOC for real-time … CK. Manage team (8+), budgets, vendors; report metrics/trends to seniors. Requirements: Proven SOC operations leadership (monitoring tools, AV, IDS/IPS, threat intel). Incident management, vulnerability scanning/remediation. Knowledge: GDPR/NIS/NCSC, ITIL, Mitre ATT&CK. Desirable: CISSP/CISM, cloud security. ...