21 of 21 Threat Intelligence Jobs in the North of England

CSOU & SIO) Cyber Delivery Unit (CDU) Cyber Improvement Programme Chief Information Security Office Function (CISO) The role sits within the NHS England National CSOC Threat Intelligence team, comprised of four primary functions: Intelligence Collection & Analysis - Perform collection, aggregation, analysis and contextualisation of healthcare and security information … produce actionable CTI. Cybersecurity Threat & Risk Assessment - Perform high-level risk assessments of current and emerging threats to the health & social care estate. Intelligence Dissemination & Reporting - Produce stakeholder-specific intelligence reporting for stakeholders. Specialist CTI Support - Provides specialist CTI support to CSOC during high complexity incidents Main ...

drive effective remediation activity. Accountabilities Allocation of the correct risk rating and remediation prioritisation to a vulnerability based on industry standards for assessment, available threat intelligence concerning exploitation, the reachability of the host (or asset) and the value of the service(s) running on the impacted host. Development … stakeholders, vendors, external security partners and affect business units using reports and dashboards and provide recommendations for improvement in vulnerability management practices. Collaboration with Threat intelligence and Cyber Operations teams to assess and contextualise exposure to latest threat trends and exploits and set appropriate remediation timescales. Definition ...

system to be cyber resilient, supporting Transformation Directorate's purpose of delivering the best care and outcomes for the NHS. The Senior Security Analyst - Threat Hunting will proactively and iteratively search and analyse for specific TTPs, IOCs or evidence in the NHS England infrastructure in order to detect … traditional rule or signature-based security controls or even by use cases or for suspicious scenarios notified by qualified sources (e.g. CERT, Security Threat Monitoring, Threat Intelligence, etc.). This role is within the Cyber Security - Threat Hunting team which is one of three core pillars ...

monitoring, analysing and responding to security threats, while driving continuous improvement across our security operations capability. Youll play a key role in incident response, threat intelligence, vulnerability management and ensuring effective use of our security tools and processes to reduce risk across the technology estate. Key responsibilities Monitor … activities, validating effectiveness through vulnerability scanning Oversee and operate key security technologies, including SIEM, email and web gateways, and endpoint protection tools Monitor external threat intelligence sources and assess relevance to the organisation Produce and report on security metrics, KPIs and operational performance Technical expertise Good understanding ...

client engagements; present findings and recommendations to senior stakeholders. Participate in alert testing, readiness exercises, and incident response tabletop sessions. Stay current on emerging threat intelligence, attacker techniques, and relevant research. Required Experience 2+ years experience as a Cyber Security Operations Analyst or equivalent Experience working with Splunk … Familiarity with threat intelligence frameworks and methodologies End-to-end incident response lifecycle experience Detection engineering and alert development expertise. Strong scripting or programming skills (Python, Bash, C/C++, Java). Solid grounding in cybersecurity fundamentals: network security, cloud security, cryptography, forensics. Understanding of common network protocols ...

client engagements; present findings and recommendations to senior stakeholders. Participate in alert testing, readiness exercises, and incident response tabletop sessions. Stay current on emerging threat intelligence, attacker techniques, and relevant research. Required Experience 2+ years experience as a Cyber Security Operations Analyst or equivalent Experience working with Splunk … Familiarity with threat intelligence frameworks and methodologies End-to-end incident response lifecycle experience Detection engineering and alert development expertise. Strong scripting or programming skills (Python, Bash, C/C++, Java). Solid grounding in cybersecurity fundamentals: network security, cloud security, cryptography, forensics. Understanding of common network protocols ...

engineering teams to identify automation opportunities. Documentation – Produce clear documentation to support delivery, troubleshooting, and continuous improvement. Automation Planning – Contribute to automation roadmaps, threat modelling, and use case development. Pre-Sales Support – Assist with demos, scoping, and proof-of-value activities where required. Core Duties Automation Design & Development Build … Develop reusable scripts, templates, and components Ensure solutions support secure, multi-tenant environments Integration & Response Automation Orchestrate containment, enrichment, and remediation actions Integrate with threat intelligence, cloud, vulnerability, and reporting tools Partner with analysts to map and automate response processes Lifecycle Management & Optimisation Manage automation from design through ...

communication) for confirmed security incidents, following established escalation procedures Ensuring that all incidents are promptly escalated to senior leadership or external partners, as appropriate Threat Analysis & Intelligence Integration: Analyse malicious activities to determine root cause and attack vectors by mapping observed attacker actions to the MITRE … framework Monitor threat intelligence feeds for information on new vulnerabilities, malware campaigns, or attack techniques that could impact the council Evaluate this intelligence and adjust monitoring priorities or techniques accordingly Detection Improvement: In collaboration with the Information Security Technical Lead, contribute to the development and refinement ...

fully-funded Cyber Security course (NCFE Certificate in Cyber Security Practices, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you ll gain hands-on experience that prepares you for today s fast … Duration: 10 weeks Format: Online, pratical workshops Schedule: Mon-Thur 6PM-9PM What you ll learn Principles: Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond ...

fully-funded Cyber Security course (NCFE Certificate in Cyber Security Practices, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast … Duration: 10 weeks Format: Online, pratical workshops Schedule: Mon-Thur 6PM-9PM What you’ll learn Principles: Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond ...

funded Cyber Security course (NCFE Certificate in Principles of Cyber Security, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast … weeks Format: Online, practical workshops Schedule: Mon-Fri 09:45AM-2:45PM What you’ll learn Principles: Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond ...

funded Cyber Security course (NCFE Certificate in Principles of Cyber Security, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you ll gain hands-on experience that prepares you for today s fast … weeks Format: Online, practical workshops Schedule: Mon-Fri 09:45AM-2:45PM What you ll learn Principles: Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond ...

funded Cyber Security course (NCFE Certificate in Principles of Cyber Security, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast … weeks Format: Online, practical workshops Schedule: Mon-Fri 09:45AM-2:45PM What you’ll learn Principles: Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond ...

funded Cyber Security course (NCFE Certificate in Principles of Cyber Security, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast … weeks Format: Online, practical workshops Schedule: Mon-Fri 09:45AM-2:45PM What you’ll learn Principles: Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond ...

ensure IT Security risks are clearly identified, recorded, managed and directly communicated to Digital Senior Management Team accordingly. Maintain high level knowledge of new threat vectors, tactics, techniques and procedures (TTPs) and vulnerabilities. Maintain compliance with various standards in place e.g., Data Security and Protection Toolkit, NHS Cyber Alerts … other relevant bodies as required ensuring IT Security advisories, directives and notifications are actioned and logged. This includes but is not limited to threat & vulnerability alerts, vendor and other specialist threat intelligence feeds. Provide specialist technical contribution into drafting and/or maintaining of the Trusts formal ...

cyber security subject matter expert, advising senior leaders and technical teams on complex risks, threats and mitigations. o Oversee security operations, incident response and threat intelligence, ensuring strong protection and rapid response to cyber incidents. o Manage organisational risk and vulnerability management, including compliance with Cyber Essentials Plus … senior cyber security role with direct line management, performance management, and coaching responsibilities. Experience Essential Significant practical experience in security operations, vulnerability assessment and threat intelligence. Exprience Desirable Experience working in the Health Sector/NHS Skills/Knowledge Essential Expert-level understanding of core cyber security concepts, infrastructure ...

security, and identity management. Proven experience implementing ISO27001, GDPR, NHS digital standards, and national cyber frameworks. Expertise in managing major incidents, forensic investigations, and threat intelligence. Strong understanding of ITIL v4 principles and ability to integrate security into service delivery. Skilled in presenting complex security strategies to senior leadership ...

security, and identity management. Proven experience implementing ISO27001, GDPR, NHS digital standards, and national cyber frameworks. Expertise in managing major incidents, forensic investigations, and threat intelligence. Strong understanding of ITIL v4 principles and ability to integrate security into service delivery. Skilled in presenting complex security strategies to senior leadership ...

security, and identity management. Proven experience implementing ISO27001, GDPR, NHS digital standards, and national cyber frameworks. Expertise in managing major incidents, forensic investigations, and threat intelligence. Strong understanding of ITIL v4 principles and ability to integrate security into service delivery. Skilled in presenting complex security strategies to senior leadership ...

Infrastructure & Operations Lead the integration of AI and ML across networking and operational domains including: AIOps Predictive analytics Autonomous remediation AI-driven anomaly detection Threat intelligence Capacity forecasting Configuration intelligence Architect infrastructure capable of supporting large-scale AI training and inference workloads. Advance observability strategies using streaming ...

sprint planning, triage, and retrospectives. Calibrate work across BAU vulnerability management, strategic projects, and longer‐term capability building. Drive secure SDLC integration: ensure threat modelling, design reviews, and security tooling are embedded into how engineering teams build—not bolted on after the fact. Prioritise based on real risk: translate … scanner output, pen‐test findings, and threat intelligence into prioritised remediation plans that engineering teams actually execute. Scale security through automation and self‐service: invest in tooling, guardrails, and developer‐facing documentation that reduce friction and increase coverage without linear headcount growth. Partner with engineering and platform leadership ...