51 to 75 of 110 Threat Intelligence Jobs

patch evidence, metrics and control narratives. Identify and implement automation and continuous improvement opportunities across vulnerability and patch management workflows. Collaborate with Incident Response, Threat Intelligence and Corporate Security teams to respond to actively exploited vulnerabilities and emerging threat trends. Experience Strong working knowledge of Ivanti Neurons ...

operational security function responsible for protecting the organisation's information assets, technology services, and users. This role oversees all security operation functions, incident response, threat detection, vulnerability management, and continuous improvement of the organisation's security posture. Working closely with Infrastructure, Cloud, Architecture, Governance, Compliance and Risk teams … relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection, triage, containment, eradication ...

intersection of cybersecurity and AI, addressing emerging threats while enabling secure and scalable AI delivery. This role covers the full AI security lifecycle, including threat modeling, prompt injection defenses, securing model supply chains, hardening RAG pipelines, and building scalable security tooling. You will act as the subject matter expert … Implement content safety (filtering, toxicity detection); Enforce authentication, authorization, and rate limiting for AI APIs; Secure model serving (logging, audit trails, anomaly detection; Conduct threat modeling (STRIDE, MITRE ATLAS, OWASP LLM Top 10); Lead red teaming (adversarial prompts, robustness testing, data exfiltration); Track AI threat intelligence (attacks ...

change control procedures Experience designing or reviewing secure software supply chain and CI/CD security . Ability to interpret CVEs, CVSS scores, and threat intelligence feeds. Strong stakeholder engagement and communication skills with an ability to produce technical reports and articulate risk to non-specialists. Excellent written … technical security reports for assurance cycles Support compliance audit evidence packs (GovAssure/CAF, CE+, ISO 27001) Develop or update security standard documents (e.g. threat modelling, vulnerability mgmt) Support cyber input for IT, research or OT programmes Work with IT teams to co-author and test secure configuration standards ...

party security testing, including penetration testing and phishing simulations Promote a strong cyber‐security culture through training and awareness initiatives Monitor and report on threat intelligence trends and emerging risks About You You will be a strategic and influential cyber security leader with a strong track record ...

performing Security Operations Centre (SOC) environment. This role is focused on designing, developing, and optimising detection content to strengthen cyber defence capabilities and improve threat visibility across enterprise environments. You will play a critical role in enhancing detection efficacy, reducing false positives, and ensuring robust coverage against evolving threat landscapes. Key Responsibilities Design and implement detection use cases across SIEM and SOAR platforms using threat intelligence and incident data Develop, map, and maintain detection logic aligned to MITRE ATT&CK frameworks Continuously tune and optimise correlation rules to improve signal-to-noise ratio Validate detection logic ...

performing Security Operations Centre (SOC) environment. This role is focused on designing, developing, and optimising detection content to strengthen cyber defence capabilities and improve threat visibility across enterprise environments. You will play a critical role in enhancing detection efficacy, reducing false positives, and ensuring robust coverage against evolving threat landscapes. Key Responsibilities Design and implement detection use cases across SIEM and SOAR platforms using threat intelligence and incident data Develop, map, and maintain detection logic aligned to MITRE ATT&CK frameworks Continuously tune and optimise correlation rules to improve signal-to-noise ratio Validate detection logic ...

performing Security Operations Centre (SOC) environment. This role is focused on designing, developing, and optimising detection content to strengthen cyber defence capabilities and improve threat visibility across enterprise environments. You will play a critical role in enhancing detection efficacy, reducing false positives, and ensuring robust coverage against evolving threat landscapes. Key Responsibilities Design and implement detection use cases across SIEM and SOAR platforms using threat intelligence and incident data Develop, map, and maintain detection logic aligned to MITRE ATT&CK frameworks Continuously tune and optimise correlation rules to improve signal-to-noise ratio Validate detection logic ...

THROUGH UMBRELLA Role Description: "Core Responsibilities: Develop and maintain secure architecture frameworks for enterprise-grade systems, including cloud, on-premises, and hybrid environments Conduct threat modelling, risk assessments, and security gap analyses across infrastructure and application layers Define security standards, reference architectures, and policy controls based on industry frameworks … ensure secure software development lifecycles (SSDLC) Lead strategic initiatives in incident response planning, detection and mitigation strategies, and digital forensics Monitor advancements in threat intelligence and regulatory requirements, advising stakeholders on appropriate countermeasures Produce and maintain architectural documentation, ensuring traceability of security controls and compliance obligations Experience: Demonstrated ...

Improvement Training & Awareness Secure Architecture Support Compliance and Framework Alignment Essential Skills: Experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management Technical experience securing Microsoft Azure and Amazon Web Services cloud environments as well as on-premise/virtual ...

Improvement Training & Awareness Secure Architecture Support Compliance and Framework Alignment Essential Skills: Experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management Technical experience securing Microsoft Azure and Amazon Web Services cloud environments as well as on-premise/virtual ...

managed clients to both technical and non-technical audiences, Collaborate on improving detection rules and use cases aligned with Mitre Att&ck and threat-informed defense. Participate in a team effort to guarantee that corporate data and technology platform components are shielded from known threats. Collaborate with team members … maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Aid the development and use of threat intelligence throughout the service. Ability to work shifts from our office in Farnborough. What you’ll bring: Experience demonstrated in Security Operations Centre. Experience using Microsoft ...

operating effectively to protect client environments. Work with teams to assess risks, design controls and define testing requirements. Support senior engineers with SIEM, threat intelligence and malware analysis platforms. Apply patches/updates, raise changes and follow agreed processes. Keep up to date with threats and recommend improvements. ...

from a 3rd party MSSP, investigating and responding to the most complex incidents whilst building out IR Playbooks and Processes and developing the internal Threat Hunting capability. You will act as a mentor to the more junior Analysts within the team and play a pivotal role in shaping … investigations. Proactively look for opportunities to automate, fine-tune and streamline the detection engineering and general SOC capabilities. Utilise various internal and external Threat Intelligence feeds to execute proactive threat hunting campaigns. Mentor and train junior team members through complex incident response investigations. Key Requirements: Significant experience ...

risk assessments for our secure networks, communicate implications to relevant stakeholders, and track progress against action items Stay up to date with the threat landscape affecting our secure networks, using a range of sources such as the corporate Threat Intelligence team Track progress made by a range ...

Develop and execute a forward-looking security strategy aligned with corporate objectives and industry trends.* Advise executive leadership and the board on risk posture, threat landscape, and investment priorities.* Lead cross-functional initiatives to embed security into digital transformation, innovation, and operational excellence.* Establish KPIs and performance metrics … Security*** Oversee the design and implementation of cybersecurity architecture and controls.* Ensure protection of IT infrastructure, cloud environments, and sensitive data.* Lead incident response, threat intelligence, and vulnerability management programs.* Maintain compliance with global standards (e.g., ISO 27001, NIST, GDPR, HIPAA).**Governance, Risk & Compliance*** Develop and enforce ...

leading toy manufacturing company in Glasgow is seeking a Director of Cyber Security Operations and Threat Management to lead its cybersecurity efforts. This role involves overseeing the security operations team, developing threat intelligence programs, and managing the security measures across all platforms. The ideal candidate will have … deep understanding of threat management, security operations, and cloud security, with at least 8 years in the field and relevant certifications such as CISSP or AWS Security Certifications. #J-18808-Ljbffr ...

current active clearance Join our team as a SOC Engineer and become a critical player in safeguarding organizations through cutting-edge security monitoring and threat detection. In this role, you will lead the design, implementation, and optimization of advanced security tools within a dynamic Security Operations Centre, ensuring … managing large client engagements Expertise in SIEM platforms, specifically Splunk Enterprise & Enterprise Security and Elastic Stack/Elastic Security Deep knowledge of detection engineering, threat intelligence frameworks (MITRE ATT&CK), and noise reduction techniques Hands-on experience with data ingestion tools such as Elastic Agent, Beats, Splunk ...

supporting response teams. Key Responsibilities - Monitor, triage investigate security alerts Escalate incidents assist response teams Analyse event data maintain protective tools Stay current with threat intelligence Contribute to procedures team development Skills Experience - Windows Linux OS knowledge SIEM/IPS experience in SOC environments Strong analytical data interrogation ...

response, and recovery. Design, run, and continuously enhance cyber crisis simulations and tabletop exercises for executives and operational teams—ensuring scenarios reflect the current threat landscape, sector trends, and the client’s critical business services. Act as an outstanding facilitator and “crisis conductor”: guide senior leaders through high‐pressure … decision making, inject realistic developments, challenge assumptions, and drive clear actions, owners, and lessons learned. Translate threat intelligence and emerging attacker tactics into practical resilience improvements—linking likely threats to business impact, critical dependencies, and control or capability gaps. Integrate cyber response and recovery into wider enterprise resilience ...

response, and recovery. Design, run, and continuously enhance cyber crisis simulations and tabletop exercises for executives and operational teams—ensuring scenarios reflect the current threat landscape, sector trends, and the client’s critical business services. Act as an outstanding facilitator and “crisis conductor”: guide senior leaders through high‐pressure … decision making, inject realistic developments, challenge assumptions, and drive clear actions, owners, and lessons learned. Translate threat intelligence and emerging attacker tactics into practical resilience improvements—linking likely threats to business impact, critical dependencies, and control or capability gaps. Integrate cyber response and recovery into wider enterprise resilience ...

threats quickly and efficiently. Install, configure and maintain security monitoring tools Ensure SOC tooling is optimised and operating effectively Support SIEM platforms and threat intelligence tooling Work with teams to assess risk and design security controls Apply updates, patches and follow change processes Stay current with emerging threats … your application to be submitted to our client in connection with this vacancy. KEY SKILLS SOC Engineer, SIEM, Sentinel, Splunk, Cyber Security, Security Monitoring, Threat Detection, Azure, AWS, Network Security ...

continuously improve security controls across endpoints, identity, networks, SaaS platforms, cloud services, and on-premise systems. Identify vulnerabilities and misconfigurations through scanning, logging, threat modelling, and configuration reviews, driving remediation with technical teams and service owners. Support secure delivery of web applications and APIs, working closely with … reduce organisational risk. Ensure security-related changes and risks are communicated clearly and promptly to the wider business. Stay up to date with threat intelligence and emerging risks, translating insights into actionable security improvements. Provide the Head of IT & Change with a weekly security report. Mentor ...

across SIEM/SOAR environments (data ingestion, alerting, integrations, automation workflows) Collaborate with Detection Engineers to operationalise detection use cases Implement enrichment workflows incorporating threat intelligence, asset context, and identity data Support incident response through effective automation and data availability Maintain clear and comprehensive documentation for configurations, integrations ...

including Wiz, Zscaler, and CrowdStrike Security Operations Perform daily alert reviews across SIEM and security tooling Contribute to runbooks, playbooks, and operational documentation Support threat intelligence analysis and apply findings to detection and response activities Work closely with Engineering, DevOps, and IT teams to drive remediation Essential Requirements ...