Cyber Security Engineer

Threat Hunting Analyst - Cyber Security

Location: Cheltenham (hybrid - 1-2 days per week)

Salary: Up to £75,000 (depending on experience) + package

NOTE: Due to the nature of this work, you must be eligible for UK DV Clearance.

This is an opportunity to work at the forefront of cyber security, developing advanced detection capabilities, conducting proactive threat hunts, and helping protect some of the UK's most important digital environments.

As part of a specialist SOC Content and Threat Detection team, you'll be responsible for designing, developing, and optimising threat detection content while carrying out intelligence-led threat hunting activities. Working closely with threat intelligence teams, security analysts, and cyber defence specialists, you'll help identify emerging threats, improve detection coverage, and strengthen overall security operations.

Key Responsibilities

• Develop, implement, and tune threat detection use cases aligned to real-world attack scenarios and frameworks such as MITRE ATT&CK.
• Create and maintain high-quality detection content throughout its lifecycle, from development and testing through to deployment and optimisation.
• Conduct proactive, hypothesis-driven threat hunts using security telemetry, threat intelligence, and behavioural analysis.
• Investigate suspicious activity and identify threats that may evade existing detection controls.
• Produce clear, actionable reporting and communicate findings to technical stakeholders.
• Review, validate, and improve detection content prior to deployment.
• Maintain and enhance runbooks, playbooks, and operational procedures.
• Collaborate with SOC, threat intelligence, and engineering teams to continuously improve detection strategies and processes.
• Contribute to knowledge sharing and continuous improvement initiatives across the cyber security function.

What We're Looking For

• 2+ years of commercial experience in Threat Hunting, Detection Engineering or SOC Content Development
• Strong understanding of threat actor tactics, techniques, and procedures (TTPs).
• Knowledge of MITRE ATT&CK and modern detection methodologies.
• Experience working with SIEM, EDR, and security monitoring platforms.
• Ability to analyse large datasets and identify malicious activity patterns.
• Strong investigative and analytical skills.
• Excellent communication and stakeholder engagement abilities.
• A passion for cyber security and continuous learning.

If you're a cyber security professional who enjoys hunting advanced threats, building smarter detections, and staying ahead of attackers, apply today.