11 of 11 Contract Threat Detection Jobs in London

in London - Contract - Hybrid *Inside IR35 - umbrella* Key Responsibilities SIEM Management & Optimization: Design, implement, and maintain Microsoft Sentinel workspaces, connectors, analytics rules, and playbooks Develop advanced KQL queries for threat hunting and reporting Optimize SIEM performance, cost, and data retention policies Troubleshoot log ingestion and parsing issues Log Source Integration: Onboard and configure critical log sources (AD, firewalls, servers … cloud infrastructure) Manage event collection and forwarding infrastructure Implement data filtering and custom log parsing Threat Detection & Use Case Development: Develop and refine detection rules based on threat intelligence and attack patterns Continuously improve detection efficacy and reduce false positives Security Monitoring & Incident Response: Monitor systems for anomalies and malicious activity Contribute to threat More ❯

stakeholders to align security recommendations with business goals Required Skills & Experience Proven experience in senior security consultancy or architecture roles Strong understanding of cloud security (AWS), SOC design, and threat detection Familiarity with security frameworks (NIST CSF, ISO 27001) and red teaming approaches Excellent communication skills with ability to influence technical and executive stakeholders Preferred Background Experience in More ❯

security operations or security engineering. Hands-on experience with SOAR platforms (e.g., Cortex XSOAR, Splunk SOAR, IBM Resilient). Strong familiarity with: Google SecOps/Chronicle Darktrace (AI-based threat detection) CrowdStrike Falcon platform Scripting experience in Python, PowerShell, or Bash. Experience with REST APIs and JSON for tool integration. Working knowledge of incident response frameworks and MITRE More ❯

DFIR AnalystDigital Forensics & Incident Response/Threat Hunting/Cyber Analytics/Outside IR35/Fully Remote/£550–£600 pd/ASAP Start/6 Months SR2 has partnered with a cutting-edge Cybersecurity MSP delivering critical threat detection and incident response capabilities to a number of global financial clients.You’ll be part of a dynamic … DFIR team tasked with identifying, analysing, and responding to security incidents, proactively hunting for advanced threats, and contributing to the enhancement of threat detection strategies. Key Responsibilities Incident Response – Detect, document, and resolve security incidents efficiently Endpoint Forensics – Analyse host-based artifacts to reconstruct timelines and attacker activity Security Analytics – Extract meaningful insights from large datasets for reporting … detection, and hunting Threat Hunting – Identify unknown threats that evade traditional controls Intrusion Detection – Tune anomaly detection tools for reliable, actionable output Behavioral Analysis – Implement user anomaly detection criteria to spot insider threats Countermeasures – Design and implement control strategies to disrupt emerging threats Required Skills & Relevant experience Strong understanding of Windows and Linux environments Experience More ❯

Monitor security alerts and log data using Microsoft Sentinel and related SIEM tools Respond to security incidents, performing root cause analysis and recommending remediations Conduct vulnerability assessments and support threat detection activities Assist with the configuration and optimisation of the organisation's security infrastructure Collaborate with technical teams to ensure best practices in information security are maintained Essential … Experience: Proven experience in a cyber security analyst or SOC analyst role Strong hands-on knowledge of Microsoft Sentinel and broader SIEM technologies Solid understanding of threat detection, log analysis, and incident response workflows Experience working in a public sector or regulated environment is highly desirable Ability to clearly communicate security issues and provide actionable advice to stakeholders More ❯

someone with cloud platform experience ideally Azure. Our client is a large scale, international data business. Working across a number of security projects like; Vulnerability Automations Forensics Response incidents Threat detection and incidents. Monitoring Responding to alerts Phising emails Technicall needs are Cloud Azure or GCP experience, Sentinal. London 2 days a week remote 3. Our More ❯

someone with cloud platform experience ideally Azure. Our client is a large scale, international data business. Working across a number of security projects like; Vulnerability Automations Forensics Response incidents Threat detection and incidents. Monitoring Responding to alerts Phising emails Technicall needs are Cloud Azure or GCP experience, Sentinal. London 2 days a week remote 3. Our More ❯

processes. Key Responsibilities Serve as a subject matter expert on cyber security operations in support of strategic procurement and tendering activities. Provide expert input on cyber risk, controls, and threat landscape to inform procurement strategies and technical requirements. Engage and collaborate with senior stakeholders, both internal and external, to shape secure solutions and operational processes. Translate complex cyber security … cyber security capability development and maturity across the organisation. Essential Skills & Experience 5 10 years of hands-on experience in cyber security operations. A deep functional understanding of cyber threat detection, incident response, SOC operations, risk management, etc. Demonstrated involvement in procurement and commercial activities from within the cyber function such as defining technical requirements, evaluating suppliers, or More ❯

processes. Key Responsibilities Serve as a subject matter expert on cyber security operations in support of strategic procurement and tendering activities. Provide expert input on cyber risk, controls, and threat landscape to inform procurement strategies and technical requirements. Engage and collaborate with senior stakeholders, both internal and external, to shape secure solutions and operational processes. Translate complex cyber security … cyber security capability development and maturity across the organisation. Essential Skills & Experience 5-10 years of hands-on experience in cyber security operations. A deep functional understanding of cyber - threat detection, incident response, SOC operations, risk management, etc. Demonstrated involvement in procurement and commercial activities from within the cyber function - such as defining technical requirements, evaluating suppliers, or More ❯

processes. Key Responsibilities Serve as a subject matter expert on cyber security operations in support of strategic procurement and tendering activities. Provide expert input on cyber risk, controls, and threat landscape to inform procurement strategies and technical requirements. Engage and collaborate with senior stakeholders, both internal and external, to shape secure solutions and operational processes. Translate complex cyber security … cyber security capability development and maturity across the organisation. Essential Skills & Experience 5–10 years of hands-on experience in cyber security operations. A deep functional understanding of cyber – threat detection, incident response, SOC operations, risk management, etc. Demonstrated involvement in procurement and commercial activities from within the cyber function – such as defining technical requirements, evaluating suppliers, or More ❯

of DNS protocol-level detail. Your background will include implementing security controls such as DNSSEC, TSIG, and ACLs, alongside familiarity with monitoring and logging DNS activity for compliance and threat detection. Applicants with scripting experience—whether in PowerShell, Bash, or Python—will find themselves well-suited to this position, particularly where automation and reporting are concerned. Exposure to cloud More ❯