24 of 24 Permanent Threat Detection Jobs in the East of England

techniques to build impactful, customer-facing security capabilities. Build and refine intelligent generative AI agents that drive automated cybersecurity reasoning, investigation workflows, and threat analysis. Extend and enhance our next-generation AI antivirus engine by designing new feature representations, building file parsers, and developing ML models end-to-end. … integrate into the Cynet Endpoint Agent and platform infrastructure. Use Cynet's ML experimentation pipelines to run experiments, optimize performance, and deliver production-ready detection models. Serve as the cybersecurity expert within the Data Science team, guiding threat modeling, malware understanding, and security-driven AI design decisions. Requirements ...

techniques to build impactful, customer-facing security capabilities. Build and refine intelligent generative AI agents that drive automated cybersecurity reasoning, investigation workflows, and threat analysis. Extend and enhance our next-generation AI antivirus engine by designing new feature representations, building file parsers, and developing ML models end-to-end. … integrate into the Cynet Endpoint Agent and platform infrastructure. Use Cynet's ML experimentation pipelines to run experiments, optimize performance, and deliver production-ready detection models. Serve as the cybersecurity expert within the Data Science team, guiding threat modeling, malware understanding, and security-driven AI design decisions. Requirements ...

techniques to build impactful, customer-facing security capabilities. Build and refine intelligent generative AI agents that drive automated cybersecurity reasoning, investigation workflows, and threat analysis. Extend and enhance our next-generation AI antivirus engine by designing new feature representations, building file parsers, and developing ML models end-to-end. … integrate into the Cynet Endpoint Agent and platform infrastructure. Use Cynet's ML experimentation pipelines to run experiments, optimize performance, and deliver production-ready detection models. Serve as the cybersecurity expert within the Data Science team, guiding threat modeling, malware understanding, and security-driven AI design decisions. Requirements ...

incident response (DFIR) readiness. While also advancing the organisation's Adversarial Exposure Validation (AEV)- including Red and Purple Team activities The role ensures detection, response, and control validation against real-world threat actor tactics, techniques, and procedures (TTPs). Salary : £50,000 - £60,000 depending on experience Dynamic … incident response (DFIR) readiness. While also advancing the organisation's Adversarial Exposure Validation (AEV)- including Red and Purple Team activities. The role ensures detection, response, and control validation against real-world threat actor tactics, techniques, and procedures (TTPs). This is a Next step role for an experienced ...

multi-cloud infrastructure and leading security engineering efforts. This is a lead, hands-on engineering position requiring deep expertise in cloud security architecture, detection engineering, security tooling, and the secure software development lifecycle (SDLC) to proactively defend our digital assets and global operations. Key Responsibilities Lead and manage security … cloud (AWS, Azure, GCP or similar), and SaaS environments. You will design, architect, deploy, and implement the security infrastructure (SIEM, EDR, logging, monitoring, alerting, threat-intelligence integrations) to support a hybrid SOC model, including overall tool management and tuning. Design and enforce security architecture and strategy. Define and implement ...

multi-cloud infrastructure and leading security engineering efforts. This is a lead, hands-on engineering position requiring deep expertise in cloud security architecture, detection engineering, security tooling, and the secure software development lifecycle (SDLC) to proactively defend our digital assets and global operations. Key Responsibilities Lead and manage security … cloud (AWS, Azure, GCP or similar), and SaaS environments. You will design, architect, deploy, and implement the security infrastructure (SIEM, EDR, logging, monitoring, alerting, threat-intelligence integrations) to support a hybrid SOC model, including overall tool management and tuning. Design and enforce security architecture and strategy. Define and implement ...

multi-cloud infrastructure and leading security engineering efforts. This is a lead, hands-on engineering position requiring deep expertise in cloud security architecture, detection engineering, security tooling, and the secure software development lifecycle (SDLC) to proactively defend our digital assets and global operations. Key Responsibilities Lead and manage security … cloud (AWS, Azure, GCP or similar), and SaaS environments. You will design, architect, deploy, and implement the security infrastructure (SIEM, EDR, logging, monitoring, alerting, threat-intelligence integrations) to support a hybrid SOC model, including overall tool management and tuning. Design and enforce security architecture and strategy. Define and implement ...

multi-cloud infrastructure and leading security engineering efforts. This is a lead, hands-on engineering position requiring deep expertise in cloud security architecture, detection engineering, security tooling, and the secure software development lifecycle (SDLC) to proactively defend our digital assets and global operations. Key Responsibilities Lead and manage security … cloud (AWS, Azure, GCP or similar), and SaaS environments. You will design, architect, deploy, and implement the security infrastructure (SIEM, EDR, logging, monitoring, alerting, threat-intelligence integrations) to support a hybrid SOC model, including overall tool management and tuning. Design and enforce security architecture and strategy. Define and implement ...

multi-cloud infrastructure and leading security engineering efforts. This is a lead, hands-on engineering position requiring deep expertise in cloud security architecture, detection engineering, security tooling, and the secure software development lifecycle (SDLC) to proactively defend our digital assets and global operations. Key Responsibilities Lead and manage security … cloud (AWS, Azure, GCP or similar), and SaaS environments. You will design, architect, deploy, and implement the security infrastructure (SIEM, EDR, logging, monitoring, alerting, threat-intelligence integrations) to support a hybrid SOC model, including overall tool management and tuning. Design and enforce security architecture and strategy. Define and implement ...

security controls • Experience remediating findings using native Azure security tooling and/or SIEM/CSPM platforms • Working knowledge of Azure logging, monitoring, and threat detection capabilities Additional Skills • Ability to work independently on remediation tasks while coordinating with multiple teams • Experience working in project-based or programme ...

reporting on ISMS effectiveness and operational performance. Manage security operations in line with organisational policy, standards and industry best practice. Conduct security risk and threat assessments (operational and system). Engage with internal stakeholders and third-party providers on security, risk and privacy matters. Respond to security incidents promptly … ensuring early identification and resolution. Oversee threat detection, vulnerability management and remediation activities. Represent security considerations in IT and process change assessments. Maintain ISMS, Operational Security and Risk Assurance documentation. Lead monthly client Security Working Group meetings and stakeholder sessions. Ensure audit readiness and support internal/external ...

reporting on ISMS effectiveness and operational performance. Manage security operations in line with organisational policy, standards and industry best practice. Conduct security risk and threat assessments (operational and system). Engage with internal stakeholders and third-party providers on security, risk and privacy matters. Respond to security incidents promptly … ensuring early identification and resolution. Oversee threat detection, vulnerability management and remediation activities. Represent security considerations in IT and process change assessments. Maintain ISMS, Operational Security and Risk Assurance documentation. Lead monthly client Security Working Group meetings and stakeholder sessions. Ensure audit readiness and support internal/external ...

that have redefined the cybersecurity industry with their innovative, native AI-optimized services, technologies and products. Sophos is now the largest pure-play Managed Detection and Response (MDR) provider, supporting more than 28,000 organizations. In addition to MDR and other services, Sophos' complete portfolio includes industry-leading endpoint … cloud security that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through ...

with CI/CD tools (GitHub Actions, Jenkins, CircleCI). Basic understanding of cloud services (AWS, GCP, or Azure). Interest in security principles , threat detection, or incident response. Strong problem-solving skills and willingness to learn. Nice to Have Exposure to containerization (Docker, Kubernetes). Knowledge ...

Solution Architect experience within an MSP environment. Strong Microsoft Azure expertise (IaaS/PaaS, governance, identity, networking, landing zones). Security experience across MDR, threat detection, SIEM/SOAR or security monitoring. Solid understanding of hybrid cloud, integrations, networking and resilient design. Ability to articulate complex technical concepts ...

Solution Architect experience within an MSP environment. Strong Microsoft Azure expertise (IaaS/PaaS, governance, identity, networking, landing zones). Security experience across MDR, threat detection, SIEM/SOAR or security monitoring. Solid understanding of hybrid cloud, integrations, networking and resilient design. Ability to articulate complex technical concepts ...

Solution Architect experience within an MSP environment. Strong Microsoft Azure expertise (IaaS/PaaS, governance, identity, networking, landing zones). Security experience across MDR, threat detection, SIEM/SOAR or security monitoring. Solid understanding of hybrid cloud, integrations, networking and resilient design. Ability to articulate complex technical concepts ...

resilience of complex enterprise networks. You'll work within a 24/7 Incident Response function, combining hands-on engineering with real-time threat detection, investigation, and remediation. Key Responsibilities: Monitor, investigate and triage security events within a 24/7 SOC environment Configure, maintain and troubleshoot enterprise …/TLS, VPNs and authentication mechanisms Experience with network monitoring tools (PRTG, Nagios or similar) Ability to analyse complex traffic flows and identify threat patterns such as exploitation, C2, lateral movement, or exfiltration Understanding of secure network architectures (DMZs, segmentation, internal zones) Exposure to SIEM platforms (Splunk, LogRhythm, Darktrace ...

automation frameworks for provisioning and compliance. Integration knowledge across Microsoft Exchange, M365, VMware and enterprise IT ecosystems. Understanding of Zero Trust architecture, identity threat detection, and SIEM integration. Strong stakeholder management, influencing, and communication skills. Ability to translate complex technical challenges into executive-level decisions and investment cases ...

automation frameworks for provisioning and compliance. Integration knowledge across Microsoft Exchange, M365, VMware and enterprise IT ecosystems. Understanding of Zero Trust architecture, identity threat detection, and SIEM integration. Strong stakeholder management, influencing, and communication skills. Ability to translate complex technical challenges into executive-level decisions and investment cases ...

governance, AWS Config. Hybrid Networking & Connectivity - AWS Direct Connect, VPN, Transit Gateway, PrivateLink, and BGP routing. AWS Security & Monitoring - logging, and threat detection. Cloud Cost Optimisation & Performance Tuning - Right-sizing, auto-scaling, and FinOps principles. Minorities, women, LGBTQ+ candidates, and individuals with disabilities are encouraged to apply. Interviews will ...

governance, AWS Config. Hybrid Networking & Connectivity - AWS Direct Connect, VPN, Transit Gateway, PrivateLink, and BGP routing. AWS Security & Monitoring - logging, and threat detection. Cloud Cost Optimisation & Performance Tuning - Right-sizing, auto-scaling, and FinOps principles. Minorities, women, LGBTQ+ candidates, and individuals with disabilities are encouraged to apply. Interviews will ...

governance, AWS Config. Hybrid Networking & Connectivity - AWS Direct Connect, VPN, Transit Gateway, PrivateLink, and BGP routing. AWS Security & Monitoring - logging, and threat detection. Cloud Cost Optimisation & Performance Tuning - Right-sizing, auto-scaling, and FinOps principles. Minorities, women, LGBTQ+ candidates, and individuals with disabilities are encouraged to apply. Interviews will ...

governance, AWS Config. Hybrid Networking & Connectivity - AWS Direct Connect, VPN, Transit Gateway, PrivateLink, and BGP routing. AWS Security & Monitoring - logging, and threat detection. Cloud Cost Optimisation & Performance Tuning - Right-sizing, auto-scaling, and FinOps principles. Minorities, women, LGBTQ+ candidates, and individuals with disabilities are encouraged to apply. Interviews will ...