1 to 25 of 59 Permanent Threat Detection Jobs in England

Cyber Threat Detection/SIEM Analyst - SANS/GIAC Cyber Threat Detection Analyst Location: Wokingham, Berkshire (On-site) Salary: Competitive (dependent on experience) + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC Role Overview As a Cyber Threat Detection Analyst … will play a hands-on role within an advanced cyber defence function, focused on proactive threat hunting, adversary behaviour analysis, and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data ...

Team This is an excellent opportunity for a CyberSecurity Analyst looking to join a mature cyber security operation and continue developing their incident response, threat detection and cyber defence skills within a highly respected technology organisation. An established international technology and cyber security services provider is investing heavily … excellent opportunity for a cyber security professional looking to further develop their experience within a mature Security Operations environment, gaining exposure to incident response, threat detection, vulnerability management and modern Microsoft security technologies. Working within a highly regulated customer environment, you will help monitor, investigate and respond ...

well-established cyber security capability supporting mission-critical environments. Cyber security is central to the organisation's strategy, with ongoing investment in tooling, threat intelligence, and specialist talent. The security function operates at a mature level, combining Security Operations, threat detection, incident response, and continuous improvement practices … threats. ________________________________________ Role Overview As a Security Monitoring & SIEM Analyst, you will play a key role within the Security Operations function, focused on real-time detection, investigation, and response to cyber threats using SIEM and security tooling. This role combines hands-on SIEM analysis, alert triage, investigation, and detection ...

excellent opportunity for a cyber security professional looking to further develop their experience within a mature Security Operations environment, gaining exposure to incident response, threat detection, vulnerability management and modern Microsoft security technologies. Working within a highly regulated customer environment, you will help monitor, investigate and respond … incidents through the incident response lifecycle Perform security investigations and root cause analysis Validate indicators of compromise and assess potential business impact Conduct proactive threat hunting activities Query and analyse security data using Microsoft Sentinel and KQL Support vulnerability management and remediation activities Work closely with technical teams ...

Profile Summary Seeking security engineer to join our Proactive Security team, this role will focus on the development of security technology stack to ensure threat mitigation is in place through offensive and preventive measures. Duties and Responsibilities Threat Modelling & Risk Analysis: Develop and maintain threat models … Mizuho information assets and services. Assess and recommend security controls during design and implementation of new projects. Build and maintain tools for proactive detection, configuration drift monitoring and automated remediation. Security tooling integration and orchestration. Develop and implementation of SOAR capabilities that aligns with existing technology stack. Experience with ...

Security to CrowdStrike Falcon. Manage deployments and upgrades across extensive endpoint estates, ensuring security, stability and performance. Configure and tune Falcon policies, prevention controls, detection rules and reporting capabilities. Collaborate with Security Operations, Incident Response and Infrastructure teams to enhance threat detection and response. Support threat … McAfee to CrowdStrike. Hands-on deployment experience across large endpoint environments, ideally supporting over 100,000 devices. Strong understanding of EDR, NGAV, behavioural analytics, threat detection and prevention methodologies. Experience acting as a technical lead or SME within large enterprise organisations. Strong troubleshooting, stakeholder management and communication skills. ...

critical role in strengthening and maturing Reapit’s cloud security posture. Your work will span hands on security engineering, deep incident response, proactive threat detection, and collaboration with global teams. Design, implement, and enhance secure Cloud infrastructure, services, and applications in collaboration with DevOps teams. Conduct ongoing security … high quality documentation. Work in a self managing, proactive manner — anticipating security needs, identifying gaps, and driving improvements without close supervision. Incident Response & Threat Detection Respond to SOC alerts. Working with our outsourced SOC, Lead and participate in global incident response activities, including investigation, containment, eradication, and recovery. ...

stakeholders. Key Responsibilities Lead and manage cyber incident response activities from identification through to recovery. Conduct digital forensic investigations across multiple environments. Support threat detection, threat hunting, and security monitoring activities. Develop and enhance incident response processes, playbooks, and best practices. Produce clear technical and executive-level … Clearance Proven ability to lead complex cyber investigations and incident response engagements during live events. Experience with forensic tools, SIEM platforms, and threat detection methodologies. Knowledge of Windows and cloud environments. Excellent analytical, problem-solving, and communication skills. Customer-focused with the ability to remain calm under pressure. ...

helping shape the future of cyber security operations across the business, working closely with infrastructure, cloud and technology teams to improve security posture, strengthen detection and response capabilities, and ensure the organisation remains protected against emerging threats. This role offers a blend of leadership, technical oversight and strategic influence. … What You'll Be Doing * Leading and developing the Security Operations capability * Managing cyber security incidents and coordinating effective responses * Driving improvements across monitoring, threat detection and vulnerability management * Working closely with technology teams to improve security across cloud, infrastructure and end-user environments * Helping optimise security tools ...

critical in improving, developing and maintaining IT/OT vulnerability management programs and processes. This role performs and leads important tasks specialized at threat hunting, SIEM/SOAR, Network Security and other operational security tasks such as performance and availability monitoring, log monitoring, security incident detection and response … analysis. Designs and executes advanced vulnerability assessments using both automated and manual techniques; collaborates with stakeholders to prioritize remediation based on business risk and threat intelligence. Oversees continuous monitoring of threat intelligence feeds and security alerts, proactively identifying emerging risks and recommending strategic countermeasures. Interprets and synthesizes threat ...

will be designing, developing, and optimizing AI and machine learning capabilities within our security platform, contributing to innovative features that leverage advanced analytics, behavioural detection, and intelligent threat prevention. Working as part of a highly collaborative engineering team, you will help bridge the gap between cutting-edge machine … scalability, and resource utilisation on endpoint devices. Develop data processing, evaluation, and automation tools using Python. Contribute to the design and implementation of intelligent threat detection, behavioural analysis, and anomaly detection capabilities. Participate in architecture discussions, code reviews, testing, and continuous improvement of engineering practices. Evaluate emerging ...

cyber security leader responsible for developing and executing enterprise-wide cyber defence strategies to protect critical business systems, data, and infrastructure. Leads security operations, threat detection, incident response, and cyber resilience initiatives while ensuring alignment with organisational risk management objectives. Key Responsibilities Lead and manage the Cyber Defence … function, overseeing security operations, threat intelligence, vulnerability management, and incident response capabilities. Develop and implement cyber defence strategies, policies, and procedures to protect against evolving cyber threats. Direct Security Operations Centre (SOC) activities, ensuring effective monitoring, detection, investigation, and response to security incidents. Oversee threat intelligence programmes ...

Overview Executive level position reporting to the Director of Cyber Threat Management & Incident Response, this is a hands‐on senior security position working within the Information Security group and with the internal IT department. This position’s core focus is to ensure consistent, measurable end‐to‐end triage … closure of security‐related events. The successful candidate will work to assess, develop, and deploy detection capabilities and processes ensuring enterprise systems and data are protected, serving as the Incident Response Lead for European and Pacific regions of the organisation. We are looking for candidates who have a passion ...

Cyber Operations Analyst to join their Cyber Security team. This role will focus on leading cyber incident response activities, managing security monitoring capabilities, driving threat detection and containment, and supporting the bank's wider cyber defence strategy. Key Requirements: * Strong experience within Cyber Operations, SOC or Incident Response … environments* Hands-on expertise with SIEM technologies (Splunk, Sentinel, QRadar etc.)* Knowledge of threat detection, malware analysis, endpoint, network or cloud security* Scripting experience (Python, PowerShell or similar)* Strong understanding of cyber risk, controls and security governance* Excellent stakeholder management and communication skills Desirable: * Financial Services experience* Threat ...

assessing and mitigating cyber threats across enterprise systems while helping to shape and improve the organisation’s overall security posture. Key Responsibilities Cybersecurity Operations & Threat Management Conduct ongoing threat assessments across operational systems and infrastructure Identify vulnerabilities, threat vectors and areas of security risk Design and implement … security mitigations and remediation strategies Monitor emerging cyber threats and recommend appropriate defensive measures Support automated threat monitoring, incident detection and response capabilities Develop and maintain cybersecurity playbooks and incident response procedures Coordinate with third-party security providers during security incidents and testing activities Security Governance & Risk Management ...

hiring a new business Cyber Account Director for one of my customers, focused specifically around managed security services, SOC, MDR/XDR, threat detection and wider cyber-led conversations into mid-market and enterprise customers. The business is a global organisation with over 50,000 employees … credible in front of technical and security-led stakeholders You will already understand cyber services and be comfortable leading customer conversations around managed security, threat detection, MDR/XDR, SOC and cyber resilience. If this sounds like an opportunity you'd be keen on exploring, please feel free ...

Head of Threat Engineering & Application Security What you become a part of Join Coca Cola Europacific Partners (CCEP) as a key leader within our BPT Service Delivery & Security organisation. You will be part of the CISO Leadership Team, shaping and driving our cybersecurity strategy across Europe. In this role … will lead the Threat Engineering & Application Security function, ensuring our platforms, applications and tooling remain resilient, modern and aligned to an evolving threat landscape. You will collaborate with talented engineering, architecture, operations and project teams to help safeguard CCEP's information, strengthen detection and prevention capabilities ...

Head of Threat Engineering & Application Security What you become a part of Join Coca‐Cola Europacific Partners (CCEP) as a key leader within our BPT Service Delivery & Security organisation. Below, you will find a complete breakdown of everything required of potential candidates, as well as how to apply Good … will be part of the CISO Leadership Team, shaping and driving our cybersecurity strategy across Europe. In this role, you will lead the Threat Engineering & Application Security function, ensuring our platforms, applications and tooling remain resilient, modern and aligned to an evolving threat landscape. You will collaborate with ...

Head of Threat Engineering & Application Security What you become a part of Join Coca‐Cola Europacific Partners (CCEP) as a key leader within our BPT Service Delivery & Security organisation. Below, you will find a complete breakdown of everything required of potential candidates, as well as how to apply Good … will be part of the CISO Leadership Team, shaping and driving our cybersecurity strategy across Europe. In this role, you will lead the Threat Engineering & Application Security function, ensuring our platforms, applications and tooling remain resilient, modern and aligned to an evolving threat landscape. You will collaborate with ...

Head of Threat Engineering & Application Security What you become a part of Join Coca‐Cola Europacific Partners (CCEP) as a key leader within our BPT Service Delivery & Security organisation. Below, you will find a complete breakdown of everything required of potential candidates, as well as how to apply Good … will be part of the CISO Leadership Team, shaping and driving our cybersecurity strategy across Europe. In this role, you will lead the Threat Engineering & Application Security function, ensuring our platforms, applications and tooling remain resilient, modern and aligned to an evolving threat landscape. You will collaborate with ...

available throughout the hiring process. This is an opportunity to play a key role in protecting critical customer environments, leading complex investigations, driving proactive threat hunting activities, and helping shape the future of our security monitoring services. Were looking for someone who enjoys solving difficult security challenges, mentoring others … leading the investigation and response to sophisticated cyber threats and incidents. Youll work closely with internal security teams, customers, and stakeholders to continuously evolve detection capabilities, improve operational maturity, and ensure DXC continues to deliver a world-class security monitoring service. This role operates on a Monday to Friday ...

Large Language Models (LLMs). In addition to building scalable automation workflows, this individual will contribute to the broader Security Engineering team, including supporting Detection Engineering through the design, development, and optimisation of high-fidelity threat detections, ensuring effective visibility of threats across the environment. The ideal candidate … combines a deep understanding of cybersecurity operations with a strong background in scripting, automation, AI/LLM technologies, and detection engineering practices to build scalable, resilient, and secure systems. This is a hybrid role requiring a minimum of one day in the office, with additional office attendance as needed. ...

Analyst to help protect multiple critical client environments. The role offers real variety and continued hands-on involvement, combining leadership with incident response, threat detection, and operational delivery. We will also consider experienced SOC professionals who are ready to step into a leadership position while remaining technically engaged. … analysts within a 24/7 SOC, acting as the primary escalation point for complex incidents, supporting operational delivery, and helping to mature our detection and response capabilities across multiple clients. This role is site-based in Hemel Hempstead and follows a shift pattern of two day shifts (6am6pm ...

design, implementation, and ongoing effectiveness of security capabilities across IT and OT environments. You will engineer and maintain the technical capabilities that enable early threat detection, rapid and consistent response, and sustained cyber risk reduction , while translating cyber risk, regulatory, and business demands into practical, measurable, and operationally … implement and maintain security controls to meet business, compliance, and risk mitigation requirements; ensuring controls are effective, measurable, and operationally sustainable. Implement and maintain detection and response capabilities through SIEM integration with security controls and IT systems, with a focus on reducing time to detect and time to remediate ...

firewall policy, network segmentation and workload segmentation Managing and hardening Palo Alto Networks firewalls, including Panorama, App-ID/User-ID, NAT, VPN and threat prevention Supporting Cisco security technologies, including ASA/FTD firewalls, ISE and secure routing/switching Working with VMware NSX/vDefend security controls … including distributed firewall policies and micro-segmentation Working with Elastic Stack/Elastic Security for logging, SIEM, monitoring, threat detection and dashboards Supporting AWS/public cloud security across secure and regulated environments Hardening Windows Server environments, Active Directory, Group Policy and endpoint configurations Implementing, auditing and remediating ...