21 of 21 Permanent Threat Detection Jobs in London

business need. The Role: Agentic AI for Security & Sentinel Advanced Capabilities Lead the adoption and integration of Agentic AI for Security to enable autonomous threat detection, adaptive response, and continuous security posture improvement. Architect and optimise Microsoft Sentinel for SIEM, UEBA, and threat intelligence integration, leveraging Microsoft … advanced context-aware analytics and automation. Develop and maintain security analytics and data pipelines within Sentinel Data Lake to support large-scale threat detection, incident response, and threat hunting, while optimizing cost and enabling Agentic AI-driven security operations. Integrate and automate security workflows using Microsoft Sentinel ...

Primary Details Time Type: Full time Worker Type: Employee Senior Threat Detection Specialist Location: London Happy to talk flexible working The Opportunity As we focus on transformation across the organisation, we’re also investing in our cyber security capabilities to keep our people, data, and customers safe. That … building a new Detection Engineering function—and we’re looking for a talented and driven Threat Detection Senior Specialist to help us lead the way. In this key role, you’ll support the GSOC Manager in shaping the future of detection engineering, developing the strategy ...

Cyber Security Incident Response & Threat Intelligence Analyst Team Overvie wThe Cyber Security Operations Team is responsible for monitoring, detecting, and responding to cyber threats across Thomas Millers estate. We ensure the protection of digital assets and safeguard confidentiality, integrity and availability of systems. Working in a fast-paced environment … provides 24/7 vigilance, rapid incident response, vulnerability oversight and actionable threat intelligence to reduce cyber risk . Who Are We Looking Fo r?We are seeking a Cyber Security Incident Response & Threat Intelligence Analyst to strengthen our SOC capability. The successful candidate will focus primarily ...

leading a team of cyber security engineers. The role involves close collaboration with IT, network teams, and senior stakeholders to identify vulnerabilities, mature detection capabilities, and ensure compliance with recognised security frameworks. Key Responsibilities Lead and develop a team of cyber security engineers, providing technical and strategic direction. Oversee … security operations including monitoring, incident management, and threat response. Conduct assessments across the IT estate to identify risks and emerging threats. Manage security events from detection through to remediation, ensuring timely and effective responses. Drive improvements to the organisation's security posture in line with a rapidly evolving ...

scalable, automated security solutions that integrate seamlessly into enterprise platforms and user experiences. Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. Champion DevSecOps practices … engineering for identity and access management (IAM), including authentication, authorization, and privileged access controls. Oversee endpoint security architecture and enforcement, ensuring comprehensive coverage for threat detection, malware prevention, and device compliance. Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. ...

Vectra is the leader in AI-driven threat detection and response for hybrid and multi-cloud enterprises. The Vectra AI Platform delivers integrated signal across public cloud, SaaS, identity, and data center networks in a single platform. Powered by patented Attack Signal Intelligence, it empowers security teams … rapidly prioritize, investigate and respond to the most advanced cyber-attacks. With 35 patents in AI-driven threat detection and the most vendor references in MITRE D3FEND, organizations worldwide rely on the Vectra AI to move at the speed and scale of hybrid attackers. For more information, visit ...

call roster Monitoring and investigating security threats across AWS, GCP, and hybrid environments, proactively hunting for anomalous behavior and potential intrusions Building and maintaining detection rules, automation workflows, and response playbooks using detection-as-code methodologies Developing tools and solutions for security incident alerting, management, and communication that … security, and security operations You're probably a match if You have demonstrable experience in incident response, security operations, and coordinating security events from detection through resolution You possess strong knowledge of cloud security architectures, attack techniques, and hands-on experience with cloud providers (AWS, GCP, or Azure ...

access events. Monitor, analyse, and respond to alerts from client security platforms (MDR/XDR, SentinelOne, Huntress, Fortinet, Mimecast, Avanan, Defender) to ensure rapid threat mitigation. Conduct vulnerability assessments, risk analyses and security audits across client environments, providing actionable recommendations and remediation guidance. Implement and maintain security hardening across … alignment with best practices and frameworks such as ISO27001, NIST, and Cyber Essentials Plus. Lead and coordinate incident response efforts, including root cause analysis, threat containment and post-incident reporting for clients. Collaborate with the Project and Service Desk teams to embed security into deployments, migrations, upgrades, and automation ...

access events. Monitor, analyse, and respond to alerts from client security platforms (MDR/XDR, SentinelOne, Huntress, Fortinet, Mimecast, Avanan, Defender) to ensure rapid threat mitigation. Conduct vulnerability assessments, risk analyses and security audits across client environments, providing actionable recommendations and remediation guidance. Implement and maintain security hardening across … alignment with best practices and frameworks such as ISO27001, NIST, and Cyber Essentials Plus. Lead and coordinate incident response efforts, including root cause analysis, threat containment and post-incident reporting for clients. Collaborate with the Project and Service Desk teams to embed security into deployments, migrations, upgrades, and automation ...

complex data. This is an opportunity to join a pioneering start-up transforming raw security data into actionable intelligence, helping shape the future of threat detection across global networks. This role sits within their Security Research function and is ideal for someone with a SOC, network engineering … into research and intelligence. You'll be working closely with large volumes of security data to help organise, analyse and contextualise the activity their detection systems surface. If you understand how networks really operate, feel comfortable working with SQL, and enjoy exploring patterns in security data, this could ...

hands-on, proven industry experience in a similar role, in a technical environment. Good understanding of security principles, technologies, and best practices, including threat detection and security incident response processes. Experience implementing security in AWS environments (in the main) , including proactive configuration of AWS accounts and assets … security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. We value teamwork, collaboration & technical excellence – the company are heavily weighted toward technical staff (as you would hope ...

hands-on, proven industry experience in a similar role, in a technical environment. Good understanding of security principles, technologies, and best practices, including threat detection and security incident response processes. Experience implementing security in AWS environments (in the main) , including proactive configuration of AWS accounts and assets … security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. We value teamwork, collaboration & technical excellence – the company are heavily weighted toward technical staff (as you would hope ...

frameworks such as NIST, NCSC, and NIS2 Support and optimise SIEM/XDR platforms (Microsoft Sentinel, Defender XDR, IBM QRadar) Provide guidance on threat detection, incident response, and best practice Produce reports and present findings to senior stakeholders Key requirements Experience with cybersecurity frameworks and risk assessment methodologies ...

scalable, automated solutions that integrate seamlessly into enterprise platforms and user experiences. Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. Champion DevSecOps practices to embed … Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. Embed security telemetry and observability to enable proactive threat detection and automated response. Apply SRE principles to improve reliability, performance, and maintainability of security services. Define service level objectives (SLOs ...

capacity planning, QoS, and traffic engineering. Strong background in security, including firewalls, VPNs, IDS/IPS, secure segmentation, and Zero Trust architecture. Experience with threat detection/response, SIEM integration, and incident response. Familiarity with compliance frameworks such as ISO 27001, NIST, and GDPR. Knowledge of cloud & hybrid ...

/enterprise deployments. · Network performance engineering (capacity planning, QoS, traffic engineering). · Security Expertise · Firewalls, VPNs, IDS/IPS, secure segmentation, Zero Trust architecture. · Threat detection/response, SIEM integration, incident response. · Compliance frameworks (ISO 27001, NIST, GDPR). · Cloud & Hybrid Networking · AWS/Azure/GCP networking ...

DevSecOps, security testing, monitoring and securing CI/CD pipelines You have a strong knowledge of Azure and cloud security You have experience of threat detection and scanning code for vulnerabilities You're collaborative with excellent communication and relationship building skills You have meticulous attention to detail ...

high availability and performance Working with Information Security, assist in the implementation and management of security best practices, including access control, data encryption and threat detection Collaborate with development teams to integrate cloud solutions with existing applications and systems Stay up-to-date with the latest Google Cloud ...

governance, AWS Config. Hybrid Networking & Connectivity - AWS Direct Connect, VPN, Transit Gateway, PrivateLink, and BGP routing. AWS Security & Monitoring - logging, and threat detection. Cloud Cost Optimisation & Performance Tuning - Right-sizing, auto-scaling, and FinOps principles. Minorities, women, LGBTQ+ candidates, and individuals with disabilities are encouraged to apply. Interviews will ...

governance, AWS Config. Hybrid Networking & Connectivity - AWS Direct Connect, VPN, Transit Gateway, PrivateLink, and BGP routing. AWS Security & Monitoring - logging, and threat detection. Cloud Cost Optimisation & Performance Tuning - Right-sizing, auto-scaling, and FinOps principles. Minorities, women, LGBTQ+ candidates, and individuals with disabilities are encouraged to apply. Interviews will ...

Databricks, we are obsessed with enabling data teams to solve the world's toughest problems, from security threat detection to cancer drug development. We do this by building and running the world's best data and AI infrastructure platform, so our customers can focus on the high value ...