1 to 25 of 39 Permanent Threat Intelligence Jobs in London

Threat Intelligence Analyst - OSINT London, Cheltenham or Manchester Thanks for checking out our job opening; we are excited that YOU are interested in learning more about NCC Group. We are on a mission to make society a safer and more secure place. Our people are the ones … website here to learn more about why we’re one of the leading global Cyber Security and Risk Mitigation business... The Opportunity As a Threat Intelligence Analyst - OSINT, you will play a pivotal role within our global threat intelligence team. Working alongside colleagues across multiple time ...

Security Operations Unit (CSOU & SIO) Cyber Delivery Unit (CDU) Cyber Improvement Programme Chief Information Security Office Function (CISO) The role sits within the CSOCs Threat Intelligence team within NHS England CSOC comprised of four primary functions: Intelligence Collection & Analysis - Perform collection, aggregation, analysis and contextualisation of healthcare … security information to produce actionable CTI. Cybersecurity Threat & Risk Assessment - Perform high-level risk assessments of current and emerging threats to the health & social care estate. Intelligence Dissemination & Reporting - Produce stakeholder-specific intelligence reporting for stakeholders. Specialist CTI Support - Provides specialist CTI support to CSOC during high ...

security of supply through facilities in Europe, the UK, and the United States. Your Role: You will be responsible for revising, developing, and maturing Threat Intelligence processes, tooling, and policies to strengthen existing services and ensure they remain effective against a constantly evolving external threat landscape. This … includes identifying external cyber risks that may impact the organisation, highlighting associated challenges, and driving improvements to the quality, timeliness, and operational effectiveness of intelligence outputs. The role will work closely with internal and external stakeholders, building strong, trusted relationships across the business and with peer organisations within ...

Cyber Threat Intelligence Specialist Permanent Location: London, Selby, Northampton, Glasgow or Ipswich About the role: Were looking for a Cyber Threat Intelligence Specialist to join our Cyber Security function in a pivotal role as we continue to advance Drax cyber resilience. As a Cyber Threat Intelligence Analyst, youll produce high quality cyber threat intelligence that identifies, analyses and communicates threats, vulnerabilities and emerging trends to Draxs IT, OT and cloud environments. Youll support vulnerability management by assessing exploitability, impact and likelihood, and advising on prioritisation. Youll also develop and maintain threat ...

Cyber Threat Intelligence Specialist A variety of soft skills and experience may be required for the following role Please ensure you check the overview below carefully. Permanent Location: London, Selby, Northampton, Glasgow or Ipswich About the role: We re looking for a Cyber Threat Intelligence Specialist … join our Cyber Security function in a pivotal role as we continue to advance Drax cyber resilience. As a Cyber Threat Intelligence Analyst, you ll produce high quality cyber threat intelligence that identifies, analyses and communicates threats, vulnerabilities and emerging trends to Drax ...

Cyber Threat Intelligence Specialist Permanent Location: London, Selby, Northampton, Glasgow or Ipswich About the role: Were looking for a Cyber Threat Intelligence Specialist to join our Cyber Security function in a pivotal role as we continue to advance Drax cyber resilience. As a Cyber Threat Intelligence Analyst, youll produce high quality xxuwjjq cyber threat intelligence that identifies, analyses Be one of the first applicants, read the complete overview of the role below, then send your application for consideration. Please click on the apply button to read the full job description ...

become trusted advisors to our clients. You will help our clients to build cyber resilience, enhance their understanding of the threat landscape and become better prepared to face dynamic and evolving security risks. This will involve being on the front foot of new and emerging threats, and ensuring … affected and actions they can take. Technical testing ; vulnerability scanning, attack surface discovery, manual exploit validation, light‐touch pentesting and Open‐Source Intelligence (OSINT) gathering Client Engagement ; translating client challenges into solutions that fit S‐RM’s ASM service offerings and value proposition, understanding and supporting the proposal process ...

Cyber Threat Intelligence Specialist Permanent Location: London, Selby, Northampton, Glasgow or Ipswich About the role: Were looking for a Cyber Threat Intelligence Specialist to join our Cyber Security function in a pivotal role as we continue to advance Drax cyber resilience click apply for full ...

Account Executive – Cybersecurity SaaS (Hybrid, London) Location: London (Hybrid – 2–3 days/week in office) Industry: Cybersecurity/Threat Intelligence About the Company A fast-growing cybersecurity vendor backed by top-tier investors, this company delivers cutting-edge threat intelligence solutions to help organisations stay … exceed revenue targets Requirements 3+ years of experience in SaaS or cybersecurity sales Proven track record of closing complex enterprise deals Strong understanding of threat intelligence or willingness to learn Excellent communication and consultative selling skills Based in London or able to commute to the office ...

cyber threats, intrusions, and unauthorised or suspicious activity. This includes Microsoft Sentinel (data and source tuning, creation and maintenance of workbooks and connectors, and threat intelligence review), Microsoft Defender for Endpoint and Defender for Cloud, and Darktrace, including system and model tuning, email module management, and configuration … response plans and playbooks. You will support vulnerability management activities, including vulnerability assessments, annual audits, and penetration testing. This includes preparing and presenting incident, threat, and compliance reporting to stakeholders at all levels, including compiling a monthly SIRO report. Continuous improvement is a core responsibility. You will conduct post ...

client engagements; present findings and recommendations to senior stakeholders. Participate in alert testing, readiness exercises, and incident response tabletop sessions. Stay current on emerging threat intelligence, attacker techniques, and relevant research. Required Experience & Attributes 3+ years experience as a Cyber Security Operations Analyst Familiarity with threat intelligence ...

holistic view of the organisation's security posture. Present findings and recommendations to senior leadership and governance forums. Collaborate with internal teams (e.g., threat intelligence, compliance, audit) to ensure assurance activities reflect current threat landscapes. Act as a primary interface for business units, ensuring alignment between assurance … technical and business information to assess risk. Experience in supply chain security assurance. Knowledge of secure by design principles and accreditation processes. Understanding of threat intelligence and its application in assurance. Experience working in regulated or high-assurance environments (e.g., government, finance, defence). Familiarity with risk management ...

vulnerability findings, remove false positives, and deduplicate results across scan cycles, asset groups, and overlapping detections. Perform risk based prioritisation using CVSS, EPSS, exploit intelligence, asset criticality, exposure, compensating controls, and regulatory considerations aligned to bank risk appetite. Maintain clear and defensible documentation for prioritisation decisions, exceptions, and risk … platforms. Contribute to the strategic roadmap of the vulnerability management programme including process design, RACI definition, metrics, and integration with asset management, patch management, threat intelligence, and governance risk and compliance functions. Qualifications: Required Experience Six or more years of vulnerability management experience with deep hands on expertise ...

behind the scenes' support staff, you've got all the ingredients to make it a magical experience! Job description Lead and conduct complex, intelligence-led investigations into data theft and streaming piracy using an all-source approach. Collect, preserve, and document digital evidence from various sources, including online networks … dark web marketplaces, and compromised systems, in compliance with legal standards. Utilise OSINT, HUMINT and CYBINY/DNINT and other cyber threat intelligence to uncover patterns, identify infringers, and develop attribution information. Identify and implement new anti-piracy technologies. Collaborate with internal IT, Products, and Sales teams ...

systems that detect and analyse real-world cyber threats at scale. Main Duties of the Role Design and develop Python-based tools for threat intelligence and security research Build and optimise data pipelines to process large volumes of security data Work closely with researchers to identify, monitor … Continuously improve tooling and automation to enhance detection capabilities What Were Looking For Strong commercial experience with Python development Interest or background in cybersecurity, threat intelligence, or offensive security Experience working with APIs, data processing, and distributed systems Understanding of cloud platforms (AWS, GCP, or Azure ...

Analyst/Security Engineer London (City) | £80,000–£90,000 | Permanent If you’re the kind of security engineer who can spot an active threat, contain it calmly, and then harden the environment so it doesn’t happen again — this role is built for you.We’re hiring a hands … security automation Run vulnerability scanning using tools like Tenable, Pentera, Varonis, Secure Score Support compliance work (ISO 27001, Cyber Essentials, NIST, SOC2) Contribute to threat hunting, threat intelligence application and proactive monitoring Support operational resilience: scenario testing, DR exercises, post-incident reviews Assist with security tooling assessments ...

will have the opportunity to work across a number of proactive cyber security domains including Cloud Security, Security Operations, Cyber Risk Management and Artificial Intelligence in cyber security. We are seeking an individual who is passionate about cyber security, curious with a demonstrated track record of continuous learning … technological and innovative approaches to deliver the best consulting outcomes for clients, as they work to address the challenges associated with today’s cyber threat landscape. Your Impact SOC Advisory: 4+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management and demonstrated success with serving ...

maintain high-quality detection content such as correlation searches and risk-based alerting within Splunk Enterprise Security Write and optimise complex queries to support threat detection, proactive threat hunting, and anomaly identification Map detection logic to adversary behaviours using the MITRE ATT&CK Framework, ensuring effective coverage … with SOC analysts, incident responders, and global engineering teams to improve detection and response capabilities Apply strong analytical and problem-solving skills to translate threat intelligence into actionable detection use cases and continuously improve security operations What We're Looking For: Essential: Experience working on multiple projects with ...

performing Security Operations Centre (SOC) environment. This role is focused on designing, developing, and optimising detection content to strengthen cyber defence capabilities and improve threat visibility across enterprise environments. You will play a critical role in enhancing detection efficacy, reducing false positives, and ensuring robust coverage against evolving threat landscapes. Key Responsibilities Design and implement detection use cases across SIEM and SOAR platforms using threat intelligence and incident data Develop, map, and maintain detection logic aligned to MITRE ATT&CK frameworks Continuously tune and optimise correlation rules to improve signal-to-noise ratio Validate detection logic ...

performing Security Operations Centre (SOC) environment. This role is focused on designing, developing, and optimising detection content to strengthen cyber defence capabilities and improve threat visibility across enterprise environments. You will play a critical role in enhancing detection efficacy, reducing false positives, and ensuring robust coverage against evolving threat landscapes. Key Responsibilities Design and implement detection use cases across SIEM and SOAR platforms using threat intelligence and incident data Develop, map, and maintain detection logic aligned to MITRE ATT&CK frameworks Continuously tune and optimise correlation rules to improve signal-to-noise ratio Validate detection logic ...

Improvement Training & Awareness Secure Architecture Support Compliance and Framework Alignment Essential Skills: Experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management Technical experience securing Microsoft Azure and Amazon Web Services cloud environments as well as on-premise/virtual ...

Develop and execute a forward-looking security strategy aligned with corporate objectives and industry trends.* Advise executive leadership and the board on risk posture, threat landscape, and investment priorities.* Lead cross-functional initiatives to embed security into digital transformation, innovation, and operational excellence.* Establish KPIs and performance metrics … Security*** Oversee the design and implementation of cybersecurity architecture and controls.* Ensure protection of IT infrastructure, cloud environments, and sensitive data.* Lead incident response, threat intelligence, and vulnerability management programs.* Maintain compliance with global standards (e.g., ISO 27001, NIST, GDPR, HIPAA).**Governance, Risk & Compliance*** Develop and enforce ...

event analysis and triage potential threats, including recognising successful and unsuccessful intrusion attempts. Investigate phishing emails, suspicious domains, and IP addresses using OSINT and threat intelligence sources. Proactively monitor, analyse, and escalate security events and incidents in collaboration with other SOC team members. Assist in the configuration, administration ...

from a 3rd party MSSP, investigating and responding to the most complex incidents whilst building out IR Playbooks and Processes and developing the internal Threat Hunting capability. You will act as a mentor to the more junior Analysts within the team and play a pivotal role in shaping … investigations. Proactively look for opportunities to automate, fine-tune and streamline the detection engineering and general SOC capabilities. Utilise various internal and external Threat Intelligence feeds to execute proactive threat hunting campaigns. Mentor and train junior team members through complex incident response investigations. Key Requirements: Significant experience ...

response, and recovery. Design, run, and continuously enhance cyber crisis simulations and tabletop exercises for executives and operational teams—ensuring scenarios reflect the current threat landscape, sector trends, and the client’s critical business services. Act as an outstanding facilitator and “crisis conductor”: guide senior leaders through high‐pressure … decision making, inject realistic developments, challenge assumptions, and drive clear actions, owners, and lessons learned. Translate threat intelligence and emerging attacker tactics into practical resilience improvements—linking likely threats to business impact, critical dependencies, and control or capability gaps. Integrate cyber response and recovery into wider enterprise resilience ...