9 of 9 Permanent Threat Detection Jobs in the North of England

Operations Manager to take full ownership of its security operations function, ensuring the organisation is protected, resilient, and continuously improving against an increasingly complex threat landscape. This is a high-impact position where you'll lead the security operations function end-to-end, driving improvements across threat detection … include: Leading the day-to-day operations of the Security Operations function, including oversight of any outsourced SOC Managing the full incident response lifecycle (detection through to recovery and post-incident review) Overseeing threat detection, vulnerability management, and cyber defence capabilities Driving improvements across SIEM, SOAR ...

operational security function responsible for protecting the organisation's information assets, technology services, and users. This role oversees all security operation functions, incident response, threat detection, vulnerability management, and continuous improvement of the organisation's security posture. Working closely with Infrastructure, Cloud, Architecture, Governance, Compliance and Risk teams … relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection, triage, containment, eradication ...

Your mandate is to take ownership of the Technical Implementation & Engineering Functions, shifting the SOC from a Reactive State to a Proactive, High-Fidelity Detection Powerhouse. You will have the autonomy to set the direction for the practice, architecting how the team utilises SIEM, EDR & IDS Tools. … SIEM Platforms (specifically Microsoft Sentinel) & EDR solutions. You should be comfortable managing these within Complex, Multi-Tenant Environments. The Engineering Edge: Good Background in Detection Engineering, Custom Rule Creation & Log Orchestration. You should be highly proficient in KQL & have good Scripting Capabilities (Python or PowerShell). Onboarding & Architecture: Proven ...

secure design and operation of critical technology platforms collaborating with platform owners and engineering teams to embed security throughout the lifecycle Incident Response Threat Management Provide technical oversight for incident response threat detection and vulnerability management Lead root cause analysis and remediation of complex security incidents Stakeholder ...

secure design and operation of critical technology platforms collaborating with platform owners and engineering teams to embed security throughout the lifecycle Incident Response Threat Management Provide technical oversight for incident response threat detection and vulnerability management Lead root cause analysis and remediation of complex security incidents Stakeholder ...

Police Digital Services and provides visibility and control of information risks for policing. It supports the 24x7x365 nature of police operations, providing a threat detection and response capability for digital services before, during and after cyber-attacks, enabling stakeholders to understand and proactively manage risk across the technology … onboarding and maintenance of system log sources. Configuring and maintaining the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Developing, maintaining, and deploying detection rules and other SIEM content. Creating custom solutions using both low-code and traditional development approaches. Providing support to forces for the configuration of Sentinel ...

building a more resilient and secure environment. Key Responsibilities Take ownership of monitoring and developing SIEM activity across the environment, helping to improve detection capability over time Manage and enhance endpoint and threat detection tooling (including EDR, XDR, and MDR platforms) to strengthen overall security posture Lead … GDPR Deliver and support security awareness initiatives across the business, including phishing campaigns and user education Keep up to date with the evolving threat landscape and proactively suggest improvements to tools and processes Contribute to the organisation’s wider resilience strategy, including backup, disaster recovery, and data protection measures ...

recruiting a Tier 2 SOC Analyst to support advanced cyber threat detection and response within an established Security Operations Centre. The successful candidate will manage escalated security incidents, perform detailed investigations, tune security tooling, and provide direct client support during active cyber events. This role is ideal … analysts Carry out root cause and post-incident analysis Lead incident containment and remediation activities Support firewall alert analysis and network troubleshooting Improve detection accuracy through tuning and optimisation Develop SOC playbooks and automation workflows Maintain high-quality incident documentation Required Experience Previous experience in a SOC or security ...

Compliance Implement and maintain security and access policies for web traffic aligned to enterprise risk frameworks. Integrate with SIEM and analytics platforms to support threat detection and response. Balance security controls with usability, particularly in the browser and colleague web‐access journey. Participate in security reviews, risk assessments ...