12 of 12 Permanent Threat Detection Jobs in Scotland

the Cadworks Building, Glasgow. The Cyber Security Engineering Lead acts as the technical authority across all domains of cloud and endpoint security, taking full ownership of hardening, automation, and threat mitigation. The role is not managerial in the traditional sense it exists to drive technical capability, mentor through engineering leadership, and deliver resilient, scalable defences. This role is hands … of conditional access, Defender for Cloud, Purview DLP, Azure Firewall, and related services. Integrate security into DevOps pipelines, CI/CD, infrastructure-as-code, and container work flows. Automate threat detection and response using Microsoft Sentinel SOAR, custom playbooks, and telemetry pipelines. Platform Security Oversight Own and optimise endpoint security through Intune, ensuring device compliance and integration with … SWG services. Enforce network segmentation, micro-perimeter security, and policy-based routing for hybrid network models. Oversee DNS, web access, and remote gateway protection at the edge. Security Operations & Threat Defence Act as the technical escalation point for complex threat investigations and incident response. Lead red-teaming simulations, vulnerability assessments, and threat hunting activities. Support proactive telemetry More ❯

from security incidents. Develop and maintain incident response plans, ensuring they align with industry best practices. Escalation management in the event of a security incident Follow major incident process Threat Intelligence: Stay abreast of the latest cybersecurity threats and vulnerabilities, integrating threat intelligence into security monitoring processes. Contribute to the development of threat intelligence feeds to enhance … proactive threat detection. Proactively hunt for threats within enterprise environments using SIEM and EDR solutions. Fine-tune SIEM detection rules, correlation alerts, and log sources to reduce false positives. Analyse threat intelligence feeds, map findings to MITRE ATT&CK framework, and provide actionable security recommendations. Collaborate with SOC teams to investigate alerts, escalate incidents, and improve detection mechanisms. Conduct adversary simulation exercises to test and improve detection capabilities. Generate detailed reports on emerging threats, attack trends, and security posture improvements. Monitored and analysed security logs from SIEM platforms to identify suspicious activity. Security Tool Management: Manage and optimise SIEM tools, ensuring they are properly configured and updated to maximize effectiveness. Own the development and implementation More ❯

Security, Identity & Access Management, and Microsoft Teams Calling. Now, we’re growing our Managed Security Services team and looking for a Senior Security Engineer with a passion for proactive threat detection, automation, and innovation. Why Join Quorum? Highly competitive salary + Bonus scheme linked to Microsoft accreditations Flexible holiday buying/selling Home broadband paid Private health care … in our mission to protect, detect, and respond to evolving cyber threats. Your day-to-day will include: Leading as an escalation point for cyber incidents and alerts Integrating threat intelligence into Microsoft Defender and Sentinel Developing, tuning, and managing detection rules and response policies Performing threat hunting across client environments Maintaining and optimising our security tech More ❯

Security, Identity & Access Management, and Microsoft Teams Calling. Now, we're growing our Managed Security Services team and looking for a Senior Security Engineer with a passion for proactive threat detection, automation, and innovation. Why Join Quorum? Highly competitive salary + Bonus scheme linked to Microsoft accreditations Flexible holiday buying/selling Home broadband paid Private health care … in our mission to protect, detect, and respond to evolving cyber threats. Your day-to-day will include: Leading as an escalation point for cyber incidents and alerts Integrating threat intelligence into Microsoft Defender and Sentinel Developing, tuning, and managing detection rules and response policies Performing threat hunting across client environments Maintaining and optimising our security tech More ❯

As a Tier 2 Analyst you will works closely with senior and junior analysts to ensure a seamless SOC operation and act as a bridge between foundational and advanced threat detection and response functions. Responsibilities: * Conducting escalated triage and analysis on security events identified by Tier 1 Analysts, determining threat severity and advising on initial response actions. … conducting deeper analysis on correlated events and identifying patterns or anomalies that may indicate suspicious or malicious activity. * Using OSINT (Open-Source Intelligence) to enrich contextual data and enhance detection capabilities, contributing to a proactive stance on emerging threats. * Monitoring the threat landscape and documenting findings on evolving threat vectors, sharing relevant insights with internal Cyber teams … to enhance overall situational awareness. * Following established incident response playbooks, providing feedback for enhancements and suggesting updates to streamline internal Cyber processes and improving threat response times. .* Coordinating with Tier 3 Analysts and management to refine detection and response workflows, contributing to continuous SOC maturity. * Collaborating with Tier 3 Analysts on tuning SIEM and detection tools More ❯

JOB TITLE: Lead Detection & Response Engineer LOCATION(S): Leeds, Manchester, Bristol, London or Edinburgh HOURS: Full time (This role will include a requirement to work as part of an on-call rota) WORKING PATTERN: Our work style is hybrid, which involves spending at least two days per week, or 40% of our time, at our locations noted above. About … one step ahead of cyber adversaries. We pride ourselves on our innovative approach and our commitment to excellence in cyber security. Join us as a skilled and proactive Lead Detection & Response Engineer in our Cyber Defence Centre. This role involves leading our Detection & Response Engineering team, managing team performance and development, and driving strategic projects that enhance our … cyber defence capabilities! What you'll do Play a leading role in managing our Detection and Response Engineers, supervising individual performance and define tailored objectives and goals. Lead and mentor team members from Junior to Senior Engineer levels, driving the professional development of the team. Participate in recruitment and onboarding activities, and strive to maintain our organisational culture Communicate More ❯

Lead Detection and Response Engineer page is loaded Lead Detection and Response Engineer Apply locations Edinburgh London 125 London Wall Leeds Wellington Place Bristol Manchester Westminster House time type Full time posted on Posted Yesterday time left to apply End Date: August 1, 2025 (13 days left to apply) job requisition id 138541 End Date Thursday 31 July … We support flexible working - click here for more information on flexible working options Flexible Working Options Hybrid Working, Job Share Job Description Summary . Job Description JOB TITLE: Lead Detection & Response Engineer SALARY : From £90,4440 depending on experience and location LOCATION(S): Leeds, Manchester, Bristol, London or Edinburgh HOURS: Full time (This role will include a requirement to … one step ahead of cyber adversaries. We pride ourselves on our innovative approach and our commitment to excellence in cyber security. Join us as a skilled and proactive Lead Detection & Response Engineer in our Cyber Defence Centre. This role involves leading our Detection & Response Engineering team, managing team performance and development, and driving strategic projects that enhance our More ❯

Are you interested in joining a supportive and collaborative team at a firm that values Cybersecurity? If so, read on! A forward-thinking Financial Services firm is seeking a Threat Detection Engineer to join its Cyber Security team. This role is crucial in managing and improving the firm's SIEM solution. You will be responsible for designing and … responsibilities include: SIEM Solution Management: Oversee the full lifecycle from deployment to continuous improvement. Use Case Development: Design and implement use cases to support security monitoring and incident response. Threat Intelligence Integration: Integrate external CTI into the SIEM platform to enhance proactive threat detection. To be considered for this role, you should have a background as a Threat Detection Engineer, ideally with experience using Splunk and Sentinel, and some experience working in a regulated environment (preferably Financial Services). This is a hybrid opportunity, requiring 3 days in the Edinburgh office, with a salary of up to £90,000. For immediate consideration, please contact me at . Please note that this client cannot sponsor We encourage More ❯

a strong strategic remit and hands-on influence across governance, incident response, compliance, and risk. Key Responsibilities Lead the development and delivery of a global cyber security strategy Oversee threat detection, response, incident management, and governance Manage and develop a global team of security professionals Ensure compliance with ISO 27001, Cyber Essentials+, GDPR, and client standards Own and More ❯

design the solution that is both robust and quick to market. The suite of applications developed and maintained by the team are used to enhance the firms information security threat detection, compliance, entitlement management architectures and audit assurance programs. You'll have the freedom to challenge the status quo, mentor fellow engineers, and contribute to our ongoing success … directly with project leads, stakeholders, and engineers to understand the problem, determine, and design the solution that is both robust and quick to market. Enhancing the firms information security threat detection, compliance, entitlement management architectures, and audit assurance programs. Challenging the status quo, mentoring fellow engineers, and contributing to ongoing success while fostering personal and professional growth. Requirements More ❯

security tools, as well as ensuring they continue to function effectively. The role is critical to ensuring the integrity, performance, and visibility of our security event data, enabling effective threat detection and response. As a Senior Infrastructure Engineer, you will: Provision and maintain the technical environments that underpin our detection and response engineering workflows, and automation pipelines More ❯

security tools, as well as ensuring they continue to function effectively. The role is critical to ensuring the integrity, performance, and visibility of our security event data, enabling effective threat detection and response. As a Senior Infrastructure Engineer, you will: Provision and maintain the technical environments that underpin our detection and response engineering workflows, and automation pipelines More ❯