24 of 24 Permanent Threat Intelligence Jobs in the South East

Primary Details Time Type: Full time Worker Type: Employee Threat Intelligence Specialist London Permanent (Hybrid) At QBE, our purpose is to enable a more resilient future. We are an international insurer and reinsurer with a local presence in 27 countries. The Opportunity We’re excited to be hiring … Threat Intelligence Specialist to join our Advanced Threat Services (ATS) Teamon a full-time, permanent basis! You’ll be part of a supportive team that thrives on teamwork and innovation, where your expertise will be valued as we work together to tackle the ever-evolving cyber threat ...

department Covers Cybersecurity, Information Security, IT Audit, IT Risks, IT Controls,Access Management, Security Operation, Threat Management and the portfolio for Change for all these areas.This is a rolling fixed term contract, initially 6 months. Mandatory 5 days on site. You will play a key role in overseeing … threat intelligence activities while ensuring alignment withour global cybersecurity strategy. Develop and maintaindetailed activity plans, timelines, budgets, and resource allocations. Manage ThreatIntelligence Centre accounting, financial operations, and budget forecasts toensure cost optimisation and alignment with strategic objectives. Facilitatecommunication and coordination with global stakeholders across multiple regionsto ensure alignment ...

Defence (ICSD) function. This role is pivotal in designing and implementing next-generation cloud security architectures, securing WTW cloud environments, and driving automation and intelligence within Cybe r Defence Security Platforms & SOC Engineering. This is a hybrid role at London office with a requirement to be in the office … business need. The Role: Agentic AI for Security & Sentinel Advanced Capabilities Lead the adoption and integration of Agentic AI for Security to enable autonomous threat detection, adaptive response, and continuous security posture improvement. Architect and optimise Microsoft Sentinel for SIEM, UEBA, and threat intelligence integration, leveraging Microsoft ...

will include: Triaging security incidents SIEM monitoring for incident investigations/for the development of monitoring dashboards. Use of playbooks, on-line resources and threat intelligence to enhance attack detection Creation of new\ updating existing playbooks Keep up to date with current vulnerabilities and attack techniques Threat intelligence - proving Threat Intelligence services/information to the wider security team Key skills needed: 5 years of experience in a Senior Security Operations role role, with a focus on incident response and reporting within the financial services sector. Proficiency in using SIEM tools, specifically Splunk ...

organisation's Adversarial Exposure Validation (AEV)- including Red and Purple Team activities The role ensures detection, response, and control validation against real-world threat actor tactics, techniques, and procedures (TTPs). Salary : £50,000 - £60,000 depending on experience Dynamic (hybrid) working : Minimum 2 days per week on-site … organisation's Adversarial Exposure Validation (AEV)- including Red and Purple Team activities. The role ensures detection, response, and control validation against real-world threat actor tactics, techniques, and procedures (TTPs). This is a Next step role for an experienced Analyst with a passion for Incident response and Threat ...

hours work. Key Responsibilities: Handle escalations from Level 1 analysts and validate complex alerts. Conduct in-depth analysis using SIEM, EDR, XDR and threat intelligence sources to establish root cause, scope and impact. Lead containment and remediation actions in coordination with senior engineers and incident response leads. Develop … tooling. Provide customers with clear incident summaries, technical explanations and remediation guidance. Identify emerging threats and document relevant tactics, techniques, and procedures. Support structured threat hunting activities and contribute to improving detection coverage. Maintain accurate and comprehensive investigation records within the SOC ticketing platform. Mentor junior analysts, helping improve ...

functional teams to develop comprehensive assessment reports – including detailed findings, risk assessments, and remediation recommendations – making data-driven decisions that encourage continuous improvement Utilize threat intelligence and security research to stay informed about emerging threats, vulnerabilities, industry best practices, and regulations. Apply this knowledge to enhance the firm … assessment strategy and risk management. Engage with peers and industry groups that share threat intelligence analytics Required Qualifications, Capabilities, And Skills 3+ years of experience in delivering covert red teaming, purple teaming, or network exploitation operations using industry-standard tools (e.g., Cobalt Strike or other C2 frameworks), with ...

Responder - IR, Cyber, Salary: Competitive, based on experience + benefitsLocation: London/Hybrid (some travel European travel) About the Organisation This forward-thinking cybersecurity intelligence organisation is recognised as a European leader, partnering with some of the most prominent brands to anticipate, prevent, and respond to emerging threats. … Incident Responder, DFIR, Digital Forensics, SOC Analyst, Lead Incident Responder, Cybersecurity Analyst, SIEM, Microsoft Sentinel, Microsoft Defender, EDR, Azure Security, AWS Security, GCP Security, Threat Hunting, Cyber Threat Intelligence, MITRE ATT&CK, Red Team, Purple Team, Malware Analysis, Cyber Forensics, Security Operations, Security Engineer, On-Call ...

access events. Monitor, analyse, and respond to alerts from client security platforms (MDR/XDR, SentinelOne, Huntress, Fortinet, Mimecast, Avanan, Defender) to ensure rapid threat mitigation. Conduct vulnerability assessments, risk analyses and security audits across client environments, providing actionable recommendations and remediation guidance. Implement and maintain security hardening across … alignment with best practices and frameworks such as ISO27001, NIST, and Cyber Essentials Plus. Lead and coordinate incident response efforts, including root cause analysis, threat containment and post-incident reporting for clients. Collaborate with the Project and Service Desk teams to embed security into deployments, migrations, upgrades, and automation ...

Location(s): UK, Europe & Africa : UK : Frimley || UK, Europe & Africa : UK : London || UK, Europe & Africa : UK : Manchester BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation … week every 2 months and occasional travel to the offce – Frimley, Guildford, Manchester, Gloucester, London Grade: GG10 Referral Bonus: £5,000 BAE Systems Digital Intelligence offers world class Incident Response services to customers across the globe. Our team investigates some of the most complex nation state threat actors ...

Location(s): UK, Europe & Africa : UK : Frimley || UK, Europe & Africa : UK : London || UK, Europe & Africa : UK : Manchester BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation … week every 2 months and occasional travel to the offce – Frimley, Guildford, Manchester, Gloucester, London Grade: GG10 Referral Bonus: £5,000 BAE Systems Digital Intelligence offers world class Incident Response services to customers across the globe. Our team investigates some of the most complex nation state threat actors ...

enjoys uncovering the story behind complex data. This is an opportunity to join a pioneering start-up transforming raw security data into actionable intelligence, helping shape the future of threat detection across global networks. This role sits within their Security Research function and is ideal for someone with … your career. About the Role You'll support the wider security research team by 'farming' the data they generate - turning raw network and threat information into structured, meaningful insights that feed directly into ongoing research projects such as proxy detection, bot activity and, over time, AI-driven threat ...

heartbeat of what we do. We’re the people on the front line, keeping our customers secure and connected. Whether it’s spotting a threat, fixing an issue, or finding a smarter way of doing things, we’re united by one goal: delivering an exceptional customer experience with speed … loop and building trust during incidents. Spot opportunities to make things faster, smarter, and better through AI and Automation. Always growing: Dive into threat intelligence, security tools, and triage techniques, sharpening your skills every day. Get it done: Work with engineers and senior analysts to protect customers ...

team members have every opportunity to grow and learn with the organisation. As part of our Blue Team, you’ll use the latest intelligence and tooling to analyse information systems to ensure effective incident detection and response. Job Description If you are looking to make your mark … ideal candidate will be a self-starter with an inquisitive nature, keen attention to detail, and a strong background in cybersecurity topics such as threat hunting, attacker tactics and techniques, monitoring and alerting, threat intelligence, and incident readiness and response. ...

focus on Azure cloud platforms, while ensuring robust security practices are embedded throughout Main Responsibilities: Support the day-to-day operations of the Counter Threat Unit, ensuring security controls are effectively implemented across infrastructure and cloud environments. Configure, maintain, and optimise security tools and solutions (e.g., SIEM … protect enterprise systems. Monitor systems and networks for anomalies, gather and analyse threat intelligence, and contribute to situational awareness. Skills and experience: Minimum 4 years’ experience within IT Infrastructure Engineering similar roles. Strong knowledge of cloud environments, particularly Azure, and experience managing solutions and tooling within these platforms. ...

Deliver end-to-end security testing engagements, from scoping to client wash-up meetings. Perform application, web, mobile, and infrastructure testing, including intelligence-led and objective-based assessments. Produce clear, detailed reports and presentations for technical and non-technical stakeholders. Develop tools, scripts, and techniques to enhance testing capabilities. … Collaborate with adjacent teams such as Threat Intelligence and Incident Response. What We're Looking For: Proven experience in security testing projects and familiarity with industry tools and techniques. Strong technical skills and interest in areas like adversary emulation, vulnerability discovery, or reverse engineering. Current CHECK Team Leader ...

leading leaders — not just individual contributors. Proven success scaling high-throughput distributed systems in production. Strong background in early-stage B2B SaaS (ideally cybersecurity, threat intelligence, or offensive security tools). Deep technical expertise across: Cloud: AWS, Azure IaC: Terraform, Ansible Platforms: Kubernetes (EKS), ECS, Docker, Lambda, Airflow ...

What You Will Do as a Pen Tester: Lead end-to-end security testing projects including scoping, execution, and reporting Conduct application, infrastructure, and intelligence-led tests to identify vulnerabilities Produce clear technical and non-technical reports for diverse stakeholders Ensure safe use of testing tools and develop improvements … scripts and techniques Collaborate with Threat Intelligence, Incident Response, and broader security teams to share knowledge What We Look For in a good Pen Tester: Proven experience in delivering security testing projects and understanding client risk mitigation needs Technical skills in adversary emulation, vulnerability discovery, and reverse engineering ...

surface, vendor ecosystem, workforce, and trust relationships. Our integrated cyber risk posture management platform combines comprehensive security ratings, instant risk assessments, templated security questionnaires, threat intelligence capabilities, and agentic AI to give organizations a holistic view of their risk surface. At UpGuard, our Sales team has not only … check and reference checks. Also please note that at this time, we cannot support candidates requiring visa sponsorship or relocation. We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team ...

content creation agency is building a superb reputation for partnering B2B tech brands and disruptive innovators. It tackles really topical issues such as threat intelligence across the dark web, sustainability, fintech, AI and cyber security. Led by experienced industry professionals with proven track records growing top ranked … professional services and fintech clients on integrated communications campaigns targeting b2b, business and national press. Projects include: News-jacking current affairs - using data and intelligence spanning the dark web to position spokespeople on global affairs and risks. Proactive media relations led work spanning national, business and trade press. Content ...

already attractive pipeline and be responsible for driving new business revenue across the companies core services, including MDR, SOC, EDR/XDR, Threat Intelligence, and Pen Testing. You will work almost fully remotely but be expected to come to the Wakefield office once a month. This role would ...

already attractive pipeline and be responsible for driving new business revenue across the companies core services, including MDR, SOC, EDR/XDR, Threat Intelligence, and Pen Testing. You will work almost fully remotely but be expected to come to the Wakefield office once a month. This role would ...

research, and 24/7 Managed Detection and Response services. The team operates in a hybrid working model, collaborating closely with global product and threat research teams to deliver world-class detection, response, and cloud security solutions. About The Role As a Field CISO, your primary responsibility will … 4+ years in a similar senior cybersecurity leadership, architecture, or advisory role, responsible for revenue growth. Strong understanding of security operations, vulnerability management, threat detection, cloud security, and compliance frameworks. Knowledge of Rapid7's Platform and its components, including Managed Detection and Response (MDR), Exposure Management (Surface Command, Exposure ...

research, and 24/7 Managed Detection and Response services. The team operates in a hybrid working model, collaborating closely with global product and threat research teams to deliver world-class detection, response, and cloud security solutions. About The Role As a Field CISO, your primary responsibility will … 4+ years in a similar senior cybersecurity leadership, architecture, or advisory role, responsible for revenue growth. Strong understanding of security operations, vulnerability management, threat detection, cloud security, and compliance frameworks. Knowledge of Rapid7's Platform and its components, including Managed Detection and Response (MDR), Exposure Management (Surface Command, Exposure ...