1 to 25 of 62 Permanent Threat Intelligence Jobs in the UK

Incident and Vulnerability Manager This role is for an experienced professional in vulnerability management and threat intelligence to join our Cyber Operations team. You will work closely with colleagues across the organisation to further mature and continuously improve our cyber defence capabilities. Cyber Operations forms part … will lead and continuously enhance the management of vulnerability assessments across our hybrid IT estate. You will prioritise remediation activities using a risk based, threat informed approach, collaborating with stakeholders to strengthen the security posture of our systems and services. You will also oversee our threat intelligence ...

Security Operations Center. Reporting to the Chief Security Officer, you will architect and scale a next-generation SOC advancing incident response, integrating cutting-edge threat intelligence, and strengthening the systems that protect and sustain our digital operations. This is an opportunity to build something exceptional and lead … defence strategies aligned with business priorities and risk posture. Act as the senior escalation point for complex security incidents and coordinate cross-functional responses. Threat and Vulnerability Management Integrate advanced threat intelligence into detection and response workflows to identify emerging threats proactively. Develop an automated, risk-based ...

promptly. You'll also take ownership of improving operational maturity tuning alerts to reduce false positives, implementing automation through scripting or SOAR tooling, integrating threat intelligence, and establishing meaningful security metrics that clearly demonstrate risk reduction and performance to stakeholders across IT and the wider business. CYBER SECURITY … reduce false positives * Ability to define, measure, and report on security KPIs and risk metrics * Knowledge of automation techniques (SOAR tools, scripting) * Understanding of threat intelligence and proactive threat hunting * Strong communication and stakeholder engagement skills DESIRABLE * Familiarity with Azure and AWS security operations * Understanding of regulatory ...

Role: Senior Technical Threat Intelligence Analyst Career Level: Senior Analyst About Accenture Cyber Intelligence (ACI) ACI is a global team that spans 13 countries and 4 continents and speaks more than 30 languages. We are passionate about delivering intelligence analysis, and providing industry-leading analytic insights … which we work and live. It is personal to all of us.” – Julie Sweet, Accenture CEO Who You Are You are a research-minded threat intelligence professional with experience of analysing and tracking threat campaigns, adversary tooling and infrastructure. You stay abreast of the latest threats, recognize ...

Identify and assess critical vulnerabilities and zero-day threats, determining when expedited remediation is required. Assess vulnerability severity based on real-world exploitability, considering threat intelligence, exposure, asset criticality, and compensating controls. Maintain a defensible position on exploitable vs non-exploitable vulnerabilities, clearly documenting risk decisions and rationale. … Assess and articulate business risk based on exploitability, asset value, and threat intelligence. Remediation Coordination Work closely with internal technical teams and third-party partners to ensure vulnerabilities are remediated within agreed SLAs and risk tolerances. Develop remediation plans, monitor progress, and escalate high-risk issues where necessary. Support ...

vulnerability scanning, triage, reporting, and remediation tracking across multiple business units. Serve as the subject matter expert for vulnerability management, contextualising scan results using threat intelligence and business risk. Combine vulnerability data with active threat intelligence to prioritise critical exposures and reduce real-world risk. Work … tools such as Tenable, Qualys, or Rapid7, and ability to translate scan output into actionable remediation plans. Demonstrated ability to merge CVE data and threat intelligence to drive risk-based prioritisation. Experience guiding analysts or leading operational cyber teams with accountability for performance. Ability to bridge technical security ...

significant modernisation of its technology and security environment. As part of this programme, the organisation is strengthening its Security Operations capability to improve threat detection, response, and operational automation across its infrastructure and cloud platforms. This role sits within a small, hands-on Security Operations team reporting into … internal engineers focus on detection quality, incident response, and improving operational capabilities. The position is intentionally broad - blending elements of detection engineering, alert investigation, threat hunting, and automation - and will play a key role in helping the firm gradually bring more detection and response capability in-house over time... ...

will have genuine influence. Own the end-to-end performance of a mature, multi-client SOC Drive real improvements to tooling, playbooks, and threat detection capability Mentor and develop a team of skilled Analysts and Incident Responders Engage directly with senior stakeholders and shape security strategy Work within … through containment and resolution Ensure SLA adherence, clear escalation paths, and consistent client communication Maintain, test, and continuously improve incident response plans and playbooks Threat Intelligence & Vulnerability Oversight Direct threat intelligence collection and analysis to support proactive defence strategies Oversee vulnerability management, ensuring timely identification ...

Manager – Key Responsibilities SOC Leadership & Operations Oversee daily SOC operations supporting a global 24×7 security monitoring capability Guide SOC analysts (L1–L3) and threat hunters to ensure efficient investigation and response Monitor operational performance and ensure adherence to SLAs and response timelines Drive continuous improvement across SOC processes … ensure aligned service delivery Deliver operational dashboards, performance reports, and executive summaries Track SOC metrics including MTTD, MTTR, SLA performance and investigation quality Threat Intelligence & Proactive Security Lead proactive threat hunting initiatives Ensure effective use of threat intelligence feeds and behavioural analytics Support security validation ...

Security Operations & Engineering Manager – Threat Defence 2 days/week onsite SC Clearance required (current or eligible) We are seeking an experienced Security Operations and Engineering Manager to lead cyber defence and operations for a globally critical organisation. This role reports to the Head of Threat Defence … Cyber Security Operations and combines technical leadership, team management, and strategic oversight of security operations, engineering, and threat defence capabilities. You will manage a high-performing team, drive continuous improvement, and support a combination of in-house and external security services. What you'll do: Lead cyber security operations ...

team members have every opportunity to grow and learn with the organisation. As part of our Blue Team, you’ll use the latest intelligence and tooling to analyse information systems to ensure effective incident detection and response. Job Description If you are looking to make your mark … ideal candidate will be a self-starter with an inquisitive nature and a keen interest when it comes to technical cybersecurity topics such as threat hunting, attacker tactics and techniques, monitoring and alerting, threat intelligence, and incident readiness and response. Key responsibilities of the role are summarised ...

Extensive hands-on experience in vulnerability management, threat intelligence, and security testing, with strong practical knowledge of tools such as Tenable and the ability to translate scan outputs into clear, actionable remediation tasks. Demonstrated ability to drive change and improve operational performance, consistently challenging the status … guiding vulnerability analysts, supporting their development and ensuring focus on high-priority, business-critical risks. Strong capability to correlate vulnerability data with active threat intelligence, enabling effective threat-led prioritisation and ensuring remediation of the most exploited and critical vulnerabilities first. Excellent communication skills with the ability ...

incident response activities, while also advancing adversarial exposure validation through red and purple team exercises. The successful individual will be critical in enhancing threat detection, response, and control strategies against real-world cyber threats within a high-security environment. Key Responsibilities: Lead digital forensics and incident response (DFIR) activities … maintenance of security policies, standards, and incident response playbooks. Job Requirements: Significant experience in digital forensics, incident response, and malware analysis. Understanding of cyber threat intelligence, adversarial emulation tools, and common TTPs (Threat, Techniques, Procedures). Experience with forensic software such as Magnet Axiom or Autopsy. Proven ...

holistic view of the organisation's security posture. Present findings and recommendations to senior leadership and governance forums. Collaborate with internal teams (e.g., threat intelligence, compliance, audit) to ensure assurance activities reflect current threat landscapes. Act as a primary interface for business units, ensuring alignment between assurance … technical and business information to assess risk. Experience in supply chain security assurance. Knowledge of secure by design principles and accreditation processes. Understanding of threat intelligence and its application in assurance. Experience working in regulated or high-assurance environments (e.g., government, finance, defence). Familiarity with risk management ...

holistic view of the organisation's security posture. Present findings and recommendations to senior leadership and governance forums. Collaborate with internal teams (e.g., threat intelligence, compliance, audit) to ensure assurance activities reflect current threat landscapes. Act as a primary interface for business units, ensuring alignment between assurance … technical and business information to assess risk. Experience in supply chain security assurance. Knowledge of secure by design principles and accreditation processes. Understanding of threat intelligence and its application in assurance. Experience working in regulated or high-assurance environments Familiarity with risk management tools and methodologies. What ...

mentoring others. Senior SOC Analyst essential skills Proven experience working within a SOC environment, ideally 3+ years Strong knowledge of SIEM, incident management and threat intelligence Experience with cloud security, networking and information security principles Understanding of IDAM, RBAC and joiners, movers and leavers processes Ability to support … processed and submitted to the client in conjunction with this vacancy only. Key skills: Senior SOC Analyst, SOC, SIEM, Incident Response, Cloud Security, Threat Intelligence, IDAM, ISO 27001, Team Leadership ...

premise and hybrid environments. The role combines platform architecture, technical troubleshooting and customer advisory, supporting organisations that rely on the platform to manage cyber threat intelligence and security operations. Key responsibilities include: Guiding customers through the design and deployment of their platform infrastructure. Advising on sizing, architecture … Strong troubleshooting and problem-solving skills. Previous experience in customer-facing technical roles. Nice to have: Experience within the cyber security sector. Exposure to threat intelligence platforms or security operations environments. Personal qualities: Strong communication skills — able to explain complex architecture clearly. Analytical mindset and structured approach ...

mentoring others. Senior SOC Analyst essential skills Proven experience working within a SOC environment, ideally 3+ years Strong knowledge of SIEM, incident management and threat intelligence Experience with cloud security, networking and information security principles Understanding of IDAM, RBAC and joiners, movers and leavers processes Ability to support … processed and submitted to the client in conjunction with this vacancy only. Key skills: Senior SOC Analyst, SOC, SIEM, Incident Response, Cloud Security, Threat Intelligence, IDAM, ISO 27001, Team Leadership ...

that support modern security operations. Key Responsibilities Define and own the ServiceNow SecOps architecture across modules including Security Incident Response (SIR), Vulnerability Response (VR), Threat Intelligence, and Configuration Compliance . Design and deliver integrations between ServiceNow and cybersecurity tools such as SIEM, SOAR, EDR platforms, threat intelligence ...

host of 'behind the scenes' support staff, you've got all the ingredients to make it a magical experience! Responsibilities: Lead and conduct complex, intelligence-led investigations into data theft and streaming piracy using an all-source approach. Collect, preserve, and document digital evidence from various sources, including online … networks, dark web marketplaces, and compromised systems, in compliance with legal standards. Utilise OSINT, HUMINT and CYBINY/DNINT and other cyber threat intelligence to uncover patterns, identify infringers, and develop attribution information. Identify and implement new anti-piracy technologies. Collaborate with internal IT, Products, and Sales teams ...

Enterprise Account executive (New Logo) UK Compensation: Up to six figure base salary + double OTE + RSUs Intaso are partnered with a leading threat intelligence security vendor focused on turning complex threat data into clear, actionable insights so security teams can make better decisions and reduce … risk The Company: 📍Global leader in Threat Intelligence Security Software 📍Trusted by thousands of organizations worldwide across enterprise, government, and service provider sectors. The Role: 📍Enterprise sales role selling in some of the UK's Largest clients 📍100% New logo role 📍Lots of fantastic new logo opportunities ...

misconfigurations across our estate, shining a light on hidden risks before they can impact our customers or operations. We deliver clear, actionable, and intelligence-led reporting that empowers teams to remediate effectively, strengthens security controls, and ensures we stay ahead of evolving threats. Through continuous monitoring, transparent communication … misconfigurations across infrastructure, applications, assets, and code whilst categorising and prioritising vulnerabilities based on severity, business impact, and criticality. Continually monitoring vulnerability data, threat intelligence, and scanning outputs to detect emerging risks. Proactively recording, managing, and escalating risks and produce clear, actionable vulnerability reports for technical and business ...

Security course (NCFE Certificate in Cyber Security Practices, Level 2) equips you with the practical skills employers in Greater Manchester are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast … weeks Format: Online, practical workshops Schedule: Mon-Thurs 6-9PM What you’ll learn Cyber Principles: Understand core frameworks and security principles. Threat Intelligence: Develop expertise to identify risks and analyze threats. Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls. Incident Response: Prepare ...

Security course (NCFE Certificate in Cyber Security Practices, Level 2) equips you with the practical skills employers in Greater Manchester are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you ll gain hands-on experience that prepares you for today s fast … weeks Format: Online, practical workshops Schedule: Mon-Thurs 6-9PM What you ll learn Cyber Principles: Understand core frameworks and security principles. Threat Intelligence: Develop expertise to identify risks and analyze threats. Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls. Incident Response: Prepare ...

fully-funded Cyber Security course (NCFE Certificate in Cyber Security Practices, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you ll gain hands-on experience that prepares you for today s fast … Duration: 10 weeks Format: Online, pratical workshops Schedule: Mon-Thur 6PM-9PM What you ll learn Principles: Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond ...