1 to 25 of 73 Threat Detection Jobs in England

SIEM Analyst/Cyber Threat Detection Analyst - SANS/GIAC Cyber Threat Detection Analyst Location: Wokingham, Berkshire (On-site) Salary: Competitive (dependent on experience) + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC Role Overview As a SIEM Analyst Cyber Threat Detection, you will play a hands-on role within an advanced cyber defence function, focused on proactive threat hunting, adversary behaviour analysis, and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using ...

/Cyber Threat Detection Analyst - SANS/GIAC Cyber Threat Detection Analyst Location: Wokingham, Berkshire (On-site) Salary: Competitive (dependent on experience) + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC Role Overview As a Cyber Threat Detection Analyst … will play a hands-on role within an advanced cyber defence function, focused on proactive threat hunting, adversary behaviour analysis, and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data ...

well-established biotech company using large-scale genetic data and AI to predict disease risk and advance precision healthcare. We’re looking for a Threat Detection Engineer who thrives on innovation and technical ownership. This role is not a traditional SOC position, you’ll focus on building high … impact detection capabilities , shaping how security protects sensitive genomic and AI-driven data at scale. This role offers hybrid/remote working options, a salary range of £60,000 - £80,000 and benefits. Why This Role is Exciting High autonomy : Lead projects from idea to deployment Innovation-driven : Develop ...

well-established biotech company using large-scale genetic data and AI to predict disease risk and advance precision healthcare. We’re looking for a Threat Detection Engineer who thrives on innovation and technical ownership. This role is not a traditional SOC position, you’ll focus on building high … impact detection capabilities , shaping how security protects sensitive genomic and AI-driven data at scale. This role offers hybrid/remote working options, a salary range of £60,000 - £80,000 and benefits. Why This Role is Exciting High autonomy : Lead projects from idea to deployment Innovation-driven : Develop ...

critical role in strengthening and maturing Reapit’s cloud security posture. Your work will span hands on security engineering, deep incident response, proactive threat detection, and collaboration with global teams. Design, implement, and enhance secure Cloud infrastructure, services, and applications in collaboration with DevOps teams. Conduct ongoing security … high quality documentation. Work in a self managing, proactive manner — anticipating security needs, identifying gaps, and driving improvements without close supervision. Incident Response & Threat Detection Respond to SOC alerts. Working with our outsourced SOC, Lead and participate in global incident response activities, including investigation, containment, eradication, and recovery. ...

defend organisations against evolving cyber threats? Join a highly regarded cyber security provider known for its 24/7 managed security operations, advanced threat detection, and real-time incident response. The team helps organisations across multiple industries stay resilient, secure networks, endpoints, and cloud environments from ever-changing … industry-leading security technologies to safeguard client environments. This role provides the opportunity to develop expertise across a wide range of security technologies, enhance detection and response capabilities. If you are ready to play a pivotal role in protecting organisations from cyber threats while growing professionally within a collaborative ...

Managed Security Services (MSSP) function, reporting directly to the Head of SOC Operations. You will act as the senior technical authority, driving excellence in threat detection, incident response, and security operations across a diverse, multi-client portfolio. While you will lead and mentor a team, this … training, coaching, and technical mentoring Ensure accurate and timely case management (HALO) and delivery against SLAs Technical Leadership & Continuous Improvement Provide expert guidance on threat detection, incident response, and threat hunting Lead escalations for complex or high-severity incidents across client environments Develop and optimise detection ...

Lead 6 months Bath - hybrid x3 days onsite x2 remote Active SC/DV clearance required £700 per day outside IR35 The SOC Lead - Threat Hunting & Investigations is responsible for leading advanced threat detection, proactive threat hunting, and complex security investigations across the enterprise. This role … elevating the maturity of SOC investigative and hunting capabilities. The role combines technical leadership, hands-on expertise, and mentorship of analysts. Key Responsibilities Threat Hunting Lead proactive, hypothesis-driven threat hunting activities across endpoint, network, cloud, identity, and SaaS environments Develop and maintain threat hunting playbooks aligned ...

SIEM Detection Engineer | Cyber Security Farnborough (Hybrid – 2 days onsite) Up to £65,000 + Excellent Benefits SC Clearance (or eligibility required) Ready to engineer the frontline of cyber defence? We’re working with a highly respected cyber security operation supporting critical defence environments, seeking a SIEM Detection Engineer to strengthen and evolve advanced threat detection capability across secure enterprise environments. This is a hands-on technical role where you’ll design, build and optimise detection logic across SIEM platforms, working directly against real-world attacker techniques in a mature, high-performing SOC. ...

Midlands. Practitioner CERT capabilities and several team management experience is required – meaning you will be technically capable and experienced within Incident Response & Detection, Threat Intelligence & Hunting, Vulnerability Management, Attack Surface Reduction, Cyber Analysis, etc. You will also have large team leadership and motivation experience in some … monitoring and detecting cyber security threats and incidents in real-time. Collaborate with teams to conduct incident investigations and develop response plans. Lead proactive threat hunting initiatives. Manage vulnerability assessments and penetration testing programs. Develop and maintain threat intelligence capabilities. Essential experience includes: Extensive experience in managing cyber ...

emerging AI technologies. You will play a central role in designing, implementing, and continuously improving security capabilities that are increasingly enhanced by AI-driven detection, automation, and intelligent decision support.The position combines deep technical security engineering with forward-looking exploration of AI-enabled security systems, detection engineering … adaptive security systems that evolve alongside both cyber threats and AI-enabled attack techniques.Core Skills Strong foundation in modern cyber security engineering and detection engineering principles. Experience with security monitoring platforms, SIEM systems, and alerting/detection pipelines. Strong understanding of identity and access management, endpoint security, logging ...

working within Central Government, the Public Sector, or highly regulated scientific environments.Key Responsibilities Define and lead the Cyber Security Operations Centre (CSOC), ensuring effective detection, response, and remediation of cyber incidents Own and continuously improve the cyber incident response plan, ensuring readiness across the organisation Provide strategic cyber security … advice to senior leadership on monitoring, logging, and threat response Establish a use-case driven monitoring and alerting capability to improve threat detection and response times Oversee threat intelligence, vulnerability management, and proactive risk mitigation across the estate Lead the analysis of network traffic and behaviours ...

working within Central Government, the Public Sector, or highly regulated scientific environments.Key Responsibilities Define and lead the Cyber Security Operations Centre (CSOC), ensuring effective detection, response, and remediation of cyber incidents Own and continuously improve the cyber incident response plan, ensuring readiness across the organisation Provide strategic cyber security … advice to senior leadership on monitoring, logging, and threat response Establish a use-case driven monitoring and alerting capability to improve threat detection and response times Oversee threat intelligence, vulnerability management, and proactive risk mitigation across the estate Lead the analysis of network traffic and behaviours ...

week) £65,000 + benefits We're supporting a major organisation operating within a Critical National Infrastructure (CNI) environment to hire a Senior Cyber Threat Hunter Specialist. This is a hands-on, high-impact role embedded within a mature Security Operations Centre, focused on protecting essential services. The Opportunity … play a key role in real-time threat detection and response, working across a complex enterprise environment. This position combines SOC operations, threat hunting, and continuous improvement, giving you the chance to influence detection capability and response maturity. What You'll Be Doing Monitoring & Triage Analyse ...

Operations Manager to take full ownership of its security operations function, ensuring the organisation is protected, resilient, and continuously improving against an increasingly complex threat landscape. This is a high-impact position where you'll lead the security operations function end-to-end, driving improvements across threat detection … include: Leading the day-to-day operations of the Security Operations function, including oversight of any outsourced SOC Managing the full incident response lifecycle (detection through to recovery and post-incident review) Overseeing threat detection, vulnerability management, and cyber defence capabilities Driving improvements across SIEM, SOAR ...

seeking an experienced Security Architect - focusing on Advanced Threat Response (ATR) solution to be a part of the Architecture team, you will design and maintain end-to-end architecture for advanced threat detection and response across cloud, network, and endpoint environments. You will work cross-functionally …/CD pipeline design and implementation Proven experience running vendor evaluations and PoCs for enterprise security platforms Strong understanding of offensive techniques mapped to detection capabilities (aligned to MITRE ATT&CK) Experience integrating security tooling outputs into SIEM platforms and broader security workflows Experience with tools such as SafeBreach ...

lead the design of modern identity security architectures across all IAM domains - Access Management, Identity Governance & Administration (IGA), Privileged Access Management (PAM), Identity Threat Detection & Response (ITDR), and Identity Security Posture Management (ISPM). You will be the technical authority for customer identity programmes, driving Zero‐Trust Identity … regulated sectors such as finance, retail, banking, healthcare, or government. Knowledge of GDPR and regional identity‐centric regulations. DevSecOps & Automation Familiarity. Experience with Identity Threat Detection & Response (ITDR). Key Competencies: Strategic thinking and IAM programme vision. Strong analytical and problem‐solving ability. Excellent communication and stakeholder engagement. ...

responsibilities: Design and develop advanced risk models, including predictive, probabilistic, and scenario-based modelling approaches Apply data science techniques to risk scoring, anomaly detection, and threat assessment across complex datasets Build and deploy machine learning models into production, ensuring scalability and robustness Develop scenario simulations to model potential … predictive, probabilistic, simulation-based) in real environments Deep experience in risk modelling, including risk scoring frameworks, predictive risk analytics, and scenario modelling Experience in threat detection/anomaly detection, such as fraud, compliance, safety, or security use cases Strong grounding in statistics, hypothesis testing, and experimental design ...

QRadar SME/Consultant Role: QRadar Subject-Matter-Expert/QRadar Consultant Specialism(s) : IBM QRadar, SIEM, Log Source Analysis, Detection/Security Engineering, Upgrading & Patching, Tuning, Security Frameworks Type: Contract, Daily Rate Pay Rate: DoE Start: Mid-End May 2026 Location: Remote/Midlands Duration: 3 Months QRadar … support, optimize, and enhance our clients SIEM environment. This role will focus on reviewing the current QRadar deployment, improving log source coverage, strengthening detection capabilities, and ensuring the platform is maintained and upgraded in line with best practices. You’ll act as a subject matter expert, working closely with ...

QRadar SME/Consultant Role: QRadar Subject-Matter-Expert/QRadar Consultant Specialism(s) : IBM QRadar, SIEM, Log Source Analysis, Detection/Security Engineering, Upgrading & Patching, Tuning, Security Frameworks Type: Contract, Daily Rate Pay Rate: DoE Start: Mid-End May 2026 Location: Remote/Midlands Duration: 3 Months QRadar … support, optimize, and enhance our clients SIEM environment. This role will focus on reviewing the current QRadar deployment, improving log source coverage, strengthening detection capabilities, and ensuring the platform is maintained and upgraded in line with best practices. You'll act as a subject matter expert, working closely with ...

available throughout the hiring process. This is an opportunity to play a key role in protecting critical customer environments, leading complex investigations, driving proactive threat hunting activities, and helping shape the future of our security monitoring services. Were looking for someone who enjoys solving difficult security challenges, mentoring others … leading the investigation and response to sophisticated cyber threats and incidents. Youll work closely with internal security teams, customers, and stakeholders to continuously evolve detection capabilities, improve operational maturity, and ensure DXC continues to deliver a world-class security monitoring service. This role operates on a Monday to Friday ...

scaling a Next-Gen AI SOC (Autonomic Security Operations Model) Lead on investigations, and respond to security incidents across multiple client environments Perform threat detection, triage, analysis, and remediation activities Lead incident response activities and provide technical guidance to junior analysts Analyse alerts from SIEM, EDR, IDS/… other security tooling Conduct threat hunting and proactive security monitoring Support continuous improvement of SOC processes, playbooks, and operational procedures Collaborate with infrastructure and engineering teams to strengthen security posture Produce detailed incident reports and client-facing documentation Assist with vulnerability management and security compliance activities Contribute to mentoring ...

role in the technical sales process, helping organisations understand, evaluate, and successfully implement advanced cybersecurity solutions focused on malware analysis, sandboxing, and threat intelligence. The role combines deep technical expertise with customer-facing engagement, working closely with Sales, Product, Engineering, and Customer Success teams to deliver successful outcomes throughout … success and long-term adoption. Represent the business at cybersecurity conferences, trade shows, and industry events. Act as a trusted advisor on malware analysis, threat detection, incident response, and threat intelligence use cases. Gather market and customer feedback to help influence future product strategy and roadmap direction. ...

Lead 6 months Bath - hybrid x3 days onsite x2 remote Active SC/DV clearance required £700 per day outside IR35 The SOC Lead - Threat Hunting & Investigations is responsible for leading advanced threat detection, proactive threat hunting, and complex security investigations across the enterprise click apply ...

Cybersecurity Analyst to join its Cybersecurity Operations Group. This role plays a critical part in protecting a complex global technology environment through continuous monitoring, threat detection, and incident response. The successful candidate will work closely with security and IT stakeholders, contributing to the organisation's defensive capabilities while … remaining at the forefront of the evolving threat landscape. Key Responsibilities Monitor and analyse security events across networks, endpoints, and cloud environments using SIEM, EDR, and related security tools, in line with documented SLAs. Investigate, respond to, and resolve security incidents and alerts, ensuring timely detection, containment ...