25 of 25 Remote/Hybrid Threat Detection Jobs in England

well-established biotech company using large-scale genetic data and AI to predict disease risk and advance precision healthcare. We’re looking for a Threat Detection Engineer who thrives on innovation and technical ownership. This role is not a traditional SOC position, you’ll focus on building high … impact detection capabilities , shaping how security protects sensitive genomic and AI-driven data at scale. This role offers hybrid/remote working options, a salary range of £60,000 - £80,000 and benefits. Why This Role is Exciting High autonomy : Lead projects from idea to deployment Innovation-driven : Develop ...

well-established biotech company using large-scale genetic data and AI to predict disease risk and advance precision healthcare. We’re looking for a Threat Detection Engineer who thrives on innovation and technical ownership. This role is not a traditional SOC position, you’ll focus on building high … impact detection capabilities , shaping how security protects sensitive genomic and AI-driven data at scale. This role offers hybrid/remote working options, a salary range of £60,000 - £80,000 and benefits. Why This Role is Exciting High autonomy : Lead projects from idea to deployment Innovation-driven : Develop ...

operation of a centralised SIEM capability, aggregating and analysing logs across infrastructure, networks, and applications Define and drive the organisation’s approach to threat detection, log analysis, and incident response, establishing robust baselines and alerting strategies Take ownership of security incident investigation end-to-end, acting … ideal candidate will bring: Significant hands-on experience designing and operating SIEM platforms (e.g. ELK Stack, OpenSearch, Wazuh, Microsoft Defender), including real-world incident detection and response Deep expertise in Linux and Windows system hardening, with strong familiarity across frameworks such as CIS Benchmarks, STIGs, or equivalent Strong scripting ...

Cybersecurity Analyst to join its Cybersecurity Operations Group. This role plays a critical part in protecting a complex global technology environment through continuous monitoring, threat detection, and incident response. The successful candidate will work closely with security and IT stakeholders, contributing to the organisation's defensive capabilities while … remaining at the forefront of the evolving threat landscape. Key Responsibilities Monitor and analyse security events across networks, endpoints, and cloud environments using SIEM, EDR, and related security tools, in line with documented SLAs. Investigate, respond to, and resolve security incidents and alerts, ensuring timely detection, containment ...

Cybersecurity Analyst to join its Cybersecurity Operations Group. This role plays a critical part in protecting a complex global technology environment through continuous monitoring, threat detection, and incident response. The successful candidate will work closely with security and IT stakeholders, contributing to the organisation’s defensive capabilities while … remaining at the forefront of the evolving threat landscape. Key Responsibilities Monitor and analyse security events across networks, endpoints, and cloud environments using SIEM, EDR, and related security tools, in line with documented SLAs. Investigate, respond to, and resolve security incidents and alerts, ensuring timely detection, containment ...

operational security function responsible for protecting the organisation's information assets, technology services, and users. This role oversees all security operation functions, incident response, threat detection, vulnerability management, and continuous improvement of the organisation's security posture. Working closely with Infrastructure, Cloud, Architecture, Governance, Compliance and Risk teams … relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection, triage, containment, eradication ...

Lead or support incident response activities in line with internal procedures and security standards. Escalate major incidents appropriately and provide timely updates to stakeholders. Threat Detection & Prevention Identify emerging threats, vulnerabilities, and attack trends relevant to the organisation. Tune and optimise security tooling to improve detection capability ...

testing and risk analysis to identify and mitigate potential threats. Design and enforce security controls based on identified requirements and gaps in existing structures. Threat Detection and Response Monitor and respond to security incidents ensuring rapid and effective action. Develop comprehensive incident response plans to maintain organisational resilience ...

Police Digital Services and provides visibility and control of information risks for policing. It supports the 24x7x365 nature of police operations, providing a threat detection and response capability for digital services before, during and after cyber-attacks, enabling stakeholders to understand and proactively manage risk across the technology … onboarding and maintenance of system log sources. Configuring and maintaining the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Developing, maintaining, and deploying detection rules and other SIEM content. Creating custom solutions using both low-code and traditional development approaches. Providing support to forces for the configuration of Sentinel ...

Assist in reviewing weaknesses across applications and infrastructure and support risk-based prioritisation.* Partner with engineering teams to resolve issues efficiently and pragmatically.* Refine detection tooling by tuning logic and reducing unnecessary or inaccurate alerts.Operational Readiness & Observability* Strengthen visibility across systems through improved log pipelines, alerting pathways, and monitoring … working within assurance-focused frameworks including ISO 27001, SOC 2, or NIST.* Familiarity with automated governance and policy-driven cloud controls.* Exposure to investigative, detection, or security operations workflows.Qualifications That Would Be Beneficial* Industry security certifications such as CISSP, CISM, CCSP, or GSEC.* Cloud-focused qualifications like AWS Security ...

risk and contributing to the continuous improvement of the company's overall security posture. Responsibilities: Monitor security tools including SIEM (QRadar) and respond to threat detection alerts Triage, analyse and prioritise security (via ServiceNow) Investigate root causes of security issues and design effective remediation solutions Oversee Patch Management ...

application hardening standards, ensuring strong, consistent security configurations across environments Act as an on-call responder for security incidents, taking full ownership from detection through to resolution and post-incident improvement Collaborate with Information Security and leadership teams to ensure compliance with relevant standards and frameworks (e.g. Cyber Essentials … parsing, and alerting rule development Experience working within compliance-driven or regulated environments A strong security mindset, with a focus on access control, threat detection, and auditability The ability to balance robust security controls with operational efficiency High levels of autonomy and sound judgement, with the ability ...

Global are recruiting a Cyber Security Operations Manager to lead SOC delivery in a critical UK government agency. Drive threat detection, response, resilience, and strategy for national infrastructure. Type of Contract: Contract (Inside IR35) Location: Hybrid (Exeter HQ) Key Duties Will Include: Design/lead CSOC for real … time incident detection, response, remediation, stakeholder/external agency coordination. Define vulnerability controls, remediation processes, cyber readiness strategy. Develop incident response plans, use-case logging/monitoring (network analysis, IDS/IPS). Provide strategic advice on monitoring/logging; align with NCSC/ITIL/Mitre ATT&CK. ...

design and aligned with cybersecurity policies. Oversee implementation of security controls including endpoint protection, network security, identity management, and vulnerability management. Ensure proactive threat detection, response, and remediation capabilities. Promote security awareness initiatives across the organisation. Lead the Information Security Group (ISG) comprising of key stakeholders across ...

governance initiatives, including machine-learning-based anomaly detection. - Integrate and optimise multi-factor authentication, biometrics, and mobile identity capabilities. - Drive adoption of identity threat detection and response (ITDR) solutions. - Develop and maintain IAM architecture covering identity lifecycle, governance, and privileged access. - Design secure authentication and authorisation patterns (OpenID ...

applications and privileged roles. Privileged Access & Security Integration Architect and enhance Privileged Access Management (PAM) capabilities, including approval workflows and continuous monitoring. Champion identity threat detection and response (ITDR) approaches to mitigate identity-based attacks. Integrate IAM with HR, IT, and engineering systems to support automated joiner/ ...

including AI. Develop and maintain Huel’s information security strategy, aligned with business priorities, technology risks, and growth plans. Oversee core security capabilities, including threat detection, vulnerability management, incident response, access controls, and continuous improvement. Partner with Engineering, Data, and IT Operations to embed security across the full … across risk management, incident response, vulnerability management, governance, and awareness Experience working with third-party security providers across services such as penetration testing, Managed Detection and Response, and compliance programmes A strong understanding of how to enable the safe use of AI within a business Excellent communication and interpersonal ...

Duties: Implement, manage and actively monitor security controls across e-mail, endpoint, and cloud environments Monitor and respond to security incidents using advanced threat detection tools Assist with compliance activities and audits for ISO27001, Cyber Essentials & Cyber Essentials Plus certification Provide technical expertise on security best practices ...

Duties: Implement, manage and actively monitor security controls across e-mail, endpoint, and cloud environments Monitor and respond to security incidents using advanced threat detection tools Assist with compliance activities and audits for ISO27001, Cyber Essentials & Cyber Essentials Plus certification Provide technical expertise on security best practices ...

where required, to support the ongoing health and availability of hosted or outsourced services Work with the Security Operations Centre (SOC), as required, on threat detection and response activity in conjunction with Information Security and in line with established LCP incident response processes Take ownership of incidents ...

engineering teams to shape future solutions Technology & Environment You'll be working within a modern cybersecurity ecosystem, including: Endpoint & browser security Identity & access management Threat detection and data protection What We're Looking For Experience 5+ years in cybersecurity, networking, or endpoint security Experience in a customer-facing … Security Consultant) Experience with platforms such as Zscaler, CrowdStrike, Palo Alto Networks, or Microsoft Intune would be highly beneficial. Technical Skills Strong understanding of: Threat landscape Endpoint & network security Identity & access management Experience delivering demos, POCs, or technical pre-sales engagements Soft Skills Excellent communication and presentation skills Ability ...

analysis across current and future security posture Ensure alignment with regulatory and data protection requirements Provide hands-on support across monitoring, tooling, and threat detection environments Collaborate with business, risk, and operational teams to align security with organisational requirements Key Requirements Proven experience as a hands-on Security ...

seamless integration of multi-factor authentication with biometric and mobile device capabilities to improve both security and user experience. Champion the adoption of identity threat detection and response solutions to proactively identify and mitigate identity-based attacks. Design secure authentication and authorization patterns (OpenID Connect, SAML, OAuth, Kerberos ...

seamless integration of multi-factor authentication with biometric and mobile device capabilities to improve both security and user experience. Champion the adoption of identity threat detection and response solutions to proactively identify and mitigate identity-based attacks. Design secure authentication and authorization patterns (OpenID Connect, SAML, OAuth, Kerberos ...

leader in its field, and part of a globally successful UK-based business. They design, manufacture, sell and support a range of highly advanced threat detection and security products for global markets in commercial, aviation, defence and security sectors. The products range from small hand-held devices through ...