101 to 125 of 130 Threat Intelligence Jobs in England

NPSA) guidance. Produce risk outputs linking security tools with user-level behaviours (e.g., DLP, social engineering indicators, high-risk activity). Analyse and interpret threat intelligence to support security policies and governance updates. Contribute to the education, awareness, and training programme, including delivering stakeholder briefings. Review metrics ...

global Security Operations team supporting and protecting critical systems, cloud infrastructure, and fund administration platforms. Key responsibilities include security monitoring, detection engineering, incident response, threat hunting , automation, and collaboration across cloud, identity, application, and network security functions. The role also includes participation in a 24×7 on-call rotation. … detection engineering, KQL/Sigma, and security automation • Strong knowledge of Azure and Windows security environments Additional experience in network security, application security, DFIR, threat intelligence, reverse engineering, or AI security would be considered an asset. As this role involves international relocation, preference will be given to candidates ...

Security function? Cyber security is one of the areas which KPMG has identified for tremendous investment and growth. Our clients face a challenging cyber threat and look to us to help them understand and respond to that threat. This is an opportunity to join a high performing team that … learn, and experience within a Security Operations Centre (SOC). Understanding of SOC tools and technologies, such as SIEM, IDS/IPS, EDR and threat intelligence platforms. Proven experience of managing SOC services and delivering improvements within a SOC environment. Experience bringing a technology perspective to a broad ...

Security function? Cyber security is one of the areas which KPMG has identified for tremendous investment and growth. Our clients face a challenging cyber threat and look to us to help them understand and respond to that threat. This is an opportunity to join a high performing team that … learn, and experience within a Security Operations Centre (SOC). Understanding of SOC tools and technologies, such as SIEM, IDS/IPS, EDR and threat intelligence platforms. Proven experience of managing SOC services and delivering improvements within a SOC environment. Experience bringing a technology perspective to a broad ...

controls including data loss prevention (DLP), encryption, and access controls in the cloud. Participate in security audits, and monitoring to identify potential risks. Translate threat intelligence into actionable engineering requirements, ensuring prioritized risks are reflected in the backlog and data defense strategies. Partner with cloud security teams ...

controls including data loss prevention (DLP), encryption, and access controls in the cloud. Participate in security audits, and monitoring to identify potential risks. Translate threat intelligence into actionable engineering requirements, ensuring prioritized risks are reflected in the backlog and data defense strategies. Partner with cloud security teams ...

triaging incidents and guiding response actions. Ability to translate technical findings into clear, actionable output for both technical and non technical audiences. Confidence interpreting threat intelligence and applying it meaningfully across a client security estate. Comfortable producing operational and service delivery reports. What can we offer you? Healthcare ...

.UK registry and help protect users from online harm. This is an ideal opportunity for someone with a strong interest in cyber threat operations and a desire to build hands‐on experience and develop their skills further. What You’ll Be Doing Investigating domain abuse reports using internal tools … open‐source intelligence (OSINT), escalating complex cases when needed Supporting operational workflows and identifying ways to improve our tools, processes and automation Assisting in the development and refinement of detection rules and identifying patterns in malicious activity Liaising with registrars and other external stakeholders to help resolve abuse cases ...

property of the organisation at all times Monitoring security vulnerabilities and hacking threats in network and host systems Leading security operations (including Managed SOC), threat intelligence, detection, and response capabilities Defining KPIs and KRIs to measure security maturity and providing regular security reporting to Executive and Board level … within a FCA and PRA regulated UK bank, fintech, or other regulated financial services organisation, with demonstrated engagement on CBEST matters (including oversight of threat led penetration testing) at Board Risk Committee level. Demonstrable experience achieving and maintaining ISO/IEC 27001 certification. Strong background in software application security ...

investigation and resolution of security incidents. * Support the configuration, tuning and ongoing improvement of security monitoring tools such as SIEM and EDR platforms. * Use threat intelligence sources to identify emerging risks relevant to the organisation. Required Skills: * Strong understanding of network protocols and system behaviour including TCP/ ...

DomainTools Engage training program with a view towards enabling our customers to more effectively derive value from DomainTools products. Utilise your expertise in Cyber Threat Intelligence to learn where DomainTools data intersects, as well as the competitive landscape. Collaborate with the DomainTools product and engineering teams to define ...

upskilling provided as needed. Design, implement and maintain data pipelines, including log ingestion, enrichment and schema standardisation. Develop and tune security detection content, translating threat intelligence and TTPs aligned to MITRE ATT&CK into actionable, high-value alerts. Manage the full detection content lifecycle: design, test, deploy, monitor ...

Threat and Vulnerability Management function within Cyber Operations is dedicated to safeguarding our organisation against cyber threats by proactively identifying, assessing, and mitigating vulnerabilities and exposures. Our mission extends beyond traditional security practices, incorporating cutting-edge approaches as we move from a traditional VM capability into Exposure Management … Continuous Threat Exposure Management (CTEM). This role will play a critical part in the ongoing transformation of this function. As our Exposure Management Validation Lead, you will take ownership of validating security exposures across our technology estate, coordinating external penetration testing providers on a call-off basis ...

Manager Hybrid We are partnering with a leading global financial services organisation to appoint a Incident Response Manager to join their high-profile Cyber Threat Centre (CTC). This is a critical leadership role at the forefront of defending against sophisticated cyber adversaries, including nation states and organised criminal … groups. As the central hub for Computer Network Operations, the CTC drives incident response, threat hunting, intelligence, and insider threat detection across the organisation. This role offers the opportunity to shape strategy, lead a globally distributed team, and work with cutting-edge technologies in a fast-paced ...

provide consultation and expertise on security matters. Responsibilities: Security Operations & Incident Management: Managing ticket workload within the Security team. Gathering, analysing and acting upon threat intelligence. Responding to on-going security incidents. Responding to active alerts from security systems. Writing change management requests for security-related changes . Vulnerability … technologies and policies. Knowledge of identity and access management principles. Familiarity with security accreditations such as ISO27001, CyberEssentials and CyberEssentials+. Excellent incident response and threat intelligence skills. Strong communication skills to convey security matters to technical and non-technical audiences. Benefits: 25 Days Holiday Birthday ...

PowerShell). Onboarding & Architecture: Proven Ability to Lead Technical Implementation for New Clients, ensuring their environments are correctly Scoped, Baselined & Mapped to Global Threat Frameworks. Leadership Qualities: You have the appetite to Mentor Staff, Manage Technical Escalations & Contribute to Long-Term Growth & Recruitment Strategy of the Engineering function. Certifications … role: Technical Ownership: Leading Design & Implementation of Core Security Tooling & Detection Architectures across the board. Detection Engineering: Developing & Tuning High-Fidelity Correlation Logic & Integrating Threat Intelligence to ensure the SOC stays ahead of Emerging Threats. Operational Excellence: Managing Technical Onboarding Process for New Clients and ensuring Engineering Best ...

solutions to protect the UK’s critical assets. These roles are core to national security, working across projects in cyber defence, secure data systems, threat intelligence, and high-integrity platforms. You will need active enhanced DV to be successful. What you’ll do: Design, develop, and maintain secure ...

person, and authenticating right now. Our solution is AI‐driven, delivering the world’s most trusted Proof of Personhood credential. Through a unique active threat management system, we detect and respond to emerging AI‐driven attacks across the globe, ensuring organisations stay one step ahead of the evolving threat … existing technical advantage and turn it into long‐term, global category dominance. Professional Experience Narrative & Storytelling: A track record of translating complex, science‐based threat intelligence into a compelling narrative that moves the conversation from "compliance" to "existential security imperative" for Boards and CISOs. Market Influence: Proven ability ...

systems that detect and analyse real-world cyber threats at scale. Main Duties of the Role Design and develop Python-based tools for threat intelligence and security click apply for full job details ...

with background research and context. Collaborate with marketing to provide feedback on campaign performance and market signals. Stay up to date on cybersecurity trends, threat intelligence, and The clients products and value proposition. You’ll need: 1–2 years’ experience in a sales or business development role, ideally ...

security in particular: Sentinel, Defender XDR, and SIEM. You will be happy working in all areas of cyber security including alerting, incident management threat and intelligence. If you have got the SC-200 or COMPTIA Security+ certification that would be very welcome. You will need to live a commutable ...

cyber security recruitment firm working exclusively with FTSE 250 businesses and global consultancies. They operate in high-demand areas such as cloud security and threat intelligence, with roles averaging £20k fees. Established for 8 years, consistently profitable, and known for strong client relationships. Why join? Commission ...

cyber security recruitment firm working exclusively with FTSE 250 businesses and global consultancies. They operate in high-demand areas such as cloud security and threat intelligence, with roles averaging £20k fees. Established for 8 years, consistently profitable, and known for strong client relationships. Why join? Commission ...

cyber security recruitment firm working exclusively with FTSE 250 businesses and global consultancies. They operate in high-demand areas such as cloud security and threat intelligence, with roles averaging £20k fees. Established for 8 years, consistently profitable, and known for strong client relationships. Why join? Commission ...

environment Someone who can own deals end-to-end and operate autonomously 💡 Nice to have Start-up/scale-up experience Exposure to threat intelligence, malware, or advanced security tooling Experience building or scaling a new market/product/territory ⚡ The opportunity This is a chance ...