26 to 50 of 113 Threat Intelligence Jobs in England

Security Analyst/Security Engineer London (City) | £80,000–£90,000 | PermanentIf you’re the kind of security engineer who can spot an active threat, contain it calmly, and then harden the environment so it doesn’t happen again — this role is built for you.We’re hiring a hands … security automation Run vulnerability scanning using tools like Tenable, Pentera, Varonis, Secure Score Support compliance work (ISO 27001, Cyber Essentials, NIST, SOC2) Contribute to threat hunting, threat intelligence application and proactive monitoring Support operational resilience: scenario testing, DR exercises, post-incident reviews Assist with security tooling assessments ...

infrastructure, and data. You will play a key role in administering and optimising our cyber security toolset, which includes antivirus solutions, vulnerability scanners, and threat protection services. Your proactive approach will ensure that all cyber security tools are configured according to best practices and compliant with NHS guidelines. Main … responsibilities Main Duties and Responsibilities Administer and optimise the use of the Trust's cybersecurity toolset, which includes antivirus software, vulnerability scanners, SIEM systems, threat protection services, and patch management solutions. Ensure that all cybersecurity tools are configured according to best practices and compliant with NHS guidelines and standards. ...

should have: 7+ years of sales experience in IT/Cyber Security Experience in selling cybersecurity technologies and solutions such as SIEM, SOAR, Threat Intelligence, BAS, Threat Hunting, EDR, NDR, cloud security, and vulnerability management Understanding of SaaS/Cloud Go-to-market Proven track record … skills of the candidate. About Gambit Cyber B.V. Gambit Cyber B.V. is a Netherlands-headquartered cybersecurity company that helps businesses build robust, cyber threat-informed defense through its AI-native and risk-centric Preemptive Threat Exposure Management Platform, KnightGuard. Our core leadership team has a collective experience ...

Splunk, Sentinel, Elastic) to enhance detection and automation capabilities. Drive continuous improvement through ITIL-aligned processes and adherence to CREST standards. Oversee vulnerability management, threat intelligence, and incident response plans. Communicate security posture, risks, and incident outcomes clearly to senior stakeholders. Ensure operational readiness and contribute to maintaining … this SOC Operations Manager role: Proven experience leading SOC operations in a 24×7 or multi-client environment. Strong background in incident management, threat detection, and escalation processes. Technical depth across SIEM/SOAR tooling, preferably Splunk or Microsoft Sentinel. A passion for developing teams — coaching analysts and building ...

solution lifecycle, from initial design through development, testing, and into operational deployment. Demonstrate a strong understanding of leading operational security functions, including SOC operations, threat intelligence, and vulnerability management. Experience of managing the incident response lifecycle, including triage, containment, investigation, remediation, and conducting post-incident reviews. Ability ...

security threats for multiple customers.You will oversee and mentor a skilled team of analysts, fostering a culture of continuous learning, champion best practices in threat detection and incident management, and play a key role in safeguarding our organisation’s digital environment. Communications with key business partners is key regarding … lifecycle of security incidents from detection to resolution. Ensure compliance with SLAs and escalation protocols. Maintain and enhance incident response plans and procedures. Direct threat intelligence collection and analysis. Manage vulnerability assessments and coordinate remediation. Monitor and analyse security events across multiple platforms. Identify, assess, and escalate threats ...

Significant experience in information and cyber security governance, risk, and compliance roles, in a global context Deep knowledge of cyber security operations, incident response, threat intelligence, and vulnerability management. In-depth knowledge of regulatory requirements, security frameworks and industry standards (e.g., ISO 27001, NIST, ITIL). Hands ...

identify threats across diverse platforms. Analyse triggered alerts, triage incidents, and respond to security events on a rota basis, including on-call duties. Conduct threat hunting, vulnerability analysis, and incident investigation using the latest intelligence and tooling. Collaborate with peers and stakeholders to identify gaps in detection coverage … programming (Python, Bash, or similar). Practical experience with SIEM platforms (preferably Splunk), cloud environments, endpoints, and network monitoring. Familiarity with detection engineering, threat intelligence, and modern attacker techniques (TTPs). Sole British National with eligibility for SC security clearance; must meet UK residence and citizenship requirements. Benefits ...

managed clients to both technical and non-technical audiences, Collaborate on improving detection rules and use cases aligned with Mitre Att&ck and threat-informed defense. Participate in a team effort to guarantee that corporate data and technology platform components are shielded from known threats. Collaborate with team members … maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Aid the development and use of threat intelligence throughout the service. Ability to work shifts from our office in Farnborough. What you’ll bring: Experience demonstrated in Security Operations Centre. Experience using Microsoft ...

mission-critical role at the heart of our cybersecurity strategy. As Operational Security Manager, you'll take ownership of our security operations, overseeing threat intelligence, vulnerability management, incident response and the performance of our outsourced 24/7 SOC. You'll work closely with internal technology teams … hands-on experience across SIEM, SOC, Azure, Microsoft 365 and enterprise network environments. You've led incident response, managed third-party suppliers and implemented threat detection strategies in hybrid organisations. Certifications such as CISSP, CEH, CREST or GIAC CIH are part of your toolkit, and your technical depth ...

month) 💷 Salary Range: £70,000-100,000 📈 Equity: Meaningful early-stage equity 🕒 Stage: Seed → Series A 🌐 Website: Cyb3roperationsCyb3r Operations | Supply Chain & Third Party Intelligence About Cyb3r Operations Cyb3r Operations is building a modern third-party risk intelligence platform that gives organisations real-time visibility into: Supply-chain … vendor risk Financial stress indicators Cyber exposure and shadow IT Surface, deep and dark-web intelligence Breach data, impersonation activity and industry-specific signals Our platform ingests and enriches large volumes of external intelligence to help security, procurement, CFO and resilience teams understand exposure instantly. We have: Closed ...

month) Salary Range: £70,000-100,000 Equity: Meaningful early-stage equity Stage: Seed → Series A Website: Cyb3roperationsCyb3r Operations | Supply Chain & Third Party Intelligence About Cyb3r Operations Cyb3r Operations is building a modern third-party risk intelligence platform that gives organisations real-time visibility into: Supply-chain … vendor risk Financial stress indicators Cyber exposure and shadow IT Surface, deep and dark-web intelligence Breach data, impersonation activity and industry-specific signals Our platform ingests and enriches large volumes of external intelligence to help security, procurement, CFO and resilience teams understand exposure instantly. We have: Closed ...

leading organisation to recruit a Senior Vulnerability Management Engineer to join their Information Security team . This hands-on role focuses on Vulnerability and Threat Management across the business, with emphasis on the Warehouse environment . You’ll proactively spot potential threats, combine threat hunting and vulnerability scanning … Qualys for vulnerability scanning. Key Responsibilities: Manage and maintain vulnerability scanning tools, including Qualys. Identify, triage, and assign vulnerabilities, providing mitigation guidance. Conduct proactive threat hunting across the business. Assist Incident Response with investigations and resolution. Review threat intelligence and validate against people, processes, and technology. Prepare ...

detect, defend, and deliver across multiple secure projects.If you love taking ownership, working with cutting-edge tools, and leading the way in proactive threat detection, this is the role for you.As the Lead SIEM Engineer, you will: Leading the design, development and tuning of SIEM content – rules, dashboards, alerts … spot threats fast. Acting as the technical authority on SIEM engineering, ensuring the platform runs efficiently and delivers real value. Working with SOC Analysts, Threat Hunters and Architects to enhance SIEM use cases and boost detection accuracy. Bringing new ideas and threat intelligence to evolve the SIEM ...

heartbeat of what we do. We’re the people on the front line, keeping our customers secure and connected. Whether it’s spotting a threat, fixing an issue, or finding a smarter way of doing things, we’re united by one goal: delivering an exceptional customer experience with speed … loop and building trust during incidents. Spot opportunities to make things faster, smarter, and better through AI and Automation. Always growing: Dive into threat intelligence, security tools, and triage techniques, sharpening your skills every day. Get it done: Work with engineers and senior analysts to protect customers ...

firewalls, vulnerability scanning, web/email gateways, etc.) Strong understanding of networks, operating systems, authentication, cloud platforms, and common attack techniques Experience with threat intelligence, attack simulation, or readiness exercises Familiarity with frameworks like ISO 27001, NIST CSF, PCI DSS, and UK GDPR Clear, confident written and verbal ...

protecting critical systems, assets, and people from cyber security threats. You'll be part of a world-class team, working at the forefront of threat detection and response. We are ideally looking for someone Midlands based who can be on site in Warwickshire 1-2 days a month … exceeds key performance indicators. Lead investigations and remediation efforts for cyber security incidents and alerts across diverse sources, including network, endpoint, cloud environments, and threat intelligence feeds. Perform in-depth trend analysis to identify patterns and inform improvements in organisational controls and threat detection capabilities. Develop, maintain ...

Title: Head of Product – Third-Party CyberSecurity Intelligence Platform Location: London (Remote) Reports to: CEO About the Client: Our client helps enterprises discover, assess, and respond to third-party and supply-chain risks through advanced AI-driven analytics and intelligence . Their mission is to deliver continuous, data … world-class technical team , shape the architectural vision , and drive execution across multiple product streams — including large-scale data pipelines and real-time risk intelligence systems . Role Overview: As Head of Product you will be responsible for owning the product roadmap and execution for one or more major ...

deep expertise in cybersecurity and practical experience in securing AI/ML systems. In this role, you will help clients navigate the rapidly evolving threat landscape of artificial intelligence. You will work across strategy, architecture, and hands-on technical analysis to design resilient systems for high-impact environments. … Responsibilities AI/ML Security Oversight: Evaluate and secure the entire AI lifecycle, including model governance, data pipelines, and deployment patterns. Threat Modeling: Conduct advanced security assessments and risk analysis across cloud, on-premise, and hybrid environments. Risk Mitigation: Advise clients on emerging AI risks such as prompt injection ...

team As a member of the SOC Content Team, you will be responsible for contributing to the creation, deployment, and tuning of threat detection content and delivery of proactive threat hunting. You will work in close partnership with client Lead Analysts, threat intelligence teams, and other … functions to help ensure that detection strategies are tailored to each client’s threat profile and security objectives. This role offers a balance of technical hands-on work, collaboration, and knowledge sharing, with a strong emphasis on continual learning and process improvement. ...

Extended Detection & Response (XDR) solutions using Darktrace and Microsoft Defender - secure, scalable, and successful implementation of advanced detection technologies that enhance organisational threat visibility, improve incident response capability, and support a modern security operations function. - close collaboration with cybersecurity, infrastructure, networking, SOC analysts, service owners, and senior stakeholders … coverage across networks, data centres, and cloud estates. - Guide onboarding, configuration, and tuning of Microsoft Defender XDR (Endpoint, Identity, Email, Cloud Apps, Server, and Threat Intelligence modules). - Ensure correct enablement of telemetry, behavioural analytics, detection logic, and baselining across both platforms. - Coordinate testing, validation, and acceptance ...

Security Lead - Incident Response & Threat Management 4 Months Contract £400 to £500 a day Inside IR35 Remote working *Active Security Clearance is Needed* A well-established consultancy firm is urgently looking for an experienced Security Lead with a strong background in Incident Response and Threat Management to contribute … SecOps analyst support. Core Responsibilities Incident Management: Directing the full incident response lifecycle, including the triage, investigation, and total resolution of security events. Threat Intelligence: Utilising Recorded Future, OpenCTI, and Cribl to correlate alerts and transform raw intelligence into actionable defensive insights. Detection & Monitoring: Designing advanced alerting ...

Security Lead - Incident Response & Threat Management 4 Months Contract £400 to £500 a day Inside IR35 Remote working *Active Security Clearance is Needed* A well-established consultancy firm is urgently looking for an experienced Security Lead with a strong background in Incident Response and Threat Management to contribute … SecOps analyst support. Core Responsibilities Incident Management: Directing the full incident response lifecycle, including the triage, investigation, and total resolution of security events. Threat Intelligence: Utilising Recorded Future, OpenCTI, and Cribl to correlate alerts and transform raw intelligence into actionable defensive insights. Detection & Monitoring: Designing advanced alerting ...

Title: Head of Product – Third-Party CyberSecurity Intelligence Platform Location: London (Remote) Reports to: CEO About the Client: Our client helps enterprises discover, assess, and respond to third-party and supply-chain risks through advanced AI-driven analytics and intelligence. Their mission is to deliver continuous, data-backed visibility … world-class technical team, shape the architectural vision, and drive execution across multiple product streams — including large-scale data pipelines and real-time risk intelligence systems. Role Overview: As Head of Product you will be responsible for owning the product roadmap and execution for one or more major modules ...

team members have every opportunity to grow and learn with the organisation. As part of our Blue Team, you’ll use the latest intelligence and tooling to analyse information systems to ensure effective incident detection and response. Job Description If you are looking to make your mark … ideal candidate will be a self-starter with an inquisitive nature, keen attention to detail, and a strong background in cybersecurity topics such as threat hunting, attacker tactics and techniques, monitoring and alerting, threat intelligence, and incident readiness and response. ...