76 to 100 of 130 Threat Intelligence Jobs in England

will have the opportunity to work across a number of proactive cyber security domains including Cloud Security, Security Operations, Cyber Risk Management and Artificial Intelligence in cyber security. We are seeking an individual who is passionate about cyber security, curious with a demonstrated track record of continuous learning … technological and innovative approaches to deliver the best consulting outcomes for clients, as they work to address the challenges associated with today’s cyber threat landscape. Your Impact SOC Advisory: 4+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management and demonstrated success with serving ...

containment, and coordination of security incidents, working closely with Tier 1 analysts, internal IT teams, and external stakeholders. Taking ownership of complex alerts, support threat hunting and intelligence efforts, and contribute to the refinement of detection rules, playbooks, and response procedures. You will be involved in – • Incident Detection … Response • Threat Intelligence and Analysis • Security Monitoring and Detection Engineering • Compliance, Reporting and Documentation • Vulnerability Management • Collaboration and knowledge sharing This would suit an experienced security analyst who has proved experience working in a busy security department, working in security operations. Strong alert triage, incident response, security monitoring ...

escalation point for analysts, and provide out-of-hours escalation support when required. This is a highly technical, hands-on role where youll lead threat hunting, develop and tune SIEM detections, and help mature SOC processes and response playbooks. Youll also play a key role in mentoring analysts … driven detection, automation, and response capabilities are introduced. You will: Develop, tune, and maintain SIEM detection rules across customer environments Conduct proactive threat hunting and threat intelligence research Act as a senior escalation point for Cyber Security Analysts Coach and mentor analysts, supporting skills development and knowledge ...

maintain high-quality detection content such as correlation searches and risk-based alerting within Splunk Enterprise Security Write and optimise complex queries to support threat detection, proactive threat hunting, and anomaly identification Map detection logic to adversary behaviours using the MITRE ATT&CK Framework, ensuring effective coverage … with SOC analysts, incident responders, and global engineering teams to improve detection and response capabilities Apply strong analytical and problem-solving skills to translate threat intelligence into actionable detection use cases and continuously improve security operations What We're Looking For: Essential: Experience working on multiple projects with ...

operational security function responsible for protecting the organisation's information assets, technology services, and users. This role oversees all security operation functions, incident response, threat detection, vulnerability management, and continuous improvement of the organisation's security posture. Working closely with Infrastructure, Cloud, Architecture, Governance, Compliance and Risk teams … relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection, triage, containment, eradication ...

technical guidance across incident response and investigation activities Act as the senior escalation point for complex or high-impact security incidents Support advanced threat hunting, forensic investigation, and security analysis Contribute to hiring, onboarding, and capability development within the SOC Client Engagement & Security Advisory Act as a senior technical … integration of security tools into SOC services Deliver service reviews, technical briefings, and security posture assessments Advise clients on security improvements, best practice, and threat mitigation strategies Work closely with internal teams to enhance automation and SOAR workflows Operational Improvement Develop and refine SOC processes, procedures, and response playbooks ...

threats in real time. You will work closely with senior stakeholders and external agencies, ensuring cyber security operations align with national standards and evolving threat landscapes. What You’ll Be Doing Leading the Cyber Security Operations Centre (CSOC) and its day-to-day effectiveness Driving real-time detection, response … cyber incident response strategy and playbooks Acting as a senior advisor to leadership on cyber risk, incidents, and resilience Overseeing SIEM, logging, monitoring, and threat detection capabilities Developing a use-case-driven approach to security monitoring and alerting Managing vulnerability identification, remediation, and mitigation processes Leading threat intelligence ...

performing Security Operations Centre (SOC) environment. This role is focused on designing, developing, and optimising detection content to strengthen cyber defence capabilities and improve threat visibility across enterprise environments. You will play a critical role in enhancing detection efficacy, reducing false positives, and ensuring robust coverage against evolving threat landscapes. Key Responsibilities Design and implement detection use cases across SIEM and SOAR platforms using threat intelligence and incident data Develop, map, and maintain detection logic aligned to MITRE ATT&CK frameworks Continuously tune and optimise correlation rules to improve signal-to-noise ratio Validate detection logic ...

performing Security Operations Centre (SOC) environment. This role is focused on designing, developing, and optimising detection content to strengthen cyber defence capabilities and improve threat visibility across enterprise environments. You will play a critical role in enhancing detection efficacy, reducing false positives, and ensuring robust coverage against evolving threat landscapes. Key Responsibilities Design and implement detection use cases across SIEM and SOAR platforms using threat intelligence and incident data Develop, map, and maintain detection logic aligned to MITRE ATT&CK frameworks Continuously tune and optimise correlation rules to improve signal-to-noise ratio Validate detection logic ...

THROUGH UMBRELLA Role Description: "Core Responsibilities: Develop and maintain secure architecture frameworks for enterprise-grade systems, including cloud, on-premises, and hybrid environments Conduct threat modelling, risk assessments, and security gap analyses across infrastructure and application layers Define security standards, reference architectures, and policy controls based on industry frameworks … ensure secure software development lifecycles (SSDLC) Lead strategic initiatives in incident response planning, detection and mitigation strategies, and digital forensics Monitor advancements in threat intelligence and regulatory requirements, advising stakeholders on appropriate countermeasures Produce and maintain architectural documentation, ensuring traceability of security controls and compliance obligations Experience: Demonstrated ...

change control procedures Experience designing or reviewing secure software supply chain and CI/CD security . Ability to interpret CVEs, CVSS scores, and threat intelligence feeds. Strong stakeholder engagement and communication skills with an ability to produce technical reports and articulate risk to non-specialists. Excellent written … technical security reports for assurance cycles Support compliance audit evidence packs (GovAssure/CAF, CE+, ISO 27001) Develop or update security standard documents (e.g. threat modelling, vulnerability mgmt) Support cyber input for IT, research or OT programmes Work with IT teams to co-author and test secure configuration standards ...

Improvement Training & Awareness Secure Architecture Support Compliance and Framework Alignment Essential Skills: Experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management Technical experience securing Microsoft Azure and Amazon Web Services cloud environments as well as on-premise/virtual ...

standards. Support incident management, vulnerability assessments, and SOC-related activities. Contribute to secure software supply chain practices, including CI/CD security reviews. Interpret threat intelligence, CVEs, and CVSS scores to inform risk-based decision making. Collaborate with stakeholders across technical and non-technical teams, clearly articulating risks ...

managed clients to both technical and non-technical audiences, Collaborate on improving detection rules and use cases aligned with Mitre Att&ck and threat-informed defense. Participate in a team effort to guarantee that corporate data and technology platform components are shielded from known threats. Collaborate with team members … maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Aid the development and use of threat intelligence throughout the service. Ability to work shifts from our office in Farnborough. What you’ll bring: Experience demonstrated in Security Operations Centre. Experience using Microsoft ...

Develop and execute a forward-looking security strategy aligned with corporate objectives and industry trends.* Advise executive leadership and the board on risk posture, threat landscape, and investment priorities.* Lead cross-functional initiatives to embed security into digital transformation, innovation, and operational excellence.* Establish KPIs and performance metrics … Security*** Oversee the design and implementation of cybersecurity architecture and controls.* Ensure protection of IT infrastructure, cloud environments, and sensitive data.* Lead incident response, threat intelligence, and vulnerability management programs.* Maintain compliance with global standards (e.g., ISO 27001, NIST, GDPR, HIPAA).**Governance, Risk & Compliance*** Develop and enforce ...

Enhancing detections, rules and playbooks aligned to MITRE ATT&CK Producing clear, high-quality incident reports for both technical and senior stakeholders Contributing to threat intelligence and proactive defence initiatives Staying ahead of emerging TTPs, tooling and adversary behaviour To secure this Senior SOC analyst role, you will ...

operating effectively to protect client environments. Work with teams to assess risks, design controls and define testing requirements. Support senior engineers with SIEM, threat intelligence and malware analysis platforms. Apply patches/updates, raise changes and follow agreed processes. Keep up to date with threats and recommend improvements. ...

event analysis and triage potential threats, including recognising successful and unsuccessful intrusion attempts. Investigate phishing emails, suspicious domains, and IP addresses using OSINT and threat intelligence sources. Proactively monitor, analyse, and escalate security events and incidents in collaboration with other SOC team members. Assist in the configuration, administration ...

from a 3rd party MSSP, investigating and responding to the most complex incidents whilst building out IR Playbooks and Processes and developing the internal Threat Hunting capability. You will act as a mentor to the more junior Analysts within the team and play a pivotal role in shaping … investigations. Proactively look for opportunities to automate, fine-tune and streamline the detection engineering and general SOC capabilities. Utilise various internal and external Threat Intelligence feeds to execute proactive threat hunting campaigns. Mentor and train junior team members through complex incident response investigations. Key Requirements: Significant experience ...

risk assessments for our secure networks, communicate implications to relevant stakeholders, and track progress against action items Stay up to date with the threat landscape affecting our secure networks, using a range of sources such as the corporate Threat Intelligence team Track progress made by a range ...

current active clearance Join our team as a SOC Engineer and become a critical player in safeguarding organizations through cutting-edge security monitoring and threat detection. In this role, you will lead the design, implementation, and optimization of advanced security tools within a dynamic Security Operations Centre, ensuring … managing large client engagements Expertise in SIEM platforms, specifically Splunk Enterprise & Enterprise Security and Elastic Stack/Elastic Security Deep knowledge of detection engineering, threat intelligence frameworks (MITRE ATT&CK), and noise reduction techniques Hands-on experience with data ingestion tools such as Elastic Agent, Beats, Splunk ...

response, and recovery. Design, run, and continuously enhance cyber crisis simulations and tabletop exercises for executives and operational teams—ensuring scenarios reflect the current threat landscape, sector trends, and the client’s critical business services. Act as an outstanding facilitator and “crisis conductor”: guide senior leaders through high‐pressure … decision making, inject realistic developments, challenge assumptions, and drive clear actions, owners, and lessons learned. Translate threat intelligence and emerging attacker tactics into practical resilience improvements—linking likely threats to business impact, critical dependencies, and control or capability gaps. Integrate cyber response and recovery into wider enterprise resilience ...

response, and recovery. Design, run, and continuously enhance cyber crisis simulations and tabletop exercises for executives and operational teams—ensuring scenarios reflect the current threat landscape, sector trends, and the client’s critical business services. Act as an outstanding facilitator and “crisis conductor”: guide senior leaders through high‐pressure … decision making, inject realistic developments, challenge assumptions, and drive clear actions, owners, and lessons learned. Translate threat intelligence and emerging attacker tactics into practical resilience improvements—linking likely threats to business impact, critical dependencies, and control or capability gaps. Integrate cyber response and recovery into wider enterprise resilience ...

largest and most complex partners - helping institutions adopt digital assets securely and with confidence. You will: Advise enterprise clients on risk, compliance, investigations, cyber‐threat intelligence, and digital‐asset management solutions. Lead discovery and solution‐design sessions, translating business goals, compliance requirements, and system architectures into tailored Elliptic … integrations, data‐workflow design, architecture, troubleshooting, and best‐practice implementation, supported by clear documentation. Partner with regional commercial teams - Sales, Customer Success, GPRG, Intelligence, and Product Management - to guide customers through evaluation, onboarding, and adoption. Bridge commercial and technical leadership by capturing and prioritising customer insights that inform product ...

continuously improve security controls across endpoints, identity, networks, SaaS platforms, cloud services, and on-premise systems. Identify vulnerabilities and misconfigurations through scanning, logging, threat modelling, and configuration reviews, driving remediation with technical teams and service owners. Support secure delivery of web applications and APIs, working closely with … reduce organisational risk. Ensure security-related changes and risks are communicated clearly and promptly to the wider business. Stay up to date with threat intelligence and emerging risks, translating insights into actionable security improvements. Provide the Head of IT & Change with a weekly security report. Mentor ...