11 of 11 Cyber Threat Jobs in Glasgow

security previews, and frontline support. You'll work at the sharp end of cyber defence, directly contributing to investigations involving nation-state threat actors (including IR, CH, and NK based campaigns) while refining your craft across enterprise-scale log ingestion and customised Sentinel integration engineering that will … wide log onboarding into Microsoft Sentinel – deploying standard and custom connectors, Function Apps, and parsers to build tailored SIEM solutions that drive real-world threat detection and response. Log ingestion at scale across numerous hybrid and multi-cloud environments Enhance custom Function Apps and ingestion pipelines Parse, normalise, and … optimise log telemetry to ensure precision and cost control Partner with IR teams on real attacks – tuning rules against live threat actor activity Sync closely with Microsoft teams to build cutting-edge detection capabilities Contribute to internal knowledge base and help shape engineering standards What's needed? Experience building More ❯

based in Glasgow, on multiple workstreams of a variety of complexity and scale. This is a mid-Tier position within the Cyber Threat Analysis Centre (CTAC), responsible for advancing the initial work conducted by Tier 1 Analysts and providing more in-depth analysis of potential threats to … Analyst will work closely with senior and junior analysts to ensure a seamless SOC operation and act as a bridge between foundational and advanced threat detection and response functions. This is a full-time on-site role, covering a 24x7 shift pattern, which will come with a shift allowance. … SIEM solutions utilising Kusto Query Language (KQL) Identify and escalate critical threats to Tier 3 Analysts with detailed analysis for further action Monitor the threat landscape and document findings on evolving threat vectors Follow established incident response playbooks, providing feedback for enhancements and streamlining CTAC processes Co-ordinate More ❯

Package 🕒 Type: Full-Time | Permanent Are you ready to take on a hands-on role protecting business-critical systems and data from evolving cyber threats? We’re seeking a technically skilled Information Security Specialist to join our team and lead the implementation and operation of essential security controls More ❯

Package 🕒 Type: Full-Time | Permanent Are you ready to take on a hands-on role protecting business-critical systems and data from evolving cyber threats? We’re seeking a technically skilled Information Security Specialist to join our team and lead the implementation and operation of essential security controls More ❯

Element has an opportunity for a Senior Cyber Engineer to become part of our growing Cyber Engineering Services. A successful candidate for the Cyber Engineer role will possess a solid foundation as a security engineer, responsible for ensuring the security of complex global environments … expertise in application, cloud, and infrastructure domains. In this hybrid role you will design and implement highly secure technical solutions to protect against cyber threats and potential cyber-attacks. The role will be focused on detection engineering within the strategic Element security tooling. Core Responsibilities Assist … in the design and implementation of technical solutions and security toolsets to address security vulnerabilities, mitigate cyber threats, and automate tasks. Contribute to the planning, implementation, and management of the security operations tooling roadmap. Collaborate on the engineering, implementation, management, monitoring, and upgrades of cyber security More ❯

UK and Europe. As part of the Enterprise Security & Fraud (ES&F) organization, you will be at the forefront of protecting clients from cyber threats while building and evolving critical identity and access management services. Key Responsibilities Design, develop, and enhance modern cloud-native cybersecurity services, spanning database More ❯

to hardware and software, including OOH maintenance Participate in a rota to provide emergency technical support Keep informed on the latest technologies and cyber threats to strengthen network defences Skills will include: Certifications such as CCNA, plus advanced certifications like CCNP or CCDP Deep understanding of routing protocols More ❯

An exciting opportunity has arisen for a Cyber Security Incident Response Manager to join a leading Financial Services organisation based in Glasgow. This role plays a key part in safeguarding the organisation from cyber threats by identifying, responding to, and mitigating cybersecurity incidents. As part of … the Cyber Detect and Respond Operations Team , you will be instrumental in enhancing security operations, strengthening defences, and ensuring operational resilience. Key Responsibilities Lead real-time response to cyber threats, managing cybersecurity incidents and investigations through to resolution. Analyse security breaches, identify attack vectors, and ensure … Looking For Extensive experience in cybersecurity incident response and operational leadership within a Security Operations environment. Strong knowledge of cyber attack vectors, threat actors, and risk mitigation strategies. Proficiency in cybersecurity metrics, risk management, and incident response best practices. Excellent communication and stakeholder management skills. Ability to More ❯

A leading organisation in the offshore and renewables sector is seeking an experienced Information Security Manager (ISM) to head its Cyber Security strategy and best practices. Operating in the booming renewables industry, they specialise in installation, construction, offshore renewables, decommissioning, and engineering. This permanent role offers the flexibility … Additionally, you will champion security awareness initiatives, support audit and compliance efforts, and contribute to disaster recovery planning to strengthen resilience against evolving cyber threats. What They're Looking For: Ideally, you're an experienced security leader with a strong technical background and a passion for driving cybersecurity … ISO) and securing modern digital environments. A strong background in risk assessment, security governance, and compliance. Familiarity with OT/SCADA systems and cyber risks in industrial or maritime settings (advantageous). Exceptional leadership, stakeholder management, and communication skills, with the ability to engage both technical teams and More ❯

and strengthen security operations at scale. A key position within a world-class MSSP, leveraging Microsoft Sentinel, Defender for Endpoint, and KQL to enhance threat detection, response, and security automation. Responsibilities include developing automated security workflows, streamlining investigations, and advancing proactive defense strategies. Key Responsibilities: Design and implement automation … for enhanced security operations. Monitor and respond to security incidents and alerts, ensuring the protection of our clients’ data and infrastructure. Conduct in-depth threat hunting and forensic investigations using KQL. Optimize security processes with Defender for Endpoint to detect, contain, and remediate threats. Collaborate with security analysts, engineers … contribute to the overall SIEM architecture. Experience required: Proven experience working with Microsoft Sentinel and Defender for Endpoint. Strong proficiency in KQL for deep threat hunting and security analytics. Knowledge of SIEM automation, playbooks, and integrations. Experience in cybersecurity operations, threat detection, and incident response. Passion for security More ❯

Kingdom + Travel to Clients on Request The Client Success Team is composed of Client Success Managers (CSMs) who are well versed in cyber security, and whose purpose is to assist customers in getting the most value out of BlueVoyant platform and solutions. BlueVoyant’s renowned cybersecurity SaaS … offerings, benefits, SOPs and deliverables without hesitation Advanced understanding of assigned BV Specific Product sets Qualifications: 5+ years of client services, IT and cyber security background Extensive experience managing large, complex accounts with multiple LOB’s and stakeholders Able to operate independently with minimal support from leadership Able … and top national firms Security +, Network +, CISSP, and other relevant certifications preferred About BlueVoyant At BlueVoyant, we recognize that effective cyber security requires active prevention and defense across both your organization and supply chain. Our proprietary data, analytics, and technology, coupled with deep expertise, works as More ❯