6 of 6 Remote Cyber Threat Jobs in Glasgow

We’re Hiring: Cyber Threat Intelligence Analyst 📍 Location: Glasgow, Scotland 🏢 Company: Sapphire Are you passionate about understanding cyber threats, uncovering malicious activity, and turning intelligence into action? We’re looking for a Cyber Threat Intelligence Analyst to join our expert team in … Glasgow! What you’ll do: 🧠 Conduct in-depth cyber threat investigations ✍️ Produce high-quality intelligence reports & blogs 🛠️ Research emerging threats and present key findings 🎯 Analyse adversary TTPs and drive CTI maturity 🤝 Collaborate across teams to enhance security strategy What you’ll bring: ✅ Proven CTI & security investigation experience More ❯

security previews, and frontline support. You'll work at the sharp end of cyber defence, directly contributing to investigations involving nation-state threat actors (including IR, CH, and NK based campaigns) while refining your craft across enterprise-scale log ingestion and customised Sentinel integration engineering that will … wide log onboarding into Microsoft Sentinel – deploying standard and custom connectors, Function Apps, and parsers to build tailored SIEM solutions that drive real-world threat detection and response. Log ingestion at scale across numerous hybrid and multi-cloud environments Enhance custom Function Apps and ingestion pipelines Parse, normalise, and … optimise log telemetry to ensure precision and cost control Partner with IR teams on real attacks – tuning rules against live threat actor activity Sync closely with Microsoft teams to build cutting-edge detection capabilities Contribute to internal knowledge base and help shape engineering standards What's needed? Experience building More ❯

Package 🕒 Type: Full-Time | Permanent Are you ready to take on a hands-on role protecting business-critical systems and data from evolving cyber threats? We’re seeking a technically skilled Information Security Specialist to join our team and lead the implementation and operation of essential security controls More ❯

Package 🕒 Type: Full-Time | Permanent Are you ready to take on a hands-on role protecting business-critical systems and data from evolving cyber threats? We’re seeking a technically skilled Information Security Specialist to join our team and lead the implementation and operation of essential security controls More ❯

An exciting opportunity has arisen for a Cyber Security Incident Response Manager to join a leading Financial Services organisation based in Glasgow. This role plays a key part in safeguarding the organisation from cyber threats by identifying, responding to, and mitigating cybersecurity incidents. As part of … the Cyber Detect and Respond Operations Team , you will be instrumental in enhancing security operations, strengthening defences, and ensuring operational resilience. Key Responsibilities Lead real-time response to cyber threats, managing cybersecurity incidents and investigations through to resolution. Analyse security breaches, identify attack vectors, and ensure … Looking For Extensive experience in cybersecurity incident response and operational leadership within a Security Operations environment. Strong knowledge of cyber attack vectors, threat actors, and risk mitigation strategies. Proficiency in cybersecurity metrics, risk management, and incident response best practices. Excellent communication and stakeholder management skills. Ability to More ❯

and strengthen security operations at scale. A key position within a world-class MSSP, leveraging Microsoft Sentinel, Defender for Endpoint, and KQL to enhance threat detection, response, and security automation. Responsibilities include developing automated security workflows, streamlining investigations, and advancing proactive defense strategies. Key Responsibilities: Design and implement automation … for enhanced security operations. Monitor and respond to security incidents and alerts, ensuring the protection of our clients’ data and infrastructure. Conduct in-depth threat hunting and forensic investigations using KQL. Optimize security processes with Defender for Endpoint to detect, contain, and remediate threats. Collaborate with security analysts, engineers … contribute to the overall SIEM architecture. Experience required: Proven experience working with Microsoft Sentinel and Defender for Endpoint. Strong proficiency in KQL for deep threat hunting and security analytics. Knowledge of SIEM automation, playbooks, and integrations. Experience in cybersecurity operations, threat detection, and incident response. Passion for security More ❯