7 of 7 Insider Threat Jobs in London

Insider Threat Investigations Lead Salary - 110,000 + Discretionary Bonus Hybrid working - x2 day's per week in office (London) Spencer Rose are partnered with a leading financial services organisation who are currently on the look out for an Insider Threat Investigations Lead. Within this role the Insider Threat Investigations Lead … will be responsible for the identification, prevention, and response to risks posed by individuals with authorized access to their organizational assets. The Insider Threat Investigations Lead will have the following responsibilities - Drive the execution of their insider threat program, which will include the development of tools, standards, procedures and processes with the aim to … detect and prevent insider threats. Manage investigations of suspected insider threat incidents Work collaboratively with the intelligence team to develop threat modelling deliverables The Insider Threat Investigations Lead will need to have the following skills/experience - 7+ years of experience in information security, preferably within Investigations or similar ie Security More ❯

and maintain executive-level documentation, including standard operating procedures (SOPs), playbooks, process flows, and risk reports, using diverse tools and data sources. Develop, refine, and maintain insider threat indicators and use case scenarios to enhance detection capabilities. Design and deliver insider risk awareness initiatives, highlighting emerging trends and fostering a culture of security, accountability, and … vigilance. Identify and implement improvements to detection and response processes based on lessons learned and evolving threat landscapes. Collaborate with internal partners on threat detection and response initiatives to strengthen organizational resilience. Qualifications Bachelor's degree in Information Security, Cybersecurity, Computer Science, or a related field; advanced degree preferred. Experience in insider risk, counterintelligence, cybersecurity, or … a related discipline. Hands-on experience with insider threat detection tools such as SIEM, UEBA, UAM, DLP, and other monitoring technologies. Strong understanding of insider risk frameworks, regulatory and privacy requirements, and relevant laws. Familiarity with SOC or Fusion Centre operations, including threat monitoring, intrusion detection, incident response, and analysis. In-depth knowledge of More ❯

Strong scripting skills (Python, PowerShell) Technical Expertise Expert in SAML, OAuth, OIDC Skilled with EDR platforms, MDM solutions (Jamf, Intune, Workspace ONE, MobileIron) Experience with DLP, insider threat programs, and endpoint/user zero trust Familiarity with SOC2, ISO 27001, GDPR, HIPAA Execution & Impact History of cutting manual processes by 50%+ through automation Proven ability to More ❯

our future! You will work with This team is responsible for safeguarding the company's digital assets and ensuring robust cyber resilience. They cover various aspects of cybersecurity, including threat and exposure management, security engineering, cyber incident response, security DevOps, and insider threat. Each team has specific responsibilities and areas of focus, collaborating closely with other digital … and comprehensive approach to cybersecurity. Let me tell you about the role This role is responsible for setting the strategic and technical direction for cyber security across the Cyber Threat and Engineering (CTE) portfolio. This includes defining and maintaining portfolio-wide security strategies, technical requirements, and reference architectures that guide the secure design and operation of CTE platforms, products … and services. The team also leads horizon-scanning and innovation efforts to identify new technologies and approaches that can improve bps cyber resilience. What you will deliver The cyber threat insights that will drive actions to: Identify and remediate weaknesses in bp's security controls (people, process, and technology). Improve our overall monitoring detection and response capabilities. Generate More ❯

Technology Risk Adversarial & Cyber Resilience Testing Director, you will have responsibility for designing and executing red team operations and cyber resilience testing against Starling Bank. Operations will emulate real threat actors and target cutting edge technology in Starling Bank's platform as well as ranging across the endpoint estate. You will use emerging threat intelligence to inform and … and improve defensive measures by collaborating with the SOC team to enhance detection capabilities Assist in translating red team tactics into actionable intelligence for blue team operations Assist developing threat models and 'worst case scenario' playbooks based on emerging global risks, including APTs, insider threats and supply chain compromise and simulate real-world scenario to evaluate system … are desirable: Experience in Ai/Ml Systems Security, Including LLMs, transformers and model interpretability Certification such as OSCE, CCT, OSEP, OSMR or similar Prior experience in incident response, threat intelligence, or ethical hacking at an enterprise level Background in regulatory environments (e.g. ISO 27001, SOCII, GDPR or AI Act compliance) Software engineering expertise (Java, Kotlin, Go ) or reverse More ❯

/DFIR Consultant) to join their team. As an Incident Responder, you'll take the lead on active engagements involving real-world attacks such as ransomware, data breaches, insider threats, and more. You'll conduct forensic investigations, advise clients on containment and recovery strategies, work on delivery and implementation, and produce detailed post-incident reports. This is a … incident response for a diverse client base, ensuring effective containment, investigation, and recovery. Conduct in-depth digital forensic analysis of relevant incident data Monitor and interpret the evolving cyber threat landscape, providing clients with timely, relevant insights into emerging threats, tactics, and vulnerabilities that may impact their organisation. Act as a key point of contact for clients, ensuring clear More ❯

/DFIR Consultant) to join their team. As an Incident Responder, you'll take the lead on active engagements involving real-world attacks such as ransomware, data breaches, insider threats, and more. You'll conduct forensic investigations, advise clients on containment and recovery strategies, work on delivery and implementation, and produce detailed post-incident reports. This is a … incident response for a diverse client base, ensuring effective containment, investigation, and recovery. Conduct in-depth digital forensic analysis of relevant incident data Monitor and interpret the evolving cyber threat landscape, providing clients with timely, relevant insights into emerging threats, tactics, and vulnerabilities that may impact their organisation. Act as a key point of contact for clients, ensuring clear More ❯