1 to 17 of 17 Threat Detection Jobs in London

Role: Detection Engineer Duration: 6 Months Location: London Key responsibilities: Be someone who believes in continuous innovation, is curious and relentless in finding a better way every day Develop and maintain a deep understanding of the latest threat landscape, tactics, techniques, and procedures (TTPs) used by attackers Develop … and maintain expertise in threat detection tools and technologies, including SIEM systems, EDR (endpoint detection and response) tools, and network monitoring solutions Be a part of a Team to improve our security stance and implement your insights into rules Continuously evaluate and improve the effectiveness of existing … threat detection and response measures Key skills/knowledge/experience: Experience in development of cybersecurity attacks detection rules in complex corporate environments The ability to communicate with a broad spectrum of stakeholders effectively from cybersecurity analysts to threat intelligence experts A track record of successful more »

the Job Leading the Response: Acting swiftly and decisively during security incidents to mitigate risks. Incident Lifecycle Management: Overseeing incidents from the moment of detection, through the containment and eradication stages, to the final resolution. Post-Incident Analysis: Conducting detailed investigations post-incident to understand the root cause and … to develop strategies to prevent recurrence. Continuous Monitoring: Keeping a vigilant eye on the organization's security systems to detect any suspicious activities early. Threat Analysis: Evaluating potential threats and vulnerabilities to ensure that the organization is prepared to defend against them. Strategic Defense Implementation: Putting in place robust … unified security strategy. This role demands a proactive mindset, deep technical expertise, and strong leadership skills to navigate the complex and ever-evolving cyber threat landscape. It's about being always prepared, constantly learning, and effectively communicating to maintain and enhance the organization's security posture. Tasks & Responsibilities Evaluate more »

company's critical infrastructure, intellectual property and customer data, against evolving cyber threats, ensuring no interruption to their operations. The main duties span cyber threat management, real-time attack detection and prevention and swift remediation, integrated with advanced artificial intelligence and machine learning. Additionally, they leverage Cyber DevOps … automations to facilitate rapid deployment and threat mitigation, ensuring the resilience of the businesses Operational technology (OT), IT and digital infrastructure in the face of emerging challenges. Key Competencies Significant experience of Cyber Security engineering and delivery with a broad understanding OT and IT services Subject matter expert on … regulatory landscapes, such as, NERC CIP, NIST, NIS2, GDPR, EPCIP, etc. Virtualisation technology, including containerisation (eg. Docker, Kubernetes, Linux etc.) Host based security products (threat detection, mitigations, end user detection and response, micro segmentation, zero trust) Experience working within an ITIL environment, or a structured platform management more »

and management teams, ensuring Security principles are being upheld. Advanced knowledge of layer 7 firewall technologies and capabilities (e.g., Application awareness, user identities, advanced threat detection, etc.) Provides vulnerability assessment of cloud assets, delivers remediation recommendations, and provides knowledgeable assistance in resolving identified vulnerabilities. Develop and implement security … teams Hands-on experience with cyber security tools and solutions (ideally SOAR platforms) Understanding of the MITRE ATT&CK framework (or equivalent) and emerging threat actor tactics, techniques, and procedures Microsoft Sentinel Logic Apps or Power Automate Defender for Endpoint/Cloud/XDR/Identity Azure Security Centre … or belief, disability or age. Explore more InfoSec/Cybersecurity career opportunities Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below. more »

and cloud-native applications. Implement and manage IAM policies, ensuring least privilege principles are maintained. Evaluate and deploy security tools and technologies to enhance threat detection and response capabilities. Provide guidance and mentorship to junior security engineers, fostering a culture of continuous learning and improvement. Stay current with … security engineering. Strong expertise in securing cloud environments such as AWS, Azure, or GCP. Proficiency in security technologies and tools such as firewalls, intrusion detection/prevention systems, SIEM, and vulnerability management. Experience with IaC tools like Terraform, CloudFormation, or ARM templates. Deep understanding of IAM, encryption, network security more »

firmware and software updates as part of the remediation process. Monitor, manage and configure cyber defence tools, covering solutions such as email hygiene, endpoint detection and response, secure cloud gateways, multi-factor authentication and advanced identity management. Monitor and manage client firewalls, intrusion detection and intrusion prevention tools. … technologies, including TCP/IP, DHCP, DNS, Dynamic routing protocols, VPNs, routing, switching and VLANs, Load Balancers. A good knowledge of cybersecurity principles, including threat detection, incident response, and vulnerability management. Managing certificate services and PKI Infrastructures Knowledge of the following: PowerShell and other scripting languages Microsoft Azure more »

compliance with industry standards and regulatory requirements such as ISO27001, NIST, SOC2, GDPR and PCI-DSS. Implement and manage security tools and services for threat detection, such as AWS GuardDuty, AWS Config, AWS CloudTrail, and AWS Security Hub. Respond to security incidents, conduct root cause analysis, and implement … Lambda, and KMS. Proficiency with security tools and services such as AWS WAF, AWS Shield, GuardDuty, Inspector, and CloudTrail. Experience with SIEM tools and threat intelligence platforms is a plus. Excellent written and verbal communication skills, with the ability to articulate complex security concepts to technical and non-technical more »

audit requirements. Contribute to the development of a Cybersecurity Operations Resource and Capacity planner managed through BDO's Azure DevOps environment. Oversee incident response, threat detection, and mitigation efforts You'll be someone with: A good understanding of monitoring frameworks eg MITRE ATT&CK and SIEM technologies eg more »

large environments. Experience in tuning and optimizing OpenSearch or Elasticsearch indexers. Experience with incident response processes and forensic analysis to support investigations and improve threat detection. Experience with cloud-native security tools and services Desired Qualifications: Advanced coursework in Computer Science or Information Technology, or equivalent experience. Bachelors Degree more »

research to identify and implement new techniques and tools that can enhance the effectiveness and efficiency of the cybersecurity orchestration automation platform Collaborate with threat detection security engineers to develop and implement custom solutions for detecting and responding to emerging cyber threats Key skills/knowledge/experience … composure under pressure Strong communication, influencing, and collaboration skills Experience with cloud native technologies and environments Experience working with SOAR capabilities development Knowledge of detection rule development, covering tools (such as SIEM, EDRs) and industry frameworks (such as MITRE ATT&CK) Experience working as a security analyst or incident more »

eager to make a significant impact in the field? We are seeking a dynamic Senior Presales Consultant to join our client specialising in managed threat detection & response and SASE security services. In this pivotal role, you'll tackle our customers' most pressing cyber security challenges, positioning innovative service … will drive customer security strategies and ensure they are maximising all available capabilities. Responsibilities Attend customer-facing meetings to provide expertise and guidance around detection & response and SASE areas Support the qualification and discovery process supporting our client's sales team and their customers in translating their requirements into … and act as a customer advocate to ensure an effective transition from implementation to production. Be able to present, scope, and propose all Managed Detection & Response and SASE Managed Security Services on the portfolio. Contribute to the identification of customer drivers, unique selling points, and bid strategy. Requirements Must more »

one in their specialist area and currently rebuilding their entire pricing & risk management platform from scratch. Responsibilities: Evaluate new security technologies and tools. Improve threat detection and response capabilities with a code-first approach Automation of manual process utilising IAC Collaborate and co-develop with external suppliers and … internal engineering teams to ensure data sources and detection rules are well enriched. Required: Strong understanding of the latest security threats, threat actors, and the tactics and techniques adopted. Proven experience with programming - Python, Rust, C++ or other major languages Knowledge of SecOps tooling (SIEM, SOAR, TI). more »

security analytics platforms Strong scripting skills in Python, HTML and Javascript Excellent problem-solving abilities and attention to detail Proactive approach to cybersecurity and threat detection Bachelor's degree in Computer Science or related field preferred IR35 As a means of managing tax, commercial and reputational risks, Deloitte more »

aggregation and collection. Customers now have dynamic and customizable prioritization, streamlined reporting, zero-copy analytics, and real-time incident mitigation, as well as advanced threat detection, auto data discovery, classification, and policy generation, all within the Zscaler cloud security platform. Responsibilites: You will work closely with the Zscaler more »

as Key Account Manager for one such interesting customer, for whom we significantly contribute to designing and developing conceptual models into the future of threat detection and countermeasures, influencing the EW domain. Whilst our main hubs of engineering activity are at our Cambridgeshire and Lincolnshire HQs, this role more »

and has previously built user - facing privacy and security capabilities knows how to ensure the integrity and protection of data , i.e. encryption , access controls , threat detection , incident response, GDPR, etc has worked on large corporate accounts , and is confident with the longer-lifecycle enterprise selling process is excited more »

opportunities for training and technical development. Day to day responsibilities will include: Incident triage and investigation. Analysis of all suspicious email activity. Participating in threat hunt and offensive security exercises. Analysis of all SIEM logs, and the opportunity to get involved in some threat detection. Working with technical … incidents Demonstrable business facing skills Experience of working with a SIEM platform – Splunk, QRadar, Elastic Security certifications highly desirable Experience of scripting/automation, threat hunting and offensive security highly desirable Please send your CV for immediate consideration. more »