15 of 15 Threat Intelligence Jobs in London

Cyber Threat Intelligence Analyst - Central Government - 12 month contract - DV clearance - London Hybrid We are looking for 2x Cyber Threat Intelligence Analysts to join a busy team for our central government client. Due to the nature and urgency of the role, ideal candidates will hold active … clearance. I am keen to speak with candidates who have: Experience in an intelligence role with practical use of the intelligence lifecycle, ideally for government/public sector clients. Hands-on experience researching, analysing and reporting on cyber threats or closely related security issues. Familiarity with cyber threat ...

tier global MSSPs (excluding GSI/Big 4 relationships). These are security‐specialist firms operating at scale — running 24×7 SOCs, delivering managed threat intelligence, and integrating platform‐grade tooling into their service stack. This is not a transactional sales role. It is a strategic ecosystem play … managed services. Define a structured, tiered MSSP engagement playbook covering acquisition, activation, ramp, and expansion — with clear milestones for each stage. Maintain deep competitive intelligence on MSSP buying behaviour, vendor preferences, and integration strategies across US, Europe, and beyond. Identify white space across the MSSP landscape where Cyble ...

cyber security leader responsible for developing and executing enterprise-wide cyber defence strategies to protect critical business systems, data, and infrastructure. Leads security operations, threat detection, incident response, and cyber resilience initiatives while ensuring alignment with organisational risk management objectives. Key Responsibilities Lead and manage the Cyber Defence function … overseeing security operations, threat intelligence, vulnerability management, and incident response capabilities. Develop and implement cyber defence strategies, policies, and procedures to protect against evolving cyber threats. Direct Security Operations Centre (SOC) activities, ensuring effective monitoring, detection, investigation, and response to security incidents. Oversee threat intelligence programmes ...

ensure that security good practise is fully embedded into change initiatives, and security by design principles are applied. * Co-ordinate and undertake regular threat hunting, analysing logs and event data across the firms' systems, and procuring threat intelligence to inform the hunts. Key Skills: * Strong understanding … network and end point security, incident response, threat intelligence, and vulnerability management. * Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS. * Strong knowledge of Microsoft Azure cloud security technologies and concepts. * Familiar with cybersecurity frameworks such as NIST CSF, ISO27001 ...

holistic view of the organisation's security posture. Present findings and recommendations to senior leadership and governance forums. Collaborate with internal teams (e.g., threat intelligence, compliance, audit) to ensure assurance activities reflect current threat landscapes. Act as a primary interface for business units, ensuring alignment between assurance … technical and business information to assess risk. Experience in supply chain security assurance. Knowledge of secure by design principles and accreditation processes. Understanding of threat intelligence and its application in assurance. Experience working in regulated or high-assurance environments (e.g., government, finance, defence). Familiarity with risk management ...

client engagements; present findings and recommendations to senior stakeholders. Participate in alert testing, readiness exercises, and incident response tabletop sessions. Stay current on emerging threat intelligence, attacker techniques, and relevant research. Required Experience 2+ years experience as a Cyber Security Operations Analyst Experience working with Splunk Familiarity with … threat intelligence frameworks and methodologies End-to-end incident response lifecycle experience Detection engineering and alert development expertise. Strong scripting or programming skills (Python, Bash, C/C++, Java). Solid grounding in cybersecurity fundamentals: network security, cloud security, cryptography, forensics. Understanding of common network protocols and attacker ...

holistic view of the organisation's security posture. Present findings and recommendations to senior leadership and governance forums. Collaborate with internal teams (e.g., threat intelligence, compliance, audit) to ensure assurance activities reflect current threat landscapes. Act as a primary interface for business units, ensuring alignment between assurance … technical and business information to assess risk. Experience in supply chain security assurance. Knowledge of secure by design principles and accreditation processes. Understanding of threat intelligence and its application in assurance. Experience working in regulated or high-assurance environments (e.g., government, finance, defence). Familiarity with risk management ...

ReversingLabs, we are providing the world’s largest threat intelligence repository to protect software development and power advanced security solutions, keeping the most advanced cybersecurity organizations and Fortune 500 enterprises informed and ahead of the threats. Our software supply chain security and threat intelligence solutions have ...

Team Lead | Remote (UK Only) This is a senior technical position for someone who thrives at the intersection of offensive security, threat research, and client advisory. You'll work closely with senior leadership to shape engagements, influence testing methodology, and deliver realistic, intelligence-driven adversary emulation across complex … take ownership of advanced adversary simulation engagements from initial planning through to execution and reporting. You'll help define attack hypotheses, model realistic threat actor behaviour, and challenge client assumptions through carefully crafted offensive operations. You'll be trusted to operate autonomously while collaborating closely with senior technical stakeholders ...

troubleshooting. Governance, Risk and Compliance Apply GRC principles across designs and deployments. Review and improve customer security policies and standards. Perform risk assessments, threat modelling, and compliance gap analysis. Advise on ISO 27001, NIST, PCI DSS, and GDPR. Threat and Vulnerability Management Interpret threat intelligence ...

performance. Configure and tune Falcon policies, prevention controls, detection rules and reporting capabilities. Collaborate with Security Operations, Incident Response and Infrastructure teams to enhance threat detection and response. Support threat hunting, incident investigations and security improvement initiatives. Develop endpoint security standards, policies and best practices. Provide technical leadership … McAfee to CrowdStrike. Hands-on deployment experience across large endpoint environments, ideally supporting over 100,000 devices. Strong understanding of EDR, NGAV, behavioural analytics, threat detection and prevention methodologies. Experience acting as a technical lead or SME within large enterprise organisations. Strong troubleshooting, stakeholder management and communication skills. Technical ...

multiple AWS security services deliver centralized visibility, consistent policy enforcement, and streamlined operations Security Strategy Demonstrate deep knowledge of the AWS Security portfolio spanning Threat Detection, Data Protection, Governance, and Network and Application Protection Articulate competitive advantage over third-party security alternatives and position AWS-native security … Experience with any combination of the following: application security frameworks, identity and access controls, incident response, mobile security, cloud computing and security, AI security, threat intelligence, and penetration testing - Experience in technology sales selling enterprise software, networking, infrastructure, managed hosting services, or cloud computing services - Experience selling cybersecurity ...

knowledge of MITRE ATT&CK and at least one recognised control framework (ISO 27001, CIS or NIST). Risk-based prioritisation of remediation using threat intelligence. Operated endpoint security and endpoint detection and response (EDR) tooling (e.g. CrowdStrike or equivalent) in a production environment. Prioritised and managed a risk … based security backlog, applying frameworks such as MITRE ATT&CK and threat-based prioritisation. Assured the delivery of security initiatives across distributed teams or sites, tracking vulnerability remediation and patching through to completion. Act as Incident Commander for security incidents during London hours, coordinating first responders, IT, Legal, Compliance ...

knowledge of MITRE ATT&CK and at least one recognised control framework (ISO 27001, CIS or NIST). Risk-based prioritisation of remediation using threat intelligence. Operated endpoint security and endpoint detection and response (EDR) tooling (e.g. CrowdStrike or equivalent) in a production environment. Prioritised and managed a risk … based security backlog, applying frameworks such as MITRE ATT&CK and threat-based prioritisation. Assured the delivery of security initiatives across distributed teams or sites, tracking vulnerability remediation and patching through to completion. Act as Incident Commander for security incidents during London hours, coordinating first responders, IT, Legal, Compliance ...

CHEQ is the Intelligence Standard for the Human-AI Era, trusted by over 15,000 customers worldwide to confidently engage, transact, and thrive in this new era of digital transformation. Powered by award-winning cybersecurity technology, CHEQ offers the only integrated Traffic, Threat, and Identity Intelligence Engine ...