25 of 25 Cyber Threat Jobs in the South East

Primary Details Time Type: Full time Worker Type: Employee Threat Intelligence Specialist London Permanent (Hybrid) At QBE, our purpose is to enable a more resilient future. We are an international insurer and reinsurer with a local presence in 27 countries. The Opportunity We’re excited to be hiring a Threat Intelligence Specialist to join our Advanced Threat … part of a supportive team that thrives on teamwork and innovation, where your expertise will be valued as we work together to tackle the ever-evolving cyber threat landscape. We’re looking to welcome our new team member from early January 2026 , so if you’re ready to make an impact in the new year, we’d … love to hear from you! Your New Role Reporting to the Technical Threat Manager , you’llbe responsible for researching, analysing, and reporting on cyber threats targeting QBE’s global operations and technology environment. This role has a strong technical focus, centred on the collection, enrichment, automation, and analysis of adversary tactics, techniques, and procedures (TTPs) across the More ❯

The department Covers Cybersecurity, Information Security, IT Audit, IT Risks, IT Controls,Access Management, Security Operation, Threat Management and the portfolio for Change for all these areas.This is a rolling fixed term contract, initially 6 months. Mandatory 5 days on site. You will play a key role in overseeing our Threat Intelligence Centreefforts and ensuring alignment with strategic … planning objectives. You will beresponsible for the end-to-end management of major projects that enhance ourglobal cyber threat intelligence capabilities. This role requiresstrong project management expertise, a solid understanding of cybersecurityoperations, and the ability to effectively collaborate across global teams. Lead the end-to-endmanagement of the threat intelligence activities while ensuring alignment withour global … Facilitatecommunication and coordination with global stakeholders across multiple regionsto ensure alignment of requirements and deliverables. Track activityprogress, manage risks, and implement risk mitigation strategies to ensuresuccessful outcomes. DriveStandardisation of threat intelligence protocols, tools, and governance acrossthe region. Partner withtechnology, compliance, and risk management teams to ensure compliance withregulatory and legal requirements in each jurisdiction such as GDPR &ISO27001 along More ❯

Join MBDA's cutting-edge cyber security team and help protect some of the most advanced defence technologies in the world. As a Cyber Security Engineer, you'll be at the forefront of innovation-enhancing the visibility, automation, and efficiency of our Security Operations Centre (SOC). This role is perfect for someone who thrives on … are available for paternity leave, neonatal leave and fertility testing and treatments Facilities : Fantastic site facilities including subsidised meals, free car parking and much more... The opportunity: The Cyber Security Engineer plays a vital role in maintaining and optimising SOC tools and environments to ensure peak performance and visibility across MBDA's networks. You'll focus on Splunk … the Cyber Security Capability Manager, you'll collaborate closely with engineers, analysts, and other security stakeholders to meet the ever-evolving challenges of the cyber threat landscape. Key responsibilities include; Act as the subject matter expert (SME) for Splunk across all cyber security and observability use cases. Lead SOC automation initiatives using scripting More ❯

onsite working DV Clearance required Restrictions Apply Our government client is seeking an experienced level 1 SOC Practitioner Analyst to work in an existing team consisting of Cyber SOC Engineers and Cyber SOC Analysts on a temporary basis until a permanent position can be filled. Scope and Objectives To Work alongside an existing team of Cyber Engineer and Cyber Analysts within an established Security Operations Centre to provide level 1 triage analysis duties which include: Monitor, triage and investigate Security Alerts on the various monitoring tools to identify potential Security Incidents. Escalate … suspected Security Incidents to the Lead Analysts. Assist Lead Analysts and Incident Response team with investigation and containment. Maintain knowledge of technology and cyber threats by reading Threat Intel, reports, attending Threat Intel briefings and self-study. Perform analysis of Security Event Data/Security Alerts to support Customers in responding to Security Incidents. Ensure Protective More ❯

onsite working DV Clearance required Restrictions Apply Our government client is seeking an experienced level 1 SOC Practitioner Analyst to work in an existing team consisting of Cyber SOC Engineers and Cyber SOC Analysts on a temporary basis until a permanent position can be filled. Scope and Objectives To Work alongside an existing team of Cyber Engineer and Cyber Analysts within an established Security Operations Centre to provide level 1 triage analysis duties which include: Monitor, triage and investigate Security Alerts on the various monitoring tools to identify potential Security Incidents. Escalate … suspected Security Incidents to the Lead Analysts. Assist Lead Analysts and Incident Response team with investigation and containment. Maintain knowledge of technology and cyber threats by reading Threat Intel, reports, attending Threat Intel briefings and self-study. Perform analysis of Security Event Data/Security Alerts to support Customers in responding to Security Incidents. Ensure Protective More ❯

proportionate to the risk. Maintain cyber security solutions with existing systems, applications, and infrastructure. Evaluate and recommend technologies, tools, and vendors to meet business needs. Perform proactive threat hunting for new and emerging cyber threats. Specialist in Operational Technology systems, defining monitoring alerts and ensuring the operation of effective security controls. Collect data that drives … effectiveness of security controls and relate them to appropriate (and proportionate) security controls. Responsible for helping the business to deliver new security controls and for performing proactive activities (e.g. threat hunting) to continuously evaluate and uncover vulnerabilities throughout the technology stack. Act as an ambassador within the Cyber Security team for the application of a risk-based … Responses to incidents are run in a structured, measured and auditable manner with continuous improvement integrated into incident management processes to ensure processes are always adapting to the changing threat landscape. Reduction over time in business impacts experienced as a result of cyber security incidents. Time between incident identification and remediation/closure reduces over time. The More ❯

. Key purposes of this role include: Safeguarding Operations: Actively manage and enhance our security platforms (primarily SIEM, XDR and IDAM polices) to detect, prevent, and respond to cyber threats across our IT and operational networks. Implementing and reviewing Security Controls: Serve as the subject matter expert for implementing technical security controls on applications, networks, and infrastructure to … with a wide range of internal teams, from IT colleagues to Train Engineers, to ensure security best practices are understood and integrated into their processes and systems. Key Accountabilities Threat and Vulnerability Management Develop incidence response and security measures for protection. Complete risk and exploitability assessments against vulnerabilities and live threats. Serve as a subject matter expert in vulnerability … infrastructure, cloud services, and cyber security. Proven continuous development in both technical and soft domains. Proficiency with security tools and technologies such as SIEM, DLP, network protection, threat detection, and endpoint protection. An understanding of network infrastructure such as VPNs, firewalls, switches, routers, LANs, Intrusion Detection, and vulnerability scanning. Understanding of IT and cyber security More ❯

. Key purposes of this role include: Safeguarding Operations: Actively manage and enhance our security platforms (primarily SIEM, XDR and IDAM polices) to detect, prevent, and respond to cyber threats across our IT and operational networks. Implementing and reviewing Security Controls: Serve as the subject matter expert for implementing technical security controls on applications, networks, and infrastructure to … with a wide range of internal teams, from IT colleagues to Train Engineers, to ensure security best practices are understood and integrated into their processes and systems. Key Accountabilities Threat and Vulnerability Management Develop incidence response and security measures for protection. Complete risk and exploitability assessments against vulnerabilities and live threats. Serve as a subject matter expert in vulnerability … infrastructure, cloud services, and cyber security. Proven continuous development in both technical and soft domains. Proficiency with security tools and technologies such as SIEM, DLP, network protection, threat detection, and endpoint protection. An understanding of network infrastructure such as VPNs, firewalls, switches, routers, LANs, Intrusion Detection, and vulnerability scanning. Understanding of IT and cyber security More ❯

Our client, the UK's trusted Ministry of Defence partner, is seeking an experienced SOC Threat Detection Analyst to join the cyber security operations centre (SOC) within Information Management (IM). The successful candidate will support Senior SOC analysts in addressing the challenges of countering cyber threats, driving a proactive ethos in a dynamic environment … and providing robust threat detection and analysis within the 24x7 SOC. Key Responsibilities: To support the SOC Manager in assisting Information Management UK in meeting the challenges and demands of countering cyber threats, the role involves supporting the operational functions of the UK SOC. This includes working with other UK SOC members, the UK InfoSec Team, and … alerting, and investigation activities using a variety of security platforms, including AI/ML and behavioural analytics, SIEM (Security Information Event Management), Network Packet Capture, Anti-Malicious Code, and Threat Detection technologies across the UK Network Perimeter. The SOC Analyst reports to the SOC Manager and conducts a range of analyses, assisting the incident response team with investigations that More ❯

of advanced risk modelling analytics. This is achieved through engaging with business stakeholders to define requirements and combining this Accumulation Management expertise and knowledge of data sets. Senior Cyber Catastrophe Risk Analyst London/Hybrid Your new role: Utilize cyber modelling tools and software to assess and quantify potential risks associated with cyber events. … Enhance our early warning systems for emerging cyber threats and their potential portfolio impact Be the subject matter expert and serve as a leading resource on cyber accumulations, providing expert guidance and insights to internal teams and external stakeholders. Collaborate with Global Cyber team other divisional stakeholders to develop effective risk mitigation strategies and … optimize risk management processes. Collect, validate, and analyse large datasets related to cyber risks, ensuring data accuracy and reliability. Present findings in a clear and concise manner to both technical and non-technical stakeholders, facilitating informed decision-making. Ownership of cyber vendor model evaluations and continuously enhance QBE’s proprietary view of risk. Work closely with More ❯

and Tier 2 operations · Conduct quality assurance reviews of Tier 1 analysis and provide constructive feedback · Collaborate with the Detection Logic Engineering team to enhance detection capabilities and threat coverage · Support audit and regulatory engagements by providing timely and accurate responses to information requests · Liaise with cross-functional technology teams to ensure timely resolution of response tasks and escalate … of-hours incident response rotations as necessary Skills and Experience: · Minimum 3 years of experience in a Senior SOC Analyst or Tier 2/3 role · Proven expertise in threat analytics, incident response, and cyber investigations · Strong understanding of attacker tactics, techniques, and procedures (TTPs) across diverse environments · Familiarity with industry-standard incident response frameworks (e.g., NIST … SANS) · Experience with both network-based and host-based threat detection and analysis · Proficiency in writing detection queries (Splunk preferred) and working with SIEM/EDR/SOAR tools · Solid understanding of operating systems, networking, and security infrastructure · At least 5 years of experience in Information Security within the financial services sector · Strong analytical and communication skills, with the More ❯

timely communication to all stakeholders regarding incident response activities. Provide post mortem reporting for leadership detailing security vulnerabilities, technology gaps, shortcomings or miscellaneous security issues. Responsible for working with threat intelligence, Security Operations Centre and extended teams to ensure global compliance to RBC standards with respect to security incidents and related findings. Responsible for driving to resolution security incidents … Incident Management methodologies. Proven experience in a SOC environment Exposure to malware and sandbox analysis Robust computer networking & OS knowledge Nice-to-have Experience with SOAR platforms Familiarity with threat hunting techniques and scenarios Knowledge in detection engineering Understanding of current threat landscape and threat actor TTPs Experience with scripting languages (PowerShell, python, regex, bash, etc.) Industry … Job Skills Business Perspective, Critical Thinking, Decision Making, Detail-Oriented, Forensic Computing, Group Problem Solving, Information Security Operation Center (ISOC), IT Incident Management, Security Information and Event Management (SIEM), Threat Management Additional Job Details Address: 100 BISHOPSGATE:LONDON City: London Country: United Kingdom Work hours/week: Employment Type: Full time Platform: TECHNOLOGY AND OPERATIONS Job Type: Regular Pay More ❯

suspected Security Incidents to the Lead Analysts. Assist Lead Analysts and Incident Response team with investigation and containment. Maintain knowledge of technology and cyber threats by reading Threat Intel, reports, attending Threat Intel briefings and self-study. Perform analysis of Security Event Data/Security Alerts to support Customers in responding to Security Incidents. Ensure Protective … Linux. Experience of working with SIEM and IPS products within a SOC Environment. Good Analytical skills with the ability to manipulate, interrogate and analyse large data sets. Relevant cyber security analyst experience within a SOC environment. Knowledge of IT Networking, specifically in Firewalls and other Network security devices Strong interpersonal skills ability to assist other team members Excellent More ❯

suspected Security Incidents to the Lead Analysts. Assist Lead Analysts and Incident Response team with investigation and containment. Maintain knowledge of technology and cyber threats by reading Threat Intel, reports, attending Threat Intel briefings and self-study. Perform analysis of Security Event Data/Security Alerts to support Customers in responding to Security Incidents. Ensure Protective … Linux. Experience of working with SIEM and IPS products within a SOC Environment. Good Analytical skills with the ability to manipulate, interrogate and analyse large data sets. Relevant cyber security analyst experience within a SOC environment. Knowledge of IT Networking, specifically in Firewalls and other Network security devices Strong interpersonal skills ability to assist other team members Excellent More ❯

recovery strategy to minimise business impact and ensure UK Power Networks (UKPN) network systems and customer data are protected from cyber threats. Overview of role and responsibilities: Threat Hunting: Analyse intel and IOCs to find and remove hidden threats across UKPN's OT/IT environments. Policy: Create SOC policies, standards and procedures aligned with best practice. … Testing: Take part in cyber-attack simulations to strengthen resilience. Reporting: Improve reporting dashboards and key security metrics. Tooling: Support and maintain security tools and platforms for threat prevention, detection and response. Audit: Support SOC2/NCSC CAF/ISO27001 audits and ensure compliance. Continuous Improvement: Automate and enhance monitoring, detection and response based on evolving threats. … required: Essential Extensive End to End Cyber Incident Leadership Experience Extensive SOC L3/CSIRT L3 Experience Extensive CNI/Defence/Business Critical Environment Experience Desirable Threat Hunting Experience Threat Hunting Strategy Mindset Runbook & Playbook Authoring Lessons Learned/Root Cause Analysis Leader Experience working with and enhancing security monitoring tooling Extensive IT/OT More ❯

recovery strategy to minimise business impact and ensure UK Power Networks (UKPN) network systems and customer data are protected from cyber threats. Overview of role and responsibilities: Threat Hunting: Analyse intel and IOCs to find and remove hidden threats across UKPN's OT/IT environments. Policy: Create SOC policies, standards and procedures aligned with best practice. … Testing: Take part in cyber-attack simulations to strengthen resilience. Reporting: Improve reporting dashboards and key security metrics. Tooling: Support and maintain security tools and platforms for threat prevention, detection and response. Audit: Support SOC2/NCSC CAF/ISO27001 audits and ensure compliance. Continuous Improvement: Automate and enhance monitoring, detection and response based on evolving threats. … required: Essential Extensive End to End Cyber Incident Leadership Experience Extensive SOC L3/CSIRT L3 Experience Extensive CNI/Defence/Business Critical Environment Experience Desirable Threat Hunting Experience Threat Hunting Strategy Mindset Runbook & Playbook Authoring Lessons Learned/Root Cause Analysis Leader Experience working with and enhancing security monitoring tooling Extensive IT/OT More ❯

experience of using AWS cloud in particular. You will also need to show that you have detailed knowledge in dealing with and mitigating against the wide range of Cyber threats that are emerging at an ever increasing rate. More ❯

infrastructure providers. Recognised by Gartner, armed with $29M+ in funding, and scaling aggressively worldwide, they’re on a mission to reshape how organisations stay ahead of real-world cyber threats. As a Senior Backend Engineer , you’ll play a key role in building scalable, high-performance backend systems that ingest, process, and serve data on millions of assets More ❯

Step into a pivotal role at the forefront of cyber security, driving impact for our client base! Were looking for an experienced Governance, Risk & Compliance Manager to join our dynamic team. This is your opportunity to take a leading role in shaping and delivering robust security strategies that protect our clients and strengthen their resilience against evolving cyber … with ISO27001 standards Provide regular reporting on ISMS effectiveness and operational performance. Manage security operations in line with organisational policy, standards and industry best practice. Conduct security risk and threat assessments (operational and system). Engage with internal stakeholders and third-party providers on security, risk and privacy matters. Respond to security incidents promptly, ensuring early identification and resolution. … Oversee threat detection, vulnerability management and remediation activities. Represent security considerations in IT and process change assessments. Maintain ISMS, Operational Security and Risk Assurance documentation. Lead monthly client Security Working Group meetings and stakeholder sessions. Ensure audit readiness and support internal/external audits. Drive continuous improvement initiatives within Sopra Sterias security function. What youll bring: GRC/Operational More ❯

of Web APIs including SOAP, REST and GraphQL architectures. Have a good understanding of Access Controls and Identity Lifecycle management. Have excellent communication and organisational skills. Team overview Cyber Security Our products, platforms and technologies are constantly evolving that's why keeping Sky safe from cyber-attacks is one of our top priorities. Our Cyber Security team helps the business grow while protecting our customers, colleagues and partners from increasingly sophisticated cyber threats. Our team includes Cyber Fusion Centre, Security Services, Risk and Compliance, Programme Delivery and Business Security, and we work across the UK, Italy and Germany. Join us and you'll get involved in tackling challenges and … future threats in an ever-changing cyber landscape. The rewards There's one thing people can't stop talking about when it comes to : the perks. Here's a taster: Sky Q, for the TV you love all in one place The magic of Sky Glass at an exclusive rate A generous pension package Private healthcare Discounted mobile More ❯

of Web APIs including SOAP, REST and GraphQL architectures. Have a good understanding of Access Controls and Identity Lifecycle management. Have excellent communication and organisational skills. Team overview Cyber Security Our products, platforms and technologies are constantly evolving that's why keeping Sky safe from cyber-attacks is one of our top priorities. Our Cyber Security team helps the business grow while protecting our customers, colleagues and partners from increasingly sophisticated cyber threats. Our team includes Cyber Fusion Centre, Security Services, Risk and Compliance, Programme Delivery and Business Security, and we work across the UK, Italy and Germany. Join us and you'll get involved in tackling challenges and … future threats in an ever-changing cyber landscape. The rewards There's one thing people can't stop talking about when it comes to : the perks. Here's a taster: Sky Q, for the TV you love all in one place The magic of Sky Glass at an exclusive rate A generous pension package Private healthcare Discounted mobile More ❯

Primary Details Time Type: Full time Worker Type: Employee Cyber Security Consultant Permanent London/Hybrid At QBE, our purpose is to enable a more resilient future. We are an international insurer and reinsurer with a local presence in 27 countries. The opportunity We're hiring a Cyber Security Consultant on a permanent, full-time basis … based in London, where you’ll help shape how cyber and information security risks are understood and managed across our business. This is your chance to be part of a global team that’s always one step ahead - keeping QBE safe, secure, and resilient in a fast-moving digital world. Your new role: This is a hands-on … collaborative role where your curiosity and technical insight will help drive real change. Reporting to the Cyber Security Lead, you’ll work across teams and borders to ensure security is built into everything we do; from day-to-day operations to major transformation projects. Main responsibilities: Leading security assurance, assessments, and advisory for IT and business projects (both More ❯

Meta Security is looking for a threat intelligence investigator with extensive experience in investigating cyber threats with an intelligence-driven approach. You will be proactively responding to a broad set of security threats, as well as tracking actor groups with an interest or capability to target Meta and its employees. You will also be identifying the gaps … in current detections and preventions by long-term intelligence tracking and research, and working with cross-functional stakeholders to improve Meta's security posture. Responsibilities Track threat clusters posing threats to Meta's infrastructure and employees, and identify, develop and implement countermeasures on our corporate network Investigate, mitigate, and forecast emerging technical trends and communicate effectively with actionable suggestions … to different types of audiences Work closely with incident responders to provide useful and timely intelligence to enrich ongoing investigations Improve the tooling of threat cluster tracking and intelligence data integration to existing systems Engage constructively in cross-functional projects to improve the security posture of Meta's infrastructure, such as red team operations, surface detection coverage expansion and More ❯

Key Responsibilities: Applying security skills to design, build and protect enterprise systems, applications, data, assets, and people Providing services to safeguard information, infrastructures, applications, and business processes against cyber threats Managing SSPM or CSPM knowledge, policies, and configurations Configuring security settings for Salesforce, ServiceNow, M365, Snowflake, Workday SaaS applications Integrating SaaS 3rd party applications with on-prem tools … Strong understanding of industry security frameworks and benchmarks such as NIST and CIS Significant experience with Security Engineering Desirable Skills/Preferred Qualifications: Awareness of Enterprise Security and Cyber Security domains Experience with Atlassian stack (Confluence, JIRA, BitBucket) Hands-on skills with Unix or Windows Docker experience on both Windows and Unix platforms Excellent documentation skills If you More ❯

crime by blending law enforcement and industry capabilities to stop, block, and disrupt criminal enablers. As part of this campaign, they are looking to hire 3 fraud/cyber intelligence professionals with deep expertise within either Finance (retail banking, challenger banks or FinTech's), Telecommunications, Cyber and Crypto intelligence and Technology (large tech and social media … the heart of their mission. To strengthen these collaborations, you will play a pivotal role in shaping frameworks for data sharing and driving engagement across the technology, telecommunications, cyber/crypto intelligence and finance sectors. Key Responsibilities Build and maintain strategic relationships across technology, telecoms, cyber/crypto intelligence and finance ecosystems. Use sector knowledge to … high-level meetings with industry partners, government, and law enforcement. Make recommendations to influence policy and standards and law enforcement activity, to enhance collaboration and combat fraud and cyber threats. Essential Criteria Expert knowledge of data-sharing legal frameworks In-depth understanding of UK GDPR, Data Protection Act, and sector-specific regulations for fraud prevention. Proven ability to More ❯