7 of 7 Remote/Hybrid Cyber Threat Intelligence Jobs in the South East

error-free ingestion. Use Case & Detection Content Development Design, implement, test, and tune detection use cases based on attacker techniques (MITRE ATT&CK), threat intelligence, and risk appetite. Build correlation rules, anomaly-based detections, dashboards, and alerting workflows. Regularly review detection efficacy and reduce false positives through tuning … understanding of log formats (JSON, syslog, XML, CEF, etc.) and ingestion technologies (Syslog, API, Event Hubs, Kafka, Agents). Practical knowledge of detection engineering, threat modelling, and attacker behaviour analysis. Experience building and tuning correlation rules, searches, and dashboards. Familiarity with SOAR platforms and automation workflows. Security Knowledge Strong ...

integrity of the .UK registry and help protect users from online harm. This is an ideal opportunity for someone with a strong interest in cyber threat operations and a desire to build hands‐on experience and develop their skills further. What You’ll Be Doing Investigating domain abuse … reports using internal tools and open‐source intelligence (OSINT), escalating complex cases when needed Supporting operational workflows and identifying ways to improve our tools, processes and automation Assisting in the development and refinement of detection rules and identifying patterns in malicious activity Liaising with registrars and other external stakeholders ...

About the Role We are a people-focused, values-driven global service provider delivering end-to-end IT outsourcing (ITO), including cyber defence services, to a wide range of clients—from fast-growing organizations to large enterprise and public sector environments. Our security function supports clients through capabilities such … Managed Detection and Response (MDR), threat hunting, vulnerability management, penetration testing, and incident response, alongside advisory-led consulting engagements. The organization is experiencing strong growth and continues to invest in its people, platforms, and capabilities. This is an opportunity to work in a collaborative environment where professional development ...

Python Developer – Cyber £60,000 – £70,000 | Fully Remote (UK based) We’re working with a cutting-edge cybersecurity company looking to hire a Python Developer to join their team. This is a highly technical role focused on building tools and systems that detect and analyse real-world cyber threats at scale. Main Duties of the Role Design and develop Python-based tools for threat intelligence and security research Build and optimise data pipelines to process large volumes of security data Work closely with researchers to identify, monitor, and analyse emerging threats Contribute to scalable, cloud ...

Cybersecurity Analyst to join its Cybersecurity Operations Group. This role plays a critical part in protecting a complex global technology environment through continuous monitoring, threat detection, and incident response. The successful candidate will work closely with security and IT stakeholders, contributing to the organisation's defensive capabilities while remaining … forefront of the evolving threat landscape. Key Responsibilities Monitor and analyse security events across networks, endpoints, and cloud environments using SIEM, EDR, and related security tools, in line with documented SLAs. Investigate, respond to, and resolve security incidents and alerts, ensuring timely detection, containment, and remediation. Perform triage ...

Role: Cyber Security Assurance Specialist Salary/Rate: £45-55 per hr inside IR35 Location: Hybrid, near Oxford 3x per week Contract Duration: until December 2026 We are currently looking for a Cyber Security Assurance Specialist for our government client. This Cyber Security Assurance Specialist role … Abingdon Oxfordshire and the remainder of the week working remotely. There is no further flexibility with the on-site requirement. The contract for this Cyber Security Assurance Specialist position is until December 2026, with potential to extend, operating inside IR35. Security Clearance: eligible for Security Check ("SC Clearance") This ...

THROUGH UMBRELLA Role Description: "Core Responsibilities: Develop and maintain secure architecture frameworks for enterprise-grade systems, including cloud, on-premises, and hybrid environments Conduct threat modelling, risk assessments, and security gap analyses across infrastructure and application layers Define security standards, reference architectures, and policy controls based on industry frameworks … ensure secure software development lifecycles (SSDLC) Lead strategic initiatives in incident response planning, detection and mitigation strategies, and digital forensics Monitor advancements in threat intelligence and regulatory requirements, advising stakeholders on appropriate countermeasures Produce and maintain architectural documentation, ensuring traceability of security controls and compliance obligations Experience: Demonstrated ...