19 of 19 Threat Detection Jobs in the South West

Detection & Threat Hunt Lead Analyst Cheltenham Please Note: Any offer of employment is subject to satisfactory BPSS and SC security clearance which requires 5 years continuous UK address history (typically including no periods of 30 consecutive days or more spent outside of the UK) and declaration of being … team As a member of the SOC Content Team, you will be responsible for contributing to the creation, deployment, and tuning of threat detection content and delivery of proactive threat hunting. You will work in close partnership with client Lead Analysts, threat intelligence teams, and other ...

detect suspicious activity. Investigate security incidents across endpoints, networks, and cloud environments; perform root-cause analysis, impact assessment and containment actions. Develop and maintain detection rules, use cases, threat-intelligence processes, and incident response playbooks. Automate detection and response workflows, using scripting tools (e.g. Python, PowerShell). … Perform threat-hunting, log-analysis (including firewall, web/email filters), implement or review DLP controls, and collaborate with infrastructure/cloud/application teams on remediation and security posture improvements. Contribute to continuous improvement of SOC processes (alert tuning, log-source enrichment, documentation), and take part ...

Senior Cyber Security Engineer/Threat Intelligence Specialist Bristol (Hybrid) | Up to £81,000 + Excellent Benefits Join a leading UK law firm shaping the future of cyber resilience. About the Role My client are seekinga Senior Cyber Security Engineer/Threat Intelligence Specialist to strengthen and mature … paced environment, love to hunt for threats, and enjoy taking ownership of complex challenges this role is for you. What Youll Do Lead on threat detection, hunting, and incident response, working with Azure/Defender, Sentinel, and third-party SOCs. Investigate alerts and coordinate responses with internal ...

Flexera, and other industry-standard SIEM platforms. You'll investigate security incidents, coordinate with other IT and security teams, and support continuous improvement of threat detection and response processes. Key Requirements: Previous experience in a SOC Analyst or similar cybersecurity role Strong expertise in Splunk or similar SIEM … tools Familiarity with Flexera for vulnerability management Understanding of firewalls, network protocols, intrusion detection/prevention systems Relevant certifications (e.g., CISSP, CEH, Splunk) advantageous Must be eligible for Developed Vetting (DV) clearance , requiring 10 years continuous UK residency Please Note: All offers will be subject to standard pre-employment ...

with infrastructure engineers, architects and project teams, you will ensure that platforms are secure, compliant and aligned with recognised frameworks. Your work will span threat modelling, vulnerability research, configuration baselines, incident analysis, and the integration of monitoring, logging and alerting capabilities. You will also contribute to security documentation, assessments … access Familiarity with regulatory and compliance frameworks such as NIST, CIS Controls, ISO 27001 and Cyber Essentials Plus Experience with SIEM, logging, monitoring and threat detection platforms Understanding of data classification, encryption and secure storage Ability to collaborate with engineers to enforce secure configurations and hardening standards Experience ...

Kubernetes). Exposure to monitoring tools (Grafana, Datadog). Cloud certifications or security accreditations. Understanding of Agile methodologies. Interest in automation, security testing, or threat detection. To find out more about Computer Futures please visit www.computerfutures.com Computer Futures, a trading division of SThree Partnership LLP is acting ...

Responsibilities Operate within a Security Operations Centre (SOC) or equivalent environment Monitor and respond to incidents using SIEM platforms Conduct system log analysis and threat detection Assist in vulnerability assessments and management Support incident resolution and reporting Required Skills & Experience At least 2 years' experience in a dedicated ...

starting individual with strong technical knowledge across on-prem and cloud environments, and ideally experience in areas such as: Network security, IAM, SIEM, and threat detection Compliance frameworks (e.g. NIST, ISO 27001, CIS Controls) Security automation and scripting Producing security artefacts and documentation Experience in Operational Technology would ...

starting individual with strong technical knowledge across on-prem and cloud environments, and ideally experience in areas such as: Network security, IAM, SIEM, and threat detection Compliance frameworks (e.g. NIST, ISO 27001, CIS Controls) Security automation and scripting Producing security artefacts and documentation Experience in Operational Technology would ...

starting individual with strong technical knowledge across on-prem and cloud environments, and ideally experience in areas such as: Network security, IAM, SIEM, and threat detection Compliance frameworks (e.g. NIST, ISO 27001, CIS Controls) Security automation and scripting Producing security artefacts and documentation Experience in Operational Technology would ...

automation frameworks for provisioning and compliance. Integration knowledge across Microsoft Exchange, M365, VMware and enterprise IT ecosystems. Understanding of Zero Trust architecture, identity threat detection, and SIEM integration. Strong stakeholder management, influencing, and communication skills. Ability to translate complex technical challenges into executive-level decisions and investment cases ...

leveraging DevOps practices, IaC (e.g., Terraform), and CI/CD pipelines to ensure reliability and repeatability. Monitor and optimise performance and security posture, including threat detection, anomaly response, and continuous improvement of authentication systems. What We Look For Deep expertise in modern identity standards (OAuth 2.0, OIDC, SAML ...

leveraging DevOps practices, IaC (e.g., Terraform), and CI/CD pipelines to ensure reliability and repeatability. Monitor and optimise performance and security posture, including threat detection, anomaly response, and continuous improvement of authentication systems. What We Look For Deep expertise in modern identity standards (OAuth 2.0, OIDC, SAML ...

leveraging DevOps practices, IaC (e.g., Terraform), and CI/CD pipelines to ensure reliability and repeatability. Monitor and optimise performance and security posture, including threat detection, anomaly response, and continuous improvement of authentication systems. What We Look For Deep expertise in modern identity standards (OAuth 2.0, OIDC, SAML ...

leveraging DevOps practices, IaC (e.g., Terraform), and CI/CD pipelines to ensure reliability and repeatability. Monitor and optimise performance and security posture, including threat detection, anomaly response, and continuous improvement of authentication systems. What We Look For Deep expertise in modern identity standards (OAuth 2.0, OIDC, SAML ...

leveraging DevOps practices, IaC (e.g., Terraform), and CI/CD pipelines to ensure reliability and repeatability. Monitor and optimise performance and security posture, including threat detection, anomaly response, and continuous improvement of authentication systems. What We Look For Deep expertise in modern identity standards (OAuth 2.0, OIDC, SAML ...

leveraging DevOps practices, IaC (e.g., Terraform), and CI/CD pipelines to ensure reliability and repeatability. Monitor and optimise performance and security posture, including threat detection, anomaly response, and continuous improvement of authentication systems. What We Look For Deep expertise in modern identity standards (OAuth 2.0, OIDC, SAML ...

leveraging DevOps practices, IaC (e.g., Terraform), and CI/CD pipelines to ensure reliability and repeatability. Monitor and optimise performance and security posture, including threat detection, anomaly response, and continuous improvement of authentication systems. What We Look For Deep expertise in modern identity standards (OAuth 2.0, OIDC, SAML ...

leveraging DevOps practices, IaC (e.g., Terraform), and CI/CD pipelines to ensure reliability and repeatability. Monitor and optimise performance and security posture, including threat detection, anomaly response, and continuous improvement of authentication systems. What We Look For Deep expertise in modern identity standards (OAuth 2.0, OIDC, SAML ...