17 of 17 Threat Intelligence Jobs in the South West

Security Operations Unit (CSOU & SIO) Cyber Delivery Unit (CDU) Cyber Improvement Programme Chief Information Security Office Function (CISO) The role sits within the CSOCs Threat Intelligence team within NHS England CSOC comprised of four primary functions: Intelligence Collection & Analysis - Perform collection, aggregation, analysis and contextualisation of healthcare … security information to produce actionable CTI. Cybersecurity Threat & Risk Assessment - Perform high-level risk assessments of current and emerging threats to the health & social care estate. Intelligence Dissemination & Reporting - Produce stakeholder-specific intelligence reporting for stakeholders. Specialist CTI Support - Provides specialist CTI support to CSOC during high ...

Cyber Threat Intelligence Specialist Permanent Location: London, Selby, Northampton, Glasgow or Ipswich About the role: Were looking for a Cyber Threat Intelligence Specialist to join our Cyber Security function in a pivotal role as we continue to advance Drax cyber resilience. As a Cyber Threat Intelligence Analyst, youll produce high quality cyber threat intelligence that identifies, analyses and communicates threats, vulnerabilities and emerging trends to Draxs IT, OT and cloud environments. Youll support vulnerability management by assessing exploitability, impact and likelihood, and advising on prioritisation. Youll also develop and maintain threat ...

Cyber Threat Intelligence Specialist A variety of soft skills and experience may be required for the following role Please ensure you check the overview below carefully. Permanent Location: London, Selby, Northampton, Glasgow or Ipswich About the role: We're looking for a Cyber Threat Intelligence Specialist … join our Cyber Security function in a pivotal role as we continue to advance Drax' cyber resilience. As a Cyber Threat Intelligence Analyst, you'll produce high quality cyber threat intelligence that identifies, analyses and communicates threats, vulnerabilities and emerging trends to Drax ...

Lead 6 months Bath - hybrid x3 days onsite x2 remote Active SC/DV clearance required £700 per day outside IR35 The SOC Lead - Threat Hunting & Investigations is responsible for leading advanced threat detection, proactive threat hunting, and complex security investigations across the enterprise. This role focuses … elevating the maturity of SOC investigative and hunting capabilities. The role combines technical leadership, hands-on expertise, and mentorship of analysts. Key Responsibilities Threat Hunting Lead proactive, hypothesis-driven threat hunting activities across endpoint, network, cloud, identity, and SaaS environments Develop and maintain threat hunting playbooks aligned ...

applicants. 6 months Bath - hybrid x3 days onsite x2 remote Active SC/DV clearance required £700 per day outside IR35 The SOC Lead - Threat Hunting & Investigations is responsible for leading advanced threat detection, proactive threat hunting, and complex security investigations across the enterprise. This role focuses … elevating the maturity of SOC investigative and hunting capabilities. The role combines technical leadership, hands-on expertise, and mentorship of analysts. Key Responsibilities Threat Hunting Lead proactive, hypothesis-driven threat hunting activities across endpoint, network, cloud, identity, and SaaS environments Develop and maintain threat hunting playbooks aligned ...

Managed Security Services (MSSP) function, reporting directly to the Head of SOC Operations. You will act as the senior technical authority, driving excellence in threat detection, incident response, and security operations across a diverse, multi-client portfolio. While you will lead and mentor a team, this … training, coaching, and technical mentoring Ensure accurate and timely case management (HALO) and delivery against SLAs Technical Leadership & Continuous Improvement Provide expert guidance on threat detection, incident response, and threat hunting Lead escalations for complex or high-severity incidents across client environments Develop and optimise detection rules, playbooks ...

Managed Security Services (MSSP) function, reporting directly to the Head of SOC Operations. You will act as the senior technical authority, driving excellence in threat detection, incident response, and security operations across a diverse, multi-client portfolio. While you will lead and mentor a team, this … training, coaching, and technical mentoring Ensure accurate and timely case management (HALO) and delivery against SLAs Technical Leadership & Continuous Improvement Provide expert guidance on threat detection, incident response, and threat hunting Lead escalations for complex or high-severity incidents across client environments Develop and optimise detection rules, playbooks ...

Managed Security Services (MSSP) function, reporting directly to the Head of SOC Operations. You will act as the senior technical authority, driving excellence in threat detection, incident response, and security operations across a diverse, multi-client portfolio. While you will lead and mentor a team, this … training, coaching, and technical mentoring Ensure accurate and timely case management (HALO) and delivery against SLAs Technical Leadership & Continuous Improvement Provide expert guidance on threat detection, incident response, and threat hunting Lead escalations for complex or high-severity incidents across client environments Develop and optimise detection rules, playbooks ...

Managed Security Services (MSSP) function, reporting directly to the Head of SOC Operations. You will act as the senior technical authority, driving excellence in threat detection, incident response, and security operations across a diverse, multi-client portfolio. While you will lead and mentor a team, this … training, coaching, and technical mentoring Ensure accurate and timely case management (HALO) and delivery against SLAs Technical Leadership & Continuous Improvement Provide expert guidance on threat detection, incident response, and threat hunting Lead escalations for complex or high-severity incidents across client environments Develop and optimise detection rules, playbooks ...

Managed Security Services (MSSP) function, reporting directly to the Head of SOC Operations. You will act as the senior technical authority, driving excellence in threat detection, incident response, and security operations across a diverse, multi-client portfolio. While you will lead and mentor a team, this … training, coaching, and technical mentoring Ensure accurate and timely case management (HALO) and delivery against SLAs Technical Leadership & Continuous Improvement Provide expert guidance on threat detection, incident response, and threat hunting Lead escalations for complex or high-severity incidents across client environments Develop and optimise detection rules, playbooks ...

Managed Security Services (MSSP) function, reporting directly to the Head of SOC Operations. You will act as the senior technical authority, driving excellence in threat detection, incident response, and security operations across a diverse, multi-client portfolio. While you will lead and mentor a team, this … training, coaching, and technical mentoring Ensure accurate and timely case management (HALO) and delivery against SLAs Technical Leadership & Continuous Improvement Provide expert guidance on threat detection, incident response, and threat hunting Lead escalations for complex or high-severity incidents across client environments Develop and optimise detection rules, playbooks ...

performing Security Operations Centre (SOC). This role is ideal for someone who combines hands-on security expertise with strong leadership to drive effective threat detection, incident response, and continuous improvement of security operations. What You’ll Do Lead and mentor a team of SOC analysts (8+ members … incident response (detection, triage, escalation, resolution) Oversee and enhance security monitoring (SIEM tools like Splunk, Sentinel, QRadar) Drive threat intelligence and proactive threat hunting initiatives Define and report on security metrics, KPIs, and risk insights Manage vendors/MSSPs and ensure SLA/KPI adherence Collaborate with ...

continuously improve the cyber incident response plan, ensuring readiness across the organisation Provide strategic cyber security advice to senior leadership on monitoring, logging, and threat response Establish a use-case driven monitoring and alerting capability to improve threat detection and response times Oversee threat intelligence, vulnerability … capability Core Experience Required Proven experience leading a Security Operations Centre (SOC/CSOC) or cyber security operations function Strong background in incident response, threat detection, and cyber resilience Hands-on experience with SIEM, IDS/IPS, endpoint security, and monitoring tools Solid understanding of threat intelligence ...

client engagements; present findings and recommendations to senior stakeholders. Participate in alert testing, readiness exercises, and incident response tabletop sessions. Stay current on emerging threat intelligence, attacker techniques, and relevant research. Required Experience 5+ years experience as a Cyber Security Operations Analyst Familiarity with threat intelligence ...

broad ecosystem of third-party cyber security platforms, including managed detection and response services, email security gateways, vulnerability management tools, privileged access management and threat intelligence services. Lead and support cyber security incident response activities, including investigation, containment, remediation and post incident review. Oversee security monitoring, alerting … escalations from the Service Desk and wider IT teams. Assess and manage cyber security risks associated with new technologies, suppliers and business initiatives. Support threat intelligence activities and ensure emerging threats are assessed for relevance to the firm's environment. Provide guidance, mentoring and knowledge sharing to improve ...

threats in real time. You will work closely with senior stakeholders and external agencies, ensuring cyber security operations align with national standards and evolving threat landscapes. What You’ll Be Doing Leading the Cyber Security Operations Centre (CSOC) and its day-to-day effectiveness Driving real-time detection, response … cyber incident response strategy and playbooks Acting as a senior advisor to leadership on cyber risk, incidents, and resilience Overseeing SIEM, logging, monitoring, and threat detection capabilities Developing a use-case-driven approach to security monitoring and alerting Managing vulnerability identification, remediation, and mitigation processes Leading threat intelligence ...

Global are recruiting a Cyber Security Operations Manager to lead SOC delivery in a critical UK government agency. Drive threat detection, response, resilience, and strategy for national infrastructure. Type of Contract: Contract (Inside IR35) Location: Hybrid (Exeter HQ) – flexible working available Key Duties Will Include: Design/lead CSOC … CK. Manage team (8+), budgets, vendors; report metrics/trends to seniors. Requirements: Proven SOC operations leadership (monitoring tools, AV, IDS/IPS, threat intel). Incident management, vulnerability scanning/remediation. Knowledge: GDPR/NIS/NCSC, ITIL, Mitre ATT&CK. Desirable: CISSP/CISM, cloud security. ...