23 of 23 Remote Cyber Kill Chain Jobs in the UK

As a Cyber Defence Analyst, you will join the Cyber Fusion Center, performing in-depth analysis, assessment, and response to security threats by following documented policies to meet Service Level Goals. The team provides global 24x7 security operations and monitoring for cybersecurity events affecting Experian. You will be a part of the first line of defence in Experian … for potentially major security incidents to support incident response efforts and may include assignment to an on-call rotation for evenings, weekends, holidays. Summary of Primary Responsibilities As the Cyber Defence Analyst, you will: Contribute to daily security operations by overseeing response activities for security events and alerts associated with cyber threats, intrusions, and compromises alongside a team … of global security analysts following documented SLOs and processes. Analyze events using security tooling and logging (e.g., SIEM, EDR) and assess potential risk/severity level of cyber threats; escalate higher-risk events to dedicated incident response and management teams in the CFC according to established processes. Collaborate with external teams for incident resolution and escalations, driving incident handling More ❯

Location(s): UK, Europe & Africa: UK: Leeds BAE Systems Digital Intelligence employs 4,500 experts in digital, cyber, and intelligence fields. We collaborate across 10 countries to analyze complex data, enabling governments, armed forces, and businesses to gain a digital advantage in demanding environments. Cyber Threat Hunter Job Title: Cyber Threat Analyst Requisition ID: 121703 Location: Leeds … maturity, developing and delivering improvements. Serving as a point of contact for intrusion analysis, forensics, and incident response queries. Managing ADHOC and regular products during capacity constraints. Knowledge of Cyber Kill Chain, MITRE ATT&CK, and developing new analytics and playbooks. Requirements Technical: 3+ years in Cyber Threat Intelligence, research, and investigation. Experience in incident response … Experience in SOC, Threat Intelligence, or Vulnerability Management. Strong communication skills for technical and non-technical audiences. Team player, self-motivated, and capable of mentoring. Desirable Qualifications: Degree in Cyber Security or related. SANS, CySA+, CREST, Azure, AWS certifications. Ethical hacking experience or equivalent. Life at BAE Systems Digital Intelligence We support Hybrid Working, enabling flexible work locations and More ❯

Select how often (in days) to receive an alert: Create Alert BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Cyber Threat Hunter Job Title: Cyber Threat Analyst Requisition ID: 121703 Location: Leeds and surrounding area Grade: GG08 - GG09 Role Description BAE Systems have been contracted to undertake the day-to-day operation of (and incremental improvement of) a dedicated Security Operations Centre (SOC) to support the defence of a major UK Critical National Infrastructure (CNI) organisation. The networks … capacity that all ADHOC and regular products are completed and are at a sufficient quality for distribution In-depth knowledge of the various techniques and frameworks used within the Cyber Threat Intelligence Domain, Including the Cyber Kill Chain and MITRE ATT&CK Development of new analytics and playbooks that result in creation of new detection rules More ❯

Cyber Threat Analyst - National Security West View more categories View less categories Clearance Level DV ,SC ,None/Undisclosed Sector Defence ,Engineering ,Information Technology Job Type Permanent Location(s): UK, Europe & Africa : UK : Leeds BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and … understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Cyber Threat Hunter Job Title: Cyber Threat Analyst Requisition ID: 121703 Location: Leeds and surrounding area Grade: GG08 - GG09 Referral Bonus: £5,000 Role Description BAE Systems have been contracted to undertake the day-to-day … capacity that all ADHOC and regular products are completed and are at a sufficient quality for distribution In-depth knowledge of the various techniques and frameworks used within the Cyber Threat Intelligence Domain, Including the Cyber Kill Chain and MITRE ATT&CK Development of new analytics and playbooks that result in creation of new detection rules More ❯

threat actor groups, APT campaigns and geopolitical threats. Familiarity with STIX/TAXII, YARA, Sigma, and IOC/TTP formats. Deep knowledge of the MITRE ATT&CK framework and cyber kill chain methodology. The Role Monitor the threat landscape to identify emerging cyber threats, vulnerabilities and adversary tactics, techniques and procedures (TTPs). Support threat hunting … vulnerability management with relevant threat context and attribution. Perform adversary tracking and contribute to the development of threat models using frameworks such as MITRE ATT&CK, Diamond Model, and Kill Chain. Collaborate with SOC, IR, Red Team and Vulnerability Management teams to contextualise and operationalise threat intelligence. **This role is predominantly remote but requires flexibility to come into the More ❯

CDC (Cyber Defence Centre) Specialist Glasgow, Ipswich, London, Northampton or Selby Permanent, full time Hybrid working Closing date: Monday14th July 2025 Who we are We’re not just talking about making a difference, we’re making it happen. We generate dispatchable, renewable power and create stable energy in an uncertain world. Building on our proud heritage, we have ambition … We’re enabling a zero carbon, lower cost energy future for all, and working hard to decarbonise the planet for generations to come. About the role As a CDC (Cyber Defence Centre) Specialist at Drax, your role will involve varied activities. This will include monitoring and responding to security incidents, conducting investigations, assisting the CDC team in daily BAU … CDC team members, as well as standing in for the CDC Detect & Response Manager where necessary. You’ll collaborate and coordinate with the Product & Engineering, Threat Intelligence & Operational Technology Cyber Team to ensure synergy across all cyber teams, and build relationships with stakeholders across Drax to support the requirement for a holistic security approach. Who we’re looking More ❯

Introduction Infinigate Group are a leading, global distributer, specialising in total cyber security solutions and services. With 4 UK offices based in London, Woking, South Cerney and Fareham, we take pride in providing unrivalled support and value for our vendor and reseller partner communities. Our team at Infinigate consists of IT security experts as well as highly skilled support … objective we adopt a flat hierarchy, high performing teams, efficient decision-making processes and a nurturing and learning environment which rewards performance. Role Purpose Infinigate are seeking an ambitious Cyber Security Engineer to join their UK IT Security team. This new role within the business has been designed in response to business growth demands and to offer career trajectory … adoption and integration of the latest security technologies. Installing, configuring, updating, and monitoring security tools and software, such as antivirus, encryption, authentication, SIEM etc. Evaluate, research and manage emerging cyber security threats. Support the incident management process, through Root Cause Analysis. Responding to and resolving security incidents and events, such as malware infections, phishing attempts, denial-of-service attacks More ❯

Introduction Infinigate Group are a leading, global distributer, specialising in total cyber security solutions and services. With 4 UK offices based in London, Woking, South Cerney and Fareham, we take pride in providing unrivalled support and value for our vendor and reseller partner communities. Our team at Infinigate consists of IT security experts as well as highly skilled support … objective we adopt a flat hierarchy, high performing teams, efficient decision-making processes and a nurturing and learning environment which rewards performance. Role Purpose Infinigate are seeking an ambitious Cyber Security Engineer to join their UK IT Security team. This new role within the business has been designed in response to business growth demands and to offer career trajectory … adoption and integration of the latest security technologies. Installing, configuring, updating, and monitoring security tools and software, such as antivirus, encryption, authentication, SIEM etc. Evaluate, research and manage emerging cyber security threats. Support the incident management process, through Root Cause Analysis. Responding to and resolving security incidents and events, such as malware infections, phishing attempts, denial-of-service attacks More ❯

threat actor groups, APT campaigns and geopolitical threats. Familiarity with STIX/TAXII, YARA, Sigma, and IOC/TTP formats. Deep knowledge of the MITRE ATT&CK framework and cyber kill chain methodology. The Role Monitor the threat landscape to identify emerging cyber threats, vulnerabilities and adversary tactics, techniques and procedures (TTPs). Support threat hunting … vulnerability management with relevant threat context and attribution. Perform adversary tracking and contribute to the development of threat models using frameworks such as MITRE ATT&CK, Diamond Model, and Kill Chain. Collaborate with SOC, IR, Red Team and Vulnerability Management teams to contextualise and operationalise threat intelligence. **This role is predominantly remote but requires flexibility to come into the More ❯

threat actor groups, APT campaigns and geopolitical threats. Familiarity with STIX/TAXII, YARA, Sigma, and IOC/TTP formats. Deep knowledge of the MITRE ATT&CK framework and cyber kill chain methodology. The Role Monitor the threat landscape to identify emerging cyber threats, vulnerabilities and adversary tactics, techniques and procedures (TTPs). Support threat hunting … vulnerability management with relevant threat context and attribution. Perform adversary tracking and contribute to the development of threat models using frameworks such as MITRE ATT&CK, Diamond Model, and Kill Chain. Collaborate with SOC, IR, Red Team and Vulnerability Management teams to contextualise and operationalise threat intelligence. **This role is predominantly remote but requires flexibility to come into the More ❯

About the role Our Cyber Threat Intelligence (CTI) team drives proactive cybersecurity defence by collecting, analysing, and disseminating actionable intelligence to protect the organisation from evolving threats. We focus on anticipating and mitigating risks by identifying emerging threats and reducing uncertainty. Our CTI team collaborates closely with internal teams, including Security Operations, Incident Response, Vulnerability Management, and Security Engineering … to-day operations, including the collection, processing, and analysis of threat intelligence to produce actionable insights. You will support strategic and operational intelligence initiatives by researching, monitoring, and assessing cyber threats, tactics, techniques, and procedures (TTPs), and ensuring it is shared with our teams. Additionally, you will engage in tactical intelligence activities to help detect and respond to immediate … threats. You will also play an active role in improving the overall service capability and helping reduce cyber threats What is in it for you We're all about the little helps. That's why we make sure our Tesco colleague benefits package takes care of you - both in and out of work. Click Here to find out more More ❯

Job Description: Senior Cyber Threat Intelligence Analyst Hybrid: Office/WFH London, Manchester or Staines Permanent Up to £75k + 10% bonus + fantastic benefits 37.5 hours per week We consider all types of flexibility, including locations, hours and working patterns. We make health happen At Bupa, we’re passionate about technology. With colleagues, customers, patients and residents in … mind you’ll have the opportunity to work on innovative projects and make a real impact on their lives. You will be responsible for all aspects of Cyber Threat Intelligence Management, Situational Awareness, Threat Hunting, and defense and prevention tuning activities to protect Bupa from all types of cyber adversaries. How you’ll help us make health happen … Provide threat-driven cyber security expertise, overseeing end-to-end process design, implementation and coordination of all tactical and strategic activities Working with the Head of Threat Intelligence and Lead Threat Intelligence Analyst to ensure a proactive defensive security posture Ensure that all technology, cloud services, and third-party solutions follow the established Threat Management standards Collaborate with vendors More ❯

Operational Technology (OT) Cyber Security Analyst Drax Power Station, Selby Hybrid working Permanent, full time Closing date: Monday 16th June 2025 Who we are We’re not just talking about making a difference, we’re making it happen. We generate dispatchable, renewable power and create stable energy in an uncertain world. Building on our proud heritage, we have ambition … champions. We’re enabling a zero carbon, lower cost energy future for all, and working hard to decarbonise the planet for generations to come. About the role As OT Cyber Analyst, you’ll be responsible for monitoring, assessing, and securing Drax’s operational technology (OT) systems, including industrial control systems (ICS) and supervisory control and data acquisition (SCADA) systems … against cyber threats and vulnerabilities. The role will play a key role in ensuring the reliability and safety of UK critical national infrastructure. Cybersecurity Monitoring: Continuously monitor the efficacy and maintain OT security monitoring solutions deployed within the OT environment. Threat Analysis: Analysing and identifying potential cyber threats and vulnerabilities, assess their impact, and prioritize responses accordingly. Incident More ❯

Join Maersk’s Groundbreaking Cyber Team: Redefining Incident Management & Response Imagine a career where you're not just responding to security incidents—you’re revolutionising how it’s done. At Maersk, one of the world’s largest and most respected logistics and shipping companies, our Cyber team is pioneering a whole new approach to incident response. This isn … to life. Are you ready to be part of something transformational at Maersk and join a team that’s setting a new standard in cybersecurity? Join a World-Class Cyber Team: Be part of an elite cyber operation at one of the globe’s most renowned logistics companies, where your contributions truly make a difference. Multidimension role to … a fast-paced, stimulating atmosphere. Participate in exciting CTF competitions alongside a team of experts, pushing the boundaries of your knowledge and skills. Using cutting edge technologies: Tackle complex cyber incidents that require innovative solutions and utilizing the latest technologies available in the market. Your expertise will be crucial in addressing and mitigating sophisticated threats, allowing you to hone More ❯

create a better future, quicker SP Energy Networks (SPEN) has kicked off an ambitious security transformation programme to transparently reduce risk, achieve compliance with NIS regulations and deliver a cyber resilient business, and the Threat Intelligence Lead will be essential in achieving our goals. This role will be integrated into an active and ambitious global cyber security function … contributing to SPEN’s cyber security purpose of delivering cyber resilient OT and IT, to enable a safe and reliable electricity supply to customers. What you’ll be doing The role will analyse intelligence and open-source information to identify, monitor, assess and counter potential threats posed by threat actors against the business and sector. The primary aim … to communicate the impact of technical analysis to non-technical stakeholders. An understanding of collection techniques, strategic analysis techniques, common commercial data sources, and the intelligence collection opportunities from cyber security services such as incident response, managed services and wider security projects. Familiarity with the application of threat modelling techniques, such as the Diamond model, Kill Chain More ❯

leadership driving our operational security incident response across our global network. You'll work closely with Incident Managers and other technical teams to detect, respond to, and recover from cyber-attacks—all while proactively defending against emerging threats through intelligence-led threat hunting. This role is a key pillar in our Group Security division, empowering our well-known consumer … local Telenet security team providing Incident Management coordination. What will you be doing? Incident Response & Threat Handling Technical Lead for Incidents: Act as the go-to expert during complex cyber incidents, guiding containment, eradication, and recovery efforts. Forensic & Malware Analysis: Perform deep-dive investigations, including advanced malware analysis, extraction of Indicators of Compromise (IoCs), and mapping out Tactics, Techniques … and management reporting to demonstrate the effectiveness and value of the team’s work. We tend to look for people with: Extensive experience in managing, investigating, and responding to cyber incidents, with hands-on experience in a dynamic SOC or Incident Response role. Technical Expertise: Strong understanding of intrusion detection, forensic investigations, vulnerability management, and advanced security technologies (SIEM More ❯

EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at experianplc.com. Internal Grade E Job Description Experian Cyber Fusion Center is looking for a Threat Intelligence Analyst to help track new and persistant cybersecurity threats, analyse and produce applicable intelligence to help the organisation. You will be … defense. Contribute to cross-team projects to improve the security posture of Experian infrastructure, such as red team operations, Attack Surface Management and Threat Hunting collaborations. Help Investigate latest cyber trends providing relevant forecasts, suggestions & reports to different types of audiences. Help produce technical, operational, and strategic intelligence reports. Qualifications Prior work experience in Cybersecurity or Threat Intelligence fields. … Proficient in both written and spoken English, communicating technical concepts to different audiences both verbally and in writing. Familiar with analytic techniques and common frameworks such as Cyber Kill Chain Model, Diamond Model, and MITRE ATT&CK Matrix, and a background using these methodologies/frameworks during intelligence gathering and analysis activities. Work analytically and critically and More ❯

seeking a Consultant to join our Discovery and Data Insights team in London. In this role, you will provide technical expertise and consultative solutions in Digital Forensics, Incident Response, Cyber Security , and eDiscovery for our clients. Our clients include Law Firms, Fortune 500 multi-nationals, and Government/Law Enforcement . You will be expected to be a technical … lead on cases for our regional and international teams (DFIR/Legal Technologies/Data Analytics) and work closely with our Cyber Response, Crisis Management, and Investigations divisions. Additionally, you will support business development through articles, presentations, and marketing campaigns. This role requires working at our London office at least three days a week (hybrid) with on-call rotations … into sales leads and proposals. Engage actively in business development and marketing. Some international travel may be required. Knowledge and Experience Essential Proven technical experience in computer forensics for cyber incident response and investigations. Understanding of best practices (NPCC, NIST, ISO17025) in evidence handling, systems, and tools. Knowledge of MITRE ATT&CK, Cyber Kill Chain, network More ❯

to join our Discovery and Data Insights team in London. In this role you will provide technical expertise and consultative solutions in the field of Digital Forensics, Incident Response, Cyber Security and eDiscovery for our clients. Our clients include Law Firms, Fortune 500 multi-nationals, and Government/Law Enforcement. You will be expected to be a technical lead … on cases for our regional and international Discovery & Data Insights teams (DFIR/Legal Technologies/Data Analytics) as well as working closely with our Cyber Response and Crisis Management divisions as well as our Investigations teams. As the Consultant you will also support the business development effort for the department contributing subject matter expertise in articles, presentations and … required. Experience in both digital forensics and incident response is essential for this role. Responsibilities Provide forensic/incident response consultancy and expertise in data collections, investigative/analysis & cyber security services to our clients To support our Investigation teams across regions To provide high quality deliverables to our clients in a timely and efficient manner To ensure work More ❯

Detection Engineering 1 hour ago Be among the first 25 applicants Join to apply for the Security Engineer II - Detection Engineering role at Tesco About the role As a Cyber Security Detection Engineer, you will lead the development, implementation, and continuous improvement of Tesco's cyber security detection capability. You will be required to understand the changing threat … closely with multiple teams, including security operations, engineering, and risk & compliance, in a fast paced and agile environment. You will be responsible for Responsible for developing and driving the cyber security detection capability both day-to-day and strategically for the Tesco Group. You are expected to seek out effective and comprehensive detection logic and capability, ensuring detections are … robust and not brittle, thoroughly tested, and that alerts and supporting information is available to and understood by operational cyber security teams. You are expected to put the needs of operational teams and incident responders at the centre of your development work, ensuring detections and alerts are relevant, of value, and have practical response steps. You will need to More ❯

benefit you in the role Some coding experience in any language (even personal projects count!); familiarity with PHP and Python is a plus. Experience of cybersecurity concepts (attack vectors, kill chain) Experience of compliance understanding (NIST, ISO, custom policies) Customer/stakeholder engagement (technical project management, consulting) Why Join Us? Nucleus is a fast-growing startup where we More ❯

procedures, and tools to strengthen our security posture. Collaborate closely with cross-functional stakeholders, including engineering, security, infrastructure, and leadership teams, during security events through the completion of the cyber kill chain. Lead post-incident reviews and perform detailed root-cause analysis after incidents and implement lessons learned to enhance proactive security measures Continuously improve our detection and More ❯

procedures, and tools to strengthen our security posture. Collaborate closely with cross-functional stakeholders, including engineering, security, infrastructure, and leadership teams, during security events through the completion of the cyber kill chain. Lead post-incident reviews and perform detailed root-cause analysis after incidents and implement lessons learned to enhance proactive security measures Continuously improve our detection and More ❯