51 to 75 of 89 Cyber Threat Intelligence Jobs in the UK

bridge the gap between strategic vision and technical execution — collaborating with vCISOs, Unit 42 engagement leads, and client stakeholders to design and deliver transformation blueprints and pragmatic roadmaps towards threat led resilience You'll work at multiple levels: partnering with Unit 42 peers and client senior decision makers to influence transformation direction, embedding into delivery teams to guide execution … and engaging in activities to elevate Unit 42's voice in the market. You bring a deep understanding of applying threat context to shape and drive transformation programmes. This role blends delivery, technical advisory, thought leadership, and enablement — ensuring our clients achieve measurable security outcomes while unlocking the benefits of a platform adoption strategy. Your Impact Client Engagement and … specialist technical topic and the ability to present it at industry events. Professional certifications (e.g., CISSP, CISM, CCSK, PCNSE). Additional Information Unit 42 brings together our world-renowned threat researchers with an elite team of security consultants to create an intelligence-driven, response ready organization. The Unit 42 Threat Intelligence team provides threat research More ❯

This is a key role within the Global Security Operations Centre (GSOC). You will be providing technical expertise and leadership support to the proactive and reactive responses to cyber threats targeting RBC's global environment. You will report to the Senior Manager, Incident Response and works with a team of 4-6 technical specialists. You will act as … day per week remotely, depending on working arrangements. What will you do? Global accountability to respond to critical security incidents/events providing accurate and timely reporting to Global Cyber Security Leadership. Provide 7/24/365 support for security incidents impacting mission critical business and IT infrastructure, including supporting global incident management and response, remediation and reporting. … timely communication to all stakeholders regarding incident response activities. Provide post mortem reporting for leadership detailing security vulnerabilities, technology gaps, shortcomings or miscellaneous security issues. Responsible for working with threat intelligence, Security Operations Centre and extended teams to ensure global compliance to RBC standards with respect to security incidents and related findings. Responsible for driving to resolution security More ❯

Security Operations is responsible for ensuring alignment between AJ Bells business goals and our ability to proactively identify and respond to security incidents, underpinned by an ability to translate cyber risk in to business risk and vice versa. This role will be responsible for the leadership and management of the team delivering ongoing proactive cyber defence and response … develop AJ Bells incident response framework and playbooks, including undertaking regular training and testing (including table top exercises) up to and including executive level. Develop and maintain AJ Bells threat intelligence capabilities to enable effective response to the evolving threat landscape, delivering and disseminating actionable intelligence to operations teams and key stakeholders. Ensure operational processes for … About you: Expert understanding and knowledge of Information Security risk management tools and techniques Extensive experience of Information Security standards and frameworks Awareness and understanding of the Information Security threat landscape Knowledge of security investigations best practice including the use of Microsoft Purview and computer forensics an advantage. Experience of utilising and monitoring Information Security solutions e.g. email/ More ❯

Head of IT Security Incident and Threat Management Package to £117k DOE + 15% Bonus + Benefits Based Birmingham This is an exciting opportunity to take a strategic leadership role at the forefront of cybersecurity. As Head of IT Security Incident and Threat Management, you will shape and lead the organization s global response to cyber threats … ensuring they stay one step ahead of emerging risks. You will have the scope to define and deliver a world-class threat intelligence and incident response strategy, working with innovative cutting-edge tools, partners, and experts. The successful candidate will lead and develop a talented in-house team, while managing the external Security Operations Centre (SOC) to ensure … proactive defence and rapid response to incidents. Key Responsibilities Develop and execute incident response and threat management strategies. Lead investigations, resolution, and post-incident analysis of security incidents. Oversee and mentor a team of three direct reports, ensuring their growth and performance. Conduct security audits and vulnerability assessments to strengthen defences. Collaborate across departments to embed robust security practices. More ❯

Head of IT Security Incident and Threat Management Package to £117k DOE + 15% Bonus + Benefits Based Birmingham This is an exciting opportunity to take a strategic leadership role at the forefront of cybersecurity. As Head of IT Security Incident and Threat Management, you will shape and lead the organization’s global response to cyber threats … ensuring they stay one step ahead of emerging risks. You will have the scope to define and deliver a world-class threat intelligence and incident response strategy, working with innovative cutting-edge tools, partners, and experts. The successful candidate will lead and develop a talented in-house team, while managing the external Security Operations Centre (SOC) to ensure … proactive defence and rapid response to incidents. Key Responsibilities Develop and execute incident response and threat management strategies. Lead investigations, resolution, and post-incident analysis of security incidents. Oversee and mentor a team of three direct reports, ensuring their growth and performance. Conduct security audits and vulnerability assessments to strengthen defences. Collaborate across departments to embed robust security practices. More ❯

Partnered with a Multi-Award-Winning, Software-Based Organisation at the Forefront of Pre-Emptive Exposure Management. As a Market Leader backed by significant Venture Funding, they combine Proactive Threat Intelligence, Real Attacker Telemetry & Automated Red Teaming to Continuously Identify & Validate Real Exposure. Success in this position will enable the business to Transform Raw Intelligence into Actionable … Providers, helping them Outrun Real-World Threats in Real-Time. Role Overview: We're looking to speak with ambitious Information Security/SOC Engineers to Build & Continuously Evolve Internal Cyber Security Capability. You will secure the Internal Environment, Ensure Compliance with Leading Security Frameworks & Support Secure IT Operations across the Global Team. This "Hands-On" role requires Technical Depth … Security Design Experience & Strong Operational Discipline. If you're excited by Autonomy & Helping Build Internal Security "From the Ground Up", alongside working in a Fast-Moving Cyber-Company, then read on... Skills & Experience Required for Information Security Engineer role: Strong Cloud Security Background (AWS) with "Hands-On" Security Operations across Cloud, Servers & Endpoints Proficient in Vulnerability Management, including Scanning More ❯

Location: London, UK (Hybrid: 2 days per week in the office) Company: Navro – Pioneering the Future of Payments Securing Trust: Cyber Security Lead This isn't just another Information Security role. No legacy systems. No corporate red tape. No coasting. This is about building something from the ground up. Fast. We're Navro, a rapidly scaling B2B payments startup … and we're looking for a bold, proactive, and hands-on Cybersecurity Lead to design, implement, and operate our security operations function, including SIEM, incident response, threat detection, secure by design, shift-left security engineering, and automated monitoring and response. You'll run and be part of the projects that implement, build, and maintain security integrations across our tech … mediocrity. Requirements What This Role Demands: You Own It – You lead our detection and response mission. You help define the roadmap, build the pipelines, and drive measurable outcomes across threat visibility, MTTD/MTTR, and resilience. You Ask Questions – You challenge assumptions to improve signal‐to‐noise, coverage, and automation. Why this alert? Where's the data gap? How More ❯

DevSecOps Engineer | Fully Remote | £60,000 - £70,000 Our client is a fast-growing cyber-defence and threat-intelligence company committed to protecting organisations from sophisticated cyber threats. They combine advanced security analytics, automation and human expertise to deliver real-time defence across modern cloud and on-prem environments. They are expanding their engineering team and … world-class security into everything they build. The Role: As a DevSecOps Engineer, you will sit at the intersection of development, operations and security. Youll work closely with engineering, threat research, and security operations teams to design, build, and maintain secure, scalable infrastructure and CI/CD pipelines. What Youll do: +Design, maintain and secure CI/CD pipelines … and manage Infrastructure-as-Code (Terraform, Ansible, CloudFormation, etc.). +Integrate security tooling into development workflows: SAST, DAST, dependency scanning, secrets management, etc. +Collaborate with engineering teams to perform threat modelling and ensure secure system design. Key Skills and Experience: +Strong experience with CI/CD systems (GitHub Actions, GitLab CI, Jenkins, etc.). +Hands-on cloud experience (AWS More ❯

Head of IT Security - Wembley - (Enterprise-wide Cyber & Information Security) Location: Wembley - 5 days on-site Salary: (phone number removed) per annum My client is looking to recruit a Head of IT Security to lead and shape their enterprise-wide security function. This is a senior leadership role offering the opportunity to define security strategy, strengthen governance, and protect … critical systems, data, and operations. The Role: As Head of Security, you will own the strategic and operational delivery of all information and cyber security activities. You'll develop and implement robust security policies, oversee incident response, and ensure compliance with GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus. You will be the single point of accountability … a 3-5 year Security Strategy and Roadmap covering technology, people, and processes. Embed security by design across projects, platforms, data flows, and product development. Lead enterprise-wide information, cyber, and data security governance. Define and implement security frameworks, policies, and operating models. Ensure compliance with GDPR, PCI DSS, Cyber Essentials Plus, and ISO/IEC More ❯

Head of IT Security - Wembley - (Enterprise-wide Cyber & Information Security) Location: Wembley - 5 days on-site Salary: £90-100,000 per annum My client is looking to recruit a Head of IT Security to lead and shape their enterprise-wide security function. This is a senior leadership role offering the opportunity to define security strategy, strengthen governance, and protect … critical systems, data, and operations. The Role: As Head of Security, you will own the strategic and operational delivery of all information and cyber security activities. You'll develop and implement robust security policies, oversee incident response, and ensure compliance with GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus. You will be the single point of accountability … a 3-5 year Security Strategy and Roadmap covering technology, people, and processes. Embed security by design across projects, platforms, data flows, and product development. Lead enterprise-wide information, cyber, and data security governance. Define and implement security frameworks, policies, and operating models. Ensure compliance with GDPR, PCI DSS, Cyber Essentials Plus, and ISO/IEC More ❯

Role: Senior Cyber Operations Analyst Location: London/Manchester/Bristol Salary: Competitive salary and package dependent on experience Career Level: Associate Manager Please Note: Any offer of employment is subject to satisfactory BPSS and SC security clearance which typically requires 5 years continuous UK address history usually including no periods of 30 consecutive days or more spent outside … UK and declaration of being a British passport holder with no dual nationalism at the point of application. Note: The above information relates to a specific client requirement Our Cyber Practice is a fast-growing community of industry leading experts. The practice covers Assurance, Compliance, Security Operations (SecOps), Offensive Security and Security Research. It is critical that the relevance … maintained and augmented and that the team members have every opportunity to grow and learn with the organisation. As part of our Blue Team, you’ll use the latest intelligence and tooling to analyse information systems to ensure effective incident detection and response. Job Description If you are looking to make your mark on a rapidly growing SecOps team More ❯

the future of our security services. This role combines deep technical expertise with strategic influence, focusing on innovation, automation, and AI-driven enhancements. Youll work at the forefront of cyber defence, helping to design and deliver solutions that strengthen resilience and enable smarter security operations. You will: Architect & Design : Build and evolve secure frameworks using Microsoft Security (Defender, Sentinel … Purview, Entra) and integrate Qualys vulnerability management for continuous threat detection and remediation. Automate & Innovate: Lead the charge on automation (SOAR, IaC, workflow automation) and embed Gen AI into security operations, threat intelligence, and reporting. Set Standards: Develop and enforce security architecture standards, governance, and best practicesespecially for AI and automation in an MSSP context. Service Development More ❯

experience in monitoring and analysing security threats for multiple customers.You will oversee and mentor a skilled team of analysts, fostering a culture of continuous learning, champion best practices in threat detection and incident management, and play a key role in safeguarding our organisation’s digital environment. Communications with key business partners is key regarding risks, threats and SOC performance. … foster continuous improvement. Oversee full lifecycle of security incidents from detection to resolution. Ensure compliance with SLAs and escalation protocols. Maintain and enhance incident response plans and procedures. Direct threat intelligence collection and analysis. Manage vulnerability assessments and coordinate remediation. Monitor and analyse security events across multiple platforms. Identify, assess, and escalate threats and vulnerabilities. Maintain and evolve … a 24×7 environment, driving operational excellence and continuous improvement. Ability to harness data analysis to detect threats, identify trends, and deliver actionable security insights. Strong track record in threat detection, incident management, and escalation handling. Hands-on experience managing SIEM and SOAR platforms such as Splunk, Microsoft Sentinel, or Elastic. Skilled in coaching analysts, building high-performing teams More ❯

DevSecOps Engineer Fully Remote £60,000 - £70,000 Our client is a fast-growing cyber-defence and threat-intelligence company committed to protecting organisations from sophisticated cyber threats. They combine advanced security analytics, automation and human expertise to deliver real-time defence across modern cloud and on-prem environments click apply for full job details More ❯

Investigator - Cyber Incident Response Location Flexible (UK) Please Note: Due to the nature of client work you will be undertaking, you will need to be willing to go through a Security Clearance process as part of this role, which requires 5+ years UK address history at the point of application. Accenture is a leading global professional services company, providing … have the opportunity to develop a wide range of new skills. At Accenture, our global Incident Response team takes on some of the hardest and most meaningful challenges in cyber security. When major organisations are breached, when ransomware hits the headlines, when espionage or insider threats threaten operations, we’re the people called to help.We’re looking for curious … languages to protect clients that range from household brands to nationally significant infrastructure.We’re one of the NCSC CIR-enhanced capabilities in the UK (https://schemes/cyber-incident-response/information-for-buyers), meaning our team is trusted to respond to the nation’s most critical incidents, including ransomware, espionage, insider threats, and large-scale fraud.You More ❯

Graduate Information Security Analyst - Stockport We are seeking an enthusiastic Junior Cyber/Information Security Graduate to join our client's information security team in Stockport. In this role, you will help monitor and defend the client's networks and infrastructure against emerging threats. We are looking for either recent graduates, or equivalent professional experience, with practical hands-on … This is an entry-level role, and you will receive full support and training to help you upskill and improve your cybersecurity confidence. They will put your through relevant cyber security qualifications. Qualifications & Requirements: Bachelor's degree in Cybersecurity, or a related field (or equivalent experience). Evidence of self-learning and continual development outside of a university degree. … Some professional cyber security work experience would be beneficial but not required. Any knowledge of various GRC frameworks (e.g. ISO27001, PCI DSS, Cyber Essentials +) would be useful Familiarity with monitoring tools such as SIEM, IDS/IPS, EDR, and threat intelligence platforms. Basic understanding of networking, operating systems, and core security technologies. Exposure to scripting More ❯

in a busy Security Operations Center with a technology-oriented attitude and the capacity to assume control. From a technical perspective we are using Microsoft Sentinel, Splunk and MISP Threat sharing so any knowledge of these technologies would be a substantial benefit. Role based on site in our Farnborough office and is shift work. 2 x 6am to 6pm … the customer environments. Prepare reports for managed clients to both technical and non-technical audiences, Collaborate on improving detection rules and use cases aligned with Mitre Att&ck and threat-informed defense. Participate in a team effort to guarantee that corporate data and technology platform components are shielded from known threats. Collaborate with team members to maintain and update … security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Aid the development and use of threat intelligence throughout the service. Ability to work shifts from our office in Farnborough. What you’ll bring: Experience demonstrated in Security Operations Centre. Experience using Microsoft Sentinel and Splunk. Knowledge and experience with Mitre Att&ck Framework. Basic knowledge More ❯

have a stable and fit-for-purpose control testing environment that supports the organisation's security and compliance objectives. What you'll be doing as a Control Testing Lead - Cyber Security Support the implementation and continuous improvement of the Cybersecurity Control Testing Framework. Execute control testing in line with defined procedures, templates, and standards. Assist in the development and … in this role, the essential criteria you'll need are Proven experience in performing cybersecurity control assessments, including evaluating design and operational effectiveness. Strong understanding of information security principles, cyber risk management, and control frameworks. Experience in IT, OT and Cloud environments, with a focus on cybersecurity controls. Clear and professional verbal and written communication, including the ability to … work independently with minimal supervision, taking ownership of assigned tasks and driving them to completion while maintaining high standards of quality and accuracy. Strong understanding of Cybersecurity Domains, including Threat Intelligence, Vulnerability Management, Security Testing, Security Architecture, Infrastructure Protection, Application Security, Identity and Access Management, Incident Investigation & Response and Cryptography. Additional skills and experiences would be great to More ❯

OFFENSIVE CYBER SECURITY RESEARCHER Up to £140,000 + Shares + Staff Benefits Fully Remote SECURE has strategically partnered with a Multi-Award-Winning, Software-Based Organisation at the forefront of Pre-Emptive Exposure Management. As a market leader backed by significant venture funding, they combine proactive Threat Intelligence, Real Attacker Telemetry & Automated Red Teaming to Continuously … Identify & Validate Real Exposure. Success in this position will enable the business to Transform Raw Intelligence into actionable insights that protect Fortune 500 Companies & Critical Infrastructure Providers, helping them outrun Real-World Threats in Real-Time. Role Overview: We're looking to speak with an exceptional Principal Offensive Security Researcher who thrive on Discovering High-Impact Vulnerabilities in modern … possess the drive and relevant experience to deliver tangible results aligned with our Clients needs, reach out. We embraceDE&I and welcome applications from Underrepresented Groups, Minorities, Women in Cyber Security, Neurodiverse Individuals, LGBTQ+ Community Members, Veterans & those from Diverse Socioeconomic Backgrounds. Searches: Offensive Security/Red Team Security/Red Teaming More ❯

with enterprise-scale clients in a fast-paced, shift-based environment. You’ll be part of a collaborative team using cutting-edge technologies like Microsoft Sentinel, Splunk, and MISP Threat Sharing to protect critical infrastructure. Key Responsibilities: Monitor and analyse security alerts and events, conduct initial investigations, and escalate complex incidents. Manage SOC incident queues and support asset baseline … maintenance. Prepare reports for technical and non-technical audiences. Collaborate on improving detection rules and use cases aligned with MITRE ATT&CK. Contribute to threat intelligence development and incident documentation. Shift Pattern: 2 days (6am–6pm), 2 nights (6pm–6am), followed by 4 days off. What We’re Looking For: Experience working in a Security Operations Centre. Familiarity More ❯

OFFENSIVE CYBER SECURITY RESEARCHER Up to £140,000 + Shares + Staff Benefits Fully Remote SECURE has strategically partnered with a Multi-Award-Winning, Software-Based Organisation at the forefront of Pre-Emptive Exposure Management. As a market leader backed by significant venture funding, they combine proactive Threat Intelligence, Real Attacker Telemetry & Automated Red Teaming to Continuously More ❯

cybersecurity assessment and certification evaluation of products and components. Examples of the tasks, include, but are not limited to; assessment to latest cybersecurity standards, penetration testing (IoT and WebApp), threat modelling, firmware investigation, code analysis etc. This service will be provided to external clients, who will predominantly be manufacturers of wired and wireless IoT/IIoT devices. You will … to the development and scaling of a robust product certification framework. Your role will include testing products as well as contributing to the development of an evolving and dynamic cyber assessment service. Main Duties & Responsibilities: Perform assessments to the latest cybersecurity regulations, standards and guidelines Perform security reviews and testing of IOT hardware devices, including application design, embedded software … electronic, network, or data security related controls (encryption, digital signatures, secure boot, access control, password management). Understanding how to implement security activities such as vulnerability and patch management, threat intelligence etc. Hands-on practical knowledge with reverse engineering and/or vulnerability testing tools and techniques. Experience in common scripting languages such as Python, Ruby, LUA, Powershell More ❯

experienced IT Security Engineer with recent experience of using Vulcan, to be considered for the role, you will need Vulcan and the following: - Assist with the deployment of Vulcan Cyber for orchestrating and automating vulnerability management workflows, prioritisation, and remediation tracking. Assist with the vulnerability management lifecycle, from detection to remediation, ensuring robust protection against threats. Operate and optimise … vulnerability management tools, including Vulcan Cyber, to conduct comprehensive vulnerability assessments and generate actionable reports. Develop and deliver regular vulnerability reporting, metrics, and dashboards for management and technical teams via Vulcan Cyber, Tenable and Defender. Collaborate with incident response teams using CrowdStrike and Microsoft Defender to correlate vulnerability data with threat intelligence and active security incidents. More ❯

and hybrid environments. You'll partner with engineers, developers, and business leaders to ensure security is embedded by design, not added as an afterthought. Your work will span from threat modeling and risk assessment to architecting PCI-DSS compliant solutions, building the secure infrastructure that underpins our global mobility and payments platforms. This is your opportunity to influence how … enterprise-grade architectures across cloud, hybrid, and on-prem environments. Embed security into every stage of our SDLC, partnering with IT, product, and development teams. Conduct risk assessments and threat modeling, proactively identifying vulnerabilities and mitigation strategies. Develop and maintain security policies and frameworks aligned with NIST, ISO 27001, and CIS Controls. Lead PCI-DSS architecture and compliance, ensuring … at all levels. Certifications such as CISSP, CCSP, CISM, or TOGAF are a plus. Bonus points if you bring experience with Zero Trust architectures, Well-Architected Framework reviews, or threat intelligence platforms. Benefits What's in it for you? Besides the opportunity to work for a global company that is customer and people-focused, we offer: A focus More ❯

a Security Testing Consultant to join a global organisation that helps governments, critical infrastructure, and commercial enterprises gain digital advantage in complex environments. This role sits within a specialist cyber team delivering cutting-edge security testing services across diverse sectors. What You'll Do: Deliver end-to-end security testing engagements, from scoping to client wash-up meetings. Perform … application, web, mobile, and infrastructure testing, including intelligence-led and objective-based assessments. Produce clear, detailed reports and presentations for technical and non-technical stakeholders. Develop tools, scripts, and techniques to enhance testing capabilities. Collaborate with adjacent teams such as Threat Intelligence and Incident Response. What We're Looking For: Proven experience in security testing projects and More ❯