51 to 75 of 172 Cyber Threat Intelligence Jobs in the UK

Cyber Security Specialist | Logrhythm > Hatfield, Hertfordshire > £50,000 - £65,000 + Up to 20% Bonus > 10% Pension + Life Assurance + Excellent Benefits > Hybrid - 3 days onsite ** The business will support the application for security clearance. Due to the nature of work, the individual has to be a UK … About the Business Security is one of the fastest-growing parts of this global organisation. They protect their networks from more than 6,500 cyber-attacks each day, investing significantly in research each year and employ more than 3,000 people in the cyber security business alone, making … them the largest private cyber security employer in the UK. About this Role This role exists to provide specialist technical support on complex network security and cybersecurity deployments for large and sometimes complex UK contracts. The role will include supporting and administrating various SIEM and XDR platforms including creating More ❯

Press Tab to Move to Skip to Content Link This IT Cyber Security Engineer will report to the Cyber Security Engineering Lead and will work within the Information Systems directorate based in our Crawley office. You will be a permanent employee. You will attract a salary of … Leasing Schemes Occupational Health support Switched On - scheme providing discount on hundreds of retailers' products Discounted gym membership Employee Assistance Programme Job purpose: The Cyber Security IT Engineer will evaluate all security solution technologies and toolsets and help develop the security systems within the organisation and will ensure that … UK Power Networks data, network, and systems are protected from cyber threats and will comply with the relevant standards and regulations. You will also provide technical support to other security team professionals and partners. Dimensions: UK Power Networks is expanding its presence in Microsoft Azure and is enhancing its More ❯

Cyber Risk Management Lead Location: Immingham or London Contract Type: Permanent Salary: £70,000 - £75,000 About the Role An established power generation company is seeking a Cyber Risk Management Lead to enhance and oversee its cyber risk management framework across Operational Technology (OT) and Information Technology … role can be based in Immingham or London , with travel to other sites as required ( 3 days in the office ). Key Responsibilities Lead cyber risk assessment activities across IT and OT environments, correlating outputs into strategic risk tracking. Manage the cyber security risk toolkit , including threat modelling, attack trees, and scenario-based exercises. Develop and implement cyber security policies, processes, and staff training aligned with Secure by Design principles. Oversee first-line security operations , including outsourced 24/7 SOC management . Define and manage cyber threat intelligence requirements . Provide More ❯

as a part of the broader KLA AI Security program. The ideal candidate will be able to demonstrate a breadth of knowledge across cybersecurity, threat intelligence, and artificial intelligence. Responsibilities: Conduct in-depth technical assessments of AI systems to identify security risks. Develop threat models for AI … develop mitigation strategies for identified risks, and coordinate with business partners to deploy countermeasures to reduce risk to systems and applications. Partner with the cyber threat intelligence team to research and remain current on threats and vulnerabilities to proactively find opportunities to amend our AI security strategy. More ❯

Location(s): UK, Europe & Africa : UK : London BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital … advantage in the most demanding environments. Job Title: Threat Intelligence Lead Location: London - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Grade: GG12 Referral Bonus: £5000 What You'll Be Doing Working on client … sites you will support and lead engagements that deliver cyber risk assessments, improve security control maturity, define secure solutions and ensure compliance. Delivery of small to medium cyber security work-streams or engagements Understanding business and information risk context of our customers and judging risk at a technical More ❯

fulfilling life. YOUR CANDIDATE JOURNEY Discover what to expect during your journey as a candidate with us. The Opportunity: Are you looking for a threat hunter role, detecting cyber threats in support of active forensic investigations? Cyber threats are evolving, and when perimeter security and automated protection … enough, networks are compromised, information is accessed, data is exfiltrated, backups are wiped, and ransomware is deployed, locking up an entire organization. Join our threat detection and response team to perform active threat hunting and assist organizations in recovering from cyber incidents. We're seeking CND and … CNO specialists who can think like cyber attackers to understand how security measures were circumvented. This role offers an opportunity to use your analytical skills and gain endpoint detection and response experience to identify indicators of compromise. You will collaborate with incident response analysts engaged in forensic investigations. Join More ❯

banner. By working collaboratively, we aim to become industry-leading in safety, customer service, financial and operational performance. About the role: The Head of Cyber Security is a critical leadership role at DFTO, responsible for establishing and maturing the group's overall cyber security posture, ensuring it effectively … mitigates risks in the face of the evolving threat landscape. This involves developing a comprehensive cyber security capability framework, assessing the maturity of individual train operating companies (TOCs) against this framework, and creating investment/programme plans to uplift their capabilities to appropriate levels. The role also encompasses … traditional cyber security functions, such as incident management, and a focus on developing common group cyber services for consistency and efficiency. Key Competencies: Interpersonal Skills: Demonstrates a strong ability to build and maintain relationships with a diverse group of stakeholders, including executives, teams across the TOCs and external More ❯

Are you ready to take the leap into the elaborate world of Cyber? If you have a real passion for Cyber Security, possess a sharp analytical mind set with a desire to protect businesses, this is your chance! The ideal person will be working in IT and studying … this could be the perfect opportunity to transition into security and gain hands-on experience with cutting-edge technology. Gain hands on experience: - Threat Detection & Response – Monitor security alerts using SIEM platforms (Splunk, Sentinel, QRadar etc.) and act fast to counter potential threats. Incident Investigation – Analyse security incidents, conduct … forensic investigations, and support remediation efforts. Vulnerability Management – Identify, assess, and report on security risks, ensuring proactive mitigation strategies. Security Automation & Intelligence – Leverage SOAR platforms and threat intelligence tools to enhance detection capabilities and streamline responses. Collaboration & Communication – Work closely and collaborate with senior analysts and clients More ❯

truly be yourself and belong, share inspiration, embrace new opportunities, thrive, and make a real difference. Technical Product Owner - Security Monitoring & Analytics (SMA) Function: Cyber Security Department: Vodafone Group Location: London or Newbury, UK Reports to: Simon Miles Work Persona: Hybrid Role Overview: Vodafone's Global Cyber Prevent … team is establishing a cutting-edge Security Monitoring & Analytics (SMA) capability to enhance its cyber defence operations. This initiative focuses on modernizing Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) platforms , leveraging AI/ML-driven threat detection. As a Technical Product Owner … s SOC modernization. What you'll do Key Responsibilities: Product Ownership & Roadmap: Define and manage the SMA product portfolio , covering SIEM, SOAR, Big Data, Threat Intelligence Platforms (TIP), and Forensics . Stakeholder Collaboration: Engage with Security Architecture, Security Design, and SOC teams to develop and enhance security capabilities. More ❯

knowledge and technology solutions to deliver the best possible outcomes and get it right first time. Why Join KPMG as a Manager within our Cyber Security function? Cyber security is one of the areas which KPMG has identified for tremendous investment and growth. Our clients face a challenging … cyber threat and look to us to help them understand and respond to that threat. This is an opportunity to join a high performing team that works with a wide variety of clients, including Defence and National Security, which is a KPMG priority sector. That means we are … learn, and experience within a Security Operations Centre (SOC). Understanding of SOC tools and technologies, such as SIEM, IDS/IPS, EDR and threat intelligence platforms. Proven experience of assessing maturity, managing SOC services and delivering improvements within a SOC environment. Experience bringing a technology perspective to More ❯

knowledge and technology solutions to deliver the best possible outcomes and get it right first time. Why Join KPMG as a Manager within our Cyber Security function? Cyber security is one of the areas which KPMG has identified for tremendous investment and growth. Our clients face a challenging … cyber threat and look to us to help them understand and respond to that threat. This is an opportunity to join a high performing team that works with a wide variety of clients, including Defence and National Security, which is a KPMG priority sector. That means we are … learn, and experience within a Security Operations Centre (SOC). Understanding of SOC tools and technologies, such as SIEM, IDS/IPS, EDR and threat intelligence platforms. Proven experience of assessing maturity, managing SOC services and delivering improvements within a SOC environment. Experience bringing a technology perspective to More ❯

play a critical role in, overseeing the 24/7/365 monitoring, detection, and response to cybersecurity threats and incidents, ensuring operational excellence, threat intelligence integration, and alignment with the organization's security objectives. The ideal candidate is a proven cybersecurity leader with a deep understanding of … security operations, threat landscapes, incident response, and team leadership. This individual will play a key role in shaping the future of our cyber defense capabilities. Responsibilities: • Lead and manage the daily operations of the Security Operations Center, including managing a multi-tiered team of managers, analysts, and incident … incident detection, triage, investigation, and coordinated response efforts to mitigate threats in real time. • Ensure continuous improvement of security monitoring tools, automation, playbooks, and threat detection capabilities. • Collaborate with other cybersecurity teams, IT, legal, compliance, and business units to ensure an integrated approach to incident handling and threat More ❯

contributing to the development of essential architecture strategies and patterns for NESO. Building and managing relationships with the business is key to delivering our cyber security strategy. Whether implementing new solutions, driving operational effectiveness and efficiency, or providing guidance to further enhance our strategy, the Senior Security Architect will … oriented mindset. A proactive approach to problem-solving, with the ability to think critically and strategically about architectural challenges and opportunities. Significant experience in cyber security Strong Cloud knowledge and demonstrable experience - (Azure) Relevant cyber security qualification(s), for example Certified Information Systems Security Professional (CISSP), Certified Information … secure software development lifecycles, application architectures, key attack vectors, and corresponding compensating controls. Cloud Security (Microsoft): Demonstrated experience and proficiency in securing cloud environments. Cyber Threat Intelligence: Ability to analyse and respond to emerging cyber threats and how this can be used to update secure architecture More ❯

Senior Security Operations Centre Analyst with a strong background in security operations, threat detection, and incident response is required by Logic Engagements to work for a large scale leading organisation based in Gosport, Hampshire As a Senior SOC Analyst, you will be at the forefront of digital defence-leading … using advanced SIEM platforms (Microsoft Sentinel, Splunk) Leading incident response and driving improvements in detection and containment strategies Tuning and maintaining detection rules, using threat frameworks like Mitre Att&ck Collaborating with colleagues to enhance the overall capability and resilience of the Security Operations Centre Staying abreast of cyber threat developments and contributing to best practices and process enhancements Supporting the continuous development of the SOC team through knowledge sharing and mentoring In order to be successful for this role you will need to be able to demonstrate the following experience: Proven experience in a Security Operations More ❯

and a generous flexible benefits fund Key Requirements We are seeking an experienced Senior SOC Analyst who brings a strong background in security operations , threat detection, and incident response. This is a critical role that supports the defence of national infrastructure through proactive monitoring, analysis, and improvement of cybersecurity … such as Microsoft Sentinel and Splunk Solid understanding of network protocols and infrastructure (e.g. TCP/IP , VPNs , firewalls ) Skilled in incident response and threat intelligence analysis Familiarity with Mitre Att&ck framework and advanced threat detection techniques Excellent analytical and problem-solving capabilities Able to provide … using advanced SIEM platforms ( Microsoft Sentinel , Splunk ) Leading incident response and driving improvements in detection and containment strategies Tuning and maintaining detection rules, using threat frameworks like Mitre Att&ck Collaborating with colleagues to enhance the overall capability and resilience of the Security Operations Centre Staying abreast of cyber More ❯

generous flexible benefits fund Key Requirements We are seeking an experienced Senior Security Operations Centre Analyst who brings a strong background in security operations , threat detection, and incident response. This is a critical role that supports the defence of national infrastructure through proactive monitoring, analysis, and improvement of cybersecurity … such as Microsoft Sentinel and Splunk Solid understanding of network protocols and infrastructure (e.g. TCP/IP , VPNs , firewalls ) Skilled in incident response and threat intelligence analysis Familiarity with Mitre Att&ck framework and advanced threat detection techniques Excellent analytical and problem-solving capabilities Able to provide … using advanced SIEM platforms ( Microsoft Sentinel , Splunk ) Leading incident response and driving improvements in detection and containment strategies Tuning and maintaining detection rules, using threat frameworks like Mitre Att&ck Collaborating with colleagues to enhance the overall capability and resilience of the Security Operations Centre Staying abreast of cyber More ❯

and a generous flexible benefits fund Key Requirements We are seeking an experienced Senior SOC Analyst who brings a strong background in security operations , threat detection, and incident response. This is a critical role that supports the defence of national infrastructure through proactive monitoring, analysis, and improvement of cybersecurity … such as Microsoft Sentinel and Splunk Solid understanding of network protocols and infrastructure (e.g. TCP/IP , VPNs , firewalls ) Skilled in incident response and threat intelligence analysis Familiarity with Mitre Att&ck framework and advanced threat detection techniques Excellent analytical and problem-solving capabilities Able to provide … using advanced SIEM platforms ( Microsoft Sentinel , Splunk ) Leading incident response and driving improvements in detection and containment strategies Tuning and maintaining detection rules, using threat frameworks like Mitre Att&ck Collaborating with colleagues to enhance the overall capability and resilience of the Security Operations Centre Staying abreast of cyber More ❯

and a generous flexible benefits fund. Key Requirements: We are seeking an experienced Senior SOC Analyst who brings a strong background in security operations , threat detection, and incident response. This is a critical role that supports the defence of national infrastructure through proactive monitoring, analysis, and improvement of cybersecurity … Microsoft Sentinel and Splunk . Solid understanding of network protocols and infrastructure (e.g. TCP/IP , VPNs , firewalls ). Skilled in incident response and threat intelligence analysis . Familiarity with Mitre Att&ck framework and advanced threat detection techniques. Excellent analytical and problem-solving capabilities. Able to … advanced SIEM platforms ( Microsoft Sentinel , Splunk ). Leading incident response and driving improvements in detection and containment strategies. Tuning and maintaining detection rules, using threat frameworks like Mitre Att&ck . Collaborating with colleagues to enhance the overall capability and resilience of the Security Operations Centre . Staying abreast More ❯

What do you want to search? Keyword Apprenticeship Type Location Cyber Security Apprentice Apply From: 27/03/2025 Learning Provider Delivered by ANGLO AMERICAN TECHNICAL & SUSTAINABILITY SERVICES LTD Employer ANGLO AMERICAN SERVICES (UK) LTD. Vacancy Description You will undertake your apprenticeship as part of a team that … protects Anglo American's Operational Technology and data from cyber threats. Here is a summary of what you will do: Develop a sound knowledge of cyber security tools. Learn how to identify and protect against cyber threats. Work alongside cyber security professionals from around the world … to develop your practical skills, alongside your studies to gain a Level 4 qualification. Provide support, advice and guidance on cyber security. An exciting, comprehensive apprenticeship which focuses on developing sound knowledge of cyber security tools, network intrusions, threat intelligence and how to identify and protect More ❯

network traffic using SIEM tools. Analyse and categorise security incidents in line with internal policies. Conduct in-depth incident investigations, reporting, and remediation. Utilise threat intelligence to detect and respond to potential threats. Support incident response activities for national-scale cyber events. Help improve SOC workflows, including … automation and threat detection use cases. Coach junior analysts and contribute to continuous improvement across the team. Essential Skills & Experience: Hands-on experience with Microsoft Sentinel (critical to this role). Experience in security operations, including SIEM tools (e.g., Sentinel, Splunk). Solid understanding of cloud environments (Azure and …/or AWS). Knowledge of network protocols, threat actors, and attack vectors. Ability to analyse complex data and deliver actionable insights. Familiarity with scripting (Python or similar) and security automation (SOAR). Understanding of threat intelligence and its operational use. Desirable Skills: Experience in software engineering More ❯

A global leader in defence and security solutions is seeking a Senior SOC Analyst to take charge of security operations, incident management, and threat detection strategies. This is an excellent opportunity for an experienced SOC analyst to step into a leadership role and help protect critical systems from evolving … cyber threats. As a Senior SOC Analyst, you will be responsible for identifying, investigating, and mitigating security incidents in a high-stakes environment. You will work with a team of experts, leveraging advanced security technologies to safeguard national security interests. Key Responsibilities: Lead and mentor a team of SOC … security environment. Oversee real-time security monitoring and incident response activities. Investigate, triage, and manage security incidents using SIEM, EDR, and NDR tools. Coordinate threat intelligence integration to enhance detection capabilities. Develop and refine SOC processes to improve efficiency and resilience. Requirements: 5+ years in Security Operations, with More ❯

crucial, along with a deep understanding of network protocols and infrastructure, including TCP/IP, VPNs, and firewalls. Your expertise in incident response and threat intelligence analysis is essential, as is your familiarity with the Mitre Att&ck framework and advanced threat detection techniques. Strong analytical and … and maintaining detection rules, leveraging frameworks like Mitre Att&ck Collaborating with colleagues to enhance the Security Operations Centre's capabilities Staying abreast of cyber threat developments and contributing to best practices Supporting the continuous growth of the SOC team through knowledge sharing and mentorship The successful SOC More ❯

crucial, along with a deep understanding of network protocols and infrastructure, including TCP/IP, VPNs, and firewalls. Your expertise in incident response and threat intelligence analysis is essential, as is your familiarity with the Mitre Att&ck framework and advanced threat detection techniques. Strong analytical and … and maintaining detection rules, leveraging frameworks like Mitre Att&ck Collaborating with colleagues to enhance the Security Operations Centre's capabilities Staying abreast of cyber threat developments and contributing to best practices Supporting the continuous growth of the SOC team through knowledge sharing and mentorship The successful SOC More ❯

view interactions from a holistic risk management perspective. Areas to cover: Incident response and remediation Orchestrating and automating signals Prioritizing cases and incident response Cyber threat intelligence and dark web monitoring Vulnerability management and exposure management Building a resilient cybersecurity culture Introducing new risk management techniques will … communicate and exchange information, utilizing necessary equipment to perform the job. ENVIRONMENT: This position will operate in the organization's regulatory "ROCKET FUEL MISSION INTELLIGENCE DIVISION" focusing on innovation and space exploration. Employees must be legally authorized to work in the UK. Verification of employment eligibility will be required More ❯

severity incidents. Create and update security event investigation notes, report on open cases, and maintain case data in the Incident Response Management platform. Monitor threat and vulnerability news services for any relevant information that may impact installed infrastructure. Analyse reports to understand threat campaign(s) techniques, lateral movements … and extract indicators of compromise (IOCs). Continuous engagement with the Threat Intelligence and 24x7 Monitoring teams. Provide ad-hoc on-call support to review threats and response actions for off-hour critical incident response. What you'll need Job Complexity: Works on and may lead projects or … or equivalent in Information Security, Forensics, or Computer Science; related experience and/or training in the field of IT security monitoring and analysis, cyber threat analysis, and vulnerability analysis. A Global Information Assurance Certification (GIAC) Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), or equivalent certification More ❯