1 to 25 of 31 Threat Analysis Jobs in the UK

Analyst, Threat Intelligence Analyst page is loaded Analyst, Threat Intelligence Analyst Apply locations London time type Full time posted on Posted Yesterday job requisition id -WD Do you want your voice heard and your actions to count? Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world's leading financial groups. Across the globe, we … Security, Information Security, IT Audit, IT Risks, IT Controls, Access Management and the portfolio for change for all these areas. MAIN PURPOSE OF THE ROLE To ensure latest cyber threat information is monitored and raise awareness across MUFG EMEA by disseminating reports and interacting with the stakeholders to sort out the issues. The role will involve liaising and coordinating … external and internal threats is defined and being implemented. To support the relationship and associated reporting requirements between Technology and internal and external bodies e.g. Tokyo head office, global Threat Intelligence Teams. KEY RESPONSIBILITIES In this role, you will be responsible for information/cyber security across MUFG's banking and securities business under a dual-hat arrangement. Under More ❯

What You'll Be Working On: ️ Collecting, analyzing, and disseminating cyber threat intelligence to identify emerging threats and attack patterns ️ Working with internal teams to integrate threat intelligence into security operations and incident response processes ️ Using advanced tools and techniques to track and analyze threat actors, APTs, and malware campaigns ️ Developing and presenting actionable intelligence reports to … stakeholders to improve proactive defense strategies ️ Collaborating with external partners, industry groups, and threat intelligence vendors to gather and share threat data What We're Looking For: ️ Proven experience as a Cyber Threat Intelligence Specialist or in a similar threat analysis role ️ Strong knowledge of threat intelligence frameworks (e.g., STIX/TAXII, MITRE ATT … CK) and tools (e.g., SIEM, threat intelligence platforms) ️ Experience with threat hunting, incident response, and malware analysis ️ Familiarity with cyber threat actors, attack methodologies, and geopolitical threat landscapes ️ Certifications such as GIAC Cyber Threat Intelligence (GCTI), CISSP, or CompTIA Security+ are highly desirable More ❯

Security Research Engineer - Threat Protection The Role As a Security Research Engineer at Mimecast, you will be a pivotal technical expert dedicated to researching, analyzing, and developing detections for both malware and phishing threats. Your work will involve dissecting real-world file and web threats, building and optimizing detection signatures, and driving improvements to our advanced detection systems. This … role combines in-depth threat investigation with a focus on enhancing our capabilities to block evolving attacks and provide actionable insights to our customers and internal teams. Why Join Our Team? At Mimecast, you will be at the forefront of neutralizing diverse phishing and malware threats through comprehensive file analysis and research across web vectors. You will dissect … optimizing detection signatures using industry-standard tools like Yara and ClamAV, as well as Mimecast's advanced proprietary detection technologies. This is an opportunity to leverage vast real-world threat data and transform your technical expertise into tangible protection for millions of users globally. If you're driven to understand and dismantle sophisticated attacks, Mimecast offers a dynamic environment More ❯

PPS) are fully integrated in the design process and adhere to the minimum standards expected in delivering an inherently secure power plant. This is benchmarked against the Design Basis Threat (DBT) and regulatory expectations. You will work closely with stakeholders across the business, including engineers, safety professionals and other technical experts, to influence the design and convey proportionate and … with NPSA protective security principles of Deter, Detect, Delay, Mitigate and Respond. Analytical skills collating complex data from across the stakeholder space to determine credible conclusions around risk assessments, threat capability and adversarial pathways. Demonstrable ability to convey the principles of secure by design (ideally in a nuclear context) and the graded approach. Complemented by the ability to practice … people with transferable skills. Key Selection Criteria Demonstratable understanding of the principles behind secure-by-design and the graded approach Knowledgeable in the practice and principles of requirements identification, analysis, and synthesis, to create substantiation of security claims, arguments, and evidence. Experience in the delivery of physical security solutions in a highly regulated environment Ideally able to demonstratable capability More ❯

PPS) are fully integrated in the design process and adhere to the minimum standards expected in delivering an inherently secure power plant. This is benchmarked against the Design Basis Threat (DBT) and regulatory expectations. You will work closely with stakeholders across the business, including engineers, safety professionals and other technical experts, to influence the design and convey proportionate and … with NPSA protective security principles of Deter, Detect, Delay, Mitigate and Respond. Analytical skills collating complex data from across the stakeholder space to determine credible conclusions around risk assessments, threat capability and adversarial pathways. Demonstrable ability to convey the principles of secure by design (ideally in a nuclear context) and the graded approach. Complemented by the ability to practice … people with transferable skills. Key Selection Criteria Demonstratable understanding of the principles behind secure-by-design and the graded approach Knowledgeable in the practice and principles of requirements identification, analysis, and synthesis, to create substantiation of security claims, arguments, and evidence. Experience in the delivery of physical security solutions in a highly regulated environment Ideally able to demonstratable capability More ❯

PPS) are fully integrated in the design process and adhere to the minimum standards expected in delivering an inherently secure power plant. This is benchmarked against the Design Basis Threat (DBT) and regulatory expectations. You will work closely with stakeholders across the business, including engineers, safety professionals and other technical experts, to influence the design and convey proportionate and … with NPSA protective security principles of Deter, Detect, Delay, Mitigate and Respond. Analytical skills collating complex data from across the stakeholder space to determine credible conclusions around risk assessments, threat capability and adversarial pathways. Demonstrable ability to convey the principles of secure by design (ideally in a nuclear context) and the graded approach. Complemented by the ability to practice … people with transferable skills. Key Selection Criteria Demonstratable understanding of the principles behind secure-by-design and the graded approach Knowledgeable in the practice and principles of requirements identification, analysis, and synthesis, to create substantiation of security claims, arguments, and evidence. Experience in the delivery of physical security solutions in a highly regulated environment Ideally able to demonstratable capability More ❯

to learn more about this opportunity, feel free to reach out and apply today! Responsibilities: Monitor and analyse security events within the SOC, ensuring timely detection and response. Perform threat analysis, vulnerability assessments, and implement mitigation strategies. Develop and refine incident response playbooks and procedures. Conduct root cause analysis (RCA) for high-priority incidents to prevent recurrence. … Must Have: Minimum of two years' experience in a SOC or managed security environment. Strong knowledge of network security (firewalls, IDS/IPS, VPNs). Proficiency in incident response, threat analysis, and vulnerability management. Experience working with SIEM tools for monitoring and event analysis. Understanding of malware analysis, forensic investigations, and endpoint security. Strong analytical and problem More ❯

fintech. Job Description We're looking for a senior investigator to play a pivotal role within our global Financial Crime Intelligence Unit (FCIU). As a center of intelligence, threat analysis, and investigative excellence, this role is key to proactively identifying, investigating, and mitigating complex financial crime threats for You will conduct complex, deep-dive investigations across multiple … as a key partner to the MLROs, providing critical insights and comprehensive investigative reports to support SAR/STR decisions and responses to regulatory inquiries. Contribute to a proactive threat analysis capability to identify emerging financial crime typologies and vulnerabilities, utilising data-driven techniques and open-source intelligence (OSINT). Produce high-impact intelligence reports and strategic briefings More ❯

advanced, and largest, intelligence company! As an entry-level analyst on Recorded Future's Managed Services team, you'll directly support our global clientele through critical triage, escalation, and threat analysis activities. In collaboration with our Triage and Senior Research teams, you'll validate alerts, identify platform-level issues, and fine-tune detection mechanisms-all while helping to … strengthen the consistency and quality of our threat response offerings. What Makes This Role Unique? Recorded Future's Managed Services team blends tactical analysis with platform-level insights. You're not just triaging-you're actively shaping how alerts evolve, how SOPs scale, and how we partner with Triage Analysts. It's a launchpad for developing deep threat expertise at scale. What you'll do as an Associate Threat Intelligence Response Analyst: 1) Triage & Analysis Independently triage green/amber alerts and Swimlane cases for assigned accounts Conduct threat research escalated by senior analysts-covering phishing, credential harvesting, fraudulent domains, data leakage, social media monitoring, and malicious infrastructure Identify and report alerting rule issues More ❯

SOC Analysts while performing advanced investigations and, when required, first-line triage to maintain queue health and SLA compliance. You are responsible for high-quality service delivery through detailed analysis, evidence-led response actions, and operational leadership. In addition to handling escalated alerts, you provide line management, oversee ticket quality, contribute to training and onboarding, and drive continual improvement. … Customer Communications - You provide timely incident updates and lead bridging calls with customers during high-priority incidents, ensuring that communications are clear, evidence-led, and aligned to customer expectations. • Threat Hunting Oversight - You lead and coordinate proactive threat hunting across customer environments, using hypothesis-based approaches to identify undetected threats and validate detection coverage. Essential Duties • Advanced Investigation … all available tooling. o Reconstruct attack chains and identify root causes using MITRE ATT&CK. o Recommend and coordinate response actions to mitigate impact during active incidents. • IOC and Threat Analysis o Investigate indicators of compromise using commercial and open-source threat intelligence. o Validate alerts and determine their relevance to customer environments, providing context on adversary More ❯

Senior Cyber Security Engineer Are you a passionate Cyber Security Engineer with hands-on experience in deploying Microsoft security solutions and supporting clients with robust threat protection strategies? This is a unique opportunity to join a well-established, award winning Managed Services Provider (MSP), known for its strong reputation in the UK tech market, to help deliver cutting-edge … like of (Cisco Meraki, Fortinet, Ubiquiti. WatchGuard) Vulnerability management tool expertise (Tenable, Qualys) Email security solutions Knowledge (Mimecast, Egress) A Working understanding of Microsoft 365 Cloud Technologies and their threat landscape Familiarity with SOC operations, threat detection, incident response, and security analytics As a Cyber security Engineer you should have one or more of SC-200 - Microsoft Certified … Cyber Essentials Plus (CE & CE+) audits, ensuring clients meet security compliance standards Provide escalation support for complex cyber incidents raised by the internal SOC team Perform technical vulnerability remediation, threat analysis, and reporting Conduct Microsoft 365 and Cloud Security assessments to identify gaps and secure client environments Carry out offensive security and web application assessments (including penetration testing More ❯

IT Security Threat Analyst - Solihull Crimson and IMI have joined forces to build IMI's new security team and we are looking for talented individuals to join us on this exciting journey. If you are passionate about IT security and want to be part of a dynamic team that is shaping the future of security within a successful global … company, we want to hear from you!We are seeking a highly skilled and experienced IT Security Threat Analyst to join the team. In this role, you will be responsible for identifying, analysing and mitigating potential threats to our organisations information systems. You will work closely with the Head of IT Security for Incident and Threat Management and … plus benefits depending on experience.Key Responsibilities* Monitor and analyse security alerts and incidents to identify potential threats. * Conduct through investigations of security breaches and incidents. * Develop and implement threat detection and response strategies.* Collaborate with cross functional teams to enhance security protocols.* Provide detailed reports and recommendations on threat mitigation.* Participate in incident response.Critical Skills for Success* Proven More ❯

management, network security, cloud security (AWS & Azure), firewalls and intrusion detection systems. You will monitor networks and systems for security breaches, enhance the performance of SecOps tools, perform regular threat analysis and act as a subject matter expert for mitigating cyber risks. This is an outstanding opportunity for an accomplished Information Security Engineer to join a market leading More ❯

will help identify and analyse potential threats utilising a number of different SIEM & EDR tools. To be a key member of Security Operations Centre (SOC) and provide real-time threat analysis and detection. Respond to system generated alerts, analyse logs and traffic patterns. Provide analysis and trending of security log data from many monitoring points. Support multiple … to pre-emptively eliminate the possibility of system breaches. Other duties as assigned. About you Requirements A passion for Cyber Security and enjoys solving problems Knowledge of the security threat landscape Knowledge of various security methodologies and processes, and technical security solutions (firewall and intrusion detection systems) Knowledge of TCP/IP Protocols, network analysis, and network/ More ❯

threats are evolving, and our team is at the heart of protecting critical infrastructure and data. As a Cyber Security Engineer, you'll help lead our proactive efforts in threat detection, response, and mitigation. This role is vital to safeguarding the confidentiality, integrity, and availability of systems and services. What you'll be doing Act on security alerts, incidents … ensure timely responses. Diagnose and investigate security incidents following agreed procedures. Escalate and document unresolved incidents and support recovery efforts. Operate within our enterprise-level SOC and collaborate on threat intelligence. Utilise tools like Microsoft E5, Sentinel, and Darktrace to monitor and prevent threats. Analyse malware and respond to high-priority incidents. Support vulnerability management and threat analysis … equivalent function. Proficiency with Microsoft Security Suite (including Sentinel) and Darktrace or similar. Must have an understanding of cyber threats including malware, ransomware, DDoS, insider threats. Strong knowledge of threat modelling, security monitoring, and cloud environments. Familiarity with GDPR, data protection, and privacy impact assessments. Excellent communication and collaboration skills with a proactive mindset. Industry certifications (e.g., CISSP, CEH More ❯

management, network security, cloud security (AWS & Azure), firewalls and intrusion detection systems. You will monitor networks and systems for security breaches, enhance the performance of SecOps tools, perform regular threat analysis and act as a subject matter expert for mitigating cyber risks. This is an outstanding opportunity for an accomplished Cyber Security Engineer to join a market leading More ❯

ideal candidate will play a critical role in designing and implementing cybersecurity frameworks to align with the business objectives and mitigate potential threats. Main Responsibilities: Perform Security Risk and Threat analysis during the initial design and the Software Development Life Cycle planning, analysis, and design phases. Providing recommendations and requirements for mitigating any security weaknesses identified while … architecture Knowledge of the SAFe Agile method would be an asset Understanding of security testing in the software pipeline (SAST, DAST, SCA, RASP) Knowledge of STRIDE, DICE and other threat and risk frameworks Knowledge of AWS tools Proven experience managing multiple projects simultaneously Practical interpersonal skills; adaptable to all levels of the organization Ability to contribute in a collaborative More ❯

ideal candidate will play a critical role in designing and implementing cybersecurity frameworks to align with the business objectives and mitigate potential threats. Main Responsibilities: Perform Security Risk and Threat analysis during the initial design and the Software Development Life Cycle planning, analysis, and design phases. Providing recommendations and requirements for mitigating any security weaknesses identified while … architecture Knowledge of the SAFe Agile method would be an asset Understanding of security testing in the software pipeline (SAST, DAST, SCA, RASP) Knowledge of STRIDE, DICE and other threat and risk frameworks Knowledge of AWS tools Proven experience managing multiple projects simultaneously Practical interpersonal skills; adaptable to all levels of the organization Ability to contribute in a collaborative More ❯

tools. Key Responsibilities: Lead and support incident response (IR) and investigation of security threats across a complex enterprise estate. Manage, tune, and develop SIEM and EDR technologies to enhance threat detection and response capabilities. Implement and refine playbooks , automations , and alerting rules in collaboration with security partners. Contribute to threat hunting and proactive detection strategies. Produce actionable reporting … working in or alongside a 24/7 Security Operations Centre . Strong technical exposure to SIEM (ideally Splunk), EDR (CrowdStrike preferred), and SOAR tools. Expertise in incident handling , threat analysis , and digital forensics . Scripting or automation experience (Python, PowerShell, etc.) is highly beneficial. Knowledge of MITRE ATT&CK , NIST CSF , and related security frameworks. Legal, financial More ❯

test protocols to identify vulnerabilities. Collaborate with engineering teams to propose remediation strategies. Cross-Functional Collaboration Partner with engineering teams to interpret test results and implement effective security measures. Threat Assessment & Response Lead efforts to evaluate vulnerabilities against emerging threats, determine root causes, and develop mitigation plans. Communicate findings to internal teams and external stakeholders. Process Standardization Support and … frameworks (e.g., NIST 800-53, NIST CSF, NIST 800-171, IEC 62443, ISO 27001) Proficiency in network, application, and database security architecture Hands-on experience with vulnerability testing and threat analysis In-depth knowledge of OS and network security (including virtual and cloud-based environments such as AWS) Familiarity with security systems: endpoint protection, firewalls, IDS/IPS More ❯

Previous people management or line management experience Strong familiarity with SIEM platforms including Microsoft Sentinel and Splunk Knowledge and use of the Mitre Att&ck Framework for detection and threat analysis In-depth understanding of: Client-server applications and multi-tier web environments Relational databases , firewalls , VPNs , enterprise AntiVirus solutions Networking principles (e.g. TCP/IP, WAN, LAN … SMTP, HTTP, FTP, POP, LDAP) Desirable (Nice-to-Have): Experience in static malware analysis and reverse engineering Active DV Clearance Scripting or programming with Python , Perl , Bash , PowerShell , or C++ Recognised certifications such as CREST Practitioner Intrusion Analyst or Blue Team Level 1 Familiarity with additional SIEM technologies, especially QRadar Role & Responsibilities As a SOC Shift Lead , you will … protecting client systems and guiding the team through sophisticated cyber defence challenges. Your responsibilities will include: Monitoring, triaging, and investigating alerts across host and network security systems Performing deep analysis of traffic, logs, and system events to identify threats and vulnerabilities Providing line management to SOC Analysts developing capability and supporting career progression Enhancing team knowledge across SOC tooling More ❯

cyber risk posture Continuously track and respond to emerging threats and vulnerabilities What They're Looking For: 5-10 years of experience in technical cyber roles (SOC, security engineering, threat analysis) Minimum 3-5 years working in cloud environments Deep knowledge of Microsoft Azure (and ideally AWS) Expertise in vulnerability management, incident response, and cyber risk triage Strong More ❯

re a builder with a passion for people and AI-driven innovation, we want to talk to you. What Are The Responsibilities? Architect and implement AI-powered features for threat detection, pattern recognition, and automated intelligence gathering Design and build scalable data pipelines that process billions of data points using AI/ML models for entity extraction and relationship … mapping Lead the integration of Large Language Models (LLMs) for natural language processing of intelligence data Develop robust APIs and microservices that handle real-time threat analysis at scale Implement computer vision systems for image and video analysis in OSINT investigations Build and optimize vector databases for semantic search across massive intelligence datasets Establish best practices for More ❯

re a builder with a passion for people and AI-driven innovation, we want to talk to you. What Are The Responsibilities? Architect and implement AI-powered features for threat detection, pattern recognition, and automated intelligence gathering Design and build scalable data pipelines that process billions of data points using AI/ML models for entity extraction and relationship … mapping Lead the integration of Large Language Models (LLMs) for natural language processing of intelligence data Develop robust APIs and microservices that handle real-time threat analysis at scale Implement computer vision systems for image and video analysis in OSINT investigations Build and optimize vector databases for semantic search across massive intelligence datasets Establish best practices for More ❯

findings and intelligence to inform the firm's risk posture and regulatory reporting. Another key aspect of your role will be to manage the intelligence cycle-from collection and analysis to dissemination-ensuring that actionable intelligence is delivered to key stakeholders.Your leadership will ensure the FCIU not only resolves complex cases but also anticipates future threats, safeguarding Checkout. You … ll Make An Impact Lead and develop the strategic direction for the Financial Crime Intelligence Unit (FCIU), establishing it as a centre of excellence for complex investigations and proactive threat intelligence. Serve as a key partner to the MLROs, providing critical insights and comprehensive investigative reports to support SAR/STR decisions and responses to regulatory inquiries. Oversee and … terrorist financing, potential sanctions violations, and proliferation financing, ensuring thorough and timely resolution. Take ownership of the end-to-end investigation process for escalated cases, including evidence gathering, detailed analysis, and the documentation of findings for regulatory and internal purposes. Develop a proactive threat analysis capability to identify emerging financial crime typologies and vulnerabilities across our platform More ❯