1 to 25 of 37 Remote/Hybrid Threat Detection Jobs in the UK

well-established biotech company using large-scale genetic data and AI to predict disease risk and advance precision healthcare. We’re looking for a Threat Detection Engineer who thrives on innovation and technical ownership. This role is not a traditional SOC position, you’ll focus on building high … impact detection capabilities , shaping how security protects sensitive genomic and AI-driven data at scale. This role offers hybrid/remote working options, a salary range of £60,000 - £80,000 and benefits. Why This Role is Exciting High autonomy : Lead projects from idea to deployment Innovation-driven : Develop ...

Team This is an excellent opportunity for a CyberSecurity Analyst looking to join a mature cyber security operation and continue developing their incident response, threat detection and cyber defence skills within a highly respected technology organisation. An established international technology and cyber security services provider is investing heavily … excellent opportunity for a cyber security professional looking to further develop their experience within a mature Security Operations environment, gaining exposure to incident response, threat detection, vulnerability management and modern Microsoft security technologies. Working within a highly regulated customer environment, you will help monitor, investigate and respond ...

excellent opportunity for a cyber security professional looking to further develop their experience within a mature Security Operations environment, gaining exposure to incident response, threat detection, vulnerability management and modern Microsoft security technologies. Working within a highly regulated customer environment, you will help monitor, investigate and respond … incidents through the incident response lifecycle Perform security investigations and root cause analysis Validate indicators of compromise and assess potential business impact Conduct proactive threat hunting activities Query and analyse security data using Microsoft Sentinel and KQL Support vulnerability management and remediation activities Work closely with technical teams ...

defend organisations against evolving cyber threats? Join a highly regarded cyber security provider known for its 24/7 managed security operations, advanced threat detection, and real-time incident response. The team helps organisations across multiple industries stay resilient, secure networks, endpoints, and cloud environments from ever-changing … industry-leading security technologies to safeguard client environments. This role provides the opportunity to develop expertise across a wide range of security technologies, enhance detection and response capabilities. If you are ready to play a pivotal role in protecting organisations from cyber threats while growing professionally within a collaborative ...

Security enhancement programme, focused on strengthening Azure and cloud security posture across enterprise-scale environments. You’ll work closely with Cyber, Cloud Engineering, IAM, Threat Detection & Response, and Vulnerability Management teams to design, implement, and operationalise Microsoft Defender for Cloud capabilities and broader Azure security best practices. … Collaborate with IAM teams to assess and improve Azure RBAC and PIM configurations Help operationalise Defender for Cloud processes, governance, and ownership models Support Threat Detection & Response teams with alerting and response readiness Contribute to the design of cloud vulnerability management processes Ensure remediation activities follow established change ...

scaling a Next-Gen AI SOC (Autonomic Security Operations Model) Lead on investigations, and respond to security incidents across multiple client environments Perform threat detection, triage, analysis, and remediation activities Lead incident response activities and provide technical guidance to junior analysts Analyse alerts from SIEM, EDR, IDS/… other security tooling Conduct threat hunting and proactive security monitoring Support continuous improvement of SOC processes, playbooks, and operational procedures Collaborate with infrastructure and engineering teams to strengthen security posture Produce detailed incident reports and client-facing documentation Assist with vulnerability management and security compliance activities Contribute to mentoring ...

Cybersecurity Analyst to join its Cybersecurity Operations Group. This role plays a critical part in protecting a complex global technology environment through continuous monitoring, threat detection, and incident response. The successful candidate will work closely with security and IT stakeholders, contributing to the organisation’s defensive capabilities while … remaining at the forefront of the evolving threat landscape. Key Responsibilities Monitor and analyse security events across networks, endpoints, and cloud environments using SIEM, EDR, and related security tools, in line with documented SLAs. Investigate, respond to, and resolve security incidents and alerts, ensuring timely detection, containment ...

sessions; translate regulatory intent into engineering requirements that teams can implement. Mentor and coach Newpage and client engineers; raise the bar on secure coding, threat modeling, and incident response across the account. Engineer Security Into the Cloud Estate Design and operate hardened, multi-account or multi-subscription landing zones … Command Center. Lead Kubernetes and container security across managed offerings (EKS preferred; AKS, GKE accepted), including admission control, image signing (Sigstore/Cosign), runtime threat detection (Falco or equivalent), and Pod Security Standards enforcement. Drive supply-chain security to SLSA-aligned maturity: signed builds, attested artifacts, dependency provenance ...

design, implementation, and ongoing effectiveness of security capabilities across IT and OT environments.You will engineer and maintain the technical capabilities that enable early threat detection, rapid and consistent response, and sustained cyber risk reduction , while translating cyber risk, regulatory, and business demands into practical, measurable, and operationally sustainable … implement and maintain security controls to meet business, compliance, and risk mitigation requirements; ensuring controls are effective, measurable, and operationally sustainable. Implement and maintain detection and response capabilities through SIEM integration with security controls and IT systems, with a focus on reducing time-to-detect and time-to-remediate ...

Lead or support incident response activities in line with internal procedures and security standards. Escalate major incidents appropriately and provide timely updates to stakeholders. Threat Detection & Prevention Identify emerging threats, vulnerabilities, and attack trends relevant to the organisation. Tune and optimise security tooling to improve detection capability ...

Lead or support incident response activities in line with internal policies and procedures. Escalate significant incidents appropriately and provide clear, timely updates to stakeholders. Threat Detection & Prevention Proactively identify emerging threats, vulnerabilities, and attack patterns affecting the organisation. Tune and optimise security tools to reduce false positives … improve detection accuracy. Implement, manage, and maintain endpoint protection and security policies. Support vulnerability management activities, including remediation planning and risk tracking. Security Operations & Continuous Improvement Maintain and enhance security monitoring rules, alerts, and dashboards. Contribute to the development and maintenance of security runbooks and incident response playbooks. Support ...

testing and risk analysis to identify and mitigate potential threats. Design and enforce security controls based on identified requirements and gaps in existing structures. Threat Detection and Response Monitor and respond to security incidents ensuring rapid and effective action. Develop comprehensive incident response plans to maintain organisational resilience ...

security architecture, collector deployment and asset coverage Standardise and enhance Armis configurations aligned to best practices Tune alerts, reduce false positives and improve threat visibility Improve asset inventory, vulnerability management and reporting accuracy Design and implement new OT threat detection use cases Develop reporting across assets, vulnerabilities ...

cyber security matters, providing clear guidance to leadership and technical teams Lead engagement with a third-party Security Operations Centre (SOC), ensuring effective monitoring, detection and response Oversee incident management, including coordination, post-incident reviews and continuous improvement actions Own and manage key security platforms, including security awareness … third-party and supplier security posture where required Profile Proven experience in a cyber security engineering Strong understanding of cyber risk management, incident response, threat detection and security governance Very strong familiarity with Microsoft security technologies, including Microsoft 365, E5 licensing and the associated security stack (e.g. identity ...

hybrid environments developing, implementing and maintaining cyber security strategy and governance (aligned to various frameworks e.g. ISO27001, NIST, Cyber Essentials) overseeing security operations (SOC, threat detection, vulnerability management etc.), and incident response plans risk management and compliance, ensuring compliance with various standards and frameworks About you Applicants ...

working across a broad technology estate and keeping up to date with emerging threats and security technologies. Key Responsibilities: * Monitor and develop SIEM and threat detection platforms * Investigate and respond to security incidents and alerts * Support vulnerability scanning, remediation, and reporting activities * Assist with development of security policies ...

Pipelines with Bicep/Terraform and proficiency in scripting/programming languages such as Python/Go. Experience with Sentinel deployments, log management, and threat detection is required, including expertise in dashboard creation, query development, and alert configuration. Additional experience in Splunk deployments is beneficial. This role sits … Function Apps to streamline security operations. SIEM Expertise: Deploy, configure, manage, and optimize Sentinel for security monitoring, log ingestion, query development, and threat detection. Technical Leadership: Provide technical guidance and mentorship to junior engineers, fostering a culture of continuous learning and improvement. Client Engagement: Work closely with clients ...

across multi-site and cloud environments (Azure-focused) Design and implement security controls aligned to business risk Work closely with a SOC to enhance threat detection and response Automate security processes and improve operational efficiency Investigate security incidents and drive root cause analysis and remediation Implement and manage ...

their security operations and help shape their cyber maturity. This is a genuinely impactful role - you'll be the go-to for incident response, threat detection, and vulnerability management, while working closely with IT, risk, and external partners. What you'll be doing: Leading cyber incident response … Monitoring and tuning SIEM/detection capabilities Driving vulnerability management and remediation Improving security tooling across endpoints, identity, and infrastructure Supporting compliance (Cyber Essentials, ISO 27001) Acting as a key voice in strengthening overall security posture What they're looking for: Strong background in cyber security operations Hands ...

DevSecOps Engineer specializes in designing and implementing secure infrastructure architecture within our multi-cloud environment. This role focuses on building security-first infrastructure solutions, threat detection systems, and compliance frameworks across AWS and Alibaba Cloud platforms. Where You Will Make a Difference Design and implement secure multi-cloud … hardening for MySQL, PostgreSQL, and Redis clusters Design network segmentation and micro-segmentation strategies for containerized environments Develop security automation tools and infrastructure for threat hunting and incident response Architect backup and disaster recovery infrastructure with security controls and encryption Build security testing infrastructure for application and infrastructure vulnerability ...

Police Digital Services and provides visibility and control of information risks for policing. It supports the 24x7x365 nature of police operations, providing a threat detection and response capability for digital services before, during and after cyber-attacks, enabling stakeholders to understand and proactively manage risk across the technology … ensure security issues are addressed quickly upon discovery. NMC Cyber Detect Analyst duties involve but are not limited to: Initial Triage of alerts - evaluation & detection Confirmation of false positive Incident data gathering and feedback on any gaps and issues in respect to Platform Content or tuning opportunities Reflection ...

implement the cloud security framework across multi-cloud environments Deploy and manage security tooling and automated controls to identify and remediate risks Build threat detection processes and incident response playbooks in collaboration with the SOC Support compliance requirements including ISO27001, SOC2, and NCSC Cloud Security Principles Translate security ...

Network+ Exposure to SOC environments, security monitoring, or penetration testing Experience in a client-facing technical role Understanding of endpoint security, vulnerability management, or threat detection tools Why Join Career Development – Opportunity to grow within cybersecurity and operations Hands-On Experience – Exposure to real-world enterprise security environments ...

assigned acc ountsLead technical onboarding, adoption, and optimisation initia tivesConduct regular business and technical review mee tingsProvide best-practice guidance around SOC operations, threat detection, and security work flowsWork closely with Product, Engineering, Support, and Sales teams to resolve issues and influence product develo pmentIdentify opportunities to increase … envir onmentExperience working with SOC teams and security operations techno logiesKnowledge of one or more of the foll owin g:S IEMX DRS OARMDRThreat Detection & Re sponseDetection Engin eeringIncident Re sponseAbility to engage confidently with both technical and executive stakeh oldersStrong troubleshooting, analytical, and problem-solving skillsExcellent communication ...

Microsoft 365 estate within a high value research environment. Acting as the organisation's trusted specialist, you will oversee identity protection, access governance, cloud threat defence and compliance across Entra ID, Conditional Access, MFA, PIM, Microsoft Defender, Purview and related services. You will be responsible for diagnosing complex issues … need to succeed You will bring substantial hands on experience in Microsoft 365 security, with a deep understanding of identity protection, access control, threat detection and compliance You'll have operated in complex or hybrid environments and will be fully confident configuring, troubleshooting and enhancing services such ...