23 of 23 Remote/Hybrid Threat Detection Jobs in the UK

exciting opportunity has arisen for a Threat Detection Engineer to join a well-established biotech company using large-scale genetic data and AI to predict disease risk and advance precision healthcare. As a Threat Detection Engineer, you will be responsible for developing and enhancing threat detection capabilities within a modern cloud-first setting. This role offers hybrid/remote working options, a salary range of £60,000 - £80,000 and benefits. You will be responsible for: Designing and implementing threat-led detection logic informed by threat intelligence and hunting activities. ...

exciting opportunity has arisen for a Threat Detection Engineer to join a well-established biotech company using large-scale genetic data and AI to predict disease risk and advance precision healthcare. As a Threat Detection Engineer, you will be responsible for developing and enhancing threat detection capabilities within a modern cloud-first setting. This role offers hybrid/remote working options, a salary range of £60,000 - £80,000 and benefits. You will be responsible for: Designing and implementing threat-led detection logic informed by threat intelligence and hunting activities. ...

SecOps Lead, you will manage security monitoring and incident response activities while providing strategic direction for security tools including SIEM and Endpoint Detection & Response (EDR) platforms. You will work closely with internal teams and external security partners to strengthen our threat detection capabilities and improve the organisation … overall cyber resilience. This is an excellent opportunity for a security professional who enjoys leading teams, improving security operations, and driving proactive threat detection strategies. Key Responsibilities Lead and mentor the internal Security Operations team, overseeing daily operational activities and performance. Define and implement the strategy and operational ...

complex enterprise security environment. The successful consultant will play a key role in strengthening the organisation’s security operations capability, helping to modernise threat detection, automate response workflows, and improve visibility across the security ecosystem. Key Responsibilities Lead the implementation and configuration of Palo Alto XSIAM within … enterprise SOC environment Design and optimise full-spectrum XDR capabilities, improving detection and response across endpoints, networks, and cloud workloads Integrate SIEM and security telemetry sources into XSIAM to create a unified security operations platform Develop and maintain automation workflows and playbooks to streamline incident response and reduce manual ...

logs, and security events to identify and respond to complex threats. Incident Response: Lead investigations, perform deep analysis, determine impact, and coordinate response activities. Threat Detection & Analysis: Develop and refine detection rules and use cases to improve threat visibility. Threat Hunting: Proactively hunt for advanced … platforms (e.g., Microsoft Sentinel, Sumo Logic) Hands-on experience with EDR/XDR tools (e.g., CrowdStrike, Microsoft Defender) Solid understanding of: Incident response lifecycle Threat detection methodologies Networking protocols (TCP/IP, DNS, HTTP/S) Experience analysing logs from multiple sources (endpoints, network, cloud) Ability to independently ...

team longer term. Based within a progressive & rapidly growing company, that is forging/carving their reputation as a leader in the Cyber Security Threat Management/Exposure sector, this role offers fantastic scope for someone to combine Technical Pre/Post Sales responsibilities. Offering You will initially work … follow up technical meetings to evaluate performance for the customer/users. All this is on a leading international Cyber Security Platform, specialising in Threat Detection/Exposure/Management for customers across the globe. Type of Cyber Security roles, the right applicant may currently be working ...

clients large-scale Operational Technology (OT) environment. This is a hands-on role focused on implementing and maturing a suite of security tooling, enhancing detection capabilities, and strengthening overall cyber resilience. You will work closely with internal security teams and stakeholders to ensure successful integration and ongoing improvement … Information Security, Cyber Security, or a related field Key Responsibilities include: * To lead the deployment, configuration, and optimisation of OT security tooling, including: Endpoint Detection & Response (EDR) Identity Threat Detection & Response (ITDR) Network Detection & Response (NDR) Industrial Control System (ICS) monitoring solutions * Implement and maintain hardened ...

senior escalation point within a 24/7 SOC, leading complex investigations and driving incident response activities. You’ll work closely with threat intelligence, engineering, and client teams to continuously improve detection and response capabilities. Key Responsibilities Act as the final escalation point for security incidents and alerts … Lead and coordinate incident response for high-severity threats Perform advanced threat hunting and forensic investigations Analyse logs from SIEM, EDR, NDR, and cloud security tools Develop and refine detection rules and use cases Support SOC maturity improvements and playbook development Mentor and support L1/L2 analysts ...

Principal Security Engineer – SIEM & Detection Engineering Location: Fully Remote Salary: £120,000 plus benefits Type: Full-time Industry: Managed Security Services/Cybersecurity Consulting The Role A growing security services provider is seeking an experienced Senior Security Engineer to join a distributed, remote-first team. This role … remote and focuses on helping clients maintain, secure, and continuously improve their security environments through strong SIEM engineering, detection optimisation, and collaboration with a 24x7 Security Operations Centre. You’ll work hands-on across multiple client environments, contributing to detection engineering, automation, and operational security outcomes without ...

operational security function responsible for protecting the organisation's information assets, technology services, and users. This role oversees all security operation functions, incident response, threat detection, vulnerability management, and continuous improvement of the organisation's security posture. Working closely with Infrastructure, Cloud, Architecture, Governance, Compliance and Risk teams … relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection, triage, containment, eradication ...

environment. This is a hands-on technical role suited to a seasoned cyber security professional with deep expertise in endpoint security, SIEM engineering, and threat detection engineering, alongside the ability to mentor and uplift existing team capability. Key Responsibilities Lead the deployment, configuration, and ongoing management of CrowdStrike … escalation point for high-priority security incidents, supporting containment and remediation using EDR and SIEM tooling Develop and implement SOAR automation workflows to streamline detection and response processes Conduct proactive threat hunting activities using advanced queries and behavioural analytics Support capability uplift by training and mentoring internal team ...

Assist in reviewing weaknesses across applications and infrastructure and support risk-based prioritisation.* Partner with engineering teams to resolve issues efficiently and pragmatically.* Refine detection tooling by tuning logic and reducing unnecessary or inaccurate alerts.Operational Readiness & Observability* Strengthen visibility across systems through improved log pipelines, alerting pathways, and monitoring … working within assurance-focused frameworks including ISO 27001, SOC 2, or NIST.* Familiarity with automated governance and policy-driven cloud controls.* Exposure to investigative, detection, or security operations workflows.Qualifications That Would Be Beneficial* Industry security certifications such as CISSP, CISM, CCSP, or GSEC.* Cloud-focused qualifications like AWS Security ...

Sentinel and Intune Experience remediating Defender for Cloud and Microsoft Defender findings in live environments Strong understanding of cloud security posture management and threat detection Experience securing Azure environments in regulated or multi-tenant settings Ability to communicate security risks to both technical and non-technical stakeholders Desirable ...

Identify control gaps and drive remediation planning. Implement and improve OT security governance aligned to recognised standards. Manage and escalate technical risks and issues. Threat & Vulnerability Management Support SIEM integration, threat detection, and response within OT environments. Contribute to vulnerability management and continuous monitoring. Ensure robust asset … endpoint protection. Proven experience delivering within cybersecurity transformation programmes. Strong understanding of cyber risk management in OT environments. Experience with SIEM, vulnerability management, and threat detection. Knowledge of IoT security and federated network operations. Familiarity with Agile or hybrid delivery environments. Standards & Frameworks Working knowledge of IEC62443, ISA99, NIST ...

technical stakeholders Evangelizes a proactive security culture organization-wide Key responsibilities: System Design & Implementation: Design and deploy secure, scalable and reliable security tools Monitoring & Threat Detection: Monitor systems for security incidents Analyze and troubleshoot alerts Tune alerting systems Incident Response: Respond to security incidents Conduct investigations and coordinate ...

governance initiatives, including machine-learning-based anomaly detection. - Integrate and optimise multi-factor authentication, biometrics, and mobile identity capabilities. - Drive adoption of identity threat detection and response (ITDR) solutions. - Develop and maintain IAM architecture covering identity lifecycle, governance, and privileged access. - Design secure authentication and authorisation patterns (OpenID ...

will be the technical engine behind the organisation's global digital integrity. Your responsibilities will include: Managing the Global SOC to ensure proactive threat hunting and rapid incident response across all global time zones. Implementing a cutting-edge DevSecOps approach to ensure security is automated and embedded within … 1.ISO27001 Implementation (Must have personally achieved certification from scratch) 2.DevSecOps (Embedding security into CI/CD pipelines and automated workflows) 3.SOC Management (Overseeing global threat detection and incident response) 4.NIST Framework (Applying security standards for the Americas region) 5.Essential 8 (Understanding and implementing Australian security protocols) 6.Vulnerability Management ...

that reduce risk with quantifiable results. We’re comprised of top talent from private industry, government, intelligence, and law enforcement who are specialists in threat detection, incident response, digital forensics, offensive security, risk management, and cyber resilience. As a subsidiary of specialty insurance giant, BeazleyInsurance, we’ve been ...

Duties: Implement, manage and actively monitor security controls across e-mail, endpoint, and cloud environments Monitor and respond to security incidents using advanced threat detection tools Assist with compliance activities and audits for ISO27001, Cyber Essentials & Cyber Essentials Plus certification Provide technical expertise on security best practices ...

Duties: Implement, manage and actively monitor security controls across e-mail, endpoint, and cloud environments Monitor and respond to security incidents using advanced threat detection tools Assist with compliance activities and audits for ISO27001, Cyber Essentials & Cyber Essentials Plus certification Provide technical expertise on security best practices ...

Duties: Implement, manage and actively monitor security controls across e-mail, endpoint, and cloud environments Monitor and respond to security incidents using advanced threat detection tools Assist with compliance activities and audits for ISO27001, Cyber Essentials & Cyber Essentials Plus certification Provide technical expertise on security best practices ...

practices into CI/CD pipelines, AWS infrastructure, and identity services , while also helping drive AI-enabled DevOps automation to improve operational intelligence and threat detection. 🔧 Key Responsibilities Design and implement secure CI/CD pipelines with integrated security tooling (SAST, DAST, container scanning, dependency scanning). Embed security ...

leader in its field, and part of a globally successful UK-based business. They design, manufacture, sell and support a range of highly advanced threat detection and security products for global markets in commercial, aviation, defence and security sectors. The products range from small hand-held devices through ...