101 to 125 of 150 Threat Detection Jobs in the UK

and platforms Maintain and enhance the ISO 27001-aligned Information Security Management System (ISMS) Ensure compliance with frameworks including CIS Controls, NIST, ISO 27701, and GDPR Oversee incident response, threat detection, and access governance across systems such as iManage, Intapp, Aderant, Microsoft 365, and Azure Drive firm-wide security awareness and training initiatives Monitor regulatory changes and emerging More ❯

strategies. Cybersecurity Ensure compliance with security standards (e.g., ISO 27001, SOC 2, GDPR) and internal policies and procedures for cloud and IT environments. Lead incident response, vulnerability management, and threat detection using SIEM tools, MDR and antivirus platforms. Secure and implement policies and procedures for disaster recovery and business continuity. Work with the CTO and the rest of More ❯

Head of Cyber Security to strengthen the organisations security posture, protect critical infrastructure, and reduce risk across a diverse and complex environment. Youll take ownership of real security challenges threat monitoring, vulnerability management, incident response, and continuous hardening of systems while helping shape a maturing cyber function. This is hands-on, meaningful engineering work within a team thats growing … and being taken seriously at board level. Key Responsibilities Threat Detection & Monitoring: Actively identify and analyse emerging risks across networks, applications and infrastructure. Incident Response: Support the creation, improvement and execution of response processes, ensuring swift containment and minimisation of impact. Security Assessments: Conduct regular audits and reviews, ensuring systems align to best practice and evolving security standards. … first culture by supporting colleagues, sharing knowledge and promoting safe working practices. What Youll Bring 3+ years cyber security experience within a sizeable or complex organisation. Strong understanding of threat analysis, vulnerability management and incident response. Experience with mainstream security tools (firewalls, IDS/IPS, scanning platforms, monitoring tools). Relevant certifications (CISSP, CEH, or similar) are highly desirable. More ❯

efficiently as the team grows. You’ll be: Building, integrating, and optimising SIEM pipelines and data sources Developing and maintaining runbooks, playbooks, and automation workflows Supporting SOC Analysts with detection, triage, and response activities Working with CrowdStrike LogScale (Humio) to fine-tune alerting and detection logic Driving low MTTD and MTTR through innovation and continuous improvement About You … cause. You’ll bring: Strong scripting skills (Python, PowerShell, or Bash) Experience with KQL or similar query languages Hands-on experience with CrowdStrike, SIEM, or EDR tooling Exposure to threat detection, log ingestion, and alert optimisation Excellent analytical thinking and initiative — you don’t wait to be told what to fix Why Join Be part of a greenfield More ❯

equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not central) Familiarity with security tools: Azure security, cloud IAM, Defender, web proxy, endpoint detection (CrowdStrike or equivalents) Understanding of zero trust networks, SSO, and network segregation principles Strong communicator: able to advise IT teams on practical security steps, not just theory Experience mentoring … Azure (and AWS) – IAM, monitoring, encryption Defender, web proxy, CrowdStrike-equivalent – Endpoint & email protection Panorays – Third-party risk Protecht – Enterprise risk & audit management Rapid7/Armis – Vulnerability management and threat detection Why this role? Hands-on, high-impact role in a dynamic SME environment Influence across security operations, governance, and data management Work alongside experienced InfoSec leadership in More ❯

equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not central) Familiarity with security tools: Azure security, cloud IAM, Defender, web proxy, endpoint detection (CrowdStrike or equivalents) Understanding of zero trust networks, SSO, and network segregation principles Strong communicator: able to advise IT teams on practical security steps, not just theory Experience mentoring … Azure (and AWS) – IAM, monitoring, encryption Defender, web proxy, CrowdStrike-equivalent – Endpoint & email protection Panorays – Third-party risk Protecht – Enterprise risk & audit management Rapid7/Armis – Vulnerability management and threat detection Why this role? Hands-on, high-impact role in a dynamic SME environment Influence across security operations, governance, and data management Work alongside experienced InfoSec leadership in More ❯

security monitoring platform, ensuring optimal performance, scalability, and integration with security tools. Participate in infrastructure projects to develop, plan, and implement solutions for security monitoring. Design, implement, and maintain detection rulesets. Scope, plan, and track log integrations. Guide, develop, and grow the SIEM Engineering team. Collaborate with the wider Threat Detection & Response team to ensure the SIEM More ❯

security monitoring platform, ensuring optimal performance, scalability, and integration with security tools. Participate in infrastructure projects to develop, plan, and implement solutions for security monitoring. Design, implement, and maintain detection rulesets. Scope, plan, and track log integrations. Guide, develop, and grow the SIEM Engineering team. Collaborate with the wider Threat Detection & Response team to ensure the SIEM More ❯

to join them on a permanent basis. You will help to establish and lead local security operations capability across European offices, providing strategic technical leadership in incident response, cyber threat visibility, and security resilience. This role will bridge the gap between our centralized corporate security services and regional business needs. Key Responsibilities Incident Response & Security Operations Lead and mature … security incident response capabilities across the organisation Oversee incident investigations, alert triage, and threat hunting activities Develop and execute tabletop exercises and incident response playbooks Provide expert technical guidance during security incidents and recovery efforts Build real-time visibility into organisational cyber telemetry and security posture Leadership & Team Management Line manage and mentor a security engineer and future team … members Strategic & Stakeholder Engagement Partner with third-party security service providers and managed services Align regional security operations with global CISO strategy Operational Excellence Enhance detection and monitoring capabilities aligned to NIS2/NIST frameworks Drive continuous improvement of security tools, processes, and procedures Ensure appropriate balance between local autonomy and corporate alignment Contribute to broader security strategy and More ❯

to join them on a permanent basis. You will help to establish and lead local security operations capability across European offices, providing strategic technical leadership in incident response, cyber threat visibility, and security resilience. This role will bridge the gap between our centralized corporate security services and regional business needs. Key Responsibilities Incident Response & Security Operations Lead and mature … security incident response capabilities across the organisation Oversee incident investigations, alert triage, and threat hunting activities Develop and execute tabletop exercises and incident response playbooks Provide expert technical guidance during security incidents and recovery efforts Build real-time visibility into organisational cyber telemetry and security posture Leadership & Team Management Line manage and mentor a security engineer and future team … members Strategic & Stakeholder Engagement Partner with third-party security service providers and managed services Align regional security operations with global CISO strategy Operational Excellence Enhance detection and monitoring capabilities aligned to NIS2/NIST frameworks Drive continuous improvement of security tools, processes, and procedures Ensure appropriate balance between local autonomy and corporate alignment Contribute to broader security strategy and More ❯

the build and configuration of the solution in a secure enterprise environment. Required Skills & Experience: * Proven experience architecting and deploying SentinelOne in enterprise environments. * Strong understanding of endpoint protection, threat detection, and response capabilities. * Experience with on-prem infrastructure on virtualized platform , networking, and storage. * Ability to produce HLDs and LLDs with clarity and precision. * Excellent communication and More ❯

be doing DevOps Analyst: Learn how to automate, streamline and enhance software delivery processes. Gain exposure to modern tooling across development and operations. Information Security Analyst: Support security monitoring, threat detection, cyber response, ethical testing and best-practice implementation across large organisations. Software Developer: Work across the full development lifecycle, writing, testing and improving code while contributing to More ❯

in implementing security controls, mitigating risk and contributing to the continuous improvement of the company's overall security posture. Responsibilities: * Monitor security tools including SIEM (QRadar) and respond to threat detection alerts * Triage, analyse and prioritise security (via ServiceNow) * Investigate root causes of security issues and design effective remediation solutions * Oversee Patch Management * Conduct vulnerability scans with Qualys More ❯

in implementing security controls, mitigating risk and contributing to the continuous improvement of the company's overall security posture. Responsibilities: * Monitor security tools including SIEM (QRadar) and respond to threat detection alerts * Triage, analyse and prioritise security (via ServiceNow) * Investigate root causes of security issues and design effective remediation solutions * Oversee Patch Management * Conduct vulnerability scans with Qualys More ❯

The postholder will: Lead and oversee the operation, maintenance, and performance of the SWSDE platform, ensuring security, stability, and scalability at all times. Manage and monitor system security , including threat detection, risk management, and incident response, ensuring compliance with SATRE, ISO27001, DSPT, and NHS cybersecurity frameworks. Develop and maintain secure data pipelines from contributing NHS and partner organisations More ❯

Terraform, Azure CLI, and PowerShell. Contribute to CI/CD integration for infrastructure as code. Ensure compliance with ISO27001 standards and Zero Trust principles. Manage firewalls, access controls, and threat detection. Maintain accurate documentation and mentor junior engineers. This role gives you the opportunity to deliver secure, modern cloud infrastructure on projects with national impact. What We’re Looking More ❯

Terraform, Azure CLI, and PowerShell. Contribute to CI/CD integration for infrastructure as code. Ensure compliance with ISO27001 standards and Zero Trust principles. Manage firewalls, access controls, and threat detection. Maintain accurate documentation and mentor junior engineers. This role gives you the opportunity to deliver secure, modern cloud infrastructure on projects with national impact. What We’re Looking More ❯

Smiths Detection, part of Smiths Group , is a global leader in threat detection and screening technologies for aviation, ports & borders, defense, and urban security. Our expertise is spread across 5 R&D centers, 21 Global Offices and 7 Manufacturing Sites with 3000 Brilliant minds globally contributing for over 40 years at the frontline which enables us to … deliver the solutions needed to protect our society from any threat and illegal passage of explosives, prohibited weapons, contraband, toxic chemicals, and narcotics. Every minute of every day, our technology and talented team members help to make the world a safer place - https://youtu.be/JmcKLJTrHLc Job Description Reporting directly to the IT Director, you will lead … stakeholder engagement and conflict resolution skills. Demonstrated ability to coach and embed Agile practices and mindsets across multidisciplinary teams. Additional Information To find out more about life at Smiths Detection check out our LinkedIn https://www.linkedin.com/company/smiths-detection/and follow our story Join us for a great career and competitive compensation & benefits More ❯

Smiths Detection, part of Smiths Group , is a global leader in threat detection and screening technologies for aviation, ports & borders, defense, and urban security. Our expertise is spread across 5 R&D centers, 21 Global Offices and 7 Manufacturing Sites with 3000 Brilliant minds globally contributing for over 40 years at the frontline which enables us to … deliver the solutions needed to protect our society from any threat and illegal passage of explosives, prohibited weapons, contraband, toxic chemicals, and narcotics. Every minute of every day, our technology and talented team members help to make the world a safer place - https://youtu.be/JmcKLJTrHLc Job Description Reporting directly to the IT Director, you will lead … stakeholder engagement and conflict resolution skills. Demonstrated ability to coach and embed Agile practices and mindsets across multidisciplinary teams. Additional Information To find out more about life at Smiths Detection check out our LinkedIn https://www.linkedin.com/company/smiths-detection/and follow our story Join us for a great career and competitive compensation & benefits More ❯

mapping (NCSC CAF, JSP 440, NIST 800-53, DEF STAN). Implement zero-trust security controls across HPC fabrics (SELinux, NVIDIA security stack, OPA policies). Integrate real-time threat detection via SIEM (Splunk/Elastic) with HPC telemetry and anomaly hunting. Lead Cyber Security exercises adapted to HPC (MITRE ATT&CK for defence systems). Automate secure … knowledge of HPC schedulers, parallel file systems (Lustre, GPFS, BeeGFS), and high-speed interconnects (Infiniband/RoCE). Relevant certifications: CISSP, CISM, OSCP, or NCSC CCP (Senior Practitioner+). Threat modelling experience for exascale/GPU workloads in classified environments. Desirable Skills/Experience Secure AI/ML pipelines on HPC (PyTorch/TensorFlow + CUDA hardening). Quantum More ❯

supporting risk mitigation and contributing to the continual improvement of the business’s security posture. Responsibilities: Provide expertise on application, network and infrastructure security Monitor security solutions including SIEM, threat detection and data security, endpoint protection and network analytics for alerts Provide documentation for technical standards to meet corporate security policies/industry best practice Perform security reviews More ❯

Cyber security regulatory compliance initiatives ns (e.g. NIST, ISO 27001, SOC2 compliance). Lead the design and operation of shared security services between IAG Loyalty and IAG airlines (e.g., threat detection, incident response, intel management, data sharing) at the group level. Establish clear escalation protocols and cross-company incident response procedures. Align security initiatives with individual business unit More ❯

in a hosting provider or managed service provider environment Strong working knowledge of ISO 27001, ISO 27017, ISO 27018, and ISO 22301 Hands-on experience with scanning and vulnerability detection applications Hands-on experience of Real time threat detection software Ability to analyze and explain exploitability of vulnerabilities, including attack vectors, prerequisites, and mitigations Skilled in producing More ❯

This includes onboarding log sources, developing analytical rules, creating automation for triage and remediation, and integrating with other IT and Operational Technology platforms. You will collaborate with the wider Threat Detection and Response team to ensure the SIEM platform meets their day-to-day needs and provide support during incidents as necessary. Key Responsibilities of the SIEM Engineer … the security monitoring platform, ensuring it meets the company's evolving security requirements. Participate in infrastructure projects to plan and implement solutions for security monitoring. Design, implement, and maintain detection rulesets to identify and respond to security threats. Scope, plan, and track log integrations to enhance the SIEM platform's capabilities. Guide, develop, and grow the SIEM Engineering team More ❯

the build and configuration of the solution in a secure enterprise environment. Required Skills & Experience: • Proven experience architecting and deploying SentinelOne in enterprise environments. • Strong understanding of endpoint protection, threat detection, and response capabilities. • Experience with on-prem infrastructure on virtualized platform , networking, and storage. • Ability to produce HLDs and LLDs with clarity and precision. • Excellent communication and More ❯