26 to 50 of 77 Threat Detection Jobs in the UK

real-world security impact. The successful candidate will work closely with customers, engineers, and operational security teams to deliver meaningful improvements across identity, detection engineering, endpoint security, and cloud security posture. This is a hands-on role involving the design and implementation of modern security architectures, solving complex technical … detections, automation workflows, and runbooks. Conduct technical assessments across identity, endpoint, cloud posture, logging, and security operations. Develop, optimise, and tune KQL queries for detection engineering and threat hunting. Review and enhance security configurations across cloud and SIEM/SOAR platforms. Manage engagements through architecture, deployment, tuning, documentation ...

testing and risk analysis to identify and mitigate potential threats. Design and enforce security controls based on identified requirements and gaps in existing structures. Threat Detection and Response Monitor and respond to security incidents ensuring rapid and effective action. Develop comprehensive incident response plans to maintain organisational resilience ...

testing and risk analysis to identify and mitigate potential threats. Design and enforce security controls based on identified requirements and gaps in existing structures. Threat Detection and Response Monitor and respond to security incidents ensuring rapid and effective action. Develop comprehensive incident response plans to maintain organisational resilience ...

real security operations, clients, environments and SIEM technologies. Gain exposure to industry frameworks such as MITRE ATT&CK and NIST. Build foundational knowledge across: Threat detection & incident response SOC processes and tooling Log analysis Microsoft security technologies (including Sentinel, Defender, Entra ID) Automation and scripting fundamentals The successful ...

response. Embed recognised frameworks such as ISO 27001, NIST CSF, NIS2, and DORA into policies, processes, and technology platforms. Oversee security operations, including monitoring, threat detection, incident response, and vulnerability management. Conduct and support risk assessments, ensuring robust controls are implemented and maintained. Partner with Technology, Risk, Compliance ...

DFIR) readiness and drive our Adversarial Exposure Validation (AEV) program. This role is a unique hybrid of defensive response and proactive testing, ensuring our detection controls are validated against real-world threat actor Tactics, Techniques, and Procedures (TTPs). This is an ideal "next step" role … experienced Cyber Analyst with a deep passion for high-stakes incident response, digital forensics, and threat mitigation. Compensation & Logistics Salary: £50,000 - £60,000 (depending on experience). Working Pattern: Dynamic (hybrid) working; minimum 2 days per week on-site due to workload classification. Security Clearance: Candidates must ...

multiple platforms, including Microsoft and endpoint security tools. Conduct in-depth investigations of security events, escalating and containing incidents as required. Optimise and tune detection rules, policies, and alerting mechanisms to improve SOC efficiency. Collaborate with internal teams to support security operations, threat analysis, and incident recovery. Produce … Expertise Sentinel, MDE, and MDI deployments Proven experience in a hands-on SOC Analyst role within an enterprise environment Strong understanding of security operations, threat detection, and incident response workflows Excellent communication skills and the ability to work effectively within a collaborative SOC team Desirable Skills Experience with ...

largest and most innovative energy companies. Your responsibilities: Design and own the architecture for ServiceNow SecOps modules - including Security Incident Response, Vulnerability Response, Threat Intelligence, and Configuration Compliance. Lead integration of ServiceNow with key cybersecurity tools: SIEM, SOAR, EDR, CMDB, threat intelligence platforms, and OT/ICS systems. … support ongoing digital transformation and automation initiatives. AI/ML in Security Operations - Exposure to leveraging artificial intelligence or machine learning techniques to improve threat detection, incident analysis, or automated response capabilities within SecOps. ...

Position: Threat Defence Delivery Manager Location: London/Hybrid Type: Contract, Inside IR35, 6 Months Rate: £(Apply online only) p/day We are seeking an experienced Threat Defence Delivery Manager to lead a critical workstream within a major cyber transformation programme. This role is responsible for consolidating … enhancing the organisation's threat detection and response capabilities across all business units. In this role, you will: Lead the implementation of a unified Security Operations Centre (SOC), providing a single view of security events while supporting federated reporting for individual business units. Manage the selection and onboarding ...

Security Stack, including: Microsoft Entra ID (Identity & Access Management) Microsoft Defender XDR (Email, Devices, Apps) Microsoft Purview (Data Governance & Compliance) Microsoft Sentinel (SIEM & Threat Response) This is a hands‐on role covering both project work and BAU, giving you the chance to contribute to key security initiatives while also … supporting day‐to‐day cyber operations. Responsibilities Managing and improving the organisation’s cyber security posture Security remediation activities Threat detection and investigation SOC-style threat response Endpoint security management Identity & access management (IAM) What We’re Looking For Experienced Cyber Security Engineer with strong hands ...

OWASP principles. Expert in executing cloud security solutions, particularly for identity management, networking, and encryption. Possesses solid knowledge of system logging, monitoring, SIEM technologies, threat detection, and public key infrastructures (PKI). Understands cyber risk management, threat intelligence, and emerging governance practices. Experienced in driving security transformation ...

tooling and related platforms to identify risk trends, control gaps, and configuration drift. You will design, implement, and continuously refine custom alerting rules and detection logic to enable effective threat detection and response across cloud workloads. Fulfil and review IAM access requests in accordance with least-privilege ...

existing project. Key responsibilities Responsible for ensuring the effective and timely triage of all security alerts Responsible for maintaining and developing risk-led threat detection capabilities to quickly detect and respond to risky behaviors and event. Review and approve new Use Cases and Playbooks created by cybersecurity colleagues ...

trust principles, control enforcement, and secure network transport. WHAT YOU WILL DO Own and manage vulnerability management program across cloud and containerized workloads. Oversee threat detection, incident response, and forensic analysis coordination with external SOC provider. Own and manage network design, segmentation, and secure interconnectivity across AWS, Azure ...

trust principles, control enforcement, and secure network transport. WHAT YOU WILL DO Own and manage vulnerability management program across cloud and containerized workloads. Oversee threat detection, incident response, and forensic analysis coordination with external SOC provider. Own and manage network design, segmentation, and secure interconnectivity across AWS, Azure ...

trust principles, control enforcement, and secure network transport. WHAT YOU WILL DO Own and manage vulnerability management program across cloud and containerized workloads. Oversee threat detection, incident response, and forensic analysis coordination with external SOC provider. Own and manage network design, segmentation, and secure interconnectivity across AWS, Azure ...

trust principles, control enforcement, and secure network transport. WHAT YOU WILL DO Own and manage vulnerability management program across cloud and containerized workloads. Oversee threat detection, incident response, and forensic analysis coordination with external SOC provider. Own and manage network design, segmentation, and secure interconnectivity across AWS, Azure ...

trust principles, control enforcement, and secure network transport. WHAT YOU WILL DO Own and manage vulnerability management program across cloud and containerized workloads. Oversee threat detection, incident response, and forensic analysis coordination with external SOC provider. Own and manage network design, segmentation, and secure interconnectivity across AWS, Azure ...

trust principles, control enforcement, and secure network transport. WHAT YOU WILL DO Own and manage vulnerability management program across cloud and containerized workloads. Oversee threat detection, incident response, and forensic analysis coordination with external SOC provider. Own and manage network design, segmentation, and secure interconnectivity across AWS, Azure ...

trust principles, control enforcement, and secure network transport. WHAT YOU WILL DO Own and manage vulnerability management program across cloud and containerized workloads. Oversee threat detection, incident response, and forensic analysis coordination with external SOC provider. Own and manage network design, segmentation, and secure interconnectivity across AWS, Azure ...

trust principles, control enforcement, and secure network transport. WHAT YOU WILL DO Own and manage vulnerability management program across cloud and containerized workloads. Oversee threat detection, incident response, and forensic analysis coordination with external SOC provider. Own and manage network design, segmentation, and secure interconnectivity across AWS, Azure ...

trust principles, control enforcement, and secure network transport. WHAT YOU WILL DO Own and manage vulnerability management program across cloud and containerized workloads. Oversee threat detection, incident response, and forensic analysis coordination with external SOC provider. Own and manage network design, segmentation, and secure interconnectivity across AWS, Azure ...

trust principles, control enforcement, and secure network transport. WHAT YOU WILL DO Own and manage vulnerability management program across cloud and containerized workloads. Oversee threat detection, incident response, and forensic analysis coordination with external SOC provider. Own and manage network design, segmentation, and secure interconnectivity across AWS, Azure ...

trust principles, control enforcement, and secure network transport. WHAT YOU WILL DO Own and manage vulnerability management program across cloud and containerized workloads. Oversee threat detection, incident response, and forensic analysis coordination with external SOC provider. Own and manage network design, segmentation, and secure interconnectivity across AWS, Azure ...

trust principles, control enforcement, and secure network transport. WHAT YOU WILL DO Own and manage vulnerability management program across cloud and containerized workloads. Oversee threat detection, incident response, and forensic analysis coordination with external SOC provider. Own and manage network design, segmentation, and secure interconnectivity across AWS, Azure ...