26 to 50 of 70 Threat Intelligence Jobs in the UK

holistic view of the organisation's security posture. Present findings and recommendations to senior leadership and governance forums. Collaborate with internal teams (e.g., threat intelligence, compliance, audit) to ensure assurance activities reflect current threat landscapes. Act as a primary interface for business units, ensuring alignment between assurance … technical and business information to assess risk. Experience in supply chain security assurance. Knowledge of secure by design principles and accreditation processes. Understanding of threat intelligence and its application in assurance. Experience working in regulated or high-assurance environments Familiarity with risk management tools and methodologies. What ...

deliver high-quality detections across Microsoft Sentinel and Splunk, helping protect critical systems and clients in real time. If you thrive on turning threat intelligence into actionable detection logicand enjoy working at the heart of a live SOCthis is your opportunity to make a real impact. This role … improve SOC efficiency. Validate detections against telemetry and ensure accuracy. Support onboarding of log sources across cloud, infrastructure, identity and network. Collaborate with SOC, Threat Intelligence and Security Architecture teams. Investigate detection issues and improve performance and reliability. Drive continuous improvement using automation, scripting and best practice. Ensure ...

Team This is an excellent opportunity for a CyberSecurity Analyst looking to join a mature cyber security operation and continue developing their incident response, threat detection and cyber defence skills within a highly respected technology organisation. An established international technology and cyber security services provider is investing heavily … excellent opportunity for a cyber security professional looking to further develop their experience within a mature Security Operations environment, gaining exposure to incident response, threat detection, vulnerability management and modern Microsoft security technologies. Working within a highly regulated customer environment, you will help monitor, investigate and respond to security ...

excellent opportunity for a cyber security professional looking to further develop their experience within a mature Security Operations environment, gaining exposure to incident response, threat detection, vulnerability management and modern Microsoft security technologies. Working within a highly regulated customer environment, you will help monitor, investigate and respond to security … incidents through the incident response lifecycle Perform security investigations and root cause analysis Validate indicators of compromise and assess potential business impact Conduct proactive threat hunting activities Query and analyse security data using Microsoft Sentinel and KQL Support vulnerability management and remediation activities Work closely with technical teams ...

ReversingLabs, we are providing the world’s largest threat intelligence repository to protect software development and power advanced security solutions, keeping the most advanced cybersecurity organizations and Fortune 500 enterprises informed and ahead of the threats. Our software supply chain security and threat intelligence solutions have ...

ReversingLabs, we are providing the world’s largest threat intelligence repository to protect software development and power advanced security solutions, keeping the most advanced cybersecurity organizations and Fortune 500 enterprises informed and ahead of the threats. Our software supply chain security and threat intelligence solutions have ...

funded Cyber Security course (NCFE Certificate in Principles of Cyber Security, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you ll gain hands-on experience that prepares you for today s fast … weeks Format: Online, practical workshops Schedule: Mon-Fri 09:45AM-2:45PM What you ll learn Principles: Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond ...

funded Cyber Security course (NCFE Certificate in Principles of Cyber Security, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast … weeks Format: Online, practical workshops Schedule: Mon-Fri 09:45AM-2:45PM What you’ll learn Principles: Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond ...

assessing and mitigating cyber threats across enterprise systems while helping to shape and improve the organisation’s overall security posture. Key Responsibilities Cybersecurity Operations & Threat Management Conduct ongoing threat assessments across operational systems and infrastructure Identify vulnerabilities, threat vectors and areas of security risk Design and implement … security mitigations and remediation strategies Monitor emerging cyber threats and recommend appropriate defensive measures Support automated threat monitoring, incident detection and response capabilities Develop and maintain cybersecurity playbooks and incident response procedures Coordinate with third-party security providers during security incidents and testing activities Security Governance & Risk Management Support ...

play a key role in protecting critical systems and services, working alongside security, infrastructure, and cloud teams to enhance security monitoring, incident response, threat detection, and operational resilience. The successful candidate will bring a strong background in cyber security operations, ideally gained within Defence, Government, or other highly regulated … cyber security monitoring and incident response capabilities. Investigate and manage cyber security incidents, ensuring appropriate containment, remediation, and reporting. Analyse security alerts, events, and threat intelligence to identify potential risks and vulnerabilities. Develop and refine detection use cases, correlation rules, and security monitoring processes. Work closely with cloud ...

high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities. As a Senior SOC Analyst, you will play a key role … protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience. Key Responsibilities Maintain and optimise SOC Protect, Detect and Respond ...

high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities. As a Senior SOC Analyst, you will play a key role … protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience. Key Responsibilities Maintain and optimise SOC Protect, Detect and Respond ...

years' experience in a SOC or closely related cyber security role Strong working knowledge of: SIEM platforms Security Incident Management Cloud environments Networking fundamentals Threat intelligence and threat hunting Information security principles Phishing, ransomware, and modern attack vectors Identity & Access Management (IAM) Joiners, Movers, and Leavers ...

Team Lead | Remote (UK Only) This is a senior technical position for someone who thrives at the intersection of offensive security, threat research, and client advisory. You'll work closely with senior leadership to shape engagements, influence testing methodology, and deliver realistic, intelligence-driven adversary emulation across complex … take ownership of advanced adversary simulation engagements from initial planning through to execution and reporting. You'll help define attack hypotheses, model realistic threat actor behaviour, and challenge client assumptions through carefully crafted offensive operations. You'll be trusted to operate autonomously while collaborating closely with senior technical stakeholders ...

security telemetry from a range of data sources. Design, implement, and tune detection rules to improve alert quality and reduce false positives. Conduct proactive threat hunting using SIEM, EDR, and threat intelligence sources. Support incident investigations, containment, and response activities. Monitor and maintain the health … Microsoft Sentinel. Strong scripting and automation skills (Python, PowerShell, Bash, KQL). Experience with SOAR technologies and security automation. Knowledge of detection engineering and threat hunting. Strong understanding of Windows and Linux logging. Good networking knowledge including TCP/IP, DNS, firewalls, and proxies. Experience within ...

containment, and coordination of security incidents, working closely with Tier 1 analysts, internal IT teams, and external stakeholders. Taking ownership of complex alerts, support threat hunting and intelligence efforts, and contribute to the refinement of detection rules, playbooks, and response procedures. You will be involved in – • Incident Detection … Response • Threat Intelligence and Analysis • Security Monitoring and Detection Engineering • Compliance, Reporting and Documentation • Vulnerability Management • Collaboration and knowledge sharing This would suit an experienced security analyst who has proved experience working in a busy security department, working in security operations. Strong alert triage, incident response, security monitoring ...

Intelligence Analyst Are you passionate about uncovering insights from complex data through creative thinking? Would you like to play a vital role in intelligence analysis? This Analyst role offers a unique opportunity to develop your skills and make a tangible impact within a growing organisation. You will … instrumental in providing actionable intelligence, supporting strategic decision-making, and contributing to risk mitigation efforts. This role is on-site and Oxford based. Intelligence Analyst Responsibilities This position will involve, but will not be limited to: Conducting detailed research and data analysis to support clients in understanding current ...

validating effectiveness through scanning and review Operate and support key security technologies including SIEM, endpoint protection and email/web security tools Monitor external threat intelligence sources and assess relevance to the organisation Produce and report on security metrics, KPIs and operational performance Technical expertise Strong understanding … information security principles, risk management and the threat landscape Experience operating and monitoring security tooling such as SIEM, endpoint protection and email/web security solutions Ability to conduct proactive threat hunting and contribute to improving detection capability Awareness of cloud security controls and standards Experience working with ...

detection, ensuring controls are effective, proportionate, and aligned to risk *Investigate and respond to security incidents, providing clear, risk-based analysis and recommendations *Use threat intelligence and operational insight to continually improve detection capability *Provide meaningful reporting and assurance on SOC performance and cyber posture *Support the evolution … targets. Previous experience of imputing into strategic plans and policies. Previous experience of project and change management skills and/or techniques. Experience of Threat Hunting and Intelligence gathering along with associated methodologies. Good understanding of ISO 27001, 27002, GDPR, NIST, CSF, OWASP & ATT&CK Framework. IT security ...

endpoint detection systems. Identify and escalate potential security threats or vulnerabilities in real-time. Continuously optimize SOC workflows, tools, and processes for greater efficiency. Threat Intelligence and Analysis: Proactively research and assess emerging threats, vulnerabilities, and attack vectors. Develop strategies to mitigate risks based on threat intelligence. … Technology, or a related field. Equivalent work experience may be considered. Experience: 4+ years of experience in cybersecurity, preferably in SOC, incident response, or threat analysis roles. Certifications: Relevant certifications such as CISSP, CEH, GCIH, GCIA, or CISM are highly desirable. Cybersecurity Engineer - Technical Skills: Knowledge of firewalls ...

Strong understanding and practical application of ISO 27001 and related governance, risk, and compliance frameworks. Experience with security monitoring, incident response, vulnerability management, and threat management processes. Proven stakeholder management skills with the ability to engage effectively at all levels of the organisation. Experience managing third-party suppliers, managed … performance management Cloud networking and hybrid environments IDS/IPS technologies Secure network architecture principles Knowledge of SIEM, SOAR, endpoint security, vulnerability management, and threat intelligence platforms. Understanding of modern cyber threats, attack techniques, and defensive security controls. Desirable Qualifications ISO 27001 Lead Implementer or Lead Auditor CISSP ...

troubleshooting. Governance, Risk and Compliance Apply GRC principles across designs and deployments. Review and improve customer security policies and standards. Perform risk assessments, threat modelling, and compliance gap analysis. Advise on ISO 27001, NIST, PCI DSS, and GDPR. Threat and Vulnerability Management Interpret threat intelligence ...

critical role in strengthening and maturing Reapit’s cloud security posture. Your work will span hands on security engineering, deep incident response, proactive threat detection, and collaboration with global teams. Design, implement, and enhance secure Cloud infrastructure, services, and applications in collaboration with DevOps teams. Conduct ongoing security assessments … high quality documentation. Work in a self managing, proactive manner — anticipating security needs, identifying gaps, and driving improvements without close supervision. Incident Response & Threat Detection Respond to SOC alerts. Working with our outsourced SOC, Lead and participate in global incident response activities, including investigation, containment, eradication, and recovery. Perform ...

performance. Configure and tune Falcon policies, prevention controls, detection rules and reporting capabilities. Collaborate with Security Operations, Incident Response and Infrastructure teams to enhance threat detection and response. Support threat hunting, incident investigations and security improvement initiatives. Develop endpoint security standards, policies and best practices. Provide technical leadership … McAfee to CrowdStrike. Hands-on deployment experience across large endpoint environments, ideally supporting over 100,000 devices. Strong understanding of EDR, NGAV, behavioural analytics, threat detection and prevention methodologies. Experience acting as a technical lead or SME within large enterprise organisations. Strong troubleshooting, stakeholder management and communication skills. Technical ...

Cyber Security and cloud such as CISSP, CISA, CISM Significant knowledge of cyber security practices including risk management principles, architectural requirements, security engineering, threat intelligence, vulnerability management, and incident response. Experience leading cyber risk reviews. Able to deliver clear gap analysis against cyber security policy, standards and technology … Microsoft Azure. Excellent stakeholder management skills Previous experience as part of a security operations or incident response organization would be beneficial. Good knowledge of threat modelling techniques with some experience in developing threat models. Please note: You must have full working rights in the UK and be prepared ...