1 to 25 of 26 Remote/Hybrid Threat Intelligence Jobs in the UK excluding London

Cyber Threat Intelligence Analyst Salary £50,000 - £60,000 - Hybrid - WFH Euro Projects Recruitment is working with a leading Microsoft Partner in Scotland to recruit a permanent Cyber Threat Intelligence Analyst . This is a genuine Cyber Threat Intelligence Analyst role with a strong … focus on proactive threat hunting, intelligence-led investigations and client engagement. The successful Cyber Threat Intelligence Analyst will work closely with SOC analysts, incident responders and engineering teams, using the Microsoft security stack to identify, analyse and mitigate cyber threats. The Role Cyber Threat Intelligence ...

Cyber Threat Intelligence Analyst Salary £50,000 - £60,000 - Hybrid - WFH Euro Projects Recruitment is working with a leading Microsoft Partner in Scotland to recruit a permanent Cyber Threat Intelligence Analyst . This is a genuine Cyber Threat Intelligence Analyst role with a strong … focus on proactive threat hunting, intelligence-led investigations and client engagement click apply for full job details ...

will integrate IAM principles and controls into our security operations and incident response framework. You will be a technical expert with knowledge of the threat environment from the perspective of identity and access management. You will use an intimate understanding of the existing IAM capabilities to provide expert guidance … efforts to evaluate and resolve account access and privilege issues. As an important member of the IAM Governance organization, you will use real-world threat intelligence and operational insights to inform and mature our IAM policies, standards, and controls. You will partner with CFC analysts, threat hunters ...

Cyber Threat Detection Engineer Location: UK (fully remote - work from anywhere worldwide) Salary: Up to £100,000 + benefits About the role We're looking for a hands-on Cyber Threat Detection Engineer to build high-fidelity detections based on real-world attacker behaviour. You'll work with … global telemetry, honeypots, and deception systems to identify exploitation, develop detection pipelines, and convert threat intelligence into actionable insights. Key responsibilities Own design and operation of detection logic for live attacker activity, including zero-day and N-day exploitation Build and maintain pipelines that ingest, enrich, and correlate ...

Cambridge office ~1-2 days/month | Permanent | £75,000 We’re partnering with a well-established global software provider operating in the intelligence, public safety, and security technology space. Backed by a large international group, the company builds mission-critical platforms used by government agencies, law enforcement … technical ownership with team leadership . The Role You’ll lead the development of a cloud-based data integration platform that connects: Open Source Intelligence (OSINT) Digital forensics data Commercial threat intelligence providers Internal intelligence systems You’ll manage a small team of engineers while remaining ...

automation and Detection as Code. Work closely with cloud platforms ( AWS and Azure ) to enhance detection capabilities in hybrid environments. Monitor networks and leverage threat intelligence to improve detection coverage, incorporating frameworks such as MITRE ATT&CK. Drive service improvements and efficiency through automation, tooling, and operational innovation. … developing automation and Detection as Code pipelines. Proficiency in KQL and SPL for creating efficient, high-fidelity detections. Solid understanding of security detection methodologies, threat intelligence, and cloud security environments. Strong communication and stakeholder management skills. Experience in operational leadership, strategy definition, and team management. Desirable Skills: Experience ...

holistic view of the organisation's security posture. Present findings and recommendations to senior leadership and governance forums. Collaborate with internal teams (e.g., threat intelligence, compliance, audit) to ensure assurance activities reflect current threat landscapes. Act as a primary interface for business units, ensuring alignment between assurance … technical and business information to assess risk. Experience in supply chain security assurance. Knowledge of secure by design principles and accreditation processes. Understanding of threat intelligence and its application in assurance. Experience working in regulated or high-assurance environments (e.g., government, finance, defence). Familiarity with risk management ...

high-quality reporting for both technical and non-technical stakeholders. You will be part of a global Cyber Technical Services team, collaborating closely with Threat Intelligence and Incident Response specialists across National Security and Defence programmes. What You'll Be Doing as a Security Testing Consultant (SC) Deliver … security testing engagements, including scoping and client wash-up sessions Perform web, mobile, application, infrastructure, objective-based, and intelligence-led testing Produce clear, detailed reports and presentations for technical and non-technical audiences Use security testing tools safely and responsibly, ensuring risk controls are always in place Develop ...

high-quality reporting for both technical and non-technical stakeholders. You will be part of a global Cyber Technical Services team, collaborating closely with Threat Intelligence and Incident Response specialists across National Security and Defence programmes. What You'll Be Doing as a Security Testing Consultant (SC) Deliver … security testing engagements, including scoping and client wash-up sessions Perform web, mobile, application, infrastructure, objective-based, and intelligence-led testing Produce clear, detailed reports and presentations for technical and non-technical audiences Use security testing tools safely and responsibly, ensuring risk controls are always in place Develop ...

high-quality reporting for both technical and non-technical stakeholders. You will be part of a global Cyber Technical Services team, collaborating closely with Threat Intelligence and Incident Response specialists across National Security and Defence programmes. What You'll Be Doing as a Security Testing Consultant (SC) Deliver … security testing engagements, including scoping and client wash-up sessions Perform web, mobile, application, infrastructure, objective-based, and intelligence-led testing Produce clear, detailed reports and presentations for technical and non-technical audiences Use security testing tools safely and responsibly, ensuring risk controls are always in place Develop ...

high-quality reporting for both technical and non-technical stakeholders. You will be part of a global Cyber Technical Services team, collaborating closely with Threat Intelligence and Incident Response specialists across National Security and Defence programmes. What You'll Be Doing as a Security Testing Consultant (SC) Deliver … security testing engagements, including scoping and client wash-up sessions Perform web, mobile, application, infrastructure, objective-based, and intelligence-led testing Produce clear, detailed reports and presentations for technical and non-technical audiences Use security testing tools safely and responsibly, ensuring risk controls are always in place Develop ...

cryptography) Solid understanding of IAM concepts (RBAC, ABAC, PAM, SSO) Strong analytical skills with the ability to interpret complex technical information Good understanding of threat modelling and threat intelligence methodologies (OWASP, STRIDE, MITRE) For more details, please reach out to . Reasonable Adjustments: Respect and equality ...

Check (DBS) check. Appointments are normally made within 4 to 8 weeks of the closing date. What you will do Monitor security alerts and threat intelligence feeds to detect and respond to cyber incidents. Lead or support incident response activities, including investigation, containment, eradication, and recovery. Manage … Science, or a related field, or equivalent experience. Professional certifications such as CompTIA Security+, CISSP, CISM, or equivalent. Strong understanding of cyber security principles, threat landscapes, and attack vectors. Experience with security technologies (e.g., SIEM, IDS/IPS, endpoint protection). Knowledge of public sector security standards and regulatory ...

mission-critical role at the heart of our cybersecurity strategy. As Operational Security Manager, you'll take ownership of our security operations, overseeing threat intelligence, vulnerability management, incident response and the performance of our outsourced 24/7 SOC. You'll work closely with internal technology teams … hands-on experience across SIEM, SOC, Azure, Microsoft 365 and enterprise network environments. You've led incident response, managed third-party suppliers and implemented threat detection strategies in hybrid organisations. Certifications such as CISSP, CEH, CREST or GIAC CIH are part of your toolkit, and your technical depth ...

month) Salary Range: £70,000-100,000 Equity: Meaningful early-stage equity Stage: Seed → Series A Website: Cyb3roperationsCyb3r Operations | Supply Chain & Third Party Intelligence About Cyb3r Operations Cyb3r Operations is building a modern third-party risk intelligence platform that gives organisations real-time visibility into: Supply-chain … vendor risk Financial stress indicators Cyber exposure and shadow IT Surface, deep and dark-web intelligence Breach data, impersonation activity and industry-specific signals Our platform ingests and enriches large volumes of external intelligence to help security, procurement, CFO and resilience teams understand exposure instantly. We have: Closed ...

Extended Detection & Response (XDR) solutions using Darktrace and Microsoft Defender - secure, scalable, and successful implementation of advanced detection technologies that enhance organisational threat visibility, improve incident response capability, and support a modern security operations function. - close collaboration with cybersecurity, infrastructure, networking, SOC analysts, service owners, and senior stakeholders … coverage across networks, data centres, and cloud estates. - Guide onboarding, configuration, and tuning of Microsoft Defender XDR (Endpoint, Identity, Email, Cloud Apps, Server, and Threat Intelligence modules). - Ensure correct enablement of telemetry, behavioural analytics, detection logic, and baselining across both platforms. - Coordinate testing, validation, and acceptance ...

Security Lead - Incident Response & Threat Management 4 Months Contract £400 to £500 a day Inside IR35 Remote working *Active Security Clearance is Needed* A well-established consultancy firm is urgently looking for an experienced Security Lead with a strong background in Incident Response and Threat Management to contribute … SecOps analyst support. Core Responsibilities Incident Management: Directing the full incident response lifecycle, including the triage, investigation, and total resolution of security events. Threat Intelligence: Utilising Recorded Future, OpenCTI, and Cribl to correlate alerts and transform raw intelligence into actionable defensive insights. Detection & Monitoring: Designing advanced alerting ...

cloud-native cybersecurity platform for large-scale data collection, correlation, and real-time alerting. Their systems process high volumes of data to deliver actionable intelligence for enterprise and government clients. They are looking for a Senior Software Engineer (PHP) to join a small, highly technical backend team working … Strong problem-solving skills and ownership mindset. Additional/Desirable experience: Experience with large-scale data ingestion or cross-referencing platforms. Knowledge of cybersecurity, threat intelligence, or data protection domains. Hands-on experience with monitoring, observability, and performance profiling. Experience integrating analytics, AI, or LLM-powered features. Working ...

environments. This is a hands-on engineering role focused on active defence , attacker engagement, and turning adversary behaviour into high-quality detection signals and threat intelligence. You'll work at scale, move quickly, and operate where real attackers live. What you'll be doing Design, deploy and run large … adapt deception techniques based on emerging vulnerabilities, exploitation trends and adversary tradecraft Transform raw telemetry and logs into actionable security signals , detections and structured intelligence Rapidly roll out new deception scenarios in response to active exploitation, N-day and zero-day events Work closely with Detection Engineering and Threat ...

responsible for detecting and responding to cyber-attacks against the Bank of England. The CDC is made up of four key domains: Capability, Threat, Detection Engineering and Defence Operations. Reporting to the Cyber Defence Operations Lead Operations lead in the Cyber Defence Operations (CDO) function, The successful candidate will … challenging day-to-day responsibilities, as well as exposure to a range of cutting-edge technology in cyber security, data analytics and cyber threat intelligence. Key Experience/Skills Minimum: Good understanding of best practice security incident response concepts and approaches Practical experience in technical cyber security incident response ...

Title: Cyber Threat Hunting Lead - Use Case Factory/Monitoring Location: Hybrid - Reading (2 days/week onsite, travel expensed) Clearance: Active SC clearance required Contract Type: Inside IR35 Duration: 6 months Start Date: ASAP Overview: SR2 Consulting is supporting a strategically significant programme within the defence and national … security domain and is looking for an experienced Cyber Threat Hunting Lead to drive proactive detection capability and threat visibility across a complex environment. This role will blend hands-on threat hunting , detection engineering leadership , and the operational oversight of monitoring frameworks - including the design and implementation ...

already attractive pipeline and be responsible for driving new business revenue across the companies core services, including MDR, SOC, EDR/XDR, Threat Intelligence, and Pen Testing. You will work almost fully remotely but be expected to come to the Wakefield office once a month. This role would ...

already attractive pipeline and be responsible for driving new business revenue across the companies core services, including MDR, SOC, EDR/XDR, Threat Intelligence, and Pen Testing. You will work almost fully remotely but be expected to come to the Wakefield office once a month. This role would ...

already attractive pipeline and be responsible for driving new business revenue across the companies core services, including MDR, SOC, EDR/XDR, Threat Intelligence, and Pen Testing. You will work almost fully remotely but be expected to come to the Wakefield office once a month. This role would ...

already attractive pipeline and be responsible for driving new business revenue across the companies core services, including MDR, SOC, EDR/XDR, Threat Intelligence, and Pen Testing. You will work almost fully remotely but be expected to come to the Wakefield office once a month. This role would ...