26 to 50 of 62 Threat Intelligence Jobs in the UK excluding London

operating effectively to protect client environments. Work with teams to assess risks, design controls and define testing requirements. Support senior engineers with SIEM, threat intelligence and malware analysis platforms. Apply patches/updates, raise changes and follow agreed processes. Keep up to date with threats and recommend improvements. ...

operating effectively to protect client environments. Work with teams to assess risks, design controls and define testing requirements. Support senior engineers with SIEM, threat intelligence and malware analysis platforms. Apply patches/updates, raise changes and follow agreed processes. Keep up to date with threats and recommend improvements. ...

Enhancing detections, rules and playbooks aligned to MITRE ATT&CK Producing clear, high-quality incident reports for both technical and senior stakeholders Contributing to threat intelligence and proactive defence initiatives Staying ahead of emerging TTPs, tooling and adversary behaviour To secure this Senior SOC analyst role, you will ...

OWASP principles. Expert in executing cloud security solutions, particularly for identity management, networking, and encryption. Possesses solid knowledge of system logging, monitoring, SIEM technologies, threat detection, and public key infrastructures (PKI). Understands cyber risk management, threat intelligence, and emerging governance practices. Experienced in driving security transformation ...

heartbeat of what we do. We’re the people on the front line, keeping our customers secure and connected. Whether it’s spotting a threat, fixing an issue, or finding a smarter way of doing things, we’re united by one goal: delivering an exceptional customer experience with speed … loop and building trust during incidents. Spot opportunities to make things faster, smarter, and better through AI and Automation. Always growing: Dive into threat intelligence, security tools, and triage techniques, sharpening your skills every day. Get it done: Work with engineers and senior analysts to protect customers ...

vulnerability assessments and penetration testing. Collaborate with technical teams to remediate risks. Maintain and evolve incident response plans and playbooks. Analyse security logs and threat intelligence feeds. Ensure compliance with GDPR, SOX, PCI, and internal policies. Lead security awareness initiatives and drills. Support day-to-day security operations ...

team As a member of the SOC Content Team, you will be responsible for contributing to the creation, deployment, and tuning of threat detection content and delivery of proactive threat hunting. You will work in close partnership with client Lead Analysts, threat intelligence teams, and other … functions to help ensure that detection strategies are tailored to each client’s threat profile and security objectives. This role offers a balance of technical hands-on work, collaboration, and knowledge sharing, with a strong emphasis on continual learning and process improvement. ...

Extended Detection & Response (XDR) solutions using Darktrace and Microsoft Defender - secure, scalable, and successful implementation of advanced detection technologies that enhance organisational threat visibility, improve incident response capability, and support a modern security operations function. - close collaboration with cybersecurity, infrastructure, networking, SOC analysts, service owners, and senior stakeholders … coverage across networks, data centres, and cloud estates. - Guide onboarding, configuration, and tuning of Microsoft Defender XDR (Endpoint, Identity, Email, Cloud Apps, Server, and Threat Intelligence modules). - Ensure correct enablement of telemetry, behavioural analytics, detection logic, and baselining across both platforms. - Coordinate testing, validation, and acceptance ...

Security Lead - Incident Response & Threat Management 4 Months Contract £400 to £500 a day Inside IR35 Remote working *Active Security Clearance is Needed* A well-established consultancy firm is urgently looking for an experienced Security Lead with a strong background in Incident Response and Threat Management to contribute … SecOps analyst support. Core Responsibilities Incident Management: Directing the full incident response lifecycle, including the triage, investigation, and total resolution of security events. Threat Intelligence: Utilising Recorded Future, OpenCTI, and Cribl to correlate alerts and transform raw intelligence into actionable defensive insights. Detection & Monitoring: Designing advanced alerting ...

latest security threats and trends Research and develop understanding of security as a discipline Broad Experience: SIEM Cloud Computing Security Incident Management Networking Threat Intelligence Information Security Phishing, Ransomware and other key threats IDAM (Identity and Access Mgmt) JML (Joiners, Movers and Leavers Processes) ITSM Policies and Procedures ...

measure Clarion's resilience to cyber threats and incidents and expect you to maintain awareness of emerging cyber threats, vulnerabilities, and trends through threat intelligence sources. You'll be familiar in using and deploying SIEM technologies, experienced with Azure Security Solutions, Defender for endpoint, Defender for Identity ...

measure Clarion's resilience to cyber threats and incidents and expect you to maintain awareness of emerging cyber threats, vulnerabilities, and trends through threat intelligence sources. You'll be familiar in using and deploying SIEM technologies, experienced with Azure Security Solutions, Defender for endpoint, Defender for Identity ...

provide consultation and expertise on security matters. Responsibilities: Security Operations & Incident Management: Managing ticket workload within the Security team. Gathering, analysing and acting upon threat intelligence. Responding to on-going security incidents. Responding to active alerts from security systems. Writing change management requests for security-related changes . Vulnerability … technologies and policies. Knowledge of identity and access management principles. Familiarity with security accreditations such as ISO27001, CyberEssentials and CyberEssentials+. Excellent incident response and threat intelligence skills. Strong communication skills to convey security matters to technical and non-technical audiences. Benefits: 25 Days Holiday Birthday ...

ideally in finance/banking. - Extensive knowledge of performing architecture reviews and driving cyber transformation programmes. - Strong knowledge of SIEM, SOAR, EDR/XDR, threat intelligence platforms, logging and monitoring frameworks. - Excellent communication and stakeholder management skills. Responsibilities - Perform a detailed analysis of the organisation's existing cyber ...

Defence environments Proficiency with SIEM tools such as Splunk, Elastik, or Defender Knowledge of cloud security and incident management processes Understanding of networking, threat intelligence, and key security threats like phishing and ransomware Experience with identity and access management (IDAM) and JML processes Familiarity with technical standards including ...

Design, implement and maintain data pipelines, including log ingestion, enrichment and schema standardisation (ECS/CIM). Develop and tune security detection rules, translating threat intel and TTPs (MITRE ATT&CK) into actionable, low-noise alerts. Manage the full content lifecycle: design test deploy monitor tune retire, with version ...

platforms Continuously tuning alerts to reduce noise and improve signal quality Monitoring and investigating security alerts to identify genuine threats Running proactive threat hunting activities to uncover advanced or hidden attacker behaviour Supporting incident response efforts with deep detection insight Expanding detection coverage using threat intelligence ...

services + maintaining a strong security culture. Investigating security incidents and breaches, performing vulnerability scans for releases, vulnerability risk assessments + remediation planning. Conducting threat modelling to identify risks and inform secure design decisions. Providing assurance over patching operations, release notes + change management activities. Assessing external threat intelligence feeds + providing recommendations to mitigate risks. Conducting security incident investigations, accurate reporting + taking follow-up actions. Creating ITHC (IT Health Check) Remediation Action Plans, tracking progress, ITHC change management + delivery Kanban board tickets. Supporting certificate management ceremonies + cryptographic control processes. Managing digital access ...

maintain security solutions for our Enterprise and Digital Channels. Examples of what we focus on include, but not limited to; DDoS, Vulnerability management and threat intelligence, certification, ensuring layer 6 & 7 defences are one step ahead of cyber criminals. You’ll also help develop and deliver cyber security ...

Assurance services globally, managing supplier assessments, reporting risks and working with stakeholders to ensure issues are understood and acted on. You’ll help develop threat-intelligence-led and automated approaches to TPRM, maintain and enhance our assessment platform, and support wider cyber risk management activities. You’ll also ...

Assurance services globally, managing supplier assessments, reporting risks and working with stakeholders to ensure issues are understood and acted on. You’ll help develop threat-intelligence-led and automated approaches to TPRM, maintain and enhance our assessment platform, and support wider cyber risk management activities. You’ll also ...

Assurance services globally, managing supplier assessments, reporting risks and working with stakeholders to ensure issues are understood and acted on. You’ll help develop threat-intelligence-led and automated approaches to TPRM, maintain and enhance our assessment platform, and support wider cyber risk management activities. You’ll also ...

ensuring IT Security advisories, directives and notifications are actioned and logged. This includes but is not limited to CareCERT, CiSP, vendor and other specialist threat intelligence feeds. Ensure all systems and applications where applicable are kept up to date and are encompassed in the patch management routine ...

cloud-native cybersecurity platform for large-scale data collection, correlation, and real-time alerting. Their systems process high volumes of data to deliver actionable intelligence for enterprise and government clients. They are looking for a Senior Software Engineer (PHP) to join a small, highly technical backend team working … Strong problem-solving skills and ownership mindset. Additional/Desirable experience: Experience with large-scale data ingestion or cross-referencing platforms. Knowledge of cybersecurity, threat intelligence, or data protection domains. Hands-on experience with monitoring, observability, and performance profiling. Experience integrating analytics, AI, or LLM-powered features. Working ...

mindset with CRM reporting experience Desirable Experience in high-growth SaaS environments Knowledge of security domains (e.g., SIEM, XDR, IAM, Cloud Security, Vulnerability Management, Threat Intelligence) Experience supporting enterprise or mid-market sales motions ABM or multi-threaded deal engagement experience What’s on Offer £60,000 base ...