14 of 14 Threat Detection Jobs in the South East

/Cyber Threat Detection Analyst - SANS/GIAC Cyber Threat Detection Analyst Location: Wokingham, Berkshire (On-site) Salary: Competitive (dependent on experience) + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC Role Overview As a Cyber Threat Detection Analyst … will play a hands-on role within an advanced cyber defence function, focused on proactive threat hunting, adversary behaviour analysis, and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data ...

logs, and security events to identify and respond to complex threats. Incident Response: Lead investigations, perform deep analysis, determine impact, and coordinate response activities. Threat Detection & Analysis: Develop and refine detection rules and use cases to improve threat visibility. Threat Hunting: Proactively hunt for advanced … platforms (e.g., Microsoft Sentinel, Sumo Logic) Hands-on experience with EDR/XDR tools (e.g., CrowdStrike, Microsoft Defender) Solid understanding of: Incident response lifecycle Threat detection methodologies Networking protocols (TCP/IP, DNS, HTTP/S) Experience analysing logs from multiple sources (endpoints, network, cloud) Ability to independently ...

critical in improving, developing and maintaining IT/OT vulnerability management programs and processes. This role performs and leads important tasks specialized at threat hunting, SIEM/SOAR, Network Security and other operational security tasks such as performance and availability monitoring, log monitoring, security incident detection and response … analysis. Designs and executes advanced vulnerability assessments using both automated and manual techniques; collaborates with stakeholders to prioritize remediation based on business risk and threat intelligence. Oversees continuous monitoring of threat intelligence feeds and security alerts, proactively identifying emerging risks and recommending strategic countermeasures. Interprets and synthesizes threat ...

Start: ASAP Location: Local Authority (LBH) What you’ll be doing: Leading CrowdStrike Falcon deployment, configuration, and optimisation Enhancing Splunk SIEM dashboards, alerts, and threat detection capabilities Acting as a senior escalation point for incident response Driving SOAR automation to improve response times Conducting proactive threat hunting … CrowdStrike certifications (CCFA, CCFR, CCSE) CISSP, GCIH, or similar If you’re a senior engineer who enjoys working at the intersection of SOC optimisation, threat detection, and automation , this role offers real impact from day one. ...

secure design and operation of critical technology platforms, collaborating closely with platform owners and engineering teams to embed security throughout the lifecycle.Incident Response and Threat ManagementProvide technical oversight for incident response, threat detection, and vulnerability management. Lead root cause analysis and remediation of complex security incidents.Stakeholder EngagementAct ...

Manager Hybrid We are partnering with a leading global financial services organisation to appoint a Incident Response Manager to join their high-profile Cyber Threat Centre (CTC). This is a critical leadership role at the forefront of defending against sophisticated cyber adversaries, including nation states and organised criminal … groups. As the central hub for Computer Network Operations, the CTC drives incident response, threat hunting, intelligence, and insider threat detection across the organisation. This role offers the opportunity to shape strategy, lead a globally distributed team, and work with cutting-edge technologies in a fast-paced ...

response An onsite role within a 24/7 secure operations environment A role suited to individuals who enjoy operational security, teamwork and threat monitoring This role is not: A remote or hybrid role A GRC, policy or assurance-focused position A purely advisory or strategic security role Suitable … following: Microsoft Certified: Security Operations Analyst Associate (SC-200) - mandatory Hands-on experience with SIEM technologies and security tooling Security analytics and proactive threat monitoring Incident investigation, triage and escalation Threat detection, response and trend reporting Rule tuning and continual service improvement Understanding of IT infrastructure ...

negotiation skills for C-level and technical audiences. Technical & Industry Knowledge: Understanding of cybersecurity frameworks and compliance (ISO 27001, NIST, GDPR). Familiarity with threat detection, MDR/EDR/XDR, SIEM, email security, and identity management solutions. Awareness of current threat landscape and MSSP service models ...

Defence sectors, you will be working across a Kubernetes platform, responsible for deploying, running and improving the tools that provide visibility, detection and control. This is hands on and sits right between platform engineering and security, with a big focus on getting security embedded properly into how things … built and run. You'll spend your time securing Kubernetes environments, running and tuning Splunk for logging and threat detection, and managing Nessus to track and drive vulnerability remediation. A big part of the role is integrating security into CI/CD pipelines and automating as much ...

integrated, and aligned with industry best practices. The successful candidate will work closely with security operations, infrastructure, and application teams to ensure tooling supports threat detection, incident response, and compliance requirements. Key Tools and Experience: McAfee EPO ForcePoint Zscaler Pulse VPN IPSEC/SSL Nagios Key Responsibilities: Administer ...

Duties: Implement, manage and actively monitor security controls across e-mail, endpoint, and cloud environments Monitor and respond to security incidents using advanced threat detection tools Assist with compliance activities and audits for ISO27001, Cyber Essentials & Cyber Essentials Plus certification Provide technical expertise on security best practices ...

Security Engineer with deep technical expertise in CrowdStrike and Splunk. The successful candidate will be responsible for transforming security telemetry into actionable intelligence, enhancing threat detection and response capabilities, and acting as a senior escalation point for complex security incidents. What's on offer: Salary ...

seamless integration of multi-factor authentication with biometric and mobile device capabilities to improve both security and user experience. Champion the adoption of identity threat detection and response solutions to proactively identify and mitigate identity-based attacks. Design secure authentication and authorization patterns (OpenID Connect, SAML, OAuth, Kerberos ...

leader in its field, and part of a globally successful UK-based business. They design, manufacture, sell and support a range of highly advanced threat detection and security products for global markets in commercial, aviation, defence and security sectors. The products range from small hand-held devices through ...