103 Cybersecurity jobs in London

Our client is seeking a Cybersecurity Threat Handler to join the Engineering and Technology Information Security team.

3 days in office in London

Salary is up to £80k base

Responsibilities

• Acting as a hands-on expert and builder for cloud-based technologies, ensuring security, performance, operability, and scale.
• Assisting as an internal specialist, facilitating the implementation of modern Front End technologies within technology and business teams.
• Building strong relationships with developers, technology teams, solution teams, and business application owners.
• Implementing and maintaining industry-standard protocols to strengthen our security measures.
• Developing and implementing innovative and differentiating cloud technologies.
• Collaborating and consulting with key technical experts, technology teams, and external industry groups to resolve complex technical issues and achieve our goals.

Required Qualifications

• Bachelor's degree or higher in MIS, CS, or a related field, or equivalent combination of education and work experience.
• 5+ years of experience in engineering and technology, preferably in Financial Services, Technology, or a related field.
• Experience analyzing cybersecurity incidents using industry standard frameworks such as Cyber Kill Chain and MITRE ATT&CK.
• Experience handling cybersecurity incidents at each stage of the incident lifecycle, including initial analysis, triage, containment, eradication, recovery, and postmortem.
• Strong knowledge of AWS Security, specifically in areas such as IAM, KMS, and Network Infrastructure.
• Expertise in analyzing security events from Microsoft Windows endpoints with a deep understanding of operating system security.
• Experience handling incidents originating from Microsoft cloud-based services like Azure and Microsoft 365.

Preferred Qualifications

• Familiarity with AWS threat detection and logging services such as GuardDuty and CloudTrail, as well as industry standard Cloud SIEMs like DataDog.
• Proficiency in analyzing security events within endpoint protection platforms like CrowdStrike Falcon.
• Ability to liaise effectively with SOC Analysts and Threat Hunters from our Managed Detection and Response vendor.
• Understanding of current cybersecurity threats, typical signs of attacks, and approaches to prevent and mitigate such incidents.
• 2+ years of experience with AWS or other hyperscale cloud provider implementation.

• Monitor, analyse, and interpret threat intelligence feeds, security alerts, and incident data from various sources.
• Develop and maintain a comprehensive understanding of current and emerging cyber threats, vulnerabilities, and attacker tactics, techniques, and procedures (TTPs).
• Produce timely and actionable threat intelligence reports, briefings, and alerts for different stakeholders, including technical teams and senior leadership.
• Proactively identify and assess potential threats and risks to the organisation's infrastructure, applications, and data.
• Develop and refine threat hunting methodologies and playbooks to proactively search for advanced threats within the environment.
• Collaborate with the Security Operations Center (SOC) and Incident Response (IR) teams to provide context and support during security incidents.
• Contribute to the development and implementation of security controls and strategies based on threat intelligence findings.
• Research and evaluate new threat intelligence tools and platforms to enhance our capabilities.
• Build relationships with external threat intelligence communities and information sharing organisations.
• Stay abreast of the latest cybersecurity trends, technologies, and best practices.

• Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent practical experience.
• Minimum of 5 years of experience in information security, with a strong focus on threat intelligence, security analysis, or incident response.
• Proven experience in analysing malware, network traffic, and log data.
• Familiarity with common threat intelligence frameworks (e.g., MITRE ATT&CK, Cyber Kill Chain).
• Proficiency with SIEM, SOAR, and EDR tools.
• Strong understanding of networking protocols, operating systems, and cloud security concepts.
• Excellent analytical, critical thinking, and problem-solving skills.
• Exceptional written and verbal communication skills, with the ability to articulate technical concepts to diverse audiences.
• Ability to work independently in a remote setting, manage priorities, and meet deadlines.
• Relevant certifications (e.g., CISSP, GIAC, OSCP) are a plus.

Role: Senior Threat Intelligence Consultant

Location: Manchester/London/Cheltenham (Hybrid)

Thanks for checking out our job opening; we are excited that YOU are interested in learning more about NCC Group.

We are on a mission to make society a safer and more secure place. Our people are the ones who make that possible; a global community of talented individuals working together towards a safer future.

We aim to create an environment where everyone can reach their full potential. We work together, we are brilliantly creative, we embrace difference and we want you to join in our mission, to make the world safer and more secure.

Take a look at our website here to learn more about why we’re one of the leading global Cyber Security and Risk Mitigation business…

The Opportunity:

You will be acting as senior member of the Operational Threat Intelligence team, reporting to the Principal Threat Intelligence Consultant.

This role involves advanced analysis of cyber threats, the development of actionable intelligence, and collaboration with various teams. You will also be responsible for the improvement of our Threat Intelligence capabilities and will be responsible for the support development of the less senior members of the team.

As a senior member of the Threat Intelligence Team you are expected to set an example in both output and work ethic. Your support to the wider organisation will be critical in the development of NCC Group’s Threat Intelligence capabilities and the broader service we offer.

Key Accountabilities/Responsibilities:

Threat Intelligence Analysis : Conduct in-depth analysis of cyber threats, including malware, vulnerabilities, and TTPs (Tactics, Techniques, and Procedures). Monitor and analyse emerging threats, industry trends, and geopolitical events to provide timely and relevant intelligence.

Intelligence Reporting : Generate comprehensive and actionable intelligence reports for both technical and non-technical stakeholders. Communicate complex technical information in a clear and concise manner to enable informed decision-making. Your role will also include overseeing the production and quality assurance of all threat intelligence products produced by the team.

Collaboration and Information Sharing : Lead and enable collaboration with internal teams, external partners, and industry forums to share threat intelligence. Participate in information-sharing communities to stay abreast of the latest threat landscape.

Client Engagement : Act as a key point of contact between our clients and our team, ensuring the highest quality of deliverables and services. Act as an initial escalation point between clients and our team.

Tool Management : Manage and optimise threat intelligence platforms and tools to enhance analysis efficiency.

People Management : Act as a mentor to members of the team, providing guidance and mentorship to junior members of the team.

Qualifications and Skills:

• Bachelor’s Degree (or equivalent) in Computer Science, Cyber Security, or other suitable subject that is applicable to the role.
• Have an analytical mindset with a keen attention to detail.
• Ability to work effectively under pressure and prioritize tasks in a dynamic environment.
• Continuous learning and adaptability to stay ahead of evolving cyber threats.
• Strong interpersonal skills and the ability to work collaboratively in a cross-functional team.
• Have excellent communications skills, both in terms of written and verbally delivered work.
• Strong understanding of cyber threat landscapes, attack vectors, and mitigation strategies.
• Previous experience as a threat intelligence analyst or similar position.
• Knowledge of networking protocols, including TCP/IP, Domain Name System (DNS), subdomains
• Have experience with Threat Intelligence Platforms e.g. MISP

Behaviours:

• Focusing on Clients and Customers: Prioritise customer needs and build strong relationships.
• Working as One NCC: Collaborate effectively with colleagues across the organisation.
• Always Learning: Embrace continuous learning and development.
• Being Inclusive and Respectful: Foster a positive and inclusive work environment.
• Delivering Brilliantly: Strive for excellence in all that you do.

What we offer in return:

• Flexible Working: Balance your work and personal life with our flexible working options.
• Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave.

In this role, you will be responsible for conducting and leading operational delivery of open-source intelligence investigations.

As an Analyst, will also include working with the Online Threat Intelligence (OTI) EMEA team in scoping, delivering and peer reviewing intelligence product for our clients. You will also be working with the leadership team to ensure effective team coordination, both within region and with other OTI regional hubs across our 24/7 intelligence function.

Role Tasks and Responsibilities

Intelligence Assessments

• Lead on complex intelligence investigations, utilizing a broad range of sources to provide analytical conclusions and advice to our clients.
• Take a lead role in organizing, conducting and reviewing threat monitoring deliverables and threat and exposure levels.
• Lead and deliver person of interest assessments (POI), utilizing open sources to measure the intent and capability of online threat actors to cause harm to our clients.
• Provide tactical level insights to our clients related to their threat environment and broader industry trends.
• Produce high-quality written analysis in a time-sensitive manner.
• Work collaboratively across regional delivery teams, ensuring standardization of intelligence output for global engagements.
• Innovate and provide engaging solutions to the objectives of different stakeholders. Work with the OTI EMEA leadership to identifying opportunities for methodology development.
  

Consulting responsibilities

• Hold scoping conversations with existing and prospective clients as a subject matter expert. Provide insight into how OTI deliverables can bring value to our clients.
• Provide client ready proposals that address the needs of our clients across the range of OTI deliverables.
• Support the regional threat intelligence leads in the coordination and of the EMEA team.
• Brief external stakeholders on intelligence product, including key findings, analysis and recommended mitigation actions for our clients.
• Innovate and provide engaging solutions to the challenges of our clients, proactively anticipating their security needs.
• Develop an understanding of the broader complimentary offerings of other teams within Digital Risks.
  

Operations and Business Management

• Support the regional threat intelligence leads in the coordination of the EMEA team.
• Provide a key role in ensuring adherence to KPI metrics, using those insights to inform operational and commercial decisions.
• Serve as a key point of contact for training and peer reviewing junior team members in the production of high quality timely deliverables.
• Adhere to all SOPs and operational requirements of the team. Ensure that all policies are maintained and followed throughout.

Requirements

• Demonstratable experience in a threat intelligence role, with primary responsibility for running complex intelligence investigations.
• Deep investigative experience in identifying and analysing information from open sources, social media and deep and dark web avenues.
• Track record of facilitating client relationships with intelligence and security subject matter experts.
• Experience of conducting business development opportunities including scoping conversations, briefings and development of proposals.
• Demonstrable experience of coordinating intelligence product, including collection planning and reviewing intelligence output from peers.
• Developed understanding of the interaction between threatening online behaviour and physical security incidents.
• A strong understanding and practical knowledge of the intelligence cycle, source evaluation and techniques used to ensure objectivity, actionability and relevance of intelligence product.
• Graduate degree in Security Studies, Intelligence, Threat Intelligence or related fields.

Benefits

• Control Risks offers a competitively positioned compensation and benefits package that is transparent and summarised in the full job offer.
• We operate a discretionary global bonus scheme that incentivises, and rewards individuals based on company and individual performance.
• Control Risks supports hybrid working arrangements, wherever possible, that emphasise the value of in-person time together - in the office and with our clients - while continuing to support flexible and remote working.
• As an equal opportunities employer, we encourage suitably qualified applicants from a wide range of backgrounds to apply and join us and are fully committed to equal treatment, free from discrimination, of all candidates throughout our recruitment process.

If you require any reasonable adjustments to be made in order to participate fully in the interview process, please let us know and we will be happy to accommodate your needs.

Cybersecurity Engineer

Location: 3 days per wk from home / 2 days in London

Salary: Circa 65K – 75K + Benefits

Cybersecurity Engineer  required by fast-growing, revolutionary tech company!

This is a challenging, hands-on role leading the security of their applications, APIs, infrastructure, and data. You’ll identify vulnerabilities, define best practices, and implement controls without slowing delivery

Essential:

• At least 3yrs in cybersecurity, application security, or cloud security roles
li>Strong knowledge of web/mobile security (OWASP Top 10, API security), cloud security (AWS), and CI/CD pipeline hardening
• Familiar with SAST/DAST tools, vulnerability scanners, penetration testing frameworks, and monitoring platforms (e.g. Splunk, ELK, Datadog)
• Understanding of GDPR and data privacy best practices

Tremendous opportunity offering plenty of scope for career progression in a friendly, innovative environment where you'll be able to bring ideas and keep up to date with emerging technologies! 

Apply now for FULL details!

Cybersecurity Engineer

Location: 3 days per wk from home / 2 days in London

Salary: Circa 65K – 75K + Benefits

Cybersecurity Engineer  required by fast-growing, revolutionary tech company!

This is a challenging, hands-on role leading the security of their applications, APIs, infrastructure, and data. You’ll identify vulnerabilities, define best practices, and implement controls without slowing delivery

Essential:

• At least 3yrs in cybersecurity, application security, or cloud security roles
li>Strong knowledge of web/mobile security (OWASP Top 10, API security), cloud security (AWS), and CI/CD pipeline hardening
• Familiar with SAST/DAST tools, vulnerability scanners, penetration testing frameworks, and monitoring platforms (e.g. Splunk, ELK, Datadog)
• Understanding of GDPR and data privacy best practices

Tremendous opportunity offering plenty of scope for career progression in a friendly, innovative environment where you'll be able to bring ideas and keep up to date with emerging technologies! 

Apply now for FULL details!

Cybersecurity Consultant – Manager

Location – Hybrid – London 1 day / wk (ish)

Salary £65 – £80k + all the usual benefit’s

Looking for more than just another consulting gig?

If you're a seasoned cybersecurity consultant who’s hands-on, client-focused, and ready to lead — this is your chance to play a pivotal role in shaping this fast-growing cyber consultancy.

We’re carving out a unique space in the UK cyber market — a truly independent, high-impact partner to mid-market and enterprise organisations that want security done right. We offer a full-spectrum service, built on expert advice, world-class delivery, and a no-nonsense approach.

What You’ll Be Doing

This is a hands-on leadership role at the core of our consulting capability — combining delivery, strategy, mentorship, and business development.

You’ll:

• Lead end-to-end delivery of complex consulting projects for major UK clients — from security gap assessments to crisis simulations, risk frameworks, and technical reviews.
• Support the development and delivery of both technical (e.g. M365/cloud config reviews, vulnerability assessments) and GRC engagements.
• Help shape and evolve our cyber propositions , working closely with delivery leads across managed services, threat intel, and MDR.
• Scope and define client engagements with a clear focus on measurable outcomes.
• Mentor and support junior and mid-level consultants — building team capability and consulting excellence.
• Collaborate with the Head of Professional Services to define growth strategy, win new work, and support sales conversations.

What You Bring

We’re looking for a well-rounded consultant with deep domain knowledge, consulting experience, and the leadership skills to inspire others.

You should have:

• A track record of consulting and delivering a wide range of cyber engagements — both GRC and technical.
• Strong understanding of frameworks like NIST, ISO 27001, CIS, and a pragmatic view on applying them.
• Familiarity with technical tooling for assessments, vulnerability analysis, and cloud reviews (you don’t need to be an engineer — but you know your way around the tech).
• Experience working directly with clients to define risk and develop meaningful security strategies and controls.
• Comfort leading both delivery and pre-sales activity — with strong commercial awareness.
• Excellent written and verbal communication — able to distil complex security concepts for senior non-technical audiences.
• Ability to lead teams, build trust, and manage multiple engagements with professionalism and integrity.

Apply now and let’s have a conversation about your next big move - apply on-line or reach out to Ryan Kelly at

Data Privacy & Cybersecurity Associate

US Law Firm, London Office

Competitive Salary + Benefits

2-4 PQE

My client, a top US law firm, is actively recruiting for an Associate to join them on a permanent basis in their London office – working as their new ‘Data Privacy & Cybersecurity Associate’.

This team is a globally recognised practice, advising clients of all sizes – from start-ups to industry leaders. They advise on a full spectrum of issues, including; collection, use, protection and security of data.

They have a strong presence in London and the successful Associate will also liaise closely with the US and Brussels office.

As the successful Associate, you’ll be involved in:

• Representing clients in high-stake investigations (brought by regulators in the UK, European Union, the US and around the world)
• Advising clients on GDPR and UK GDPR Compliance projects
• Data breaches and cybersecurity incidents
• Contract negotiations

+ much more.

To be considered for this Data Privacy & Cybersecurity Associate opportunity, you’ll need to have/be the following:

• Be an England & Wales Qualified Associate (2-4 PQE)
• Have a strong focus and experience in UK data protection and cybersecurity
• Ideally, have experience with technology industries, government regulation and technology and data protection regulators’ policy (ideal, not essential)

For more information on this opportunity and to review a full job description, get in touch as soon as possible.