190 Cybersecurity jobs in London
Lead Cybersecurity Threat Intelligence Analyst
Posted today
Job Viewed
Job Description
Responsibilities:
- Lead the threat intelligence program, including strategy, operations, and team management.
- Conduct in-depth research and analysis of cyber threats, vulnerabilities, and actor TTPs.
- Develop actionable threat intelligence reports and briefings for various stakeholders.
- Manage and optimize threat intelligence platforms and data sources.
- Collaborate with incident response and security operations teams to provide timely intelligence.
- Build and maintain relationships with external threat intelligence communities and vendors.
- Stay current with the latest cybersecurity trends, tools, and techniques.
- Bachelor's degree in Computer Science, Cybersecurity, or a related field; Master's degree preferred.
- Minimum of 7 years of experience in cybersecurity, with at least 3 years focused on threat intelligence.
- Proven leadership experience managing security analysts.
- Expertise in threat intelligence methodologies, tools, and frameworks (e.g., MITRE ATT&CK).
- Strong understanding of network security, malware analysis, and incident response.
- Excellent analytical, problem-solving, and communication skills.
- Ability to work independently and effectively in a remote, collaborative environment.
Senior Cybersecurity Analyst - Threat Intelligence
Posted 12 days ago
Job Viewed
Job Description
Key Responsibilities:
- Monitor security alerts and threat intelligence feeds to detect and analyze potential security incidents.
- Investigate complex security events, conduct forensic analysis, and determine the scope and impact of breaches.
- Develop and maintain threat intelligence reports, providing actionable insights to the security team and senior management.
- Proactively hunt for threats within the network and systems, identifying vulnerabilities and attack vectors.
- Contribute to the development and enhancement of security tools and technologies, including SIEM, IDS/IPS, and endpoint detection and response (EDR) solutions.
- Collaborate with incident response teams to contain and eradicate threats.
- Stay current with the latest cybersecurity threats, vulnerabilities, and mitigation techniques.
- Develop and deliver security awareness training to employees.
- Participate in security audits and compliance activities.
- Mentor junior security analysts and contribute to the growth of the security team.
- Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
- 5+ years of experience in cybersecurity, with a strong focus on threat intelligence and incident response.
- In-depth knowledge of common cyber attack methods, malware, and threat actor tactics, techniques, and procedures (TTPs).
- Proficiency in using SIEM platforms, vulnerability scanners, and other security monitoring tools.
- Experience with network forensics, endpoint analysis, and log analysis.
- Understanding of cloud security principles (AWS, Azure, GCP) is a plus.
- Relevant security certifications such as CISSP, GIAC, CEH, or OSCP are highly desirable.
- Excellent analytical, problem-solving, and communication skills.
- Ability to work effectively in both independent and team-oriented environments, including a hybrid work model.
Senior Cybersecurity Threat Intelligence Analyst (Remote)
Posted 19 days ago
Job Viewed
Job Description
Key Responsibilities:
- Proactively research, identify, and analyze emerging cyber threats, attack vectors, and adversary tactics, techniques, and procedures (TTPs).
- Develop and maintain high-quality threat intelligence reports, briefings, and alerts for technical and non-technical audiences.
- Leverage a variety of threat intelligence sources, tools, and platforms (e.g., OSINT, commercial feeds, government partnerships) to gather and correlate information.
- Conduct in-depth investigations into security incidents and suspicious activities to determine attribution and impact.
- Develop and implement threat hunting methodologies and exercises to uncover advanced persistent threats (APTs) and zero-day vulnerabilities.
- Provide strategic recommendations for enhancing the organization's defensive posture based on threat intelligence findings.
- Collaborate closely with security operations center (SOC) analysts, incident responders, security architects, and other security teams to integrate threat intelligence into security operations.
- Develop and maintain metrics to measure the effectiveness of threat intelligence programs.
- Mentor junior analysts and contribute to the professional development of the threat intelligence team.
- Stay current with the latest cybersecurity trends, research, and technologies.
- Participate in industry forums and information-sharing communities to enhance organizational intelligence.
- Contribute to the development and refinement of threat intelligence collection requirements and processes.
Qualifications and Skills:
- Proven experience (5+ years) in cybersecurity, with a strong focus on threat intelligence, incident response, or security operations.
- Deep understanding of threat actor methodologies, malware analysis, and network security principles.
- Proficiency with threat intelligence platforms (TIPs), SIEM systems, and relevant analytical tools.
- Experience with scripting languages (e.g., Python, PowerShell) for automation and data analysis.
- Excellent analytical, critical thinking, and problem-solving skills.
- Strong written and verbal communication skills, with the ability to present complex information clearly and concisely.
- Experience in conducting threat hunting operations.
- Relevant certifications such as CISSP, GIAC (GCTI, GCFA, GCIH), or equivalent are highly desirable.
- Ability to work independently and as part of a distributed, global team.
- Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent work experience.
Cybersecurity Engineer
Posted 1 day ago
Job Viewed
Job Description
Cybersecurity Engineer
role at
GenomicsnJoin to apply for the
Cybersecurity Engineer
role at
GenomicsnLocation :
Hybrid (London, Oxford, or Cambridge 2+ days onsite)
About Us
We’re a pioneering health tech company on a mission to revolutionise the way we all understand and support our health. Our mission is simple: to help people, and their doctors, make better decisions that lead to longer, fuller lives. We focus on the common diseases that affect billions, the ones that put the greatest strain on our healthcare systems.
Each person is unique, and by decoding the insights in our DNA, we’re building cutting-edge tools and platforms that enable truly personalised medicine. From prevention and early screening, to diagnosis, treatment, and even the development of new medicines, there is so much more to discover and build to support people at each step of their healthcare journey.
With our leading science and brilliant partners, we can make healthcare smarter, more precise, and more personal. Our vision is bold: a world where everyone benefits from genomics. If you’re inspired by the potential of cutting-edge science and technology and want to have a real impact on the future of healthcare, we’d love to hear from you.
Role Purpose:
Are you a hands-on security expert with a passion for designing and implementing cutting-edge cybersecurity solutions? We’re looking for a Cybersecurity Engineer to take the lead on securing our workplace and cloud infrastructure, product security, and customer-facing services. This is a technical leadership role where you’ll work closely with our Senior Lead for Information Security to maintain and strengthen our security posture across the business.
A Day in the Life:
Design and implement technical security architecture across IT systems, cloud platforms, and customer-facing servicesnLead advanced security operations including penetration testing, forensic analysis, threat hunting, and incident responsenDrive security automation initiatives and integrate DevSecOps best practices into our CI/CD pipelinesnProvide expert cybersecurity guidance to IT operations, engineers, and product teamsnResearch emerging threats, evaluate cutting-edge technologies, and contribute to business continuity and disaster recovery planningnPlay a key role in supporting compliance efforts, particularly Cyber Essentials Level 1
Who You Are:
You’ll thrive in this role if you bring:
Deep Technical Expertise: Strong knowledge of cloud and network security, endpoint protection, and application securitynStrategic Thinking: Ability to prioritise initiatives based on risk, technical feasibility, and business impactnCollaboration Skills: Proven ability to work cross-functionally with IT, engineering, product teams, and external vendorsnCommunication Ability: Clear communicator who can translate complex security risks into actionable business recommendationsnProject Delivery: A track record of leading complex, cross-team technical projects from planning through implementation
What You’ll Need:
Hands-on cybersecurity experience in enterprise environmentsnExperience with cloud security (e.g. AWS), identity management, endpoint protection, and SIEM toolsnSkilled in scripting/programming (Python, PowerShell, Bash) and familiar with DevSecOps practicesnKnowledge of security frameworks such as ISO 27001 and NISTnBachelor’s degree in Cybersecurity, Computer Science, or equivalent professional experiencenBonus if you have: Certifications like CISSP, OSCP, AWS Security, GCIH or equivalent; familiarity with GDPR/HIPAA compliance and remote work security
What Success Looks Like:
Improved security posture through reduction in critical vulnerabilities and enhanced control implementationnEffective delivery of automation and DevSecOps projectsnPositive impact across teams through mentoring, training, and security architecture leadership
What's in it for you:
Salaries: Our salaries are externally benchmarked annually to ensure you receive compensation that aligns with the market.nHoliday Allowance: 25 days of annual leave, an additional 3-day company shutdown at the end of the year, plus bank holidays. More time for you to unwind and enjoy.nProgression: We've got a straightforward and open progression framework that lets you easily see your strengths and areas where you can improve. With this knowledge, you can set personal goals to help you move up the career ladder.nInvest in Your Future: Take advantage of our training and development opportunities. From regular training courses, to access to a wide range of L&D materials. We're committed to helping you grow and succeed!nHybrid Working, Tailored to You: Choose between working in the office and from home. You can be based anywhere in the UK as long as you can get to any one of our offices regularly. As a guide, we expect people to come to the office twice a week.nWellbeing: Join a company that values you at work and outside work. We offer a range of benefits, including a pension that increases every year(up to a threshold), comprehensive private health insurance for you and your family with no excess, critical illness coverage, and life insurance. We also offer enhanced paid family leave.nDiversity and Inclusion: We offer our 'Bank Your Bank Holiday' program, allowing you to exchange public holidays for dates that hold personal or cultural significance to you. It's our way of ensuring that every member of our community feels valued and included.nGiving Made Easy: Make a difference with our payroll giving scheme. Donate to your favourite charities tax-free and help make the world a better place!nGreen Commute: Join our cycle-to-work scheme and enjoy a healthier, eco-friendly commute. We are also conveniently located by major transport hubs so public transport is a snip. It's good for you and the planet!nKeeping it social: There are a variety of company socials to enjoy throughout the year, from regular company town halls, team picnics, outdoor summer activities, sports events, and other events organised by our social committee.
Would you like to learn more? Great, we’d love to chat. Please reach out for more information and to see if this opportunity is right for you!
Genomics is dedicated to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race,
colour, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.
Genomics politely requests no contact from recruitment agencies. We do not accept speculative CVs from recruitment agencies nor accept the fees associated with them.
Seniority level
Seniority level Mid-Senior levelnEmployment type
Employment type Full-timenJob function
Job function Information TechnologynReferrals increase your chances of interviewing at Genomics by 2xnSign in to set job alerts for “Cyber Security Engineer” roles.
London, England, United Kingdom 6 days agonLondon, England, United Kingdom 1 week agonHounslow, England, United Kingdom 2 weeks agonChiswick, England, United Kingdom 6 days agonProduct Security Engineer (University Grad)
London, England, United Kingdom 4 days agonDartford, England, United Kingdom 5 days agonJunior Security Analyst (Maternity Cover)
London, England, United Kingdom 1 hour agonRegister your Interest in Cyber Security Opportunities
London, England, United Kingdom 1 month agonLondon, England, United Kingdom 2 days agonLondon, England, United Kingdom 4 weeks agonLondon, England, United Kingdom 2 weeks agonGreater London, England, United Kingdom 4 months agonCity Of London, England, United Kingdom £40.00-£7.00 2 weeks agonLondon, England, United Kingdom 1 month agonLondon, England, United Kingdom 1 week agonLondon, England, United Kingdom 1 day agonGerrards Cross, England, United Kingdom 1 month agonCyber Security Analyst, Vulnerability Management
London, England, United Kingdom 1 day agonLondon, England, United Kingdom 2 months agonLondon, England, United Kingdom 1 week agonSenior Information Security Engineer – Telco - £8 000- 5,000 + Bonus
London, England, United Kingdom 1 month agonLondon, England, United Kingdom 2 weeks agonInformation Security Specialist - Application Security/ Banking - Up to 5k + Bonus + Hybrid working
London, England, United Kingdom 1 week agonLondon, England, United Kingdom 1 week agonLondon, England, United Kingdom 4 days agonLondon, England, United Kingdom 1 week agonWe’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffrn
Cybersecurity Engineer
Posted 1 day ago
Job Viewed
Job Description
This is an opportunity to join Ascot Group - one of the world's preeminent specialty risk underwriting organizations.
Designed as a modern-era company operating through an ecosystem of interconnected global operating platforms, we're bound by a common mission and purpose: One Ascot. Our greatest strength is a talented team who flourish in a collaborative, inclusive, and entrepreneurial culture, steeped in underwriting excellence, integrity, and a passion to find a better way,
The Ascot Way .
The Ascot Way guides our people and our organization. Our underwriting platforms collaborate to find creative ways to deploy our capital in a true cross-product and cross-platform approach. These platforms work as one, deploying our capital creatively through our unique Fusion Model: Client Centric, Risk Centric, Technology Centric.
Built to be resilient, Ascot maximizes client financial security while delivering bespoke products and world class service - both pre- and post-claims. Ascot exists to solve for our clients' brightest tomorrow, through agility, collaboration, resilience, and discipline.
About the role:
This position is part of the Cybersecurity Engineering team, requiring hands-on experience with security tools and frameworks, and a strong understanding of server, network, and system security.
The Cybersecurity Engineer provides technical expertise on both large and small-scale projects to improve and enhance Ascot's cyber security posture, including the global infrastructure environment. The engineer makes operational changes working collaboratively with both IT and other security teams to improve security posture, while ensuring zero operational impact.
The Engineer is involved in product selection and collaborates with the Security Architecture function on selecting new security tools. The Engineer also tests, implements and supports these tools, leveraging knowledge and experience of the enterprise environment.
The successful candidate will play a key role in ensuring that security tools are fully documented, managed consistently and to high standards of operational excellence. The Cybersecurity Engineer also assists in troubleshooting and root cause analysis of complex security incidents.
Responsibilities:
Maintain and improve the security posture of the global environment through BAU and project changes as part of the formal change management process.nProvide technical expertise as a Cybersecurity Engineer, participate in the formulation of security engineering best practices, assess security configurations, and document security processes and procedures.nWork closely with Cyber Defence analysts to identify and address cyber-security issues across environments. Formulate systems and methodologies, respond to security-related events, and assist in remediation efforts.nSupport the full security project delivery life cycle as the Security Engineering subject matter expert and lead engineer, including identifying and implementing security requirements.nPlan, implement, manage, document, monitor, and upgrade security measures for the protection of information systems and networks.nInteract with vendors, researchers, and other third parties to escalate security issues, perform vendor selection, and implement Proof of Concepts.nBe actively involved in all stages of planning initiatives.nAutomate common tasks and processes.nImplement and contribute to best practice security and set standards.nDesign workflows and document processes.nDemonstrate the ability to troubleshoot and resolve complex issues.nRequirements:
Bachelor's degree in Cybersecurity or equivalent.nMinimum 7 years of experience in a cybersecurity engineering role.nPreference will be given to candidates who also have additional technical, security vendor or cyber-risk certifications such as CISSP, CompTIA Security+, GSEC, GCIH, CCSP, Microsoft SC-200, CISSP-ISSMP, CTIA, OSCP.nProven experience with security technologies such as Firewalls, SIEM platforms, Endpoint Detection & Response, DLP, WAF and Privilege Access Management.nFamiliarity with secure architecture principles, zero trust and cloud security principles and settings.nGood understanding of Security frameworks NIST CSF, ISO 27001, CIS controls, MITRE ATT&CK.nGood skills with manipulating large data sets and generating meaningful actionable deductions from reporting outputs.nPossesses a growth mindset and is able to learn quickly to resolve technical security issues.nDemonstrates an ability to review security technical assessment reports and recommend and implement remediation plans.nDemonstrates ability to manage project lifecycles including defining technical milestones and project reporting disciplines.nDemonstrates a detail-oriented approach and can take a structured approach to procedures and working instructions.nWorks and maintains a calm structured mindset even when under pressure.nPossesses an aptitude for understanding and analysing data when troubleshooting.nPossesses strong written communication, critical thinking, and analysis skills, including the ability to present potential risks and actual findings to a wide audience. Ability to communicate complex problems to a non-technical audience.nPossesses a working understanding of key security concepts and attack types such as phishing, malware, vulnerabilities, AI Security risks, Cyber Kill Chain, and attack stages.nPossesses an analytical mindset, capable of digesting a wide range of information and makes practical judgements based on available data and context.nSolid experience with security tools and technologies, including SIEM, intrusion detection systems, EDR, XDR, log analysis, malware analysis and DLP controls.nExperience of Windows OS from Server 2012 to Server 2022 and Windows 10 to 11 as well as Hyper V and/or VMware solutions.nKnowledge of typical enterprise technologies: On-premise and cloud base Windows and Linux operating systems (OS), Microsoft Azure, Managed Active Directory / Group Policy, InTune , M365, and Microsoft security technologies as well as the ability to make changes to improve security posture on these systems.nDemonstrated ability to troubleshoot AD, perform policy rollouts and reporting.nDemonstrates a working and genuine interest and talent in Cyber Security.nPossesses a curious and creative growth mindset.nA hybrid work schedule of two days in the office will be required.
#J-18808-Ljbffrn
Cybersecurity Engineer
Posted 1 day ago
Job Viewed
Job Description
The growth of Genomics is partnered with the personal growth of our people. We ensure that all employees have the tools, technologies, benefits, and support systems to develop and flourish. We offer a competitive package of benefits, training opportunities, and initiatives to ensure our employees thrive.nBe part of a globally diverse team
Our workforce operates across the UK and US from offices based in Oxford, UK, Cambridge, UK, and Cambridge, Massachusetts, US. Our diversity and multinationalism, with our people hailing from over 30 countries, helps to bring together the best minds to harness the power of genomics and transform healthcare and drug discovery.nPerks and benefits
Life insurancenCharities trustnPensionnGroup income protectionnCycle to work schemenCritical illness covernPrivate medical covernBank your Bank HolidaysnA collaborative and social culture
Social eventsnTraining and development opportunitiesnOrganised sports activitiesn“As a Software Engineer in the Core Technology team, I build data access layers, business logic, and user interfaces—applying data science, machine learning, and modern development practices. Genomics has been a great place to learn, surrounded by supportive colleagues, while developing products that could improve people’s health. It’s exciting to be part of a forward-thinking science organisation.”nZheyi ZhaonSoftware Engineer IInJoin our team
Cybersecurity Engineer
Location
HybridnDepartment
GenomicsnLocation :
Hybrid (London, Oxford, or Cambridge 2+ days onsite)nAbout UsnWe’re a pioneering health tech company on a mission to revolutionise the way we all understand and support our health. Our mission is simple: to help people, and their doctors, make better decisions that lead to longer, fuller lives. We focus on the common diseases that affect billions, the ones that put the greatest strain on our healthcare systems.nEach person is unique, and by decoding the insights in our DNA, we’re building cutting-edge tools and platforms that enable truly personalised medicine. From prevention and early screening, to diagnosis, treatment, and even the development of new medicines, there is so much more to discover and build to support people at each step of their healthcare journey.nWith our leading science and brilliant partners, we can make healthcare smarter, more precise, and more personal. Our vision is bold: a world where everyone benefits from genomics. If you’re inspired by the potential of cutting-edge science and technology and want to have a real impact on the future of healthcare, we’d love to hear from you.nRole Purpose:nAre you a hands-on security expert with a passion for designing and implementing cutting-edge cybersecurity solutions? We’re looking for a Cybersecurity Engineer to take the lead on securing our workplace and cloud infrastructure, product security, and customer-facing services. This is a technical leadership role where you’ll work closely with our Senior Lead for Information Security to maintain and strengthen our security posture across the business.nA Day in the Life:nDesign and implement technical security architecture across IT systems, cloud platforms, and customer-facing servicesnLead advanced security operations including penetration testing, forensic analysis, threat hunting, and incident responsenDrive security automation initiatives and integrate DevSecOps best practices into our CI/CD pipelinesnProvide expert cybersecurity guidance to IT operations, engineers, and product teamsnResearch emerging threats, evaluate cutting-edge technologies, and contribute to business continuity and disaster recovery planningnPlay a key role in supporting compliance efforts, particularly Cyber Essentials Level 1nWho You Are:nYou’ll thrive in this role if you bring:nDeep Technical Expertise: Strong knowledge of cloud and network security, endpoint protection, and application securitynStrategic Thinking: Ability to prioritise initiatives based on risk, technical feasibility, and business impactnCollaboration Skills: Proven ability to work cross-functionally with IT, engineering, product teams, and external vendorsnCommunication Ability: Clear communicator who can translate complex security risks into actionable business recommendationsnProject Delivery: A track record of leading complex, cross-team technical projects from planning through implementationnWhat You’ll Need:nHands-on cybersecurity experience in enterprise environmentsnExperience with cloud security (e.g. AWS), identity management, endpoint protection, and SIEM toolsnSkilled in scripting/programming (Python, PowerShell, Bash) and familiar with DevSecOps practicesnKnowledge of security frameworks such as ISO 27001 and NISTnBachelor’s degree in Cybersecurity, Computer Science, or equivalent professional experiencenBonus if you have: Certifications like CISSP, OSCP, AWS Security, GCIH or equivalent; familiarity with GDPR/HIPAA compliance and remote work securitynWhat Success Looks Like:nImproved security posture through reduction in critical vulnerabilities and enhanced control implementationnEffective delivery of automation and DevSecOps projectsnPositive impact across teams through mentoring, training, and security architecture leadershipnWhat's in it for you:nSalaries:
Our salaries are externally benchmarked annually to ensure you receive compensation that aligns with the market.nHoliday Allowance:
25 days of annual leave, an additional 3-day company shutdown at the end of the year, plus bank holidays. More time for you to unwind and enjoy.nProgression:
We've got a straightforward and open progression framework that lets you easily see your strengths and areas where you can improve. With this knowledge, you can set personal goals to help you move up the career ladder.nInvest in Your Future:
Take advantage of our training and development opportunities. From regular training courses, to access to a wide range of L&D materials. We're committed to helping you grow and succeed!nHybrid Working , Tailored to You: Choose between working in the office and from home. You can be based anywhere in the UK as long as you can get to any one of our offices regularly. As a guide, we expect people to come to the office twice a week.nWellbeing:
Join a company that values you at work and outside work. We offer a range of benefits, including a pension that increases every year(up to a threshold), comprehensive private health insurance for you and your family with no excess, critical illness coverage, and life insurance. We also offer enhanced paid family leave.nDiversity and Inclusion:
We offer our 'Bank Your Bank Holiday' program, allowing you to exchange public holidays for dates that hold personal or cultural significance to you. It's our way of ensuring that every member of our community feels valued and included.nGiving Made Easy:
Make a difference with our payroll giving scheme. Donate to your favourite charities tax-free and help make the world a better place!nGreen Commute:
Join our cycle-to-work scheme and enjoy a healthier, eco-friendly commute. We are also conveniently located by major transport hubs so public transport is a snip. It's good for you and the planet!nKeeping it social:
There are a variety of company socials to enjoy throughout the year, from regular company town halls, team picnics, outdoor summer activities, sports events, and other events organised by our social committee.nWould you like to learn more? Great, we’d love to chat. Please reach out for more information and to see if this opportunity is right for you!nGenomics is dedicated to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.nGenomics politely requests no contact from recruitment agencies
We do not accept speculative CVs from recruitment agencies nor accept the fees associated with them.nEven if you don't see an open position that matches your expertise, we're always building connections with brilliant minds in genomics. Send us your details and we'll keep you informed about opportunities that align with your skills and interests.nContact us at or connect with us on LinkedIn.
#J-18808-Ljbffrn
Threat Intelligence Expert
Posted 3 days ago
Job Viewed
Job Description
We are actively seeking an experienced Threat Intelligence Expert to join a leading cybersecurity function within a fast-paced enterprise environment. You’ll play a key role in identifying emerging threats , analysing adversary tactics , and translating intelligence into actionable security measures to protect the organization’s digital assets.
This is a hands-on technical and analytical role ideal for candidates with deep expertise in cyber threat intelligence (CTI) , threat hunting , open-source intelligence (OSINT) , and MITRE ATT&CK framework .
Job Responsibilities
Collect, analyse, and interpret threat data from internal and external intelligence sourcesProduce actionable intelligence reports on indicators of compromise (IOCs) , TTPs , and threat actor behaviourMonitor dark web and underground forums for threat actor activity relevant to the organizationCollaborate with SOC and incident response teams to provide context and enrichment during investigationsDevelop and maintain intelligence requirements aligned with business and security goalsMaintain threat intelligence platforms (TIPs) and use tools like MISP , Anomali , or Recorded Future Track and communicate emerging threats, vulnerabilities, and geopolitical risksMap adversary behaviour to the MITRE ATT&CK framework for detection improvementsRequirementsRequired Skills
Deep knowledge of cyber threat intelligence methodologies Familiarity with frameworks such as MITRE ATT&CK , STIX/TAXII , Diamond Model Proficiency in using threat intelligence platforms (TIPs) Strong analytical skills and ability to interpret large datasetsExcellent written and verbal communication skills for report writing and stakeholder updatesExperience with OSINT tools (e.g., Maltego, Shodan, SpiderFoot)9. Desired Skills
Certifications: GCTI , GCIA , GCFA , CISSP , or Security+ Programming/scripting knowledge (Python, PowerShell)Exposure to threat modelling techniques and risk assessmentsUnderstanding of APT groups , malware families , and nation-state threats Experience working in regulated environments (e.g., finance, healthcare) BenefitsJob Benefits
Competitive salary and annual bonusHybrid/remote working flexibilityCompany-sponsored certifications and training (SANS, GIAC, etc.)Private health and dental insurancePension scheme and generous annual leaveAccess to cutting-edge threat intel tools and platformsCareer development in one of the fastest-growing areas of cybersecurityBe The First To Know
About the latest Cybersecurity Jobs in London !
Cybersecurity Vulnerability Lead
Posted 12 days ago
Job Viewed
Job Description
Cybersecurity Vulnerability Lead - £700 per day - Inside IR35 - Remote - 6 Months initial contract.
Our client, the UKs leading producer of Zero Carbon energy, is looking for a Cybersecurity Vulnerability Lead to join them on a contract basis.
This is a senior role with responsibility for the organisation’s vulnerability management programme across multiple business units, technologies, and regulatory environments.
The organisation has made significant investment in Tenable as its core vulnerability management platform. You’ll be expected to lead its strategic and day-to-day usage, ensuring vulnerabilities are accurately identified, prioritised, and remediated while driving continuous improvement in how the platform is integrated and utilised.
Candidates with strong Tenable expertise, particularly those who have embedded it at scale in large or regulated environments such as financial services, will be especially attractive for this role.
Security Clearance -
Due to the sensitive nature of the work, candidates must be eligible for SC clearance.
-
Candidates with active or recently lapsed SC clearance will be prioritised.
-
Applicants without clearance must be willing and eligible to undergo vetting.
The Role -
As Cybersecurity Vulnerability Lead, you will:
- Own the end-to-end vulnerability management programme, with Tenable One at the core.
- Define and deliver the strategy, policies, SLAs, and operating rhythm.
- Lead on risk-based prioritisation using exploit intelligence, asset criticality, and business impact.
- Translate scan data into clear, actionable remediation plans for technical teams.
- Build dashboards and executive reports (ServiceNow, Power BI).
- Provide rapid risk assessments and emergency patch governance during incidents.
- Support audits and regulatory compliance (ISO27001, CE+, GDPR, NIS2, ONR).
- Drive automation, integrating tools and workflows to improve efficiency.
- Act as subject matter expert for Tenable and related tooling, ensuring platforms are fully leveraged.
- Mentor analysts and security champions, building maturity across the team.
About You -
You will bring experience leading vulnerability management at enterprise scale, ideally in financial services or similarly regulated industries.
You should also have hands-on knowledge of the following:
Core Vulnerability Management -
-
Tenable One (Exposure Management, Attack Surface Management, Attack Paths, Identity)
-
AWS Inspector
-
Agent-based and network-based scanning
-
Cloud integrations (AWS, Azure, GCP)
-
Dashboards and risk-based prioritisation
Patch & Endpoint Management -
-
Microsoft Intune / SCCM / WSUS
-
Jamf
Workflow & ITSM Integration -
-
ServiceNow (dashboards, SOAR)
-
Jira
Cloud & Application Security -
-
AWS Security Hub
-
Azure Defender for Cloud
-
Veracode
Threat Intelligence & Exploit Context -
-
Tenable Threat Intelligence
-
Exploit DB
-
Metasploit
SIEM, SOAR & Monitoring -
-
Microsoft Sentinel
-
SOAR platforms (ServiceNow SOAR)
Automation & Scripting -
-
Python, PowerShell, Bash, Ansible
Reporting & Metrics -
-
Power BI
-
ServiceNow dashboards
-
Excel (advanced analysis)
Frameworks & Standards -
-
NIST CSF, ISO 27001, OWASP, CE / CE+, GDPR, NIS2, ONR
Security Domains / Capabilities -
-
Identity and Access Management (IAM)
-
Network Security
-
Data Protection
-
Cloud Security Controls
-
Application Security
-
Security Monitoring
Processes & Practices -
-
Vulnerability Management Programmes
-
Incident Response and Threat Assessment
-
Emergency Patch Governance
-
Risk-based Prioritisation (CVEs, exploit intelligence, asset criticality, business impact)
-
Audit Support (internal assurance, penetration test follow-ups, external audits)
-
Exception and exemption management
-
Automation of manual tasks
-
Dashboarding for risk and SLA metrics
What's on Offer -
- A leadership role with significant influence across a major UK organisation.
- Opportunity to work with a forward-thinking Cyber Services function pushing boundaries in vulnerability management.
Cybersecurity Vulnerability Lead
Posted 10 days ago
Job Viewed
Job Description
Cybersecurity Vulnerability Lead - £700 per day - Inside IR35 - Remote - 6 Months initial contract.
Our client, the UKs leading producer of Zero Carbon energy, is looking for a Cybersecurity Vulnerability Lead to join them on a contract basis.
This is a senior role with responsibility for the organisation’s vulnerability management programme across multiple business units, technologies, and regulatory environments.
The organisation has made significant investment in Tenable as its core vulnerability management platform. You’ll be expected to lead its strategic and day-to-day usage, ensuring vulnerabilities are accurately identified, prioritised, and remediated while driving continuous improvement in how the platform is integrated and utilised.
Candidates with strong Tenable expertise, particularly those who have embedded it at scale in large or regulated environments such as financial services, will be especially attractive for this role.
Security Clearance -
Due to the sensitive nature of the work, candidates must be eligible for SC clearance.
-
Candidates with active or recently lapsed SC clearance will be prioritised.
-
Applicants without clearance must be willing and eligible to undergo vetting.
The Role -
As Cybersecurity Vulnerability Lead, you will:
- Own the end-to-end vulnerability management programme, with Tenable One at the core.
- Define and deliver the strategy, policies, SLAs, and operating rhythm.
- Lead on risk-based prioritisation using exploit intelligence, asset criticality, and business impact.
- Translate scan data into clear, actionable remediation plans for technical teams.
- Build dashboards and executive reports (ServiceNow, Power BI).
- Provide rapid risk assessments and emergency patch governance during incidents.
- Support audits and regulatory compliance (ISO27001, CE+, GDPR, NIS2, ONR).
- Drive automation, integrating tools and workflows to improve efficiency.
- Act as subject matter expert for Tenable and related tooling, ensuring platforms are fully leveraged.
- Mentor analysts and security champions, building maturity across the team.
About You -
You will bring experience leading vulnerability management at enterprise scale, ideally in financial services or similarly regulated industries.
You should also have hands-on knowledge of the following:
Core Vulnerability Management -
-
Tenable One (Exposure Management, Attack Surface Management, Attack Paths, Identity)
-
AWS Inspector
-
Agent-based and network-based scanning
-
Cloud integrations (AWS, Azure, GCP)
-
Dashboards and risk-based prioritisation
Patch & Endpoint Management -
-
Microsoft Intune / SCCM / WSUS
-
Jamf
Workflow & ITSM Integration -
-
ServiceNow (dashboards, SOAR)
-
Jira
Cloud & Application Security -
-
AWS Security Hub
-
Azure Defender for Cloud
-
Veracode
Threat Intelligence & Exploit Context -
-
Tenable Threat Intelligence
-
Exploit DB
-
Metasploit
SIEM, SOAR & Monitoring -
-
Microsoft Sentinel
-
SOAR platforms (ServiceNow SOAR)
Automation & Scripting -
-
Python, PowerShell, Bash, Ansible
Reporting & Metrics -
-
Power BI
-
ServiceNow dashboards
-
Excel (advanced analysis)
Frameworks & Standards -
-
NIST CSF, ISO 27001, OWASP, CE / CE+, GDPR, NIS2, ONR
Security Domains / Capabilities -
-
Identity and Access Management (IAM)
-
Network Security
-
Data Protection
-
Cloud Security Controls
-
Application Security
-
Security Monitoring
Processes & Practices -
-
Vulnerability Management Programmes
-
Incident Response and Threat Assessment
-
Emergency Patch Governance
-
Risk-based Prioritisation (CVEs, exploit intelligence, asset criticality, business impact)
-
Audit Support (internal assurance, penetration test follow-ups, external audits)
-
Exception and exemption management
-
Automation of manual tasks
-
Dashboarding for risk and SLA metrics
What's on Offer -
- A leadership role with significant influence across a major UK organisation.
- Opportunity to work with a forward-thinking Cyber Services function pushing boundaries in vulnerability management.
Senior Cybersecurity Architect
Posted 1 day ago
Job Viewed
Job Description
Responsibilities:
- Design and architect comprehensive cybersecurity solutions, including network security, endpoint security, cloud security, and data protection strategies.
- Develop and implement security policies, standards, and procedures aligned with industry best practices (e.g., ISO 27001, NIST CSF, GDPR).
- Evaluate and recommend security technologies, tools, and services to enhance the organization's defense capabilities.
- Conduct regular security risk assessments, vulnerability analyses, and penetration testing to identify and remediate potential weaknesses.
- Lead incident response efforts, investigating security breaches, and developing remediation plans to prevent recurrence.
- Collaborate with IT infrastructure and development teams to integrate security controls throughout the system development lifecycle (SDLC).
- Provide expert guidance and mentorship to junior security analysts and engineers.
- Stay abreast of the latest cybersecurity threats, trends, and technologies, and proactively adapt security strategies accordingly.
- Develop and deliver security awareness training to employees across the organization.
- Ensure compliance with all relevant legal, regulatory, and contractual security requirements.
- Master's degree or equivalent experience in Computer Science, Cybersecurity, or a related field.
- Minimum of 8 years of progressive experience in cybersecurity, with a strong emphasis on security architecture and design.
- Demonstrated expertise in designing and implementing security solutions across on-premises, cloud (AWS, Azure, GCP), and hybrid environments.
- In-depth knowledge of network protocols, security technologies (firewalls, IDS/IPS, SIEM, WAFs), and encryption standards.
- Experience with security frameworks and compliance standards such as ISO 27001, NIST, GDPR, and PCI DSS.
- Proven ability to conduct threat modeling, risk assessments, and develop effective mitigation strategies.
- Excellent analytical, problem-solving, and decision-making skills.
- Strong communication and presentation skills, with the ability to articulate complex technical concepts to both technical and non-technical audiences.
- Relevant security certifications such as CISSP, CISM, or GIAC are highly desirable.