2,523 Threat Detection jobs in the United Kingdom
Information Security Analyst, Threat Detection
Posted 1 day ago
Job Viewed
Job Description
Key Responsibilities:
- Monitor security alerts and events using SIEM and other security tools.
- Investigate and analyse potential security incidents, determining scope and impact.
- Perform threat hunting activities to proactively identify vulnerabilities and malicious activity.
- Develop and refine detection rules and security signatures.
- Respond to security incidents, coordinating containment and eradication efforts.
- Assist in the development and maintenance of incident response playbooks.
- Conduct vulnerability assessments and penetration testing.
- Stay up-to-date with the latest threat intelligence and attack vectors.
- Collaborate with IT teams to implement security controls and remediate vulnerabilities.
- Contribute to security awareness training for staff.
- Prepare detailed reports on security incidents and system performance.
- Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent experience.
- Proven experience in an Information Security Analyst or SOC Analyst role.
- Proficiency with SIEM platforms (e.g., Splunk, QRadar, ELK Stack).
- Knowledge of network security protocols, firewalls, IDS/IPS, and endpoint security solutions.
- Familiarity with common attack techniques and mitigation strategies.
- Certifications such as CompTIA Security+, CEH, or GIAC are desirable.
- Excellent analytical and problem-solving skills.
- Strong communication skills, both written and verbal.
- Ability to work effectively in a hybrid team environment.
Cybersecurity Analyst - Threat Detection
Posted 22 days ago
Job Viewed
Job Description
Responsibilities:
- Monitor security alerts and events using SIEM and other security tools.
- Analyze security incidents to determine the scope and impact of threats.
- Conduct in-depth investigations into suspected security breaches.
- Develop and refine threat detection rules and signatures.
- Respond to security incidents according to established protocols.
- Generate regular reports on security threats and vulnerabilities.
- Collaborate with IT and security teams to implement mitigation strategies.
- Stay up-to-date with the latest cybersecurity threats and trends.
- Contribute to the development of security policies and procedures.
- Participate in incident response drills and exercises.
- Bachelor's degree in Cybersecurity, Computer Science, or a related field.
- Proven experience in cybersecurity analysis, particularly in threat detection and incident response.
- In-depth knowledge of SIEM platforms, IDS/IPS, firewalls, and endpoint security solutions.
- Strong analytical and problem-solving skills.
- Familiarity with various attack vectors and threat actor TTPs.
- Experience with scripting languages (e.g., Python, PowerShell) is a plus.
- Relevant cybersecurity certifications (e.g., CISSP, CEH, GIAC) are highly valued.
- Excellent communication and teamwork abilities.
Senior Information Security Analyst - Threat Detection
Posted 1 day ago
Job Viewed
Job Description
As a Senior Information Security Analyst, your primary responsibilities will include monitoring security alerts, analyzing potential threats, and conducting in-depth investigations to identify and mitigate security breaches. You will develop and refine security detection rules, implement security monitoring tools (e.g., SIEM, EDR), and contribute to the continuous improvement of our security incident response capabilities. Your expertise in malware analysis, network forensics, and threat intelligence will be critical. You will also play a key role in vulnerability assessments, penetration testing coordination, and the remediation of identified security weaknesses. Collaboration with IT, development, and operational teams to embed security best practices throughout the organization will be essential. The ability to communicate complex security findings clearly to both technical and non-technical audiences is paramount. A strong understanding of compliance frameworks and data privacy regulations is also required. We are looking for a candidate who is passionate about cybersecurity, possesses exceptional problem-solving skills, and thrives in a challenging, fast-paced environment.
Key Responsibilities include:
- Monitoring and analyzing security alerts from various sources, including SIEM, IDS/IPS, and EDR solutions.
- Conducting in-depth investigations into security incidents to determine scope, impact, and root cause.
- Developing, tuning, and implementing threat detection rules and use cases.
- Performing threat hunting activities to proactively identify and mitigate advanced threats.
- Analyzing malware, network traffic, and system logs to understand attack vectors.
- Coordinating and executing incident response activities according to established playbooks.
- Managing and maintaining security monitoring tools and technologies.
- Conducting vulnerability assessments and assisting with penetration testing activities.
- Working with relevant teams to remediate identified vulnerabilities and security gaps.
- Staying up-to-date with the latest cyber threat intelligence and attack methodologies.
- Contributing to the development and refinement of security policies and procedures.
- Assisting with security awareness training and education for employees.
- Ensuring compliance with relevant industry standards and regulatory requirements (e.g., GDPR, ISO 27001).
- Documenting security incidents, investigations, and remediation actions.
- Providing expert advice on information security best practices to internal stakeholders.
Senior Information Security Analyst (Threat Detection)
Posted 3 days ago
Job Viewed
Job Description
Key Responsibilities:
- Monitor security alerts and events from various sources, including SIEM, IDS/IPS, firewalls, and endpoint detection and response (EDR) solutions.
- Investigate security incidents to determine scope, impact, and root cause.
- Develop and tune detection rules and signatures to identify advanced persistent threats (APTs) and other malicious activities.
- Conduct forensic analysis of compromised systems and networks.
- Respond to and manage security incidents, coordinating with internal teams and external stakeholders.
- Develop and maintain incident response playbooks and procedures.
- Perform threat hunting activities to proactively identify indicators of compromise (IOCs) and potential vulnerabilities.
- Analyse malware samples and understand attacker TTPs (Tactics, Techniques, and Procedures).
- Stay current with the latest cybersecurity threats, vulnerabilities, and defence mechanisms.
- Collaborate with IT and engineering teams to implement security enhancements and remediation measures.
- Provide security awareness training and guidance to staff.
- Contribute to the continuous improvement of the Security Operations Centre (SOC) capabilities.
- Prepare detailed incident reports and post-incident reviews.
Qualifications:
- Bachelor's degree in Computer Science, Cybersecurity, or a related field.
- Minimum of 5 years of experience in information security, with a focus on threat detection and incident response.
- In-depth knowledge of security technologies, including SIEM, IDS/IPS, firewalls, and EDR.
- Experience with security incident response, digital forensics, and malware analysis.
- Proficiency in scripting languages (e.g., Python, PowerShell) for automation and analysis.
- Strong understanding of networking, operating systems, and common attack vectors.
- Excellent analytical and problem-solving skills.
- Strong written and verbal communication skills.
- Relevant security certifications (CISSP, GCIH, GCIA) are highly advantageous.
Senior Information Security Analyst - Threat Detection
Posted 3 days ago
Job Viewed
Job Description
This is an on-site position requiring your presence in our Leeds, West Yorkshire, UK office. You will work within a fast-paced environment, collaborating closely with other security professionals, IT teams, and business units to maintain a robust defense against evolving cyber threats. Key responsibilities include managing and tuning Security Information and Event Management (SIEM) systems, performing forensic analysis, developing threat hunting methodologies, and contributing to the improvement of security policies and procedures. The ability to analyze complex data, identify subtle indicators of compromise, and communicate findings clearly and concisely to both technical and non-technical audiences is paramount. You will play a vital role in safeguarding the organization's digital assets and reputation.
Key Responsibilities:
- Monitor security alerts from various sources including SIEM, IDS/IPS, endpoint protection, and threat intelligence feeds.
- Investigate and analyze security incidents, performing root cause analysis and developing remediation plans.
- Conduct proactive threat hunting to identify advanced persistent threats (APTs) and other malicious activities.
- Develop and maintain detection rules and signatures within SIEM and other security tools.
- Perform forensic analysis of compromised systems and artifacts.
- Contribute to the incident response process, including containment, eradication, and recovery.
- Stay updated on the latest threat vectors, vulnerabilities, and attack techniques.
- Develop and recommend security enhancements and improvements.
- Collaborate with IT operations and development teams to implement security controls.
- Prepare detailed incident reports and security advisories.
- Participate in security awareness training and initiatives.
- Mentor junior security analysts and share knowledge within the team.
A Bachelor's degree in Computer Science, Cybersecurity, or a related field is preferred, along with a minimum of 5 years of experience in information security, with a strong focus on security operations, threat detection, and incident response. Professional certifications such as CISSP, GIAC (e.g., GCIH, GCFA), or equivalent are highly desirable. Proven experience with SIEM platforms (e.g., Splunk, QRadar), EDR solutions, and network security monitoring tools is essential. Strong analytical skills, excellent problem-solving abilities, and the capacity to work under pressure are critical. Knowledge of scripting languages (e.g., Python, PowerShell) for automation is a plus. This role requires your presence at our Leeds, West Yorkshire, UK office.
Senior Information Security Analyst - Threat Detection
Posted 4 days ago
Job Viewed
Job Description
As a Senior Information Security Analyst, you will be at the forefront of protecting our digital assets from evolving cyber threats. You will be responsible for monitoring security systems, analysing security alerts, investigating potential incidents, and developing proactive measures to enhance our security posture. This role requires a deep understanding of cybersecurity principles, threat intelligence, and incident response methodologies.
Key Responsibilities:
- Monitor and analyse security alerts from various security tools (SIEM, IDS/IPS, EDR).
- Investigate security incidents, conduct forensic analysis, and determine root causes.
- Develop and refine threat detection rules and signatures.
- Stay current with the latest threat intelligence, vulnerabilities, and attack vectors.
- Contribute to the development and implementation of security policies and procedures.
- Participate in incident response planning and execution.
- Conduct security awareness training and provide guidance to end-users.
- Perform vulnerability assessments and penetration testing.
- Collaborate with IT teams to implement security controls and remediate identified risks.
- Prepare detailed reports on security incidents, findings, and recommendations.
The ideal candidate will possess extensive experience in information security, with a strong specialization in threat detection, analysis, and incident response. Proficiency with SIEM platforms, endpoint detection and response (EDR) tools, and network security concepts is essential. You should have excellent analytical, problem-solving, and communication skills, with the ability to work independently and effectively in a remote environment. Relevant security certifications (e.g., CISSP, CEH) are highly desirable.
Qualifications:
- Bachelor's degree in Computer Science, Cybersecurity, or a related field.
- 5+ years of experience in information security, with a focus on threat detection and incident response.
- Proven experience with SIEM, EDR, IDS/IPS, and other security technologies.
- Strong understanding of network protocols, operating systems, and malware analysis.
- Experience in forensic investigation and digital forensics tools.
- Excellent analytical and problem-solving skills.
- Strong written and verbal communication skills.
- Ability to work autonomously and manage workload effectively in a remote setting.
- Relevant security certifications (e.g., CISSP, CompTIA Security+, CEH) are a plus.
This is an exceptional opportunity to contribute to critical security operations in a remote capacity. Join a team dedicated to safeguarding sensitive information.
Senior Information Security Analyst - Threat Detection
Posted 4 days ago
Job Viewed
Job Description
Key Responsibilities:
- Monitor security alerts from various sources, including SIEM, IDS/IPS, endpoint detection, and network traffic analysis.
- Investigate and analyze security incidents, identifying root causes and developing effective remediation strategies.
- Develop and refine threat detection rules and signatures to proactively identify malicious activity.
- Conduct in-depth forensic analysis of security breaches and compromise indicators.
- Respond to security incidents, coordinating containment, eradication, and recovery efforts.
- Perform vulnerability assessments and penetration testing to identify and address security weaknesses.
- Stay abreast of the latest threat intelligence, attack vectors, and cybersecurity trends.
- Develop and maintain incident response playbooks and procedures.
- Collaborate with IT and business units to implement security best practices and controls.
- Contribute to security awareness training and education initiatives for employees.
- Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
- Minimum of 5 years of experience in information security, with a strong focus on threat detection and incident response.
- Hands-on experience with SIEM platforms (e.g., Splunk, QRadar, ArcSight), EDR solutions, and network security tools.
- Proficiency in log analysis, malware analysis, and network forensics.
- Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001) and best practices.
- Excellent analytical and problem-solving skills, with the ability to think critically under pressure.
- Strong communication and documentation skills, with the ability to explain complex technical issues clearly.
- Relevant security certifications such as CISSP, GIAC (GCFA, GCIH), or CEH are highly desirable.
- Experience with scripting languages (e.g., Python, PowerShell) for automation is a plus.
- Ability to work effectively in a hybrid work environment, balancing on-site collaboration with remote analysis.
Be The First To Know
About the latest Threat detection Jobs in United Kingdom !
Senior Information Security Analyst (Threat Detection)
Posted 4 days ago
Job Viewed
Job Description
Key Responsibilities:
- Develop, implement, and maintain advanced threat detection rules, signatures, and analytics across various security platforms (SIEM, IDS/IPS, EDR).
- Proactively hunt for advanced persistent threats (APTs) and other sophisticated cyber adversary activities within the organisation's network and systems.
- Analyse security alerts and incidents to determine scope, impact, and root cause.
- Lead and coordinate incident response activities, working closely with IT and other stakeholders to contain, eradicate, and recover from security breaches.
- Perform digital forensic investigations to gather evidence and support incident response and legal proceedings.
- Stay abreast of the latest threat intelligence, attack vectors, and adversary TTPs (Tactics, Techniques, and Procedures).
- Develop and maintain documentation related to threat detection methodologies, incident response playbooks, and security policies.
- Collaborate with security engineering teams to implement security controls and improvements based on threat analysis findings.
- Provide expert guidance and mentorship to junior security analysts.
- Participate in security awareness training and education initiatives.
- Contribute to the continuous improvement of the Security Operations Center (SOC) capabilities.
Qualifications:
- Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field. Relevant certifications such as CISSP, GIAC, GSEC, GCIA, GCIH are highly desirable.
- Minimum of 6 years of experience in information security, with a focus on threat detection, incident response, and forensic analysis.
- Hands-on experience with SIEM platforms (e.g., Splunk, QRadar, Azure Sentinel), IDS/IPS, EDR solutions, and other security monitoring tools.
- Strong understanding of networking protocols, operating systems (Windows, Linux), and common attack vectors.
- Proficiency in threat hunting methodologies and tools.
- Experience with scripting languages (e.g., Python, PowerShell) for automation is a plus.
- Excellent analytical, problem-solving, and critical-thinking skills.
- Strong written and verbal communication skills, with the ability to articulate technical concepts to both technical and non-technical audiences.
- Ability to work independently and as part of a global, remote team.
Senior Information Security Analyst - Threat Detection
Posted 4 days ago
Job Viewed
Job Description
Key Responsibilities:
- Design, implement, and manage sophisticated threat detection systems, including SIEM (Security Information and Event Management) platforms, IDS/IPS (Intrusion Detection/Prevention Systems), and EDR (Endpoint Detection and Response) solutions.
- Proactively hunt for threats within the network and endpoints, leveraging threat intelligence and analytical skills to identify and neutralize potential security breaches before they impact the business.
- Analyze security logs and alerts from various sources to identify suspicious activities, potential vulnerabilities, and indicators of compromise (IOCs).
- Lead and coordinate incident response activities, ensuring timely and effective resolution of security incidents, including containment, eradication, and recovery.
- Develop and maintain comprehensive security documentation, policies, and procedures, ensuring compliance with relevant industry standards and regulations.
- Stay abreast of the latest cybersecurity threats, vulnerabilities, and attack vectors, and translate this knowledge into actionable security enhancements.
- Collaborate with cross-functional teams, including IT operations, development, and legal, to integrate security best practices into all aspects of the business.
- Mentor and provide technical guidance to junior security analysts, fostering a culture of continuous learning and improvement within the security team.
- Participate in security awareness training programs to educate employees on best practices for information security.
- Contribute to the continuous improvement of security tools, processes, and technologies.
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field, or equivalent practical experience.
- Proven experience (5+ years) in information security, with a strong focus on threat detection, incident response, and security operations.
- In-depth knowledge of security principles, frameworks (e.g., NIST, ISO 27001), and best practices.
- Hands-on experience with SIEM tools (e.g., Splunk, QRadar, ELK Stack), EDR solutions, and network security technologies.
- Excellent analytical, problem-solving, and critical-thinking skills.
- Strong understanding of various attack methodologies and threat actor tactics, techniques, and procedures (TTPs).
- Effective communication and interpersonal skills, with the ability to articulate complex technical concepts to both technical and non-technical audiences.
- Relevant security certifications such as CISSP, CEH, GIAC, or SANS are highly desirable.
- Experience working in a remote-first or distributed team environment is a plus.
Senior Information Security Analyst - Threat Detection
Posted 10 days ago
Job Viewed
Job Description
The ideal candidate will possess a deep understanding of network security principles, common attack vectors, vulnerability management, and incident response methodologies. You will play a key role in security awareness training and contribute to the continuous improvement of security policies and procedures. Collaboration with IT infrastructure, development, and business teams will be essential to ensure a robust security posture across the enterprise.
Key Responsibilities:
- Design, implement, and maintain threat detection rules and signatures within SIEM and other security monitoring platforms.
- Conduct in-depth analysis of security alerts and logs to identify sophisticated threats and anomalies.
- Lead and coordinate incident response activities, including containment, eradication, and recovery efforts.
- Develop and automate security workflows using SOAR platforms to enhance incident response efficiency.
- Perform regular vulnerability assessments and penetration testing coordination.
- Stay abreast of the latest cybersecurity trends, threats, and technologies.
- Provide technical guidance and mentorship to junior security analysts.
- Contribute to the development and refinement of security policies, standards, and procedures.
- Collaborate with cross-functional teams to integrate security best practices into business operations.
- Participate in security audits and compliance initiatives.
Qualifications:
- Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent practical experience.
- 5+ years of experience in information security, with a focus on threat detection and incident response.
- Proven expertise with SIEM tools (e.g., Splunk, QRadar, ELK Stack), EDR solutions, and network security technologies.
- Strong understanding of threat intelligence frameworks and methodologies.
- Excellent analytical and problem-solving skills, with the ability to think critically under pressure.
- Relevant certifications such as CISSP, CEH, GIAC, or equivalent are highly desirable.
- Excellent communication and interpersonal skills, with the ability to explain complex technical concepts to both technical and non-technical audiences.
This hybrid role offers a fantastic opportunity to work in a collaborative environment with a strong emphasis on professional development and career growth, based in the vibrant city of Brighton, East Sussex, UK .