58 Threat Detection jobs in the United Kingdom
Cybersecurity Analyst - Threat Detection
Posted 5 days ago
Job Viewed
Job Description
This position requires a sharp analytical mind, a deep understanding of cybersecurity principles, and hands-on experience with security tools and technologies. You will play a vital role in safeguarding our organization's information and systems.
Key Responsibilities:
- Monitor security alerts and events from various sources (SIEM, IDS/IPS, firewalls, endpoints).
- Investigate potential security incidents, perform forensic analysis, and determine root causes.
- Develop and refine threat detection rules and signatures.
- Respond to security incidents in a timely and effective manner, following established procedures.
- Conduct vulnerability assessments and penetration testing.
- Stay current with the latest threat intelligence, attack vectors, and cybersecurity trends.
- Recommend and implement security enhancements to protect against emerging threats.
- Collaborate with IT and development teams to ensure security best practices are integrated into systems and applications.
- Create incident reports and documentation for technical and non-technical audiences.
- Participate in security awareness training initiatives.
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Minimum of 3 years of experience in cybersecurity operations, incident response, or threat analysis.
- Proficiency with SIEM tools (e.g., Splunk, QRadar), IDS/IPS, firewalls, and endpoint security solutions.
- Strong understanding of network protocols, operating systems, and common attack methodologies.
- Experience with scripting languages (e.g., Python, PowerShell) for automation is a plus.
- Relevant certifications such as Security+, CySA+, or CISSP are highly desirable.
- Excellent analytical, problem-solving, and critical thinking skills.
- Ability to work effectively in a hybrid work environment, collaborating both remotely and in the office.
- Strong communication skills, both written and verbal.
Senior Information Security Analyst - Threat Detection and Incident Response
Posted 3 days ago
Job Viewed
Job Description
Key Responsibilities:
- Monitor and analyze security alerts from various systems.
- Investigate and respond to security incidents in a timely and effective manner.
- Develop and maintain threat detection rules and signatures.
- Conduct digital forensics and malware analysis when required.
- Create and update incident response playbooks and procedures.
- Collaborate with IT and other departments to implement security controls.
- Provide regular reports on security incidents and trends to management.
- Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent experience.
- Minimum of 5 years of experience in information security, with a focus on threat detection and incident response.
- Proficiency with SIEM tools (e.g., Splunk, QRadar), IDS/IPS, and EDR solutions.
- Strong understanding of networking protocols, operating systems, and common attack vectors.
- Experience with digital forensics and malware analysis techniques.
- Excellent analytical, problem-solving, and critical thinking skills.
- Ability to work independently and as part of a remote team.
Information Security Analyst - Threat Detection
Posted 10 days ago
Job Viewed
Job Description
Information Security Analyst - Threat Detection
Posted 13 days ago
Job Viewed
Job Description
Key Responsibilities:
- Monitor security systems and alerts for potential threats and breaches.
- Investigate security incidents and perform root cause analysis.
- Analyze log data using SIEM tools to identify suspicious activities.
- Develop and implement threat detection rules and signatures.
- Respond to security incidents according to established procedures.
- Conduct vulnerability assessments and penetration testing support.
- Collaborate with IT and development teams to implement security controls.
- Stay up-to-date with the latest cybersecurity threats and trends.
- Prepare regular reports on security status and incident findings.
- Contribute to the continuous improvement of security operations.
- Bachelor's degree in Computer Science, Cybersecurity, or a related field.
- Minimum of 3 years of experience in information security, specifically in threat detection or SOC analysis.
- Proficiency with SIEM platforms (e.g., Splunk, QRadar, LogRhythm).
- Knowledge of network security, firewalls, IDS/IPS, and endpoint protection.
- Understanding of common attack vectors and threat actor tactics.
- Excellent analytical and problem-solving skills.
- Strong written and verbal communication skills.
- Relevant security certifications (e.g., Security+, CySA+, GIAC) are a plus.
- Ability to work effectively in a hybrid environment.
Senior Cybersecurity Analyst - Threat Detection
Posted 13 days ago
Job Viewed
Job Description
Responsibilities:
- Monitor security alerts and logs using SIEM and other security tools to detect and investigate potential threats.
- Perform in-depth analysis of security incidents, including root cause analysis and impact assessment.
- Develop and implement threat detection rules and signatures.
- Conduct vulnerability assessments and penetration testing, and provide remediation recommendations.
- Assist in the development and execution of incident response plans.
- Stay up-to-date with the latest cybersecurity threats, vulnerabilities, and mitigation techniques.
- Contribute to the improvement of security policies, standards, and procedures.
- Collaborate with IT and other departments to ensure security best practices are implemented across the organization.
- Provide technical guidance and mentoring to junior security analysts.
- Prepare regular reports on security status, incidents, and recommendations.
- Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent practical experience.
- Minimum of 5 years of experience in cybersecurity, with a focus on threat detection and incident response.
- Proven experience with SIEM platforms (e.g., Splunk, QRadar), EDR solutions, and other security monitoring tools.
- Strong knowledge of network security principles, operating systems (Windows, Linux), and common attack vectors.
- Experience with scripting languages (e.g., Python, PowerShell) for security automation is a plus.
- Relevant cybersecurity certifications (e.g., CISSP, CEH, GIAC) are highly desirable.
- Excellent analytical, problem-solving, and critical thinking skills.
- Strong communication and interpersonal skills, with the ability to explain technical concepts clearly.
- Ability to work effectively both independently and as part of a team in a hybrid environment.
- Must be eligible to work in the UK.
Lead Cybersecurity Analyst - Threat Detection
Posted 15 days ago
Job Viewed
Job Description
Information Security Analyst, Threat Detection
Posted 19 days ago
Job Viewed
Job Description
Key Responsibilities:
- Monitor security alerts and events using SIEM and other security tools.
- Investigate and analyse potential security incidents, determining scope and impact.
- Perform threat hunting activities to proactively identify vulnerabilities and malicious activity.
- Develop and refine detection rules and security signatures.
- Respond to security incidents, coordinating containment and eradication efforts.
- Assist in the development and maintenance of incident response playbooks.
- Conduct vulnerability assessments and penetration testing.
- Stay up-to-date with the latest threat intelligence and attack vectors.
- Collaborate with IT teams to implement security controls and remediate vulnerabilities.
- Contribute to security awareness training for staff.
- Prepare detailed reports on security incidents and system performance.
- Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent experience.
- Proven experience in an Information Security Analyst or SOC Analyst role.
- Proficiency with SIEM platforms (e.g., Splunk, QRadar, ELK Stack).
- Knowledge of network security protocols, firewalls, IDS/IPS, and endpoint security solutions.
- Familiarity with common attack techniques and mitigation strategies.
- Certifications such as CompTIA Security+, CEH, or GIAC are desirable.
- Excellent analytical and problem-solving skills.
- Strong communication skills, both written and verbal.
- Ability to work effectively in a hybrid team environment.
Be The First To Know
About the latest Threat detection Jobs in United Kingdom !
Senior Information Security Analyst - Threat Detection
Posted 1 day ago
Job Viewed
Job Description
Responsibilities:
- Monitor security alerts and logs from various sources (SIEM, IDS/IPS, endpoint protection, network devices) to detect and investigate potential security incidents.
- Perform deep-dive analysis of security events, identify root causes, and develop effective containment and eradication strategies.
- Develop and tune detection rules, correlation searches, and threat hunting methodologies within the SIEM and other security tools.
- Conduct proactive threat hunting to identify advanced persistent threats (APTs) and zero-day exploits.
- Lead and coordinate incident response activities, including assessment, containment, eradication, and recovery, ensuring minimal impact to the business.
- Create detailed incident reports, post-incident reviews, and provide recommendations for security improvements.
- Stay abreast of the latest threat intelligence, vulnerabilities, and attacker techniques.
- Collaborate with IT infrastructure and development teams to implement security controls and remediate vulnerabilities.
- Contribute to the development and maintenance of security policies, procedures, and playbooks.
- Provide security awareness training and guidance to internal teams.
- Participate in on-call rotation for incident response as needed.
- Evaluate and recommend new security technologies and solutions.
- Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
- Minimum of 5-7 years of experience in information security, with a strong focus on SOC operations, threat detection, and incident response.
- In-depth knowledge of network protocols, operating systems (Windows, Linux), and common attack vectors.
- Hands-on experience with SIEM platforms (e.g., Splunk, QRadar, ELK Stack), IDS/IPS, EDR solutions, and firewalls.
- Proficiency in scripting languages (e.g., Python, PowerShell) for automation and analysis.
- Strong understanding of threat intelligence frameworks and methodologies.
- Excellent analytical, problem-solving, and critical thinking skills.
- Effective communication and documentation skills, with the ability to explain complex technical issues to non-technical stakeholders.
- Relevant security certifications such as CISSP, GIAC (GCIH, GCIA), or CEH are highly desirable.
Senior Information Security Analyst - Threat Detection
Posted 1 day ago
Job Viewed
Job Description
Key responsibilities:
- Monitor security alerts and events from various security tools (SIEM, IDS/IPS, EDR) to identify potential security incidents.
- Conduct in-depth analysis of security incidents, including investigation, containment, eradication, and recovery.
- Develop and refine threat detection rules and signatures to improve the accuracy and effectiveness of security monitoring.
- Perform vulnerability assessments and penetration testing to identify and prioritize security weaknesses.
- Contribute to the development and implementation of security policies, procedures, and best practices.
- Assist in the creation and delivery of security awareness training programs.
- Stay up-to-date with the latest threat intelligence, attack vectors, and cybersecurity trends.
- Participate in on-call rotation for incident response as needed.
- Collaborate with IT and other departments to ensure security is integrated into all aspects of the organization.
- Contribute to the continuous improvement of the security operations center (SOC) capabilities and processes.
The ideal candidate will hold a Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field, with a minimum of 5 years of experience in information security, specifically in a security operations or incident response role. Proven expertise in SIEM tools (e.g., Splunk, QRadar), IDS/IPS, endpoint detection and response (EDR) solutions, and vulnerability management tools is essential. Strong understanding of networking protocols, operating systems (Windows, Linux), and common attack methodologies is required. Relevant certifications such as CISSP, CEH, or GSEC are highly desirable. Excellent analytical, problem-solving, and communication skills are necessary. Experience with scripting languages (e.g., Python, PowerShell) for automation is a plus. This role offers a challenging and rewarding opportunity to protect a significant organization from cyber threats.
Senior Information Security Analyst (Threat Detection)
Posted 3 days ago
Job Viewed
Job Description
Responsibilities:
- Develop, implement, and refine threat detection strategies and security monitoring processes.
- Analyse security alerts and logs from various sources (SIEM, IDS/IPS, endpoints, cloud environments) to identify and investigate potential security incidents.
- Perform in-depth forensic analysis of security breaches and provide detailed incident reports.
- Utilise threat intelligence feeds and security tools to proactively identify emerging threats and vulnerabilities.
- Develop and maintain security playbooks and incident response procedures.
- Collaborate with incident response teams to contain, eradicate, and recover from security incidents.
- Stay current with the latest security threats, vulnerabilities, and industry best practices.
- Automate security tasks and processes using scripting languages (e.g., Python, PowerShell).
- Provide mentorship and guidance to junior security analysts.
- Contribute to the development and enhancement of the security architecture.
- Bachelor's degree in Computer Science, Information Security, or a related field; Master's degree is a plus.
- Minimum of 5 years of experience in information security, with a focus on security operations, incident response, and threat detection.
- Proficiency with SIEM platforms (e.g., Splunk, QRadar, Azure Sentinel), IDS/IPS, EDR solutions, and other security monitoring tools.
- Strong understanding of network protocols, operating systems (Windows, Linux), and common attack vectors.
- Experience with threat intelligence platforms and malware analysis techniques.
- Excellent analytical, problem-solving, and critical thinking skills.
- Proficiency in at least one scripting language (e.g., Python, PowerShell).
- Relevant security certifications such as CISSP, GIAC, CEH are highly desirable.
- Ability to work independently and manage multiple priorities in a fast-paced, remote environment.
- Strong written and verbal communication skills.