58 Threat Detection jobs in the United Kingdom
Cybersecurity Analyst - Threat Detection
EC2M 4UJ London, London
£50000 Annually
WhatJobs
Posted 5 days ago
Job Viewed
Job Description
We are seeking a vigilant and skilled Cybersecurity Analyst to join our Information Security team, supporting our operations in London, England, UK . This role operates on a hybrid model, requiring a balance of in-office collaboration and remote flexibility. You will be at the forefront of defending our digital assets against evolving cyber threats. Your primary responsibilities will include monitoring security systems, detecting and responding to incidents, and implementing proactive measures to enhance our security posture.
This position requires a sharp analytical mind, a deep understanding of cybersecurity principles, and hands-on experience with security tools and technologies. You will play a vital role in safeguarding our organization's information and systems.
Key Responsibilities:
This position requires a sharp analytical mind, a deep understanding of cybersecurity principles, and hands-on experience with security tools and technologies. You will play a vital role in safeguarding our organization's information and systems.
Key Responsibilities:
- Monitor security alerts and events from various sources (SIEM, IDS/IPS, firewalls, endpoints).
- Investigate potential security incidents, perform forensic analysis, and determine root causes.
- Develop and refine threat detection rules and signatures.
- Respond to security incidents in a timely and effective manner, following established procedures.
- Conduct vulnerability assessments and penetration testing.
- Stay current with the latest threat intelligence, attack vectors, and cybersecurity trends.
- Recommend and implement security enhancements to protect against emerging threats.
- Collaborate with IT and development teams to ensure security best practices are integrated into systems and applications.
- Create incident reports and documentation for technical and non-technical audiences.
- Participate in security awareness training initiatives.
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Minimum of 3 years of experience in cybersecurity operations, incident response, or threat analysis.
- Proficiency with SIEM tools (e.g., Splunk, QRadar), IDS/IPS, firewalls, and endpoint security solutions.
- Strong understanding of network protocols, operating systems, and common attack methodologies.
- Experience with scripting languages (e.g., Python, PowerShell) for automation is a plus.
- Relevant certifications such as Security+, CySA+, or CISSP are highly desirable.
- Excellent analytical, problem-solving, and critical thinking skills.
- Ability to work effectively in a hybrid work environment, collaborating both remotely and in the office.
- Strong communication skills, both written and verbal.
This advertiser has chosen not to accept applicants from your region.
0
Senior Information Security Analyst - Threat Detection and Incident Response
RG1 1 Reading, South East
£60000 Annually
WhatJobs
Posted 3 days ago
Job Viewed
Job Description
Our client is a leading organisation in the technology sector, seeking a highly skilled Senior Information Security Analyst to join their remote security operations team. This critical role focuses on the proactive detection, investigation, and response to cyber threats, safeguarding the company's digital assets and infrastructure. You will be responsible for monitoring security alerts from various sources, conducting in-depth analysis of potential security incidents, and developing effective remediation strategies. The ideal candidate will possess a comprehensive understanding of cybersecurity principles, network security, endpoint security, and cloud security. Expertise in using Security Information and Event Management (SIEM) tools, Intrusion Detection Systems (IDS/IPS), and other security monitoring technologies is essential. You will play a key role in developing and refining threat detection rules, building playbooks for incident response, and conducting forensic investigations when necessary. This remote position requires a self-motivated individual with excellent analytical and problem-solving skills, capable of working independently and collaborating effectively with distributed teams. You will be expected to stay current with the latest threat intelligence, attack vectors, and security vulnerabilities. Strong communication skills are vital for reporting on security incidents to stakeholders at all levels, including senior management. The ability to develop and deliver security awareness training is also a plus. This role offers the opportunity to work on challenging security issues, contribute to the enhancement of the organisation's security posture, and grow your career in a dynamic and supportive remote environment. A proactive mindset towards threat hunting and a commitment to continuous improvement in security operations are highly valued. Previous experience in a similar security operations or incident response role is a prerequisite.
Key Responsibilities:
Key Responsibilities:
- Monitor and analyze security alerts from various systems.
- Investigate and respond to security incidents in a timely and effective manner.
- Develop and maintain threat detection rules and signatures.
- Conduct digital forensics and malware analysis when required.
- Create and update incident response playbooks and procedures.
- Collaborate with IT and other departments to implement security controls.
- Provide regular reports on security incidents and trends to management.
- Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent experience.
- Minimum of 5 years of experience in information security, with a focus on threat detection and incident response.
- Proficiency with SIEM tools (e.g., Splunk, QRadar), IDS/IPS, and EDR solutions.
- Strong understanding of networking protocols, operating systems, and common attack vectors.
- Experience with digital forensics and malware analysis techniques.
- Excellent analytical, problem-solving, and critical thinking skills.
- Ability to work independently and as part of a remote team.
This advertiser has chosen not to accept applicants from your region.
1
Information Security Analyst - Threat Detection
RG1 1AZ Reading, South East
£50000 Annually
WhatJobs
Posted 10 days ago
Job Viewed
Job Description
Our client, a well-established financial institution, is looking for an Information Security Analyst with a focus on Threat Detection to join their growing team in Reading, Berkshire, UK . This role is crucial in safeguarding the organization's digital assets and protecting against evolving cyber threats. You will be responsible for monitoring security alerts, investigating potential security incidents, and implementing appropriate response actions. The ideal candidate will have a strong understanding of security principles, common attack vectors, and threat intelligence. Responsibilities include analyzing security logs, utilizing SIEM tools (e.g., Splunk, QRadar), performing vulnerability assessments, and contributing to the development and refinement of security monitoring strategies. You should possess excellent analytical and problem-solving skills, with the ability to quickly identify and assess security risks. A relevant degree in Computer Science, Cybersecurity, or a related field, along with certifications such as CompTIA Security+ or CEH, would be advantageous. Experience in a similar information security role is required. This position offers a challenging and rewarding opportunity to work within a dynamic security operations center (SOC). You will collaborate closely with IT and other business units to ensure a cohesive security posture. The role involves staying current with the latest cybersecurity trends and technologies, developing incident response playbooks, and participating in security awareness initiatives. We are seeking a proactive and detail-oriented individual who can work effectively under pressure and contribute to a strong security culture. This hybrid role provides a blend of in-office collaboration and remote flexibility, allowing for optimal work-life balance while ensuring continuous protection of the company's systems and data. You will be a key player in defending against sophisticated cyber threats and ensuring the resilience of the organization's IT infrastructure.
This advertiser has chosen not to accept applicants from your region.
2
Information Security Analyst - Threat Detection
NG1 3AG Nottingham, East Midlands
£55000 Annually
WhatJobs
Posted 13 days ago
Job Viewed
Job Description
Our client, a leading technology firm, is looking for a skilled Information Security Analyst specializing in threat detection to join their security operations center in Nottingham, Nottinghamshire, UK . This role is critical in identifying, analyzing, and responding to security threats to protect the organization's digital assets. You will be responsible for monitoring security alerts, investigating potential incidents, and developing strategies to enhance the organization's security posture. The ideal candidate will have a strong understanding of cybersecurity principles, threat landscapes, and defensive security measures. Responsibilities include using Security Information and Event Management (SIEM) tools, conducting forensic analysis, and collaborating with incident response teams. This hybrid role offers a balance of in-office collaboration and remote flexibility. Strong analytical and problem-solving skills, attention to detail, and excellent communication are essential. Experience with various security tools and protocols, along with a passion for staying ahead of emerging threats, is highly valued.
Key Responsibilities:
Key Responsibilities:
- Monitor security systems and alerts for potential threats and breaches.
- Investigate security incidents and perform root cause analysis.
- Analyze log data using SIEM tools to identify suspicious activities.
- Develop and implement threat detection rules and signatures.
- Respond to security incidents according to established procedures.
- Conduct vulnerability assessments and penetration testing support.
- Collaborate with IT and development teams to implement security controls.
- Stay up-to-date with the latest cybersecurity threats and trends.
- Prepare regular reports on security status and incident findings.
- Contribute to the continuous improvement of security operations.
- Bachelor's degree in Computer Science, Cybersecurity, or a related field.
- Minimum of 3 years of experience in information security, specifically in threat detection or SOC analysis.
- Proficiency with SIEM platforms (e.g., Splunk, QRadar, LogRhythm).
- Knowledge of network security, firewalls, IDS/IPS, and endpoint protection.
- Understanding of common attack vectors and threat actor tactics.
- Excellent analytical and problem-solving skills.
- Strong written and verbal communication skills.
- Relevant security certifications (e.g., Security+, CySA+, GIAC) are a plus.
- Ability to work effectively in a hybrid environment.
This advertiser has chosen not to accept applicants from your region.
3
Senior Cybersecurity Analyst - Threat Detection
CF10 1AA Cardiff, Wales
£55000 Annually
WhatJobs
Posted 13 days ago
Job Viewed
Job Description
Our client is looking for a highly skilled and experienced Senior Cybersecurity Analyst to join their growing Information Security team. This role offers a hybrid work model, allowing for a blend of remote flexibility and in-office collaboration in Cardiff, Wales, UK . You will be at the forefront of protecting our client's digital assets by identifying, analyzing, and responding to sophisticated cyber threats. This involves leveraging advanced security tools and techniques to monitor network traffic, detect anomalies, and investigate security incidents. Your expertise in threat intelligence, vulnerability assessment, and incident response will be crucial in safeguarding our organization against evolving cyber risks. You will play a key role in developing and refining security policies, procedures, and best practices. The ideal candidate will possess a deep understanding of current threat landscapes, common attack vectors, and defensive strategies. You should be adept at utilizing SIEM platforms, EDR solutions, and other security technologies. Strong analytical and critical thinking skills are essential, as is the ability to communicate complex technical information clearly to both technical and non-technical audiences. This is an excellent opportunity for a dedicated cybersecurity professional to advance their career within a forward-thinking organization committed to robust security. You will have the chance to work with cutting-edge technologies and contribute to the continuous improvement of our security posture.
Responsibilities:
Responsibilities:
- Monitor security alerts and logs using SIEM and other security tools to detect and investigate potential threats.
- Perform in-depth analysis of security incidents, including root cause analysis and impact assessment.
- Develop and implement threat detection rules and signatures.
- Conduct vulnerability assessments and penetration testing, and provide remediation recommendations.
- Assist in the development and execution of incident response plans.
- Stay up-to-date with the latest cybersecurity threats, vulnerabilities, and mitigation techniques.
- Contribute to the improvement of security policies, standards, and procedures.
- Collaborate with IT and other departments to ensure security best practices are implemented across the organization.
- Provide technical guidance and mentoring to junior security analysts.
- Prepare regular reports on security status, incidents, and recommendations.
- Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent practical experience.
- Minimum of 5 years of experience in cybersecurity, with a focus on threat detection and incident response.
- Proven experience with SIEM platforms (e.g., Splunk, QRadar), EDR solutions, and other security monitoring tools.
- Strong knowledge of network security principles, operating systems (Windows, Linux), and common attack vectors.
- Experience with scripting languages (e.g., Python, PowerShell) for security automation is a plus.
- Relevant cybersecurity certifications (e.g., CISSP, CEH, GIAC) are highly desirable.
- Excellent analytical, problem-solving, and critical thinking skills.
- Strong communication and interpersonal skills, with the ability to explain technical concepts clearly.
- Ability to work effectively both independently and as part of a team in a hybrid environment.
- Must be eligible to work in the UK.
This advertiser has chosen not to accept applicants from your region.
4
Lead Cybersecurity Analyst - Threat Detection
M1 1AA Manchester, North West
£70000 Annually
WhatJobs
Posted 15 days ago
Job Viewed
Job Description
Our client is seeking a highly skilled and proactive Lead Cybersecurity Analyst with expertise in threat detection and incident response to join their fully remote team. This critical role will be at the forefront of protecting our organization's digital assets from evolving cyber threats. You will be responsible for developing, implementing, and refining advanced threat detection strategies, monitoring security alerts, and leading incident response efforts. Key responsibilities include analyzing security vulnerabilities, performing forensic investigations, and staying abreast of the latest cybersecurity trends and attack vectors. The ideal candidate will possess a deep understanding of security frameworks (e.g., NIST, ISO 27001), SIEM tools, intrusion detection/prevention systems, and endpoint detection and response (EDR) solutions. Proven experience in analyzing complex log data, identifying malicious activity, and orchestrating effective incident response procedures is essential. You should have exceptional analytical and problem-solving skills, with the ability to think critically under pressure. A Bachelor's or Master's degree in Cybersecurity, Computer Science, or a related field, coupled with relevant industry certifications (e.g., CISSP, GCIA, GCIH), is highly desirable. This is a unique opportunity to lead cybersecurity initiatives in a remote-first environment, contributing significantly to the organization's security posture. You will have the autonomy to drive innovation and implement cutting-edge security measures. We are looking for a security leader with a passion for protecting information and a proven track record of success in combating cyber threats.
This advertiser has chosen not to accept applicants from your region.
5
Information Security Analyst, Threat Detection
CV1 2GN Coventry, West Midlands
£50000 Annually
WhatJobs
Posted 19 days ago
Job Viewed
Job Description
Our client is seeking a diligent and proactive Information Security Analyst to bolster their security operations centre (SOC). This role is based in Coventry, West Midlands, UK , with a hybrid working model offering flexibility between home and office-based work. You will be responsible for monitoring, detecting, and responding to security threats across the organisation's network and systems. This position requires a keen eye for detail, a strong understanding of cybersecurity principles, and the ability to work effectively under pressure.
Key Responsibilities:
Key Responsibilities:
- Monitor security alerts and events using SIEM and other security tools.
- Investigate and analyse potential security incidents, determining scope and impact.
- Perform threat hunting activities to proactively identify vulnerabilities and malicious activity.
- Develop and refine detection rules and security signatures.
- Respond to security incidents, coordinating containment and eradication efforts.
- Assist in the development and maintenance of incident response playbooks.
- Conduct vulnerability assessments and penetration testing.
- Stay up-to-date with the latest threat intelligence and attack vectors.
- Collaborate with IT teams to implement security controls and remediate vulnerabilities.
- Contribute to security awareness training for staff.
- Prepare detailed reports on security incidents and system performance.
- Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent experience.
- Proven experience in an Information Security Analyst or SOC Analyst role.
- Proficiency with SIEM platforms (e.g., Splunk, QRadar, ELK Stack).
- Knowledge of network security protocols, firewalls, IDS/IPS, and endpoint security solutions.
- Familiarity with common attack techniques and mitigation strategies.
- Certifications such as CompTIA Security+, CEH, or GIAC are desirable.
- Excellent analytical and problem-solving skills.
- Strong communication skills, both written and verbal.
- Ability to work effectively in a hybrid team environment.
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Threat detection Jobs in United Kingdom !
6
Senior Information Security Analyst - Threat Detection
LE1 5SW Leicester, East Midlands
£60000 Annually
WhatJobs
Posted 1 day ago
Job Viewed
Job Description
Our client, a rapidly expanding financial services firm, is seeking an exceptional Senior Information Security Analyst to bolster their cybersecurity capabilities. This is a fully remote position, providing an excellent opportunity for a highly skilled professional to contribute to protecting sensitive data and critical infrastructure from sophisticated threats. You will be a key member of the Security Operations Center (SOC), focusing on proactive threat detection, incident response, and security monitoring. This role demands a deep understanding of modern cyber threats, security technologies, and incident handling procedures.
Responsibilities:
Responsibilities:
- Monitor security alerts and logs from various sources (SIEM, IDS/IPS, endpoint protection, network devices) to detect and investigate potential security incidents.
- Perform deep-dive analysis of security events, identify root causes, and develop effective containment and eradication strategies.
- Develop and tune detection rules, correlation searches, and threat hunting methodologies within the SIEM and other security tools.
- Conduct proactive threat hunting to identify advanced persistent threats (APTs) and zero-day exploits.
- Lead and coordinate incident response activities, including assessment, containment, eradication, and recovery, ensuring minimal impact to the business.
- Create detailed incident reports, post-incident reviews, and provide recommendations for security improvements.
- Stay abreast of the latest threat intelligence, vulnerabilities, and attacker techniques.
- Collaborate with IT infrastructure and development teams to implement security controls and remediate vulnerabilities.
- Contribute to the development and maintenance of security policies, procedures, and playbooks.
- Provide security awareness training and guidance to internal teams.
- Participate in on-call rotation for incident response as needed.
- Evaluate and recommend new security technologies and solutions.
- Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
- Minimum of 5-7 years of experience in information security, with a strong focus on SOC operations, threat detection, and incident response.
- In-depth knowledge of network protocols, operating systems (Windows, Linux), and common attack vectors.
- Hands-on experience with SIEM platforms (e.g., Splunk, QRadar, ELK Stack), IDS/IPS, EDR solutions, and firewalls.
- Proficiency in scripting languages (e.g., Python, PowerShell) for automation and analysis.
- Strong understanding of threat intelligence frameworks and methodologies.
- Excellent analytical, problem-solving, and critical thinking skills.
- Effective communication and documentation skills, with the ability to explain complex technical issues to non-technical stakeholders.
- Relevant security certifications such as CISSP, GIAC (GCIH, GCIA), or CEH are highly desirable.
This advertiser has chosen not to accept applicants from your region.
7
Senior Information Security Analyst - Threat Detection
PL1 2SW Plymouth, South West
£60000 Annually
WhatJobs
Posted 1 day ago
Job Viewed
Job Description
Our client is a leading organization committed to maintaining the highest standards of information security. We are seeking a skilled and experienced Senior Information Security Analyst to join our dedicated security operations team. This role, based in **Plymouth, Devon, UK**, will focus on proactive threat detection, incident response, and vulnerability management. You will play a crucial role in safeguarding our client's digital assets and critical infrastructure against evolving cyber threats. The hybrid working model allows for a balance between collaborating with your team and having the flexibility to work remotely.
Key responsibilities:
The ideal candidate will hold a Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field, with a minimum of 5 years of experience in information security, specifically in a security operations or incident response role. Proven expertise in SIEM tools (e.g., Splunk, QRadar), IDS/IPS, endpoint detection and response (EDR) solutions, and vulnerability management tools is essential. Strong understanding of networking protocols, operating systems (Windows, Linux), and common attack methodologies is required. Relevant certifications such as CISSP, CEH, or GSEC are highly desirable. Excellent analytical, problem-solving, and communication skills are necessary. Experience with scripting languages (e.g., Python, PowerShell) for automation is a plus. This role offers a challenging and rewarding opportunity to protect a significant organization from cyber threats.
Key responsibilities:
- Monitor security alerts and events from various security tools (SIEM, IDS/IPS, EDR) to identify potential security incidents.
- Conduct in-depth analysis of security incidents, including investigation, containment, eradication, and recovery.
- Develop and refine threat detection rules and signatures to improve the accuracy and effectiveness of security monitoring.
- Perform vulnerability assessments and penetration testing to identify and prioritize security weaknesses.
- Contribute to the development and implementation of security policies, procedures, and best practices.
- Assist in the creation and delivery of security awareness training programs.
- Stay up-to-date with the latest threat intelligence, attack vectors, and cybersecurity trends.
- Participate in on-call rotation for incident response as needed.
- Collaborate with IT and other departments to ensure security is integrated into all aspects of the organization.
- Contribute to the continuous improvement of the security operations center (SOC) capabilities and processes.
The ideal candidate will hold a Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field, with a minimum of 5 years of experience in information security, specifically in a security operations or incident response role. Proven expertise in SIEM tools (e.g., Splunk, QRadar), IDS/IPS, endpoint detection and response (EDR) solutions, and vulnerability management tools is essential. Strong understanding of networking protocols, operating systems (Windows, Linux), and common attack methodologies is required. Relevant certifications such as CISSP, CEH, or GSEC are highly desirable. Excellent analytical, problem-solving, and communication skills are necessary. Experience with scripting languages (e.g., Python, PowerShell) for automation is a plus. This role offers a challenging and rewarding opportunity to protect a significant organization from cyber threats.
This advertiser has chosen not to accept applicants from your region.
8
Senior Information Security Analyst (Threat Detection)
PO1 2AG Portsmouth, South East
£55000 Annually
WhatJobs
Posted 3 days ago
Job Viewed
Job Description
Our client, a forward-thinking organisation committed to robust digital protection, is seeking an experienced Senior Information Security Analyst specializing in threat detection. This is a fully remote position, allowing you to work from anywhere in the UK while contributing to the security of our client's valuable assets.
Responsibilities:
Responsibilities:
- Develop, implement, and refine threat detection strategies and security monitoring processes.
- Analyse security alerts and logs from various sources (SIEM, IDS/IPS, endpoints, cloud environments) to identify and investigate potential security incidents.
- Perform in-depth forensic analysis of security breaches and provide detailed incident reports.
- Utilise threat intelligence feeds and security tools to proactively identify emerging threats and vulnerabilities.
- Develop and maintain security playbooks and incident response procedures.
- Collaborate with incident response teams to contain, eradicate, and recover from security incidents.
- Stay current with the latest security threats, vulnerabilities, and industry best practices.
- Automate security tasks and processes using scripting languages (e.g., Python, PowerShell).
- Provide mentorship and guidance to junior security analysts.
- Contribute to the development and enhancement of the security architecture.
- Bachelor's degree in Computer Science, Information Security, or a related field; Master's degree is a plus.
- Minimum of 5 years of experience in information security, with a focus on security operations, incident response, and threat detection.
- Proficiency with SIEM platforms (e.g., Splunk, QRadar, Azure Sentinel), IDS/IPS, EDR solutions, and other security monitoring tools.
- Strong understanding of network protocols, operating systems (Windows, Linux), and common attack vectors.
- Experience with threat intelligence platforms and malware analysis techniques.
- Excellent analytical, problem-solving, and critical thinking skills.
- Proficiency in at least one scripting language (e.g., Python, PowerShell).
- Relevant security certifications such as CISSP, GIAC, CEH are highly desirable.
- Ability to work independently and manage multiple priorities in a fast-paced, remote environment.
- Strong written and verbal communication skills.
This advertiser has chosen not to accept applicants from your region.
9