Future Tech Jobs Future Tech Jobs

Cyber Threat Specialist

eFinancialCareers
London, United Kingdom
4 months ago
Job Type
Permanent
Work Location
Hybrid
Seniority
Mid
Education
Degree
Posted
13 Feb 2026 (4 months ago)
Share
Save job
Create job alert

Cyber Threat Specialist (Blue Team) – Financial Services – London – Hybrid – Excellent Overall Package

The role

Join a leading financial services client as a Cyber Threat Specialist (Blue Team) and help strengthen a critical Threat Detection & Response function. You will be a key member of the Threat Detection & Response team, focusing on defensive security across complex, business-critical environments. Working closely with engineering, infrastructure and security teams, you will help design, implement and optimise high-fidelity detections, investigate incidents, and contribute to continuous improvement of cyber defences.

What you’ll be doing

  • Deliver hands-on detection engineering, incident response, threat hunting, security engineering and threat intelligence activities.
  • Investigate and respond to security incidents across host, identity, email, SaaS and cloud workloads.
  • Use and tune security tooling such as EDR, DLP, SIEM and SOAR to improve detection and response effectiveness.
  • Apply frameworks such as MITRE ATT&CK and the cyber kill chain to map, detect and disrupt attacker tradecraft.
  • Leverage offensive tooling (Kali, Cobalt Strike, Metasploit, Bloodhound, Mimikatz, etc.) to understand and defend against real-world attack techniques.
  • Contribute to secure architectures across networks, operating systems and cloud platforms.

What we’re looking for

  • Minimum of 3 years’ hands-on experience in at least two of:detection engineering ,incident response, digital forensics, security operations, threat hunting, threat intelligence, with exposure to the others.
  • Strong experience with security tooling: EDR, DLP, SIEM, SOAR.
  • Solid background in threat investigation and incident response.
  • Good understanding of MITRE ATT&CK, cyber kill chain and common attacker tradecraft.
  • Familiarity with offensive tools such as Kali, Cobalt Strike, Metasploit, Bloodhound, Mimikatz.
  • Strong knowledge of networking and security protocols (TCP/IP, HTTPS, DNS, firewalls, proxies).
  • Experience with Windows and Linux/Unix (Kubernetes exposure a plus).
  • Scripting or programming skills in Bash, Python or PowerShell.
  • Exposure to CI/CD tools and cloud platforms (e.g. Ansible Tower, Bitbucket, Pipelines, Azure).
  • Understanding of secure network architectures and related technologies.

How to apply

If you’re interested and think you align with this opportunity, please apply with an updated CV.

Related Jobs

View all jobs

Account Executive

Darktrace London, UB8 1LQ, United Kingdom
Hybrid

Account Executive (Romanian Speaking)

Darktrace London, UB8 1LQ, United Kingdom

Cybersecurity Analyst

Ryder Reid Legal London, United Kingdom
Remote

Sr. Intelligence Analyst, GTAC Vulnerability Mission

CrowdStrike Bigton, Alba / Scotland, ZE2 9GA, United Kingdom
Remote

Sr. Intelligence Analyst, GTAC Vulnerability Mission

CrowdStrike Germany
Remote

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Products

Where to Advertise Cyber Security Jobs in the UK (2026 Guide)

Where to advertise cyber security jobs UK in 2026: the specialist boards, communities and channels that reach offensive, defensive and GRC security talent. The candidate pool is small, heavily vetted and in high demand across government, financial services, critical national infrastructure and the private sector simultaneously. Many of the strongest candidates hold active security clearances, are not actively job-searching through general platforms, and move primarily through specialist networks and trusted referrals. General job boards reach a broad audience but lack the specificity that security professionals expect. Specialist platforms, government-affiliated channels and cleared candidate networks each serve a different part of the market. This guide, published by CybersecurityJobs.tech, covers where to advertise cyber security roles in the UK in 2026, how the main platforms compare, what employers should expect to pay, and what the data says about hiring across different role types.

Jobs

Cyber Security Jobs UK 2026: What to Expect Over the Next 3 Years

Cyber Security Jobs UK 2026: roles, salaries and the threat intelligence, cloud security and zero-trust hiring trends shaping UK cyber careers. Cyber security is one of the few sectors where demand for talent has never once dipped. Every major technological shift of the past decade — cloud migration, remote working, AI adoption, the proliferation of connected devices — has expanded the attack surface that security professionals are expected to defend. And every expansion of that attack surface has generated more jobs. But the cyber security jobs market of 2026 is not simply a larger version of what it was three years ago. It is a structurally different market. The threats have evolved, the technologies used to combat them have changed, the regulatory environment has tightened considerably, and the roles being created reflect all of that. A job seeker who understands only the cyber security landscape of 2023 is already working with an outdated map. The candidates who will thrive over the next three years are those who understand where the sector is heading — which specialisms are attracting the most investment, which technologies are reshaping defensive and offensive security practice, and how the definition of a cyber security professional is broadening well beyond the traditional image of a network defender in a SOC. This article breaks down what the UK cyber security jobs market is likely to look like through to 2028 — covering the titles emerging right now, the technologies driving employer demand, the skills that will matter most, and how to position your career ahead of the curve.

🍪 Basic, anonymous analytics (aggregate counts only, never shared) are always on. Accept to also enable third-party tools — Google Analytics, Microsoft Clarity, Mixpanel, Leadfeeder — which help us match you with relevant Cyber Security roles. We never sell your data or use it for cross-site advertising. See our Cookie Policy.