Latest Threat Detection Jobs

CrowdStrike logo

Sr. Backend Engineer, Cloud - Threat Detection / Incident Response , London)

This role involves designing and building scalable, AI-powered case management and investigation systems for CrowdStrike's Falcon SIEM platform. The engineer will develop Go-based microservices to help security teams detect, correlate, and respond to threats at petabyte scale, using advanced automation and agentic workflows. Collaboration with cross-functional teams and mentoring junior engineers are key aspects of the role.

CrowdStrike London, United Kingdom
Hybrid Permanent

Senior Threat Behavior Researcher (UK)

This role involves hunting, researching, and developing real-time protection for suspicious activities across customer environments. You will write behavioral protection rules to block malicious activities, support remediation efforts, and contribute to sandbox development, combining deep technical knowledge and innovative problem-solving skills.

Sophos United Kingdom
Remote Permanent

Senior Threat Researcher (UK)

The role involves analyzing advanced security threats, translating threat intelligence into high-fidelity detections, and working with the CTU Threat Intelligence team to develop and refine detection rules. The position requires a deep understanding of endpoint and cloud behavior, and the ability to leverage data from multiple sources to ensure accurate and actionable alerts.

Sophos United Kingdom
Remote Permanent
CrowdStrike logo

Sr. SDET - Cloud Detection Engine , London)

This role involves designing and building a high-scale cloud detection engine to identify sophisticated threats across multi-cloud environments. You'll develop systems for processing billions of events daily using distributed data technologies and collaborate with security researchers to operationalize threat detection logic. The work focuses on low-latency event processing, custom query languages, and scalable correlation engines within a modular, AI-native security platform.

CrowdStrike London, United Kingdom
Hybrid Permanent
Amazon logo

Security Engineer, IAM Stores Security

As a Security Engineer, you will design and build security logging pipelines that process billions of events daily, develop monitoring and detection capabilities for AI/ML workloads, and ensure the security of Amazon's global AWS infrastructure. You'll also mentor teammates, write production-ready code, and investigate operational issues.

Amazon London, United Kingdom
On-site Permanent

IT Cyber Security Analyst

This role involves managing patching, vulnerability remediation, and incident response within a large enterprise environment that includes both IT and OT systems. The analyst will work alongside SOC/MDR providers to monitor threats, improve detection capabilities, and support compliance and security control initiatives. It's a key position in an ongoing cyber transformation, focusing on strengthening overall security maturity across critical infrastructure.

Rise Technical Recruitment Scunthorpe, Lincolnshire, DN17 1AF, United Kingdom £45,000 – £50,000 pa
On-site Permanent Clearance Required
Darktrace logo

Security Engineer

This role involves a 12-week training programme in threat detection and investigation, followed by work on Darktrace's Cyber AI Analyst to automate security analysis using AI. You'll develop and refine AI-driven hypotheses across hybrid networks, email, and cloud environments, collaborating with machine learning and software engineering teams to enhance threat response capabilities.

Darktrace Cambridge, CB2 3BJ, United Kingdom
Hybrid Permanent
Experis logo

SOC Analyst

This SOC Analyst role involves real-time monitoring, triage, and incident response within a modern enterprise security environment. The candidate will investigate security events, fine-tune detection rules, and collaborate with internal teams to strengthen security operations. Focus is on proactive threat detection, incident documentation, and continuous improvement of SOC processes using tools like Microsoft Sentinel and Microsoft Defender.

Experis London, City And County Of the City Of London, United Kingdom £400 – £500 pd
Hybrid Contract Clearance Required
Amazon logo

Software Engineer, IAM Stores Security

This role involves building and maintaining security-focused libraries, streaming infrastructure, and event schemas to enable large-scale threat detection and AI security monitoring across Amazon. You'll work on client-side instrumentation, data ingestion pipelines, and detection systems for AI/ML workloads, with a strong emphasis on scalability, observability, and operational excellence. The position includes on-call responsibilities and opportunities for mentoring within a high-impact engineering team.

Amazon London, United Kingdom
Hybrid Permanent
Experis logo

SOC Analyst

This role involves continuous protective monitoring, triaging security alerts, and supporting incident response within a 24/7 Security Operations Centre for UK public sector clients. The analyst will work with advanced SIEM and XDR platforms such as IBM QRadar, Microsoft Sentinel, and Palo Alto XSIAM, contributing to national-level cyber defence. Collaboration within a small, high-performing team and adherence to established runbooks are key aspects of the position.

Experis Hursley, Hampshire, United Kingdom £40,000 – £50,000 pa
On-site Permanent Clearance Required
Adecco logo

IT Security Manager - Wembley

This role involves leading and maturing the cybersecurity function, overseeing security operations, managing vendor relationships, and ensuring compliance with regulatory requirements. You will work closely with external security providers, manage incident response, and support data security initiatives in a large organization undergoing digital transformation.

Adecco Wembley, HA9 7BP, United Kingdom £80,000 – £100,000 pa
On-site Permanent
HAYS Specialist Recruitment logo

Cyber Security Analyst

This role involves monitoring and improving the organisation's security posture through SIEM and IDS/IPS systems, threat detection, incident response, and vulnerability management. The analyst will conduct regular security assessments, support compliance with standards like ISO 27001 and NIST, and lead user awareness initiatives such as phishing simulations. Collaboration with technical teams is key to implementing secure configurations and enhancing cyber resiliency.

HAYS Specialist Recruitment Driffield, United Kingdom £40,000 – £45,000 pa
Hybrid Permanent Clearance Required
Bridewell logo

Senior Security Engineer

We are seeking a highly skilled and experienced Senior Security Engineer to join our Managed Security Service Provider (MSSP) team. You will be responsible for driving our adoption of Sentinel, client onboarding projects, managing multi-vendor SIEM proof of concepts with...

Bridewell Cardiff, United Kingdom
Hybrid Permanent

Senior SOC Analyst (SIEM Focus)

Senior SOC Analyst (DV Cleared)Contract - 6 Months (up to £750 inside IR35) Location: Corsham (3 days onsite)Sector: Defence & National SecurityWe are working with a leading organisation in the defence and national security sector who are looking to engage...

Infosec Corsham, Wiltshire, SN13 0HB, United Kingdom £650 – £750 pd

Senior SOC Analyst

The Senior SOC Analyst role involves leading threat detection, incident response, and continuous improvement of security monitoring capabilities in a high-performing Cyber Security Operations Centre. Responsibilities include managing and optimising security tooling, developing detection rules, and conducting forensic investigations to protect critical national security environments.

CBSbutler Holdings Limited trading as CBSbutler Corsham, Wiltshire, SN13 0HB, United Kingdom £575 – £650 pd
Hybrid Contract Clearance Required