Latest Threat Detection Jobs

Threat-Led Detection Engineer

This role involves designing, building, and maintaining high-fidelity threat detections across SIEM, EDR/XDR, cloud, identity, and network environments using a threat-led approach. The engineer will map detections to frameworks like MITRE ATT&CK, tune rules to reduce false positives, and collaborate with SOC, threat hunting, and incident response teams. Emphasis is placed on Detection-as-Code practices, adversary emulation, and integrating AI/automation into detection workflows.

WTW London, United Kingdom
Hybrid Permanent Clearance Required
Adecco logo

Cyber Threat Detection / SIEM Analyst - SANS/GIAC

This role involves proactive threat hunting, analyzing telemetry and threat intelligence, and developing hypotheses based on MITRE ATT&CK TTPs. You will lead investigations, support incident response, and collaborate with SOC, red, and purple teams to enhance defensive strategies.

Adecco Wokingham, Berkshire, United Kingdom £60,000 – £90,000 pa
On-site Permanent Clearance Required

Threat Analyst 2

About Us Sophos is a cybersecurity leader defending 600,000 organizations globally with an AI-driven platform and expert-led services. Sophos meets organizations wherever they are in their security maturity and grows with them to defeat cyberattacks. Its solutions combine machine learning,...

Sophos United Kingdom
Remote

Senior Threat Behavior Researcher (UK)

This role involves hunting, researching, and developing real-time protection for suspicious activities across customer environments. You will write behavioral protection rules to block malicious activities, support remediation efforts, and contribute to sandbox development, combining deep technical knowledge and innovative problem-solving skills.

Sophos United Kingdom
Remote Permanent
CrowdStrike logo

Sr. Software Engineer - Cloud Detection Engine , London)

This role involves designing and building a high-scale cloud detection engine to identify sophisticated threats across multi-cloud environments. You'll develop systems for processing billions of events daily using distributed data technologies and collaborate with security researchers to operationalize threat detection logic. The work focuses on low-latency event processing, custom query languages, and scalable correlation engines within a modular, AI-native security platform.

CrowdStrike London, United Kingdom
Hybrid Permanent
Amazon logo

Security Engineer, IAM Stores Security

As a Security Engineer, you will design and build security logging pipelines that process billions of events daily, develop monitoring and detection capabilities for AI/ML workloads, and ensure the security of Amazon's global AWS infrastructure. You'll also mentor teammates, write production-ready code, and investigate operational issues.

Amazon London, United Kingdom
On-site Permanent
Amazon logo

Software Engineer, IAM Stores Security

This role involves building and maintaining security-focused libraries, streaming infrastructure, and event schemas to enable large-scale threat detection and AI security monitoring across Amazon. You'll work on client-side instrumentation, data ingestion pipelines, and detection systems for AI/ML workloads, with a strong emphasis on scalability, observability, and operational excellence. The position includes on-call responsibilities and opportunities for mentoring within a high-impact engineering team.

Amazon London, United Kingdom
Hybrid Permanent
Experis logo

SOC Analyst

This role involves continuous protective monitoring, triaging security alerts, and supporting incident response within a 24/7 Security Operations Centre for UK public sector clients. The analyst will work with advanced SIEM and XDR platforms such as IBM QRadar, Microsoft Sentinel, and Palo Alto XSIAM, contributing to national-level cyber defence. Collaboration within a small, high-performing team and adherence to established runbooks are key aspects of the position.

Experis Hursley, Hampshire, United Kingdom £40,000 – £50,000 pa
On-site Permanent Clearance Required
Adecco logo

IT Security Manager - Wembley

This role involves leading and maturing the cybersecurity function, overseeing security operations, managing vendor relationships, and ensuring compliance with regulatory requirements. You will work closely with external security providers, manage incident response, and support data security initiatives in a large organization undergoing digital transformation.

Adecco Wembley, HA9 7BP, United Kingdom £80,000 – £100,000 pa
On-site Permanent

SOC Analyst mostly

As a SOC Analyst, you will monitor and respond to cyber security events, support incident investigations, and help maintain a strong security posture across customer environments. You will work in a 24/7 shift pattern, gaining exposure to modern Microsoft security technologies and contributing to the continuous improvement of security monitoring capabilities.

Interface Recruitment Leeds, West Yorkshire, United Kingdom £55,000 – £60,000 pa
Remote Permanent Shift-work

Cyber Security Analyst (SOC) – Mostly

As a SOC Analyst, you will monitor and respond to cyber security events, support incident investigations, and help maintain a strong security posture across customer environments. You will work in a 24/7 shift pattern, mostly from home, with access to modern Microsoft security technologies and extensive training opportunities.

Interface Recruitment Leeds, West Yorkshire, United Kingdom £55,000 – £60,000 pa
Remote Permanent Shift-work
Bridewell logo

Senior Security Engineer

We are seeking a highly skilled and experienced Senior Security Engineer to join our Managed Security Service Provider (MSSP) team. You will be responsible for driving our adoption of Sentinel, client onboarding projects, managing multi-vendor SIEM proof of concepts with...

Bridewell Cardiff, United Kingdom
Hybrid Permanent

Senior SOC Analyst (SIEM Focus)

Senior SOC Analyst (DV Cleared)Contract - 6 Months (up to £750 inside IR35) Location: Corsham (3 days onsite)Sector: Defence & National SecurityWe are working with a leading organisation in the defence and national security sector who are looking to engage...

Infosec Corsham, Wiltshire, SN13 0HB, United Kingdom £650 – £750 pd

Senior SOC Analyst - DV Cleared

This role involves leading threat detection, incident response, and continuous improvement of security monitoring capabilities in a high-performing Cyber Security Operations Centre. You will manage and optimise security tooling, conduct forensic investigations, and enhance SOC processes and tooling.

CBSbutler Holdings Limited trading as CBSbutler Portsmouth, Hampshire, United Kingdom £590 – £630 pd
On-site Contract Clearance Required

Senior SOC Analyst

The Senior SOC Analyst role involves leading threat detection, incident response, and continuous improvement of security monitoring capabilities in a high-performing Cyber Security Operations Centre. Responsibilities include managing and optimising security tooling, developing detection rules, and conducting forensic investigations to protect critical national security environments.

CBSbutler Holdings Limited trading as CBSbutler Corsham, Wiltshire, SN13 0HB, United Kingdom £575 – £650 pd
Hybrid Contract Clearance Required