Lead Threat Detection Analyst

Job Title: Lead Threat Detection Analyst

Job Location: Preston. Onsite

Salary: Circa £59,000 depending on experience and skills

Who we are:

Join BAE Systems and you’ll be part of something bigger. As a valued member of our global colleague network, you’ll bring your unique skills and perspectives to help pioneer progress and protect what matters most. You’ll be trusted to play your part in delivering the advanced, technology-led defence, aerospace and security solutions of tomorrow – shaping a safer future, for all of us.

Role Description:

Where appropriate performs a management role. Leads, motivates, and develop team members as well as being responsible for managing their delivery, performance and providing appraisal. Fosters a collaborative environment that encourages skills development and innovation within the team and wider Cyber Operations teams.

Manages owns specific work areas and delegates appropriate work where required. Provides mentorship and expertise to others in the team. Leads on policy implementation, high standards and best practices within Threat Detection. Is experienced in threat analysis with little need for supervision or support.

Core Duties:

• Delivery of core triage function as part of protective monitoring services across a range of networks/services
• Overseeing and contributing to the analysis and escalation of security threats and incidents identified
• Coordinate with Cyber Operations teams to respond to identified security threats and mitigate prior to impact
• Lead the development of people, process and technology improvements to aid the service
• Provide subject matter advice on security analysis and development of detection content
• Deputise for the Threat Detection Manager when required
• Analyses requirements and advises on scope and options for continual operational improvement

Essential Skills:

• Experience of working within Security Operations or equivalent roles
• Demonstrable leadership in Operational Management
• Experience in the application of relevant industry standard frameworks (MITRE ATT&CK/D3FEND/ENGAGE etc.) in an operational environment
• A good level of knowledge and proficiency in the use of SIEM platforms, tools and analytical techniques. Innovative approach to analysing and solving problems
• Industry recognised qualification (OSDA, GIAC etc.) or equivalent proven industry experience

The Cyber Operations team:

Cyber Operations is responsible for protecting BAE Systems from Cyber Attack by various threat actors. Not only do we protect BAE Systems and its employees, indirectly we protect those who protect us – who serve in our military and rely on the products and services we create. Across Threat Intelligence, Detection, Incident Response and now Active Defence we work to evolve cyber operations as a world class capability.

Why BAE Systems?

Here you’ll build a career with purpose and limitless possibilities. With lifelong learning and meaningful work – this is a place where you can grow your career with confidence and be empowered to be your best. You’ll be recognised for your contribution and enjoy rewards tailored to what’s most important to you and your family – support for your financial and personal wellbeing, as well as a balanced lifestyle. In an environment embracing sustainable ways of working and with a strong sense of shared purpose, our supportive culture is a place you can feel you belong and proud of the difference you make.

A place where everyone can thrive:

We’re committed to building an inclusive workplace where everyone feels valued and supported. We know that a diversity of backgrounds, perspectives and experiences strengthens our teams and is vital to the work we do.

We welcome applications from all candidates and give full, fair and open consideration to everyone. If you require any reasonable adjustments during the recruitment process, please contact our recruitment team to discuss any further support you may need. Connect with us at baesystems.com/connect

Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks.

Closing Date: 13th April 2026

We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.

#LI-SH1

#LI-Onsite