Insider Threat Senior Analyst | S3 | CISO

Country: United Kingdom

Interested in part-time, job-share or flexible working? We want to talk to you! Join our community. We have a fantastic opportunity to join the bank as an Insider Threat Analyst as part of the Technology Risk & Cybersecurity team. The purpose of this role is to prevent, detect and respond to security risks originating from within the organisation, extending the DLP controls and adding and mapping likely insider threat actor motivations to identify techniques, control gaps and develop hunting techniques to improve visibility and controls.

Here you’ll collaborate with some senior stakeholders both internally and externally to promote the sharing of intelligence and best practices and will deal with escalations appropriately, ensuring data protection whilst allowing colleagues to perform their roles as crucially and effectively as possible.

The difference you’ll make:

• Overseeing and providing day to day management of the Insider Threat Team and activities to ensure effectiveness and productivity, ensuring risks are balanced against the requirements of our businesses to share data with our approved 3rd parties, regulators and customers.
• Taking ownership of the development of enhanced strategies and incident response playbooks, (identify, plan and design insider threat use cases, promoting high fidelity hunting to regular hunts or automated alerting).
• Identifying visibility and control gaps and working with relevant teams to close gaps.
• Collating, organising and presenting insider threat trends and areas of interest to the insider threat forum and communicating to senior leads for awareness of significant incidents.
• Coordinating the application of information security laws in computer crime investigation, ensuring optimisation to increase the response speed and outcome reliability.
• Assisting in developing internal control reports provided to external auditors.

What you’ll bring:

These are the essential requirements you need to be successful in this role:

• Experience in Technical Insider Threat leadership (collaboration and problem-solving abilities involving multiple, complex systems).
• Knowledge and experience of concepts, tools, and practices of dealing with Insider threat, computer crime and fraud.
• Exceptional scripting and automation experience within a cyber security context with data analysis and security monitoring, SIEM and log analysis capability, pattern recognition.
• Experience of identifying, managing, and producing incident updates, reports, and recommendations to SLT to facilitate decision-making and risk management.

It would also be nice for you to have:

• Use of AI for cybersecurity defence.
• Experience of user behaviour analytics.
• Undergraduate degree in appropriate and relevant qualification, for example: Certified Insider Threat Program Manager (CITPM), Certified Computer Examiner (CCE), GIAC Certified Forensic Analyst (GCFA), Certified Computer Forensics Examiner or equivalent.
• Understanding of banking systems and operations.

What else you need to know:

This is a permanent role. Our preferred location for this role is at Unity Place, Milton Keynes, but we’ll also consider locating the role in Bradford. We want our people to thrive at work and home and also be able to deliver the best outcomes for our customers and to help each other develop. To support this, we offer site-based contracts with a hybrid working pattern and our expected level of attendance in an office is at least 12 days per month (pro-rata for part-time roles). If you apply for this role in this location, it’s important you consider your travelling distance, time and cost from your home to the office location. We’re happy to discuss specific working patterns and arrangements within this hybrid approach during the recruitment process. If you’re interested in this role but with part time hours or a job-share we would still love to hear from you and discuss these.

Application process:

If your application is successful a member of our recruitment team will be in touch. We will arrange a short call with you to learn more about you and what you are looking for from your next career move, as well as answer any questions you have about working in the Santander tech team. If both sides agree we will send your CV to the hiring manager to review. For this position, the interview process will be:

• 1st Stage – a 30-45 min introductory conversation to explore your experience and the position in more detail.
• 2nd Stage – A technical test to be completed ahead of a formal 60 min interview consisting of Competency questions and answers.

If there’s anything we can do in the recruitment process to help you achieve your best, please let us know.

Inclusion:

At Santander we’re creating a thriving workplace where all colleagues feel they belong and are supported to succeed. We all help to make Santander a workplace that celebrates diversity and attracts, retains and develops the most talented and committed people through living our values of Simple, Personal, and Fair.

How we’ll reward you:

As well as a competitive salary, you’ll enjoy a benefits package that you can tailor to your needs. Eligible for a discretionary performance-related annual bonus. We put 8% of salary into your pension, even if you don’t contribute yourself. We’ll pay in up to 12.5% of salary, if you contribute as well, and you can take some of our contribution in cash if you prefer. 30 days’ holiday plus bank holidays, which increases to 31 days after 5yrs service, with the option to purchase up to 5 contractual days per year. £6,000 car allowance per year. Company funded individual private medical insurance. Voluntary healthcare benefits at discounted rates such as private medical insurance for your family, dental insurance, and health assessments. Protection for you and your family, with company-funded death-in-service benefit and income protection insurance, and the option to take advantage of discounted rates for additional life assurance and critical illness cover. Share in Santander’s success by saving or investing in our share plans. As a Santander UK employee, you are able to request staff versions of our products like our Edge Current Accounts and Credit Cards with no fees, as well as apply to many other deals and discounts in Santander products and services.

What to do next:

If this sounds like a role you’re interested in, then please apply. If there’s anything we can do in the recruitment process to help you achieve your best, get in touch. Whether it’s a copy of our application form in another format or additional assistance, we’re available through telephone, email, or face to face. You can contact us at resourcing@santander.co.uk or call 0870 414 9080.