Cyber Threat Intelligence Analyst

About Ekco

Founded in 2016, Ekco is now one of the fastest growing cloud solution providers in Europe! We specialise in enabling companies to progress along the path of cloud maturity, managing transformation and driving better outcomes from our clients’ existing technology investments. In a few words, we take businesses to the cloud and back! We have over 1000 highly talented and supportive colleagues (and counting) across a number of regional offices in the UK, Ireland, Benelux, South Africa & Malaysia.

This is a fantastic opportunity to join our fast-growing Intelligence & Exposure team where you will take ownership of delivering Ekco's Managed Cyber Threat Intelligence service, using market-leading threat intelligence tooling and sources to deliver actionable intelligence products. Working as part of the Ekco Security team, you will use your insight and experience to provide tactical, operational, and strategic intelligence to both our customers and colleagues across the wider Ekco business.

Responsibilities

• Act as the subject matter expert for potential and existing Ekco MCTI customers.
• Manage business-as-usual tasking for the wider MCTI team.
• Triage, assess, and action alerts from our proactive intelligence monitoring platform.
• Perform exploratory intelligence gathering against our customers and internal systems.
• Maintain an internal library of threat actor and suspicious activity profiles.
• Track new and existing tactics, techniques, and procedures (TTPs) related to threat actors targeting our customer base.
• Provide threat context to support threat hunting and detection engineering functions.
• Support incident responders during ongoing security events.
• Apply the threat intelligence lifecycle to our existing process and products.
• Produce both short- and long-form reports and presentations from our catalogue of intelligence products.
• Identify potential new intelligence products and work with leadership to introduce these to service.
• Contribute to the Intelligence & Exposure team’s continuous improvement plan.

About You

• 2 years’ experience in cyber threat intelligence, threat hunting, or related role.
• Experience producing threat intelligence products for internal and external stakeholders.
• Experience with threat intelligence tools (Recorded Future, OpenCTI, MISP, etc.).
• Previous experience delivering cyber threat intelligence services in an MSP/MSSP desirable but not required.
• Excellent knowledge of fundamental cyber security and threat intelligence concepts, including the Diamond Model and Mitre ATT&CK framework.
• Clear and concise written and verbal communicator.
• Ability to summarise technical concepts and findings for different audiences.
• Good service mindset and understanding of client needs.
• Strong attention to detail.
• Ability to work effectively with both internal and external stakeholders.
• Evidence of published articles/presentations/reports/etc desirable but not required.

Benefits/Perks

• Time off - 25 days leave + public holidays.
• x1 day Birthday leave per year.
• Company Pension Scheme (employer contribution 5%) + flexible salary sacrifice.
• Employee Assistance Programme (EAP) - access to dedicated mental health, emotional wellbeing and general advice.
• EkcOlympics - a global activity for fun!
• Learning & development - Unlimited access to Pluralsight learning platform.
• A lot of responsibilities & opportunities to grow (also internationally).

Why Ekco

• Microsoft’s 2023 Rising Star Security Partner of the year.
• VMware & Veeam top partner status.
• Ranked as 4th fastest growing technology company in the Deloitte Fast50 Awards.
• Ekco are committed to cultivating an environment that promotes diversity, equality, inclusion and belonging.
• We recognise the value of internal mobility and encourage opportunities for internal development & progression.
• Flexible working with a family friendly focus are at the core of our company values.