Cyber Threat Intelligence Analyst | S2 | CISO

The Cyber Threat Intelligence Analyst is a high tempo, dynamic, operational role that sits within the Threat Management team who are responsible for the timely and accurate production, analysis, and dissemination of cyber threat intelligence relevant to the business or sector. The Cyber Threat Intelligence Analyst will provide further detailed information regarding the capability and intent of cyber threat actors and their methods when conducting cyber-attacks in order to protect Santander UK customers.

The difference you’ll make:

• Producing accurate intelligence reports and briefs suitable for tactical, operational, and strategic customers
• Investigating and detecting cyber and geopolitical threats using all available data sources
• Improving Operational Threat Intelligence creation by understanding how existing controls mitigate threats as well as identifying any gaps for remediation
• Reporting Threat Intelligence Assessments that are relevant and contextualised for internal use, or for customers of our service including IOCs, TTPs and threat assessments
• Conducting deep analyses of adversaries and the tactics they employ against our infrastructure and services to provide rich threat context that allows the organisation to understand, prioritise and counter advanced threats and attacks with a focus on minimising business impact
• Developing methods to enhance and automate existing processes

What you’ll bring:

These are the essential requirements you need to be successful in this role:

• Previous experience of cyber threat intelligence analysis and how to handle sensitive data
• Excellent report writing, presentational and communication skills
• Deep knowledge of TTPs, exploitation of network protocols and vulnerabilities
• Thorough understanding of techniques used to bypass cyber security controls
• Ability to demonstrate methodologies and analytical skills including structured analytical techniques, Mitre Attack and cyber kill chain
• Excellent knowledge and experience of a wide range of both open source and commercial tools / data sources

It would also be nice for you to have:

• Ability to engage and influence senior business stakeholders
• Sound understanding of cyber threats in the finance sector
• Experience working with intelligence collection plans, threat intelligence platforms and premium intelligence sources/feeds
• Degree within relevant field and/or technical qualifications such as CREST/SANS desirable or equivalent

What else you need to know:

This is a permanent role and based in Milton Keynes. We want our people to thrive at work and home, and also be able to deliver the best outcomes for our customers and to help each other develop. To support this, we offer site-based contracts with a hybrid working pattern and our expected level of attendance in an office is at least 12 days per month (pro-rata for part-time roles). If you apply for this role in this location, it’s important you consider your travelling distance, time and cost from your home to the office location. We’re happy to discuss specific working patterns and arrangement within this hybrid approach during the recruitment process. If you’re interested in this role but with part time hours or a job-share we would still love to hear from you and discuss these.

Application process:

If your application is successful a member of our recruitment team will be in touch. We will arrange a short call with you to learn more about you and what you are looking for from your next career move, as well as answer any questions you have about working in the Santander tech team. If both sides agree we will send your CV to the hiring manager to review. For this position, the interview process will be: 1st Stage – Technical Interview – this will a 30min technical interview with one of the team 2nd Stage – A one-hour formal interview where we will ask both technical and competency-based questions. This can be done virtually or face to face depending on your situation. If there’s anything we can do in the recruitment process to help you achieve your best, please let us know.

Inclusion:

At Santander we’re creating a thriving workplace where all colleagues feel they belong and are supported to succeed. We all help to make Santander a workplace that celebrates diversity and attracts, retains and develops the most talented and committed people through living our values of Simple, Personal, and Fair.

How we’ll reward you:

As well as a salary, we offer a wide range of benefits that you can choose from and tailor to your needs. £500 annual cash allowance to spend on our great range of benefits. Eligible for a discretionary performance-related annual bonus. We put 8% of salary into your pension, even if you don’t contribute yourself. We’ll pay in up to 12.5% of salary, if you contribute as well, and you can take some of our contribution in cash if you prefer. 27 days’ holiday plus bank holidays, which increases to 28 days after 5 years service, with the option to purchase up to 5 contractual days per year. Free access to a range of digital health services, including GP. Protection for you and your family, with company-funded death-in-service benefit and income protection insurance, and the option to take advantage of discounted rates for additional life assurance and critical illness cover. 24/7 access to an online employee discount platform including retailers, entertainment, eating out, travel and more. Voluntary healthcare benefits at discounted rates including medical insurance, dental insurance, and health assessments. Share in Santander’s success by saving or investing in our share plans. Support your favourite causes through charitable giving and our community partnerships. As a Santander UK employee, you are able to request staff versions of our products like our Edge Current Accounts and Credit Cards with no fees, as well as apply to many other deals and discounts in Santander products and services.

What to do next:

If this sounds like a role you’re interested in, then please apply. If there’s anything we can do in the recruitment process to help you achieve your best, get in touch. Whether it’s a copy of our application form in another format or additional assistance, we’re available through telephone, email, or face to face.