Cyber Threat Intelligence Analyst

At Aberdeen, our ambition is to be the UK’s leading Wealth & Investments group. Strengthening talent and culture is one of our strategic priorities. We strive to make Aberdeen a great place to work so that we can attract and retain the industry’s best talent. Our people put our stakeholders at the heart of everything they do by helping us to make a positive difference to the lives of our clients, customers, colleagues, shareholders, and society. We are focused on growing our direct and advised wealth platforms and repositioning our specialist asset management business to meet client demand. We are committed to providing excellent client service, supported by leading technology and talent.

About the Department: At Aberdeen, the security and protection of our customer assets and data is of paramount importance, especially within the changing digital world. Within our Security, Resilience & Protection department, an exciting and challenging opportunity has arisen for an experienced Senior Cyber Threat Intelligence Analyst. The Senior Cyber Threat Intelligence analyst is an integral part of our Cyber Threat Intelligence Team that supports the wider Cyber Security Operations team in delivering improvements to the organisation’s security posture and keeping our business safe from Cyber-attacks.

About the Role: The successful analyst will be responsible for leading threat-hunting activities, as well as the collection, analysis, and dissemination of actionable intelligence to proactively identify, assess, and mitigate threats to the organisation. The role holder will report directly to the Cyber Threat Intelligence Lead, who is based in Edinburgh, and work with other security functions including specialist 3rd party security suppliers, global IT and business teams.

• Lead proactive, intelligence-driven threat-hunting operations to identify anomalous activity and misconfigurations that may have bypassed controls.
• Support and improve the Cyber Threat Intelligence function based on priorities and intelligence requirements/needs.
• Produce high-quality reports and briefings for technical and senior stakeholders.
• Gather TI requirements, facilitate intelligence evaluation and ensure threat information and intelligence is described in a clear, concise manner.
• Develop, test, and refine threat hypotheses based on adversary tactics, techniques, and procedures (TTPs), using Threat Intelligence frameworks.

About the Candidate: We are proud to be a Disability Confident Committed employer. If you have a disability and would like to apply to one of our UK roles under the Disability Confident Scheme, please notify us by completing the relevant section in our candidate questionnaire. One of our team will reach out to support you through your application process. The ideal candidate will possess the following:

• Demonstrable experience in threat hunting, incident response, or SOC operations.
• Understanding of Kusto Query Language (KQL) for security log analysis, threat detection, etc.
• Experience with security tools, such as SIEM, IDS/IPS, EDR/XDR, AV, web and email filtering, web application firewalls and DDoS protections, and host-based protections.
• Industry recognised certifications such as CEH, OSCP, CISSP, CTIA, CPTIA, CRTIA, GCTI etc, are highly desirable.
• Experience of working within the financial services sector is advantageous.

Our benefits: There’s more to working life than coming home with a good salary. We have an environment where you can learn, get involved and be supported. When you join us, your reward will be one of the best around. This includes 40 days’ annual leave, a 16% employer pension contribution, a discretionary performance-based bonus (where applicable), private healthcare and a range of flexible benefits – including gym discounts, season ticket loans and access to an employee discount portal.