Threat Intelligence Analyst in York

The Threat Intelligence Analyst will work in our Cyber Fusion Centre, which is responsible for the protection, detection and response capabilities used to safeguard our business from cyber threats. You will act as the subject matter expert for cyber threats, scrutinising the digital landscape to detect emerging threats and vulnerabilities. You will be responsible for gathering, analysing and disseminating intelligence from multiple sources regarding potential and actual cyber threats that can be used to inform and support our cyber decision-making processes. The role is essential in anticipating and countering cyber-attacks before they can inflict damage on our business.

You will work closely with both our Red and Blue Teams to continuously improve our detection and response capabilities, identifying vulnerabilities and control gaps to ensure we can pre-empt emerging threats and plan improvements to our cyber defences. You will play a pivotal role in defending our business from cyber threats. By continuously monitoring, analysing and actioning intelligence, you will be on the front line of protecting our business assets and interests from harm.

The role is based in either York (UK) or Lisbon (Portugal) and is a permanent position. Travel to other team locations will be required as necessary.

Key Responsibilities

• Manage the end-to-end intelligence lifecycle, including the development and maintenance of a clear and comprehensive set of intelligence requirements to support our overall business objectives.
• Collect data on potential threats from various sources, including open source (OSINT), human intelligence (HUMINT), technical intelligence, proprietary intelligence feeds, and dark web monitoring.
• Develop and continuously maintain a pipeline of new intelligence sources to integrate with our Fusion Centre that support our overall intelligence requirements.
• Research, analyse and evaluate the patterns, trends and anomalies needed to assess the potential impact of threats to our business.
• Use specialised tools and techniques to gather relevant security information and intelligence, and keep up-to-date with the latest threat vectors.
• Prepare detailed reports and briefings for various stakeholders outlining the nature of threats, their potential impact and recommended mitigation approach.
• Support live incident response by analysing the threat, determining its origin and motivation and suggesting rapid response actions that can be used to contain the threat and potential impact.
• Work with external entities such as government agencies and industry groups to share threat intelligence, and enhance the collective understanding and response to cyber threats.
• Stay ahead of cyber threats by tracking their evolution, predicting future attack trends and providing insight to support the development of our overall cyber strategy.
• Conduct training sessions and awareness initiatives to educate our business community about threat detection and response techniques.
• Use threat intelligence to develop and maintain our attack models used in the Fusion Centre.
• Generate strategic, ad-hoc (tactical) and operational intelligence products as required.
• Evaluate and grade intelligence sources to ensure we are only acting on reliable data.

Candidate Profile

• Ideally 2yrs+ experience in a threat intelligence role, preferably with a MSSP, Government agency or similar financial services organisation.
• Knowledge of the intelligence lifecycle.
• Comprehensive knowledge of common hacking techniques and the latest cyber threats.
• Good working knowledge of using cyber threat intelligence and attack modelling frameworks.
• Excellent research and analytical skills with the ability to work under own initiative.
• Highly inquisitive and analytical, with ability to clearly separate facts from opinions.
• Good presentation and report writing skills.
• BSc or MSc in Cybersecurity is desirable.
• Industry recognised qualifications such as GCTI and CCTIM and GPEN are desirable.

About Hiscox

As an international specialist insurer we are far removed from the world of mass market insurance products. Instead we are selective and focus on our key areas of expertise and strength - all of which is underpinned by a culture that encourages us to challenge convention and always look for a better way of doing things.

We insure the unique and the interesting. And we search for the same when it comes to talented people. Hiscox is full of smart, reliable human beings that look out for customers and each other. We believe in doing the right thing, making good and rebuilding when things go wrong. Everyone is encouraged to think creatively, challenge the status quo and look for solutions.

Scratch beneath the surface and you will find a business that is solid, but slightly contrary. We like to do things differently and constantly seek to evolve. We might have been around for a long time (our roots go back to 1901), but we are young in many ways, ambitious and going places.

Some people might say insurance is dull, but life at Hiscox is anything but. If that sounds good to you, get in touch.

Diversity and Hybrid working

At Hiscox we care about our people. We hire the best people for the job and we’re committed to diversity and creating a truly inclusive culture, which we believe drives success.

We have also learned over the past few years that working life doesn’t always have to be in the office, and now it is safe to do so we have introduced hybrid working to encourage a healthy work life balance. This hybrid working model is set by the team rather than the business to enable you to manage your own personal work-life balance. We see it as the best of both worlds; structure and sociability on one hand, and independence and flexibility on the other.

Apply now for further information. You can follow Hiscox on LinkedIn, Glassdoor and Instagram (@HiscoxInsurance).