Threat Researcher/Analyst

Location: UK (Remote-first with occasional in-person meetups)

At JUMPSEC, we believe our clients should not be constrained by what has gone before. We want to help them to find novel and forward-thinking ways of meeting their cyber security needs in the face of a continuously evolving and growing cyber threats. To do this, we work hard to understand our clients and the challenges they face to create tailored solutions and avoid generic, off-the-shelf products and services.

The Role

We are looking for a curious and confident Threat Researcher to join our Research and Enablement team. This role is ideal for someone with a background in technical cybersecurity who enjoys investigating emerging threats, challenging assumptions, and shaping perspectives across the industry. You may come from adversarial simulation, penetration testing, threat intelligence, digital forensics, or another route that brings relevant insight. You will contribute directly to the development of research themes, technical publications, and thought leadership for the business. You will examine underexplored areas, test dominant industry narratives, and help to set the tone for how organisations should understand, prioritise, and respond to modern cyber risks. This role is suited to someone with strong analytical skills and a willingness to express clear, well-supported opinions. The team values independence of thought, careful reasoning, and evidence-driven conclusions.

What you will do:

• Conduct technical research across a range of domains including threat actor behaviour, exploitation trends, internet-exposed technologies, and edge-case attack scenarios.
• Develop clear, accessible written output such as reports, blogs, and internal briefings.
• Shape and challenge research themes by questioning widely held assumptions and identifying where industry narratives may be misleading or incomplete.
• Contribute to the team’s quarterly research pipeline and work within defined thematic areas.
• Support the wider business with high-quality insight that strengthens client communication, public commentary, and solution design.
• Collaborate with colleagues in adversarial simulation, incident response, and threat intelligence to align findings and enhance collective understanding.
• Present research internally and externally with confidence, clarity, and authority.
• Help develop long-term research ideas that push into neglected or emerging spaces.

What we are looking for?

• A grounding in cybersecurity with prior study or roughly 1–3 years’ experience in a hands-on or analytical role.
• Experience in one or more relevant areas such as penetration testing, adversarial simulation, threat intelligence, malware analysis, SOC work, or security engineering.
• Strong written and verbal communication with the ability to present detailed information in a clear and compelling way.
• Enthusiasm for exploring edge-case scenarios, overlooked vulnerabilities, and unconventional threat models.
• A willingness to express informed opinions and defend them with sound reasoning.
• The discipline to work within a structured quarterly research model while also contributing creative ideas for future research.
• Familiarity with typical attacker techniques, common CVEs, and the broader cyber threat landscape.
• A desire to produce work that is both technically grounded and commercially applicable.

Nice to have:

• A particular interest in or degree of experience with:

• Threat Actor Tracking/Attribution
• Ransomware Research
• Malware Analysis
• AI Threat Research
• Dark Web Analysis
• ICS/OT Threat Analysis
• Cryptocurrency / Blockchain Analysis
• Or other specific areas of threat research that you are passionate about which could provide valuable insight to our clients.

A salary between £43,000-48,000 (dependent on candidate suitability)

• 25 days annual leave, including your birthday off work
• 4 paid days for charity or community work
• Flexible hybrid working
• 24/7 access to our Employee Assistance Plan (EAP)
• Earn up to £2000 in our recruitment referral scheme
• Company pension

Company Culture:

• Supportive and inclusive company culture that values diversity and encourages new ideas and perspectives
• High-autonomy environment with supportive, skilled peers.
• Annual training & research budget — use it for conferences, courses, or tooling.
• Access to red team labs, testing infrastructure, CTI, and sandbox environments.
• Opportunities to contribute to public research, tools, and community initiatives.
• Flexible work, sensible management, and zero micromanagement.

How to apply

If you are interested in applying for this role, please provide a short cover letter outlining your experience and why you would be a good fit for JUMPSEC to careers@jumpsec.com. Please reference JSThreatResearcher25 in the subject line. For more information on who we are and what we do, please visit www.jumpsec.com.

Whilst we do our utmost to reply to each candidate, we are sometimes inundated with applications, and this can lead to slight delays in replies. If you do not hear back from us within 20 working days, please consider yourself unsuccessful and we thank you for your time and effort in applying for this role.

At JUMPSEC, we believe that great people drive our success, and we embrace diversity and inclusion as integral parts of our company culture. We welcome individuals from all backgrounds, ethnicities, cultures, and genders. Diverse perspectives and ideas contribute to the uniqueness of our brand and enable the creative problem-solving that our clients value. Join us on our mission to create a safer digital world! Achieve the cyber security outcomes you need. We work to enable effective cyber security for our clients; helping them to future proof their cyber defences and realise genuine improvement over time.