Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead the Insider Threat Team to prevent and respond to internal security risks.
- Company: Join Santander, a leading bank committed to innovation and community.
- Benefits: Enjoy flexible working, competitive salary, 30 days holiday, and a generous pension scheme.
- Why this job: Make a real impact in cybersecurity while collaborating with senior stakeholders and enhancing your skills.
- Qualifications: Experience in insider threat leadership and cybersecurity tools is essential; relevant degree preferred.
- Other info: Hybrid working options available; part-time roles considered.
The predicted salary is between 48000 - 72000 £ per year.
Country: United Kingdom
Interested in part-time, job-share or flexible working? We want to talk to you! Join our community. We have a fantastic opportunity to join the bank as an Insider Threat Analyst as part of the Technology Risk & Cybersecurity team. The purpose of this role is to prevent, detect and respond to security risks originating from within the organisation, extending the DLP controls and adding and mapping likely insider threat actor motivations to identify techniques, control gaps and develop hunting techniques to improve visibility and controls.
Here you’ll collaborate with some senior stakeholders both internally and externally to promote the sharing of intelligence and best practices and will deal with escalations appropriately, ensuring data protection whilst allowing colleagues to perform their roles as crucially and effectively as possible.
The difference you’ll make:
- Overseeing and providing day to day management of the Insider Threat Team and activities to ensure effectiveness and productivity, ensuring risks are balanced against the requirements of our businesses to share data with our approved 3rd parties, regulators and customers.
- Taking ownership of the development of enhanced strategies and incident response playbooks, identifying, planning and designing insider threat use cases, promoting high fidelity hunting to regular hunts or automated alerting.
- Identifying visibility and control gaps and working with relevant teams to close gaps.
- Collating, organising and presenting insider threat trends and areas of interest to the insider threat forum and communicating to senior leads for awareness of significant incidents.
- Coordinating the application of information security laws in computer crime investigation, ensuring optimisation to increase the response speed and outcome reliability.
- Assisting in developing internal control reports provided to external auditors.
What you’ll bring:
These are the essential requirements you need to be successful in this role:
- Experience in Technical Insider Threat leadership (collaboration and problem-solving abilities involving multiple, complex systems).
- Knowledge and experience of concepts, tools, and practices of dealing with Insider threat, computer crime and fraud.
- Exceptional scripting and automation experience within a cyber security context with data analysis and security monitoring, SIEM and log analysis capability, pattern recognition.
- Experience of identifying, managing, and producing incident updates, reports, and recommendations to SLT to facilitate decision-making and risk management.
It would also be nice for you to have:
- Use of AI for cybersecurity defence.
- Experience of user behaviour analytics.
- Undergraduate degree in appropriate and relevant qualification, for example Certified Insider Threat Program Manager (CITPM), Certified Computer Examiner (CCE), GIAC Certified Forensic Analyst (GCFA), Certified Computer Forensics Examiner or equivalent.
- Understanding of banking systems and operations.
What else you need to know:
This is a permanent role. Our preferred location for this role is at Unity Place, Milton Keynes, but we’ll also consider locating the role in Bradford. We want our people to thrive at work and home and also be able to deliver the best outcomes for our customers and to help each other develop. To support this, we offer site-based contracts with a hybrid working pattern and our expected level of attendance in an office is at least 12 days per month (pro-rata for part-time roles). If you apply for this role in this location, it’s important you consider your travelling distance, time and cost from your home to the office location. We’re happy to discuss specific working patterns and arrangements within this hybrid approach during the recruitment process. If you’re interested in this role but with part-time hours or a job-share we would still love to hear from you and discuss these.
Application process
If your application is successful a member of our recruitment team will be in touch. We will arrange a short call with you to learn more about you and what you are looking for from your next career move, as well as answer any questions you have about working in the Santander tech team. If both sides agree we will send your CV to the hiring manager to review. For this position, the interview process will be:
- 1st Stage – a 30-45 min introductory conversation to explore your experience and the position in more detail.
- 2nd Stage – A technical test to be completed ahead of a formal 60 min interview consisting of Competency questions and answers.
If there’s anything we can do in the recruitment process to help you achieve your best, please let us know.
Inclusion
At Santander we’re creating a thriving workplace where all colleagues feel they belong and are supported to succeed. We all help to make Santander a workplace that celebrates diversity and attracts, retains and develops the most talented and committed people through living our values of Simple, Personal, and Fair.
How we’ll reward you.
As well as a competitive salary, you’ll enjoy a benefits package that you can tailor to your needs. Eligible for a discretionary performance-related annual bonus. We put 8% of salary into your pension, even if you don’t contribute yourself. We’ll pay in up to 12.5% of salary, if you contribute as well, and you can take some of our contribution in cash if you prefer. 30 days’ holiday plus bank holidays, which increases to 31 days after 5 years service, with the option to purchase up to 5 contractual days per year. £6,000 car allowance per year. Company funded individual private medical insurance. Voluntary healthcare benefits at discounted rates such as private medical insurance for your family, dental insurance, and health assessments. Protection for you and your family, with company-funded death-in-service benefit and income protection insurance, and the option to take advantage of discounted rates for additional life assurance and critical illness cover. Share in Santander’s success by saving or investing in our share plans. As a Santander UK employee, you are able to request staff versions of our products like our Edge Current Accounts and Credit Cards with no fees, as well as apply to many other deals and discounts in Santander products and services.
What to do next:
If this sounds like a role you’re interested in, then please apply. If there’s anything we can do in the recruitment process to help you achieve your best, get in touch. Whether it’s a copy of our application form in another format or additional assistance, we’re available through telephone, email, or face to face. You can contact us at resourcing@santander.co.uk or call 0870 414 9080.
Insider Threat Senior Analyst | S3 | CISO employer: Santander USA
Contact Detail:
Santander USA Recruiting Team
resourcing@santander.co.uk
StudySmarter Expert Advice 🤫
We think this is how you could land Insider Threat Senior Analyst | S3 | CISO
✨Tip Number 1
Familiarise yourself with the latest trends in insider threat detection and response. Being well-versed in current tools and practices will not only help you during interviews but also demonstrate your commitment to staying ahead in the field.
✨Tip Number 2
Network with professionals in the cybersecurity and insider threat community. Attend relevant conferences or webinars, and engage on platforms like LinkedIn to connect with current employees at StudySmarter or similar organisations.
✨Tip Number 3
Prepare for the technical test by brushing up on your scripting and automation skills. Familiarise yourself with common SIEM tools and data analysis techniques, as these are crucial for the role and will likely be assessed during the interview process.
✨Tip Number 4
Understand the specific challenges faced by banks regarding insider threats. Research case studies or recent incidents to discuss during your interview, showcasing your knowledge and ability to contribute to the team effectively.
We think you need these skills to ace Insider Threat Senior Analyst | S3 | CISO
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in insider threat analysis, technical leadership, and cybersecurity. Use keywords from the job description to demonstrate your fit for the role.
Craft a Compelling Cover Letter: Write a cover letter that explains why you are passionate about the role and how your skills align with the responsibilities outlined in the job description. Mention specific experiences that showcase your problem-solving abilities and technical expertise.
Showcase Relevant Skills: In your application, emphasise your experience with scripting, automation, and data analysis within a cybersecurity context. Highlight any familiarity with AI in cybersecurity and user behaviour analytics, as these are desirable skills for the position.
Prepare for the Interview Process: Familiarise yourself with the interview stages mentioned in the job description. Be ready to discuss your experience in detail and prepare for the technical test by reviewing relevant concepts and practices related to insider threats and incident response.
How to prepare for a job interview at Santander USA
✨Understand Insider Threat Concepts
Make sure you have a solid grasp of insider threat concepts, tools, and practices. Be prepared to discuss your experience in identifying and managing insider threats, as well as any relevant frameworks or methodologies you've used.
✨Showcase Your Technical Skills
Highlight your scripting and automation experience within a cybersecurity context. Be ready to provide examples of how you've used data analysis, SIEM, and log analysis to detect and respond to security incidents.
✨Prepare for Competency Questions
Since the interview includes competency questions, think about specific situations where you've demonstrated problem-solving and collaboration skills. Use the STAR method (Situation, Task, Action, Result) to structure your answers effectively.
✨Engage with Stakeholders
Demonstrate your ability to collaborate with senior stakeholders. Prepare to discuss how you've promoted the sharing of intelligence and best practices in previous roles, and be ready to suggest ways to enhance communication and cooperation within teams.
