At a Glance
- Tasks: Join us to simulate cyber-attacks and enhance our security capabilities.
- Company: TP ICAP, a leading global market infrastructure provider.
- Benefits: Inclusive culture, career growth, and opportunities to innovate.
- Other info: Diverse team environment with a focus on collaboration and continuous improvement.
- Why this job: Make a real impact in cybersecurity while working with cutting-edge technology.
- Qualifications: Experience in offensive security and strong knowledge of modern attacker tactics.
The predicted salary is between 55000 - 65000 £ per year.
The TP ICAP Group is a world leading provider of market infrastructure. Our purpose is to provide clients with access to global financial and commodities markets, improving price discovery, liquidity, and distribution of data, through responsible and innovative solutions. Through our people and technology, we connect clients to superior liquidity and data solutions. The Group operates from more than 60 offices in 27 countries. We are 5,300 people strong. We work as one to achieve our vision of being the world's most trusted, innovative, liquidity and data solutions specialist.
Role Overview
TP ICAP are seeking an experienced Red/Purple team operator to assist the Adversary Emulation Manager with elevating TP ICAP's prevention and detection capability.
Role Responsibilities
- Define and execute purple team sprints that materially and demonstratively improve TP ICAP's ability to prevent and detect modern attacks.
- Simulate both established and emerging attacker TTPs and personally build the respective detection rules and response procedures.
- Through the delivery of purple team sprints, identify opportunities to reduce TP ICAP's attack surface using preventative controls.
- Work in tandem with the SOC to:
- Tune existing rules and increase alert fidelity/decrease alert fatigue.
- Include analysts on the purple team journey, aiding in staff retention.
- Train analysts in modern attacker TTPs and the 'attacker mindset'.
- Work with the Security Engineering team as necessary to support the deployment and tuning of security-related tooling, particularly those that pertain to prevention and detection.
- Develop processes for attack surface monitoring and constant validation through automation.
- Act as an escalation point for the SOC and assist with incident response.
- Feed into prioritisation of sprint focus areas.
Experience/Competencies
- Practical experience emulating sophisticated cyber-attacks, likely in a Purple or Red Team capacity.
- Active contributor to offensive security research and/or tooling, perhaps presenting this research at industry-recognised conferences and forums.
- Able to evade defensive controls such as EDR and AV, tailoring open-source tooling and rolling your own where required.
- Experience working closely with the SOC to build detection capability.
- Strong knowledge of offensive security and modern attacker TTPs.
- Familiarity with Mitre ATT&CK.
- Development/automation experience.
- Familiarity with AWS is preferred.
Not The Perfect Fit?
Concerned that you may not meet the criteria precisely? At TP ICAP, we wholeheartedly believe in fostering inclusivity and cultivating a work environment where everyone can flourish, regardless of your personal or professional background. If you are enthusiastic about this role but find that your experience doesn't align perfectly with every aspect of the job description, we strongly encourage you to apply. You may be the ideal candidate for this position or another opportunity within our organisation.
Company Statement
We know that the best innovation happens when diverse people with different perspectives and skills work together in an inclusive atmosphere. That's why we're building a culture where everyone plays a part in making people feel welcome, ready and willing to contribute.
Adversary Emulation Analyst in London employer: TP ICAP
At TP ICAP, we pride ourselves on being a leading employer in the financial services sector, offering a dynamic work environment that fosters innovation and collaboration. Our London office is not only a hub for cutting-edge technology and market solutions but also a place where employees are encouraged to grow through continuous learning and development opportunities. With a strong commitment to inclusivity and a culture that values diverse perspectives, we ensure that every team member feels valued and empowered to contribute to our mission of delivering exceptional liquidity and data solutions.
StudySmarter Expert Advice🤫
We think this is how you could land Adversary Emulation Analyst in London
✨Tip Number 1
Network like a pro! Get out there and connect with folks in the industry. Attend meetups, webinars, or even conferences related to cybersecurity. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, especially those related to adversary emulation or offensive security. This gives potential employers a tangible look at what you can do and sets you apart from the crowd.
✨Tip Number 3
Prepare for interviews by practising common questions and scenarios specific to the role. Think about how you would handle real-world attacks and be ready to discuss your thought process. We want to see that 'attacker mindset' in action!
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining TP ICAP and being part of our innovative team.
We think you need these skills to ace Adversary Emulation Analyst in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV reflects the skills and experiences that align with the Adversary Emulation Analyst role. Highlight any relevant experience in purple or red team operations, and don’t forget to mention your familiarity with modern attacker TTPs!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you’re passionate about the role and how your background makes you a great fit. Be sure to mention any specific projects or achievements that demonstrate your expertise in offensive security.
Showcase Your Technical Skills:In this field, technical skills are key! Make sure to include any relevant tools or technologies you’ve worked with, especially those related to detection and prevention. If you have experience with AWS or automation, definitely highlight that!
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to see your application and get to know you better. Plus, it shows you’re serious about joining our team at TP ICAP!
How to prepare for a job interview at TP ICAP
✨Know Your TTPs
Make sure you’re well-versed in the latest attacker tactics, techniques, and procedures (TTPs). Brush up on the MITRE ATT&CK framework and be ready to discuss how you’ve applied this knowledge in previous roles. This will show your understanding of the adversary mindset and how you can contribute to TP ICAP's purple team efforts.
✨Showcase Your Experience
Prepare to share specific examples of your experience in emulating cyber-attacks. Highlight any offensive security research you've conducted or tools you've developed. If you've presented at conferences, mention that too! This demonstrates your active contribution to the field and your commitment to staying ahead of modern threats.
✨Collaboration is Key
Since the role involves working closely with the SOC and other teams, be ready to discuss how you’ve successfully collaborated in past projects. Share examples of how you’ve trained others or improved processes through teamwork. This will illustrate your ability to work as part of a cohesive unit at TP ICAP.
✨Ask Insightful Questions
Prepare thoughtful questions about TP ICAP’s current security posture and future initiatives. Inquire about their approach to reducing the attack surface or how they measure the success of purple team sprints. This shows your genuine interest in the role and helps you assess if the company aligns with your career goals.
