Threat Intelligence Analyst
Threat Intelligence Analyst
Apply locations: UK, York; Portugal, Lisbon
Job Type: Full time
Posted on: Posted Yesterday
End Date: January 20, 2025 (4 days left to apply)
Job Requisition ID: R0016954
Position: Threat and Vulnerability Analyst
Reporting to: Red Team Leader (Cyber Fusion Centre)
Location: York (UK) or Lisbon (Portugal)
Permanent Band: I
Company Description:
Hiscox is a diversified international insurance group with a powerful brand, strong balance sheet and plenty of room to grow. Listed on the London Stock Exchange and headquartered in Bermuda, Hiscox has over 3,000 staff across 14 countries and 34 offices.
The Role:
The Threat and Vulnerability Analyst works in our Cyber Fusion Centre, responsible for the protection, detection and response capabilities used to safeguard our business from cyber threats. You will proactively identify threats to our systems and networks, together with potential vulnerabilities that could be exploited by malicious threat actors. Your work will enhance our security posture by providing insights into potential attack vectors and security weaknesses. You will emulate the threats we face by mimicking the Tactics, Techniques and Procedures (TTPs) used by real-world hackers. The primary focus of your role will involve the use of our core Threat and Vulnerability Management (TVM) platforms to perform routine security scanning and analysis. You will triage and prioritise the scan results and work with our Ethical Hackers and Security Engineers to determine appropriate mitigations. You will also collaborate with our Blue Team to ensure vulnerabilities are understood, and that monitoring capabilities are optimised to detect exploitation attempts.
Key Responsibilities:
1. Manage the daily operations and maintenance of our TVM platforms, ensuring we have the latest scan libraries and threat intelligence.
2. Analyse and prioritise outputs from TVM platforms and translate into mitigation actions.
3. Perform routine vulnerability assessments of our infrastructure and applications, documenting findings and recommendations for remediation.
4. Perform network reconnaissance to gather information about potential high-value targets in our network.
5. Track open security vulnerabilities and manage them through the lifecycle to closure.
6. Escalate complex issues to our Ethical Hackers for further investigation.
7. Collaborate with our Blue Team to validate detection and response capabilities.
8. Support the coordination of Penetration Tests performed by external third parties.
9. Support the planning and delivery of Red and Blue Team exercises as required.
10. Support in-flight security incidents by providing insight into vulnerability exposure and potential threat vectors.
11. Prepare detailed reports and briefings for stakeholders outlining threats, impacts, and recommended mitigations.
12. Maintain up-to-date knowledge of the latest threat actors and their TTPs.
Candidate Profile:
1. 0 to 3+ years experience in a cyber analyst role, preferably with a focus on TVM technologies.
2. Excellent working knowledge of the vulnerability management lifecycle.
3. Excellent analytical skills with the ability to work under own initiative.
4. Comprehensive knowledge of common hacking techniques and the latest cyber threats.
5. Good working knowledge of using cyber threat intelligence and attack modelling frameworks.
6. Desire to pursue a career in Ethical Hacking and willingness to undertake further training.
7. Highly curious with lateral thinking and problem-solving abilities.
8. Good presentation and report writing skills.
9. BSc or MSc in Cybersecurity is essential if you have no formal experience.
10. Industry recognised qualifications such as CompTIA PenTest+ and GIAC GPEN are desirable.
Diversity & Benefits:
At Hiscox, we care about our people. We hire the best people for the job and are committed to diversity and creating a truly inclusive culture. Our benefits package includes a bonus, contributory pension, 25 days annual leave plus 2 Hiscox days and a 4-week paid sabbatical with every 5 years of service, private medical for all the family and much more.
Work with amazing people and be part of a unique culture.
Why work here?
If you want to help build a brilliant future; work with amazing people; be part of a unique company culture; and enjoy great employee benefits that take care of your mental and physical wellbeing, come and join us.
Get in touch
If this is your first time visiting our career site and you wish to stay in touch, please select the 'Introduce yourself' button on the top right. This will allow us to contact you with suitable vacancies.
About us
We’re a global, specialist insurer headquartered in Bermuda and listed on the London Stock Exchange. With 3,000 employees and 32 offices in 12 countries, we’re a business with lots of opportunity for people with talent, spark, and ambition.
#J-18808-Ljbffr