isecjobs.com

Threat Analyst

Any location, United Kingdom

Full Time Mid-level / Intermediate GBP 52K - 97K * est.
Company logo

Coalition

Coalition combines comprehensive cyber insurance coverage and security services to help businesses prevent digital risk before it strikes.

View all jobs at Coalition

Apply now Apply later

About us

Coalition is the world's first Active Insurance provider designed to help prevent digital risk before it strikes. Founded in 2017, Coalition combines comprehensive insurance coverage and innovative cybersecurity tools to help businesses manage and mitigate potential cyberattacks.   

Opportunities to make an impact with bold thinking are real—and happening daily at Coalition.

 

About the role

We are looking for a Threat Analyst (remote) to be a key contributor in expanding Coalition’s MDR security program. This role will serve as a full-spectrum security analyst with a strong focus on detection and response within the SentinelOne platform. Securing Coalition's MDR efforts is essential to protecting our policyholders and achieving Coalition’s goals of solving cyber-security risk. The MDR team leads the company-wide efforts to improve Coalition’s security posture in close collaboration with Product, Engineering, and IT Security teams. 

You will be a key contributor to our roadmap while building up capabilities for innovative and scalable detection/response solutions. We’re targeted by the most capable adversaries, and MDR will have excellent visibility/support from the entire company.  You will use modern cloud technology stacks, and you will influence major security technology decisions. This role will report to the Head of MDR within Coalition Incident Response and will partner with the IT and Security Engineering teams.

Responsibilities

  • Lead end-to-end event investigations, from MDR alert to client reporting, with Coalitions customers.
  • Identify and investigate incidents to understand the cause and extent of a breach by leveraging technical tooling and threat intelligence sources.                                                                        
  • Conduct forensics, log, and malware analysis across a client’s environment in support of our investigations.                                                                        
  • Leverage findings from the investigation to develop and articulate expert-level opinions to both technical and executive audiences.                                                                        
  • Develop comprehensive written reports and oral presentations to both technical and executive audiences.                                                                        
  • Effectively communicate and collaborate with customers including legal counsel, and technical and executive stakeholders.                                                                        
  • Collaborate with practice leadership in leveraging subject matter expertise in the scoping of customer engagements. 

Skills and Qualifications

  • 4+ years of experience in MDR/security monitoring space, including commonly used tools such as SentinelOne and Crowdstrike.                                                                                  
  • 4+ years of experience and deep technical knowledge of techniques to contain an active incident, collect event data, analyze data for IOCs/IOAs, and evidentiary reporting to internal and external stakeholders. 
  • 4+ years of experience and an understanding of cyber security operations, security monitoring, EDR, and SIEM tooling, e.g., Endgame, Falcon, and Splunk.  

Bonus Points 

  • Certifications: Security+, CISA
  • Knowledge of enterprise security controls related to authentication and identity management, security network architectures, and application-based security controls.                                        
  • Excellent time management, writing, and communications skills.                                        
  • Network traffic and protocol analysis with tools like Wireshark.                                        
  • Experience building scripts, tools, and methodologies that enhance investigation processes.    
  • Client-facing experience such as any customer service-driven role.

 

Why Coalition? 

Work at Coalition is centered on the joint mission to Protect the Unprotected. We have built a remote-first, highly inclusive culture that welcomes people from diverse backgrounds. We trust each other to take responsibility, share ownership of outcomes, and put in the work together to protect businesses from digital risk. Coalition’s exceptional growth stems from its ability to address real-world problems for organizations of all sizes while remaining true to our founding values of character, humility, responsibility, purpose, authenticity, and inclusion.

We’re always looking for collaborative, inquisitive individuals to join #OurCoalition.

Visit our Newsroom > 

Privacy Notice

Coalition is committed to protecting your privacy and handling your personal information responsibly. We collect, use, and store personal information as necessary for the recruitment process and in compliance with applicable privacy laws and regulations in all regions where we operate. We want you to understand what personal information we collect, how we use it, and your rights regarding access, correction, and deletion of your data where applicable. Information submitted, collected, and processed as part of your application is subject to Coalition's Privacy Policy. For further details, please review our full Privacy Policy or contact us with any questions regarding how your information is handled.

Our Privacy Policy > 

Anti-Discrimination Notice

Coalition is proud to be an Equal Opportunity employer. Our policy is to provide equal employment opportunities to all individuals, without discrimination or harassment on the basis of any characteristic protected by applicable laws in each country where we operate. This commitment includes, but is not limited to, ensuring equal treatment in recruitment, selection, training, promotion, transfer, compensation, and all other aspects of employment. Coalition does not tolerate discrimination or harassment of any kind, and we are dedicated to fostering an inclusive and supportive workplace.

Accommodations

Coalition is committed to providing reasonable accommodations to qualified individuals with disabilities, including applicants and employees, in accordance with applicable laws and regulations in each country where we operate. Our policy is to support equal opportunity in the hiring process by considering qualified applicants regardless of disability or other protected characteristics, unless providing accommodation would impose an undue hardship or disproportionate burden. If you require accommodation to complete an application, interview, pre-employment testing, or participate in the selection process, please contact us at candidateaccommodations@coalitioninc.com. We also consider all qualified applicants, including those with criminal histories, in line with applicable laws and regulations in each jurisdiction.

To all potential candidates: Coalition primarily does not use third-party recruiting services. Potential candidates will only be contacted by Coalition, Inc. during the recruitment process. You can always verify any opportunity on our official careers page http://www.coalitioninc.com/careers.

To all recruitment agencies: Coalition does not accept unsolicited agency resumes. Do not forward resumes to our email alias, employees, or other physical or virtual organization locations. Coalition is not responsible for any fees related to unsolicited resumes.

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  1  0  0
Categories: Analyst Jobs Threat Intel Jobs

Tags: CISA Cloud Compliance CrowdStrike EDR Forensics Incident response Malware Monitoring Privacy SIEM Splunk Threat intelligence

Perks/benefits: Career development Insurance

Region: Europe
Country: United Kingdom

More jobs like this

« Back to job search To the top ↑

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.

Information System Security Officer jobsSenior Cloud Security Engineer jobsSenior Cybersecurity Engineer jobsSenior Security Analyst jobsSystems Administrator jobsIT Security Analyst jobsCyber Security Specialist jobsSenior Information Security Analyst jobsInformation Security Manager jobsSenior Network Security Engineer jobsSenior Information Security Engineer jobsSenior Product Security Engineer jobsSecurity Consultant jobsInformation Systems Security Engineer jobsSecurity Specialist jobsChief Information Security Officer jobsInformation System Security Officer (ISSO) jobsSenior Cyber Security Engineer jobsIT Security Engineer jobsCybersecurity Specialist jobsCyber Threat Intelligence Analyst jobsSenior IT Auditor jobsSenior Software Engineer jobsSecurity Operations Analyst jobsNetwork Engineer jobs
EDR jobsCEH jobsTS/SCI jobsEncryption jobsJava jobsSplunk jobsThreat detection jobsSDLC jobsIDS jobsFinance jobsMalware jobsIPS jobsTerraform jobsRMF jobsTop Secret jobsSQL jobsForensics jobsDocker jobsSOC 2 jobsActive Directory jobsCompTIA jobsITIL jobsIntrusion detection jobsOWASP jobsClearance Required jobs
CRISC jobsGIAC jobsAnsible jobsVPN jobsTCP/IP jobsHIPAA jobsDoDD 8570 jobsMITRE ATT&CK jobsSOAR jobsData Analytics jobsOSCP jobsIT infrastructure jobsJira jobsBanking jobsDNS jobsZero Trust jobsSOX jobsJavaScript jobsIndustrial jobsUNIX jobsCISO jobsCCSP jobsGCIH jobsSANS jobsMachine Learning jobs