Senior Cyber Threat Intelligence Analyst

Job Description:

The Opportunity 

We have a fantastic new opportunity for a Senior Cyber Threat Intelligence Analyst to join the ARCHANGEL™ Cyber Threat intelligence team. ARCHANGEL™ delivers specialist technical cyber security services to a range of clients across a variety of industries including government, defence, homeland security, CNI and aerospace. The ARCHANGEL™ CTD Team sits within the Bristol Service Operations Centre and is responsible for providing actionable cyber threat intelligence to the SOC team, as well as higher level reports for the leadership teams. The role will be a mixture of home based and onsite with occasion travel. We will also consider remote working for the right candidate.

What you’ll do as a Senior Cyber Threat Intelligence Analyst: 

• Lead and develop Leonardo UK’s cyber threat intelligence function.  
• Produce and brief regular reports, presentations, and situational updates for executive decision makers, security operations teams, information technology teams, and enterprise risk management teams. 
• Oversee, review, and produce mature tactical, operational, and strategic threat intelligence products, meeting prescribed Intelligence Requirements across a broad range of incidents and cyber threat activity topics. 
• Inform and guide proactive measures to prevent and detect cyber security threats, providing contextual information from ongoing threat intelligence research driven by the business’ intelligence requirements.  
• Collaborate with and advise SOC Management, Incident Response, Security Operations, Detection Engineering and Vulnerability Management teams on security incidents and threat intelligence topics.  
• Lead the engagement with internal stakeholders, customers, industry peers, and government agencies on threat intelligence projects and related matters.  
• Plan and maintain the team’s daily tasks and ongoing projects in accordance with SOC and Business priorities. 
• Conceptualise and drive the continuous improvement of analyst skills and capabilities, threat intelligence products, processes, and technologies.   
• Conceptualise, refine, and update the business’ working cyber threat model. 
• Develop novel, automated, or streamlined processes for research and analysis. 
• Research threat actors and their associated tools, tactics, procedures, and objectives. 

What we need from you: 

You really must have: 

• Proven track record of working within a threat intelligence role 
• Ability to appropriately communicate complex security topics constructively and confidently to stakeholders with varying levels of understanding. 
• Excellent written, verbal, and visual communications skills.  
• Technical and applicable knowledge of the cyber threat landscape within the context of aerospace and defence, including threat actors, attack paths, tactics, techniques, and procedures. 
• Knowledge and understanding of the threat landscape as it applies to other industries such as Manufacturing, Finance, and Aviation. 
• An in depth understanding of common security and threat intelligence concepts and frameworks such as MITRE ATT&CK, the cyber kill chain, STIX etc. 
• Ability to manage competing priorities, working efficiently under pressure to deliver both prioritised intelligence requests and scheduled tasks. 
• Comfortable and adaptable to new technology and their respective risks. 

It would be nice if you had: 

• SANS/GIAC/CREST Certifications 
• Knowledge of security appliances, e.g. Tenable, Splunk, etc. 
• IT Service Management Tool experience (Service Now, JIRA) 
• Penetration testing or technical cyber security experience. 
• Coding experience (Python, Bash, Powershell). 
• Experience working with varied Threat Intelligence Platforms. 

Security Clearance 

You must be eligible for full security clearance.  For more information and guidance please visit : https://www.gov.uk/government/publications/united-kingdom-security-vetting-clearance-levels 

Life at Leonardo  

With a company funded benefits package, a commitment to learning and development, and a flexible approach to working hours focused on the needs of both our employees and customers, a career with Leonardo has never offered as many opportunities or been more accessible to as many people. 

• Flexible Working: Flexible hours with hybrid working options. For part time opportunities, please talk to us 
• Company funded flexible benefits: Access to private healthcare, dental schemes, Workplace ISA, Go Green Car Scheme, technology and lifestyle options (£500 annual allowance) 
• Holidays: 25 days plus bank holidays, option to buy/sell leave and to accrue up to 12 additional flexi leave days per year 
• Pension: Award winning pension scheme (up to 15% employer contribution) 
• Wellbeing: Employee Assistance Programme with access to free mental health support, financial wellbeing support and network groups to demonstrate our ongoing commitment to diversity & inclusion (Enable, Pride, Equalise, Armed Forces, Carers, Wellbeing and Ethnicity) 
• Lifestyle:  Discounted Gym membership, Cycle to work scheme 
• Training: Free access to more than 4000 online courses via Coursera and Linkedin Learning 
• Referral Incentive: You can earn a reward for successfully referring a friend or family member 
• Bonus: Scheme in place for all employees at management level and below  

For a full list of our company benefits please our website here. 

Leonardo is a global high-tech company and one of the key players in Aerospace, Defence and Security. Headquartered in Italy, Leonardo has over 45,000 employees, of which 8,000 are based at 8 sites throughout the UK. 

At Leonardo UK, we believe that a diverse and inclusive work environment unlocks our people’s full potential and drives innovation and creativity. We work hard to offer a welcoming, accessible and inclusive place to work for all of our people, creating a culture where everyone can thrive, feel safe and have a sense of belonging and connection. 

Primary Location:

Contract Type:

Hybrid Working: