Threat Intelligence Analyst

Summary

We're hiring for a skilled Threat Intelligence Analyst to fortify our cybersecurity efforts. This crucial role involves identifying and analysing cyber threats, utilising advanced threat intelligence tools and methodologies to safeguard our digital infrastructure. Collaborating with our dedicated Cyber Security team, you will play a vital role in integrating actionable intelligence into our security strategies. This position offers the unique opportunity to work on the forefront of cyber defense, providing insights that will directly impact the security of Marks & Spencer’s operations and its alignment with the broader InfoSec community.

What’s in it for you

Being a part of M&S is exactly that – playing your part to bring the magic of M&S to our customers every day. We’re an inclusive, dynamic, exciting, and ever evolving business built on doing the right thing and bringing exceptional quality, value, service to every customer, whenever, wherever and however they want to shop with us.

Here are some of the benefits we offer that make working for M&S just that little bit more special…

• After completing your probationary period, you’ll receive 20% colleague discount across all M&S products and many of our third-party brands for you and a member of your household.
• Competitive holiday entitlement with the potential to buy extra holiday days!
• Discretionary bonus schemes awarded based on how you achieve your personal objectives and our performance as a business.
• A generous Defined Contribution Pension Scheme and Life Assurance.
• A dedicated welcome to our teams with a tailored induction and a wide range of training programmes to develop your skills.
• Amazing perks and discounts via our M&S Choices portal to maximise your financial and personal wellbeing.
• Industry-leading parental, adoption and neonatal policies, providing support and flexibility for your family.
• Access to a fantastic range of wellbeing support for all colleagues including access to our 24/7 Virtual GP and PAM Assist to support you and your family.
• A charity volunteer day to support a charity or cause you're passionate about through a dedicated day away from work.

What you'll do

• Manage day-to-day threat intelligence processes and tooling, continuously monitoring global cybersecurity incidents and trends to predict potential impacts on the organisation. Support the security operations center (SOC) with real-time intelligence for incident analysis and response.
• Analyse and interpret cyber threat data, translating technical findings into actionable intelligence for both technical and non-technical stakeholders. Develop a strong understanding of standing intelligence requirements to align with organizational security goals and priorities.
• Support the integration of threat intelligence into security measures, incident response plans, and threat hunting initiatives. Enhance SIEM capabilities by tuning and integrating Indicators of Compromise (IoCs) for improved threat detection. Assist in implementing security controls based on intelligence findings.
• Continuously update knowledge of the evolving threat landscape, focusing on adversaries' tactics, techniques, and procedures (TTPs). Track and analyse cyber campaigns, including attacker motivations and methodologies. Contribute to cyber threat analysis using both proprietary and open-source intelligence sources.
• Develop and deliver detailed threat intelligence reports and briefings with actionable recommendations. Contribute to threat modeling, security architecture, and security review processes. Facilitate intelligence sharing with industry peers, participate in cybersecurity forums, and collaborate with IT and cybersecurity teams to strengthen threat detection and response capabilities.

Who you are

• 1-2 years experience in cyber threat intelligence role or equivalent
• Knowledge of cyber threat actors, their tactics, techniques, and procedures (TTPs)
• Good analytical and problem-solving skills.
• Familiarity with threat intelligence platforms (TIPs) and SIEM tools, including custom rule development for threat detection.
• Knowledge of digital forensics and incident response (DFIR) methodologies and tools.
• Good communication and presentation skills
• Knowledge of scripting and programming languages (e.g., Python, PowerShell, Bash) for automation of intelligence collection and analysis tasks.
• Continuous learning mindset with a commitment to staying informed about the latest cyber threats, techniques, and technologies.

Everyone’s welcome

We are ambitious about the future of retail. We’re disrupting, innovating and leading the industry into a more conscientious, inspiring digital era. We’re transforming how we work together and offering our most exciting opportunities yet. Marks & Spencer strives to be an inclusive organisation, trusted and admired by our colleagues, customers and suppliers. Join us and make change happen.

We are committed to building diverse and representative teams, where everyone can bring their whole selves to work and be at their best. We support each other and work together to win together.

If you feel you'd benefit from any support or reasonable adjustments during any stage of the recruitment process, please don’t hesitate to let us know when completing your application. This information will be picked up by our team, so we can try and put steps in place to help you be at your best through this process.

#LI-hybrid #hybridrole #LI-LS1