Domain Abuse Lead - Threat Intelligence

Contract Type: Permanent

Location: Hybrid - Oxford

 

About Us

Nominet is the trusted guardian of the .UK internet infrastructure and operates one of the world's largest country code top-level domains (ccTLDs) with just over 10 million domain names ensuring millions of businesses, individuals, and critical government services can maintain their online presence securely. 

 

Nominet is seeking a Domain Abuse Lead to join our Customer Success & Operations team to play a pivotal role in making .UK the safest ccTLD in the world. The ideal candidate will be an experienced cyber professional in the fields of cyber threat intelligence, good awareness of the complex cyber threat landscape, and a good understanding of DNS, to lead its team of Domain Abuse Analysts. 

 

This strategic position will involve leading the implementation of our domain abuse strategy, establishing robust external partnerships, developing advanced detection techniques, and representing Nominet's abuse mitigation approach to the broader internet community. 

 

This role is central to Nominet's strategic programmes aimed at improving the overall health of the .uk registry and will directly contribute to improving the overall health of the .uk registry and enhancing Nominet's reputation in the global internet community. 

 

This role is ideal for someone with a deep cyber threat intelligence background, but is not typical and offers unique challenges and opportunities. 

 

Responsibilities 

 

Strategy Execution 

• Oversee and direct the execution of Nominet's domain abuse strategy. 

• Identify and drive continuous refinement to mitigate domain abuse based on emerging threats and industry developments. 

• Collaborate with Product, Policy, Social Impact, and other teams across Nominet to ensure consistent application of our abuse mitigation measures. 

• Develop and track key performance indicators for abuse reduction, working toward specific targets that this role will help define, and regularly report on progress against these metrics internally and to external stakeholders. 

 

External Partnerships & Advocacy 

• Navigate complex stakeholder relationships with registrars, members, and law enforcement agencies, balancing sometimes competing priorities while maintaining Nominet's commitment to reducing online harm. 

• Work with Account Managers and other teams within Nominet to nurture relationships with registrars and their Domain Abuse teams, continually identifying ways to better collaborate to systematically address this issue. 

• Work with Product and Policy teams within Nominet to support and maintain good working relationships with law enforcement agencies, and other industry partners as key stakeholders. 

• Articulate Nominet's domain abuse approach through presentations, blog posts, and other content. 

 

Operational Oversight 

• Oversee day-day abuse mitigation operations and related processes. 

• Monitor and improve internal metrics and processes. 

• Develop and maintain appropriate public reporting on Nominet's abuse prevention efforts. 

• Evaluate tools and platforms to enhance detection and response capabilities. 

 

Team Leadership 

• You will lead a growing team that currently includes domain abuse analysts with plans to expand capability. You will have the opportunity to shape the team structure and build capabilities aligned with Nominet's strategic objectives. 

• Lead a growing team of analysts focused on domain abuse detection, mitigation, and research. 

• Provide mentorship and professional development opportunities for team members. 

• Foster a collaborative environment that encourages innovation and continuous improvement. 

 

Develop Internal Capability 

• Pioneer new approaches to domain abuse detection through advanced analytical techniques. 

• Develop hypothesis, test, and implement methods for identifying potentially abusive domains at the earliest possible time. 

• Lead research initiatives, and contribute to such external efforts, to understand emerging abuse patterns and tactics. 

• Create scalable processes for validating abuse indicators and establishing appropriate evidence standards 

 

Nominet Security Collaboration 

• As needed, the Domain Abuse Lead will work closely with the Nominet Security team on a range of different initiatives that are likely to span areas of threat modelling, threat intelligence acquisition and dissemination, amongst others. 

 

About you and your experience

• Substantial experience in cyber threat intelligence, ideally with knowledge of domain abuse patterns and techniques 

• Understanding of DNS infrastructure and domain registration processes  

• Proven ability to lead teams and initiatives in technical or security-focused environments 

• Excellent written and communication skills with the ability to present complex technical concepts to diverse audiences. 

• Ability to balance technical, operational, and policy considerations in decision-making and helping steer the team. 

• Adaptability and willingness to learn about the unique challenges of domain registry operations and of Nominet itself. 

 

Interview process

1st stage: Introduction call with a member of the TA team (30 mins) 

2nd stage: Hiring manager interview (60 mins)

3rd stage: Peer interview (60 mins)

 

 

What we offer

The opportunity to make a significant impact on internet safety in the UK. 

• A leadership role, leading key strategic priorities, in an organisation committed to public benefit. 

• Collaborative environment with support for professional development. 

• Opportunity to represent Nominet at industry events and conferences. 

• 30 days annual leave plus bank holidays, with the ability to purchase an additional 5 days

• 12pm finish on Fridays, 4.5 day working week
• Bupa private healthcare + Employee Assistance Programme
• Electric vehicle scheme with free on-site charging points
• MediCash discounts on routine healthcare including optical, dental and much more
• Rewards platform with access to discounts at hundreds of shops, restaurants etc.

 

Please note, all roles working for Nominet will be subject to a Baseline Personnel Security Standard (BPSS) check. Some roles will require additional security clearance due to the nature of their work.  Nominet is also unable to offer Visa Support in any capacity.

 

We’re proud to be an Equal Opportunity Employer, and we’re committed to building an inclusive, diverse community that celebrates and welcomes everyone.
If there are any adjustments we could make to the recruitment and selection process to support you, please let us know.