Senior Cyber Specialist - Threat Intelligence
Recruiter
Listed on
Location
Salary/Rate
Salary Notes
Type
Start Date
This job has now expired please search on the home page to find live IT Jobs.
Founded in 1861, we're the UK's largest mutual life, pensions and investment company. Our award-winning customer service and our mutuality means we can give customers that little bit more, and you can trust us to be there for you when it counts.
Senior Cyber Specialist - Threat Intelligence
Edinburgh
Permanent Contract
Closing date - 16/07/20
At Royal London we want to attract the best talent to help us achieve our vision of becoming the most trusted and recommended financial company in the UK. We are the largest mutual life, pensions and Investment Company in the UK.
For more than 150 years, people have been at the heart of all that is great about Royal London. We know that this is a difficult and uncertain time for everyone and are doing everything we can to support our customers, our people and candidates.
Maintaining the Spirit of Royal London is of paramount importance to us as we face new and different ways of working. That is why we are embracing technology throughout our recruitment process to support interactions. As you embark on your journey with us will engage with you via email, telephone and video to ensure we all remain safe. We are committed to wellbeing and at this challenging time, it remains our priority.
We are currently looking to recruit a Senior Cyber Specialist - Threat Intelligence to join our Group Technology & Change team on a permanent basis in our Edinburgh Office.
The purpose of the role is to assure intelligence driven incident response, and will take the lead in sourcing new threat intelligence information and analysing for intelligence which is actionable, in order that risk mitigation activities are threat lead.
Key Accountabilities
disseminate new tactics, techniques and procedures & Indicators of compromise to the SOC & Defence teams in order that additional protective monitoring controls and threat hunting activities take place to protect RLG
Responsible for management information reporting for both the current threat level within Royal London and the effectiveness of deployed technical & non-technical security controls.
Mentoring the current Cyber Threat Intelligence team at analyst and specialist level.
Skills and Experience
Experience managing security events are investigated and tracked to remediation within agreed SLA's
Support the process, procedure, tools, measures and metrics to ensure identification and remediation of operational deficiencies
Experience substitute for the Head of Department where necessary, communicating the RLG threat level to senior management, translating technical security risks into business problems
Experience of threat intelligence searching, using both trusted commercial sources and open source intelligence information of threat activity
Management of escalation for emerging cyber threats demanding swift action
Operate threat intelligence tooling, keeping configurations current to detect emerging threats
Proactive threat analysis of information received to identify potential threats to RLG, and disseminate the results of the analysis to prevent those threats from materialising
MI reporting of the effectiveness of RLG security controls, assuring they are operating within the expected guidelines and risk decisions are threat driven.
Maintain a threat dashboard for communicating the threat level within RLG
Incident management, providing security resources with threat intelligence to support the remediation activity.
Essential Criteria
Technical security qualifications preferred e.g. CISSP, SSCP, GIAC, GCTI, GDAT or equivalent
Ability to translate technical security issues into business problems
Experience of perimeter and host security intrusion techniques, including threat hunting as part of incident response
Deep knowledge and hands-on experience of security information and event management (SIEM) tools from industry leaders. Familiar with IPS, WAF, DLP, Identity & Data Management and Network Security technologies
Familiar with vulnerability management and application security technologies
Familiar with audit event collection and reporting toolsets
Excellent communication skills, both written and oral
Comfortable meeting tight deadlines and working within a team environment
Desirable Criteria
Previous experience of working within a regulated environment, ideally within the financial services industry
A Splunk qualification is highly advantageous.
Experience within forensics acquisition of digital material
Experience of working with external threat intelligence bodies such as NCSC
What we offer
We've always been proud to reward employees by offering a number of benefits such as Pensions and Protection, Performance and role-related benefits, Lifestyle and Wellbeing
Our People Promise is something we live up to every day. We know we can rely on you, and you can expect plenty from us in return.
Glassdoor have again ranked as among the best places to work in the UK
Our culture is welcoming, friendly, flexible and we aim to make you always feel included. We are an equal opportunities employer which means we believe in embracing difference as it makes us collectively stronger. Our diverse people bring us different skills - whatever their educational background, disability, gender, age, sexual orientation, race, religion or belief.
We also welcome applications from individuals who have taken an extended career break or those who are transitioning from different sectors. To support this we are always open to discussing flexible working to give you the freedom to be your best. It's what makes Royal London a great place to work.
The first pillar of our People Promise is designed to make sure you 'work somewhere inclusive'. We want to live up to this promise; it's good for our people and good for our customers too, because our workforce should reflect our communities.