Skills

Communication Malware Analysis Networking Research Linux Operating Systems Windows Analytical Skills Azure cloud platforms Recruitment TCP/IP

Job Specifications

Location(s): UK, Europe & Africa : UK : London || UK, Europe & Africa : UK : Leeds

BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.

Job Title: Threat Intelligence Analyst

Requisition ID: 122576

Location: London – We offer a range of hybrid and flexible working arrangements – please speak to your recruiter about the options for this particular role.

Grade: GG11

Referral Bonus: £5,000

Threat Intelligence Analyst

Role description

To undertake the day to day operation of (and incremental improvement of) a dedicated Security Operations Centre (SOC) to support the defence of a major UK CNI organisation. The networks protected are predominantly hosted in Azure cloud platforms, with many systems within these environments that must be protected. The customer is committed to development of this improved SOC to be a benchmark of best practice and excellence in reflection of the significant threat that the protected systems are subject to.

The SOC Analyst roles are ‘hands-on’ shift based roles, working as part of a 24/7 operation with four shift teams working in a standard rotation. They are responsible for utilising the SOC’s SIEM and SOAR toolsets to detect and investigate potential Security and Service Incidents occurring within the monitored networks.

These roles require a minimum of SC clearance. Due to timelines for the start of operations, it will not be possible to sponsor new clearances so candidates must have existing clearances.

Responsibilities

Produce and maintain threat assessments to provide a clear understanding of the customer threat landscape.
Maintain the IoC database tailored to the monitored environment and threats and ensure changes are pushed to the detection systems in a timely manner.
Maintain threat profiles and threat modelling and applicability to the monitored estate along with updating the modelling to detail what detection and controls are in place to mitigate the threats.
Gather and maintain a set of TI requirements that define the threats that will be monitored, tracked and researched by the TI Team.
Oversee the collection, collation and maintenance of threat data collected from open and closed sources and ensure it appropriately validated.
Conduct analysis and research to determine the identity, motivations, relationships, targets / victims, capabilities, tooling and infrastructure of threat groups relevant to customer.

Requirements

Technical

Working in a Threat Intelligence team developing threat intelligence products for technical and non-technical audiences.
Performing malware analysis and reverse engineering.
Conducting threat assessments and defining threat intelligence requirements.
Developing and maintaining threat data sources.
Advanced knowledge of Windows and Linux operating systems and use of the command line.
Advanced knowledge of core networking concepts and technologies e.g. TCP/IP.
Intermediate knowledge of malware behaviour and techniques employed by attackers to evade security controls.
Intermediate knowledge of malware analysis and reverse engineering techniques.

Non-technical

Client side consulting, including stakeholder engagement and the ability to communicate insights and concepts to others (including briefing skills and report writing)
Able to understand and adapt to different cultures and hierarchical structures.
Team player and adept at working in multi-disciplinary and diverse teams
Proven analytical skills capable of solving new and complex technical problems.
Excellent written and verbal communication skills with the ability to communicate the impact and importance of detailed technical information to non-technical and senior audiences.
Leading and managing small teams of highly skilled technical people.
Managing and building relationships with customer and internal stakeholders.
Self-motivated and motivates others keeping morale and performance high.

Why BAE Systems?

This is a place where you’ll be able to make a real difference. You’ll be part of an inclusive culture that values diversity, rewards integrity, and merit, and where you’ll be empowered to fulfil your potential. We welcome candidates from all backgrounds and particularly from sections of the community who are currently underrepresented within our industry, including women, ethnic minorities, people with disabilities and LGBTQ+ individuals.

We also want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments.”

PLEASE NOTE: You're expected to have completed

About the Company

At BAE Systems, we help our customers to stay a step ahead when protecting people and national security, critical infrastructure and vital information. We provide some of the world's most advanced, technology-led defence, aerospace and security solutions and employ a skilled workforce of 85,800 people in more than 40 countries. From state of the art cyber threat detection to flight control systems that enable pilots to make better decisions, we never stop innovating to ensure that our customers maintain their advantage. Th... Know more