Senior Cyber Threat Intelligence Analyst, Intel Delivery
Senior Cyber Threat Intelligence Analyst, Intel Delivery
- linkCopy link
- emailEmail a friend
This position requires onsite client-facing work 3-4 days per week at central London customer location to support their CTI requirements and integrate to enable their public-sector focused cyber defence mission.Note: Google's hybrid workplace includes remote roles.
Remote location: United Kingdom.
Minimum qualifications:
- Bachelor's degree or equivalent practical experience.
- 5 years of experience in a cyber security role (e.g., CTI Analyst, Computer Forensics, Incident Response, Security Engineer) within regulated environments.
- Experience integrating CTI with security solutions (e.g., IDS, EDR, SIEM, SOAR) to inform vulnerability management and network defense strategies.
- Experience authoring and tailoring CTI reports (operational, and tactical) for audiences, from technical teams to executive leadership.
- Experience with CTI analysis, including leveraging frameworks (e.g., MITRE ATT&CK) and managing TIPs to drive detection.
- Active UK Security Check (SC) security clearance and eligibility to obtain UK Developed Vetting (DV) security clearance.
Preferred qualifications:
- Master's degree in a related field or advanced certifications.
- Experience in SOC workflow optimisation, detection engineering, or automating intelligence processes to reduce mean-time-to-detect.
- Experience leading or supporting cyber investigations, bridging the gap between intelligence and remediation.
- Experience of cross-sector information sharing and adherence to strict information managing protocols (e.g., traffic light protocol (TLP).
- Experience analyzing data from security controls (e.g., firewalls, packet captures, malware triage) and standard enterprise IT and network logging formats.
About the job
In this role you will support Mandiant’s Advanced Intelligence Access(AIA) program. The AIA program enables customers, via an onsite Cyber
Analyst, access to the totality of Mandiant’s Threat Intelligence. You will
ensure the delivery of intelligence to each customer’s security or
operational environments in order to detect and mitigate key threats. You will also act as a conduit to Mandiant’s extensive network of cyber security, threat intelligence, and information operations professionals.
You will be delivering key support to a UK government client. You will
serve as a cyber threat intelligence (CTI) technical specialist, empowering the customer's mission; primarily through its operations and CTI team. You will be backed by Mandiant’s network of UK and global experts, supporting you with training, specialisms, access to industry-leading tooling and proprietary data to fuel the analysis. You will blend this reach with your technical tradecraft to help secure the UK Public Sector.
Responsibilities
- Track priority cyber threats, acting as an CTI center of expertise, using frameworks like MITRE Adversarial Tactics, Techniques, and Common Knowledge
(ATT and CK) and Kill Chain. Leverage Mandiant tools and data to answer customer requests for information (RFI's). - Support integration of CTI into customer's mission. Build processes for its application within varied cyber defence technology stacks, including SIEM and Threat Intelligence Platforms (TIP) systems (KQL, SPL, Sigma, Yara etc.).
- Perform tactical, and operational research and analysis of adversarial cyber threats, and author intelligence for HMG audiences.
- Present intelligence about threat groups, the methodologies and the motivations behind activity and convey the findings to audiences.
- Work with customers to plan their intelligence needs and requirements and prepare and deliver briefings and reports to the customers' executives, security team, and fellow analysts.
Information collected and processed as part of your Google Careers profile, and any job applications you choose to submit is subject to Google's Applicant and Candidate Privacy Policy.
Google is proud to be an equal opportunity and affirmative action employer. We are committed to building a workforce that is representative of the users we serve, creating a culture of belonging, and providing an equal employment opportunity regardless of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or related condition (including breastfeeding), expecting or parents-to-be, criminal histories consistent with legal requirements, or any other basis protected by law. See also Google's EEO Policy, Know your rights: workplace discrimination is illegal, Belonging at Google, and How we hire.
If you have a need that requires accommodation, please let us know by completing our Accommodations for Applicants form.
Google is a global company and, in order to facilitate efficient collaboration and communication globally, English proficiency is a requirement for all roles unless stated otherwise in the job posting.
To all recruitment agencies: Google does not accept agency resumes. Please do not forward resumes to our jobs alias, Google employees, or any other organization location. Google is not responsible for any fees related to unsolicited resumes.