About the role

Location: Hybrid, London, UK

‍Duration: Permanent, full-time role

Reports to: Fusion Team Management

This role will form part of a growing team responsible for supporting cyber, physical and managed service security operations within the UK, Europe and Globally. This individual will be expected to monitor real-time events in the region, prioritising those that meet client intelligence requirements. The main focus of the role will be threat hunting and horizon scanning, then reporting upon potential threats to the client, in the PESTLE-M and strategic, operational and tactical security domains.

The role is defined by diligent adherence to intelligence principles to collate information, prioritise, process and analyse and then report. All intelligence will be fused with cyber intelligence by a CTI expert at every step of the intelligence cycle, so the individual is expected to have an interest in cyber threat landscape reporting. All fusion analysts are expected to have a deep understanding of a client’s threat landscape and the threat actors and TTPs relevant within that landscape. The individual will also be expected to be able to draft well-written, strategic, operational and tactical-focused products with minimal supervision. Standard of written work will enable the capacity to peer review the work of other members of the team.

The Threat Intelligence Analyst (Fusion) is expected to perform and achieve consistently against defined targets as set by management, primarily measured against client satisfaction, quality of analysis, quality of product creation, and the maintaining of team ethos.

Qualities and Competencies

As a Threat Intelligence Analyst at Security Alliance, it is vital that you maintain the standards and culture of the company. A Threat Intelligence Analyst must demonstrate:

• Ability to articulate extremely coherently, what a threat means to our client’s people, assets and reputation.
• Strong analytical skills with excellent attention to detail
• Excellent time management and organisational skills
• Confidence dealing directly with management
• Being a team player with a pro-active approach to independent workflows
• Ability to receive direct feedback and respond effectively
• Strong written, interpersonal and soft skills
• Knowledge and experience of working in an intelligence, research or investigative environment.

Roles and Responsibilities

• Monitor and assess open source (surface-web) information and events using advanced techniques and proprietary systems to provide an intelligence picture.
• Have a deep understanding of a client’s requirements and follow through with systematic information collection.
• Threat-hunt for events likely to impact the physical security of the client’s people and assets, whilst factoring in reputational risks.
• Be prepared to build solid and reliable relationships with client security teams, as well as internal cyber intelligence teams.
• Investigations, spotlight reports, weekly reports and monthly reports in an area of subject matter expertise.
• Run OSINT tools and maintain sock puppet accounts