Cyber Threat Intelligence Analyst

We are building a Cyber Threat team. Its a great time to join us in our expansion, and work with a portfolio of high profile clients, with the opportunity to work on a large client base.

Our Cyber Threat Intelligence Analyst will be a critical member of the dedicated SOC team and run our Malware Information Sharing Platform (MISP) instance, to deliver actionable operational and tactical threat intelligence. This involves monitoring, analysis, and dissemination of threat information to support our customer security posture.

We need strong analytical skills, deep knowledge of threat intelligence frameworks, and the ability to collaborate optimally across teams with varied strengths and partners.

You do need to hold DV Clearance OR be eligible for DV Clearance for this role.

Hybrid. 3 days on site in Hemel Hempstead, 2 days home working.

What youll be doing:

• Develop and integrate automated feeds and enrichment sources.
• Provide training sessions and documentation for SOC staff on effective usage of MISP.
• Supervise various sources (threat feeds, OSINT, dark web, internal logs) for emerging threats; and facilitate threat intelligence.
• Analyse collected data to identify patterns, indicators of compromise, and emerging adversary behaviours.
• Produce monthly situational reports.
• Collaborate with the SOC and incident response teams during active security incidents, providing real-time threat intelligence.
• Study threat actors’ tactics, techniques, and procedures (TTPs) using frameworks like MITRE ATT&CK. Evaluating the potential impact of identified threats on both internal operations and customer environments.
• Track and document evolving threat trends, vulnerabilities, and attack vectors that could affect our operations.

What you’ll bring:

• Solid grasp of cybersecurity frameworks (e.g., MITRE ATT&CK) and threat analysis methodologies.
• Excellent analytical skills and able to synthesize complex threat data.
• Proven experience in a Cyber Threat Intelligence role.

It would be great if you had:

• ?Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field.

If you are interested in this role but not sure if your skills and experience are exactly what we’re looking for, please do apply, we’d love to hear from you!

Employment Type: Permanent

Location: Hybrid. 3 days Hemel Hempstead based, 2 days home working.

Security Clearance Level: Eligible for DV clearance.

Internal Recruiter: Jane

Salary: To £60K

Benefits: 25 days annual leave with the choice to buy additional days, health cash plan, life assurance, pension, and generous flexible benefits fund

Loved reading about this job and want to know more about us?

Sopra Steria’s Aerospace, Defence and Security business designs, develops and deploys digital solutions to Central Government clients. The work we do makes a real difference to the client’s goal of National Security, and we operate in a unique and privileged environment. We are given time for professional development activities, and we coach and mentor our colleagues, sharing knowledge and learning from each other. We foster a culture in which employees feel valued and supported and have pride in their work for the customer, delivering outstanding rates of customer satisfaction in the UK’s most complex safety- and security-critical markets.