Join us, be part of more. 

We’re so much more than an energy company. We’re a family of brands revolutionising how we power the planet. We're energisers. One team of 21,000 colleagues that's energising a greener, fairer future by creating an energy system that doesn’t rely on fossil fuels, whilst living our powerful commitment to igniting positive change in our communities. Here, you can find more purpose, more passion, and more potential. That’s why working here is #MoreThanACareer. We do energy differently - we do it all. We make it, store it, move it, sell it, and mend it.

About your team: 

You’ll be working centrally within our mission control room, aka Centrica’s group functions. From Finance and Data Science, to our Wellbeing and People teams - this is the engine of our energy system, where our various Centres of Excellence power up each of our brilliant businesses, ensuring they have all the support, technologies, and capabilities they need to get our customers to Net Zero by 2050.

Join Centrica's IT Security Team as a Cyber Threat Intelligence Lead!

Are you ready to drive the UK's energy transformation? Centrica is seeking askilled Cyber Threat Intelligence Leadto join our IT Security team. You'll monitor and analyse information sources to identify actionable insights, supporting proactive and reactive cyber threat intelligence services.

Location:Remote working with occasional travel to Windsor.

Key Responsibilities:

Monitor and process intelligence reports.

Track CTI dashboards and feeds for threats and vulnerabilities.

Perform threat modelling and extract actionable intelligence.

Ensure IOC ingestion and intelligence flow to security tools.

Build threat actor profiles and collaborate with security teams.

Maintain post-incident reports and threat actor library.

Extract actionable intelligence related to TTPs, mapping them to MITRE ATT&CK, and share with relevant Cyber Security teams.

Process ransomware alerts and validate with GSOC if a business relationship exists and assess potential impact.

Skills Required:

Experience with OSINT, closed source intelligence, and threat advisories, including dark web research, social media analysis, source verification, data fusion, link analysis, and threat actor attribution.

Experience developing threat advisories for security operations teams.

Background in Security Operations and Cyber Security Incident Response.

Proficiency with SIEM, log monitoring, and emerging threat landscapes.

Familiarity with SIEM technologies, IDS/IPS, firewalls, DLP, and web/email filtering.

Understanding of possible attack activities (e.g., network probing/scanning, DDoS, malicious code activity).

Knowledge of the emerging threat landscape in the utilities, retail energy, or oil and gas industries (desirable).

Education:

Bachelor’s degree preferred (but not essential) in IT, Computer Science, Information Systems, or related field. Relevant experience considered.

Why Join Us?

Be part of a team supporting sustainable energy solutions and impactful projects.

Benefits:

Competitive salary and bonus potential.

Car allowance.

Employee Energy Allowance at 15% of the government price cap.

Pension scheme.

Company-funded healthcare plan.

25 days holiday, plus public holidays, with the option to buy up to 5 additional days.

Flexible benefits, including technology vouchers, an electric car lease scheme, and travel insurance.

Ready to make an impact? Apply now and help shape the future of energy!