Senior Threat Hunter

The Senior Threat Hunter will be working to develop and improve on Threat Hunts across the Admiral estate. The threat hunters are split across three primary types: intelligence (Structured), entity and data (Unstructured). The Senior Hunter will ensure that play-booked threat hunts remain up to date with the adaptation of TTPs of Threat Actors.

Ensure that analytical investigation techniques are reviewed and introduce new techniques to the team. They will be a point of escalation for other Threat Hunters in the department.

To succeed in this role, you must operate across the business to collect, synthesise, and communicate the relevant outputs. The candidate, therefore, needs to utilise multiple skill sets acquired from a varied work history whilst operating within a team to maintain pace and relevance at the speed of the external landscape.

Responsibilities:

• Conducting Threat hunts within Admiral.
• Review and maintain existing Threat hunters, as well as create new playbooks.
• Develop novel techniques, including structured analytics, machine learning and automation, to enhance deliverables for the whole team.
• Consume and prioritise a wide range of intelligence reports from the Threat Intelligence team on the threat landscape and credible adversarial TTPs.
• Liaise with other business functions to understand their operations and conduct Threat Hunts for anomalous behaviour.
• Collab with the broader team and share knowledge for ongoing improvements.

Essential Experience/Skills:

• Four years experience in cyber security, with expertise in a Threat Hunting role.
• Strong Python coding experience.
• Data Science experience including;
  • Data Analytics experience (Numpy, Pandas, etc.)
  • Practical application of ML (Scikit-Learn, PyTorch, etc.)
  • Data visualisation (Jupyter, Plotly, Seaborn, etc.).
• Experience Debugging and developing IOA from these artefacts
• Strong attention to detail with excellent problem-solving skills.
• Proven analytical, report-writing and verbal briefing abilities.
• Technical understanding of IT and information security.
• Be able to approach challenges individually, work as part of a team and be responsive to feedback.
• Thoroughly understand the Cyber Kill Chain, MITRE ATT&CK and its limitations.

Desirable Skills:

• Using and customising Opensource tooling.
• One of more qualifications (BSc, MSc, PhD, CREST, TigerScheme, SANS, CISSP).
• Technical and applicable knowledge of the cyber threat landscape within financial services, including threat actors, attack paths, tactics, techniques, and procedures, with effective countermeasures in a financial services environment.

The process: 

• CV review by Talent Team and Hiring Manager
• 1 x informal chat (30 minutes)
• Codility Assessment (no pass mark) 
• 1 x interview (1hour) 

Our Commitment to You

At Admiral, we are committed to being a diverse and inclusive workplace. Admiral is proud to be an equal opportunities employer and does not discriminate on the basis of race, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), national origin, gender, gender identity, sexual orientation, disability, age, or any other legally protected status.

All qualified applicants will receive equal consideration for employment.

Salary, Benefits, and Work-Life Balance

We do not have a set salary for this position, as it will be dependent on the successful candidate’s experience. We are happy to see CVs from all candidates who meet the requirements and will be happy to discuss the remuneration package.

At Admiral, we are proud to be a diverse business where we put our people and customers first. We have great benefits to ensure employees have a great work-life balance; it's one of the reasons we’re consistently voted one of the Sunday Times Best Big Companies to work for in the UK. We want you to have an element of freedom to define a working lifestyle that supports this, so accommodate flexible hours wherever possible.

All colleagues will receive 33 days holiday (including banks holidays) when they join us, and this will increase with length of service, up to a maximum of 38 days (including banks holidays). You also have the option to buy or sell up to five days of annual leave in addition to your allocation.

You can also view some of our other key benefits here.

#LI-NT1