We have been made aware of a number of scams where fraudsters are claiming to represent our organisation or organisations we work with. Please click here to find out more details and what to do if you are contacted.

close

Saved Jobs

menu

Accessibility tools

Threat Hunting & Investigations Lead

Remote

  1. Full time

Closing date

08/11/2022

About the job

"

This vacancy has now expired. Please see similar roles below...

"

Job Description

The Admiral Group’s Security Operations function is looking for an experienced security professional to lead and drive the threat-hunting & investigation activities. The overall aim of this role is to build, mature and lead the threat-hunting and investigative capabilities. 

The role will also be responsible for building and leading thorough analysis and investigative skills and capabilities within the team to drive threat hunting. The role will also have day-to-day management responsibilities for a small team. The role will be supported by the members of the Threat Hunting team. 

Accountabilities: 

  • Establishing an effective threat-hunting function. 
  • Ensuring that repeatable processes are established, well documented and maintained. 
  • Building continuous collaboration with the Cyber Threat Intelligence (CTI) team; creating Intelligence requirements for threat hunting; setting up dissemination and feedback process between Threat Hunting and CTI on an ongoing basis. 
  • Initiating mitigation and remediation actions by coordinating with relevant stakeholders such as the Incident Response team, Cloud Security teams etc. 
  • Ensuring detailed investigations of relevant ongoing external threat campaigns are conducted to build effective hunting strategies.
  • Ensure all detected security events are investigated thoroughly, root cause analyses performed, and any mitigation/remediation actions initiated. 
  • Ensuring that detailed threat-hunting reports are produced regularly. 
  • Managing the threat-hunting team, including tasking, delivery, training requirements and personal development. 

Responsibilities: 

  • Engage with the Admiral threat Intelligence team to build a robust process to gather relevant Intelligence to drive threat hunting.
  • Engage with the Incident Response team on internal security incidents as and when needed.
  • Engage with the SOC team on detected incident investigation and analyses.
  • Provide investigation support during declared incidents.
  • Help improve the overall capability & maturity of the threat-hunting function.

Key Interactions: 

  • Engage with the Cyber Threat Intelligence (CTI) team.
  • Engage with the overall SOC team.
  • Engage with the Incident Response team when needed.
  • Engage with various stakeholders within Security Operations as and when required.
  • Engage with the function and department heads.

Knowledge and Experience Required:

  • Previous hands-on experience in cyber threat investigation, threat hunting or threat intelligence. 
  • Minimum 5 years’ experience in cyber security and/or Intelligence analysis.
  • Good functional understanding of general cyber security concepts.
  • Good knowledge of cyber exploitation tactics, techniques and procedures (TTP). 
  • Good understanding of cybercrime and threat landscape. 
  • Some team management experience is desirable but not mandatory. 

Professional Training Requirements: 

  • No formal training/certification is mandatory.

Our Commitment to You

At Admiral, we are committed to being a diverse and inclusive workplace. Admiral is proud to be an equal opportunities employer and does not discriminate on the basis of race, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), national origin, gender, gender identity, sexual orientation, disability, age, or any other legally protected status.

All qualified applicants will receive equal consideration for employment.

Salary, Benefits and Work-Life Balance

We do not have a set salary for this position, as it will be dependent on the successful candidate’s experience. We are happy to see CVs from all candidates who meet the requirements and will be happy to discuss the remuneration package.

At Admiral, we are proud to be a diverse business where we put our people and customers first. We have great benefits to ensure employees have a great work-life balance; it's one of the reasons we’re consistently voted one of the Sunday Times Best Big Companies to Work For in the UK. We want you to have an element of freedom to define a working lifestyle that supports this, so accommodate flexible hours wherever possible.

All colleagues will receive 33 days holiday (including banks holidays) when they join us, and this will increase with length of service, up to a maximum of 38 days (including banks holidays). You also have the option to buy or sell up to five days of annual leave in addition to your allocation.

You can also view some of our other key benefits here.

#LI-NT1

jobs

Related jobs

We are sorry but do not currently have any roles in this area. View all jobs
posts

Related posts

Photo of Tom Rowan in Admiral office
Finding fulfilment in my InfoSec career through volunteering

Teaser

General

Content Type

Blog

Publish date

30 Nov 2023

Summary

What does a successful career mean to you? For some, it could mean building up experience and strengthening your knowledge and skills. For others, it might involve doing something that has a

Teaser

Read on
Ben Moriarty

by

Ben Moriarty

Ben Moriarty

by

Ben Moriarty

Our Benefits

As one of our four pillars to our culture, Reward and Recognition is extremely important. We believe that happy staff make happy customers, so we have a huge range of great benefits to make sure everybody has something to smile about! Here are a few of our more popular ones.

Share
Schemes

Flexible
Working

Local
Discounts  

Travel Season
Ticket loans

Groups
& Societies 

Development 
Opportunities

View more benefits