Cyber Security and Threat Analyst
Posted 1 day ago by Alexander Mann Solutions - Public Sector Resourcing
Negotiable
Inside
Remote
City of London, UK
Summary: The Cyber Security and Threat Analyst role at The Home Office involves conducting research on malicious internet infrastructure to inform government and law enforcement responses to cybercrime. The position requires DV Clearance and focuses on analyzing real-world threats, malware behavior, and stakeholder engagement. The role is remote and is expected to last for three months. Candidates with active security clearance and relevant experience will be prioritized.
Key Responsibilities:
- Research malicious Internet infrastructure to understand its exploitation for criminal activity.
- Analyze malware behavior and identify associated infrastructure.
- Engage with key organizations and individuals for stakeholder management.
- Provide insights into malicious infrastructure to inform cybercrime policy and countermeasures.
- Assess risks and issues related to cyber threats.
Key Skills:
- Experience with real-world threats in serious and organized crime or cyber threat incidents.
- Ability to analyze malware behavior and identify associated infrastructure.
- Excellent understanding of how cyber threat attackers build and use infrastructure.
- Experience in cybercrime investigations or national security.
- Understanding of cyber threat intelligence and experience in report analysis.
Salary (Rate): undetermined
City: City of London
Country: UK
Working Arrangements: remote
IR35 Status: inside IR35
Seniority Level: undetermined
Industry: IT
On behalf of The Home Office, we are looking for a Cyber Security and Threat Analyst (Inside IR35) for a 3 month contract based REMOTELY.
Note: DV Clearance is an essential requirement for this role, as a minimum you must be willing & eligible to undergo checks. Please note, due to the exceptional requirements of this position, (and speed at which we require a postholder in situ), preference may be given to candidates who meet all of the essential criteria and hold active security clearance
The purpose of this project is to understand how 'real world' regulation, and foundational technologies of cyberspace can inadvertently facilitate or be exploited for criminal activity. This work will help to inform more effective responses by government, law enforcement and developers alike to combat cybercrime.
Researching malicious Internet infrastructure is a highly specialised field that blends cybersecurity, threat intelligence, and network analysis. A specialist in this area should possess a combination of technical skills, analytical capabilities, and practical experience.
The key objective is to derive new insights into the different types of malicious infrastructure which are being used by cybercriminals to identify opportunities to use the insights into malicious infrastructure to inform cybercrime policy and countermeasures including an assessment of risks and issues.
The role will also require excellent stakeholder management skills to contact and engage with key organisations, individuals and maybe academia.
Essential skills and experience:
. Have experience with dealing with real world threats in the serious and organised crime or cyber threat incidents.
. Have experience in analysing malware behaviour and an ability to identify associated infrastructure.
. Have an excellent understanding of how cyber threat attackers build and use infrastructure to undertake malicious activity.
. Have experience of working in cybercrime investigations or national security
Desirable skills and experience:
. Have worked within a UK Government national security or crime department/UKIC
. An understanding how to deconstruct malware or binaries to uncover infrastructure indicators.
. An understanding of cyber threat intelligence and experience in producing or reading/analysing reports
Essential qualifications:
. CompTIA Cybersecurity Analyst (CySA+) or a similar certification
. GIAC Cyber Threat Intelligence (GCTI) or a similar certification
. GIAC Reverse Engineering Malware (GREM) or a similar certification
Desirable qualifications:
. Certified Ethical Hacker (CEH)
. Offensive Security Certified Professional (OSCP) or a similar certification
Please be aware that this role can only be worked within the UK and not Overseas.