Cyber Threat Analyst – National Security West

Location(s): UK, Europe & Africa: UK: Leeds

BAE Systems Digital Intelligence employs 4,500 experts in digital, cyber, and intelligence fields. We collaborate across 10 countries to analyze complex data, enabling governments, armed forces, and businesses to gain a digital advantage in demanding environments.

Cyber Threat Hunter

Job Title: Cyber Threat Analyst
Requisition ID: 121703

Location: Leeds and surrounding area

Grade: GG08 – GG09

Referral Bonus: £5,000

Role Description

BAE Systems operates a dedicated Security Operations Centre (SOC) to support the defense of a major UK Critical National Infrastructure (CNI) organization. The networks are mainly cloud-hosted, with numerous systems to protect. We aim to develop this SOC to be a benchmark of excellence, reflecting the significant threats faced.

This role requires at least SC clearance, with potential for DV clearance in the future.

Reports to the Delivery Lead/PMO.

The Role

You will be responsible for:

• Creating Threat Hunt Hypotheses and executing Threat Hunts regularly.
• Translating hypotheses into KQL queries, executing them, and triaging results independently.
• Having knowledge of attacker TTPs and APT groups, conducting in-depth research.
• Verifying and refining Threat Hunt queries based on results.
• Incident Response and Management experience.
• Ensuring high-quality Threat Hunt Reports and effective documentation.
• Providing analysis, context, and predictions in deliverables.
• Assessing and improving the client's threat maturity, developing and delivering improvements.
• Serving as a point of contact for intrusion analysis, forensics, and incident response queries.
• Managing ADHOC and regular products during capacity constraints.
• Knowledge of Cyber Kill Chain, MITRE ATT&CK, and developing new analytics and playbooks.

Requirements

Technical:

• 3+ years in Cyber Threat Intelligence, research, and investigation.
• Experience in incident response and management.
• Understanding of threats related to government and CNI.
• Excellent open-source research skills.
• High-level knowledge of Windows, Azure, networking, and cloud platforms.

Non-Technical:

• Bachelor’s in Cybersecurity, Computer Science, or equivalent.
• Experience in SOC, Threat Intelligence, or Vulnerability Management.
• Strong communication skills for technical and non-technical audiences.
• Team player, self-motivated, and capable of mentoring.

Desirable Qualifications:

• Degree in Cyber Security or related.
• SANS, CySA+, CREST, Azure, AWS certifications.
• Ethical hacking experience or equivalent.

Life at BAE Systems Digital Intelligence

We support Hybrid Working, enabling flexible work locations and times to promote work-life balance and well-being.

We value diversity and inclusion, fostering a culture where varied perspectives and backgrounds drive excellence and innovation.