Cyber Threat Intelligence Analyst

Our Cyber team is rapidly growing and can highlight a portfolio of high profile clients, giving the opportunity to work on a large client base.

This new opportunity for a Cyber Threat |Intelligence Analyst will see you as a critical member of the SOC team responsible for running our Malware Information Sharing Platform (MISP) instance and delivering actionable operational and tactical threat intelligence. This involves proactive monitoring, analysis, and dissemination of threat information to support customer security posture. We need strong analytical skills, deep knowledge of threat intelligence frameworks, and the ability to collaborate effectively across diverse teams and partners.

You do need to hold DV Clearance OR be eligible for DV Clearance for this role.

Office based in Hemel Hempstead.

What you'll be doing:

• Develop and integrate automated feeds and enrichment sources.
• Providing training sessions and documentation for SOC staff on effective usage of MISP.
• Monitor a range of sources (threat feeds, OSINT, dark web, internal logs) for emerging threats; and facilitate threat intelligence, sharing with internal teams and external partners while ensuring compliance with data sharing policies.
• Analyse collected data to identify patterns, indicators of compromise (IOCs), and emerging adversary behaviours.
• Produce monthly situational reports highlighting operational threats and actionable recommendations.
• Collaborate with the SOC and incident response teams during active security incidents, providing real-time threat intelligence.
• Contribute to threat hunting initiatives by providing intelligence-led hypotheses and analysis that guide proactive investigations.
• Study threat actors’ tactics, techniques, and procedures (TTPs) using frameworks like MITRE ATT&CK. Evaluating the potential impact of identified threats on both internal operations and customer environments.
• Track and document evolving threat trends, vulnerabilities, and attack vectors that could affect our operations.
• Maintain detailed documentation of all threat intelligence activities.
• Regularly review and refine intelligence processes, tools, and methodologies to improve overall SOC efficiency.

What you’ll bring:

• Solid grasp of cybersecurity frameworks (e.g., MITRE ATT&CK) and threat analysis methodologies.
• Excellent analytical skills and able to synthesize complex threat data.
• Consistent record of working under pressure and adapting to constantly evolving threat landscapes.

Referral Bonus: £1500.00

Clearance: DV Cleared or eligible

Loved reading about this job and want to know more about us?

Sopra Steria’s Aerospace, Defence and Security business designs, develops and deploys digital solutions to Central Government clients. The work we do makes a real difference to the client’s goal of National Security, and we operate in a unique and privileged environment. We are given time for professional development activities, and we coach and mentor our colleagues, sharing knowledge and learning from each other. We foster a culture in which employees feel valued and supported and have pride in their work for the customer, delivering outstanding rates of customer satisfaction in the UK’s most complex safety- and security-critical markets.