Senior Threat Research Analyst

Press Tab to Move to Skip to Content Link

We are seeking a highly skilled Senior Threat Research Analyst to join our Cyber Defence team in Poland. In this role, you will provide technical expertise in threat research, detection content development, and security monitoring for the Security Monitoring & Analytics (SMA) Service Line. You will lead initiatives aimed at improving the bank’s detection capabilities, developing creative solutions to prevent cyber threats, and collaborating with cross-functional teams such as the Cyber Defence Centre and Purple Team to enhance detection efficacy and automation. This is an exciting opportunity to play a key role in protecting our global organization from advanced cyber threats within a flexible, hybrid work environment.

• Conduct in-depth threat research and contribute to SMA’s Threat Use Case Lifecycle.
• Design, implement, and enhance detection use cases for current and emerging cyber threats.
• Develop and maintain detection content using Splunk SPL, Microsoft Defender, and SQL-based platforms.
• Lead bi-weekly threat use case forum meetings to support detection development.
• Work closely with the Cyber Defence Centre to tune alerts and improve detection accuracy.
• Collaborate with the Purple Team to test and enhance detection use cases through adversary simulation.
• Contribute to automation initiatives to improve efficiency and threat detection on AWS and Azure.
• Ensure adherence to all internal and external security policies, procedures, and regulations.
• Provide leadership and subject matter expertise in cross-functional security projects.
• Identify and elevate risk issues in alignment with the Group’s Cyber Security Policy.

• Bachelor’s degree in Computer Science, Engineering, or a related field.
• Minimum 5 years of experience in cybersecurity or threat detection.
• Relevant industry certifications (e.g., CISSP, GIAC, CEH) are an advantage.
• Previous experience in Linux/Windows administration or DevOps roles is beneficial.
• Strong expertise in Splunk SPL and Microsoft Defender for rule and content development.
• Proficiency in SQL and Data Lake platforms for detection rule creation.
• Good understanding of security threats across Windows, Linux, Cloud, and Container environments.
• Scripting experience (Bash / Python / SQL / APIs).
• Knowledge of attack patterns, mitigation methods, and threat prevention techniques.
• Experience in automation or DevSecOps within AWS and/or Azure environments.
• Excellent analytical and problem-solving abilities.
• Strong collaboration and communication skills across diverse teams.
• High attention to detail and ability to manage complex projects.
• Proactive, adaptable, and results-driven mindset.
• Integrity, accountability, and a commitment to the organization’s values.
• Fluent in English (written and spoken).

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

Together we:

• Do the right thingand are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle,continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together,we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

In line with our Fair Pay Charter,we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance,with flexible and voluntary benefits available in some locations.
• Time-offincluding annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible workingoptions based around home and office locations, with flexible working patterns.
• Proactive wellbeing supportthrough Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills,global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning cultureto support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation,one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.