Search
Header navigation
Cyber Threat Intelligence Analyst

Cyber Threat Intelligence Analyst

MI5 - The Security Service
locationGreater London, UK
remoteOn-Site
ExpiresExpires: Expiring in less than 4 weeks
IT
Flexible
£53,267 - £67,369 per year

Job summary

MI5 keeps the country safe from serious threats like terrorism and attempts by states to harm the UK, its people, and way of life. We carry out investigations by obtaining, analysing, and assessing intelligence, and then work with a range of partners including MI6 and GCHQ, to disrupt these threats. Through our protective security arm, we provide advice and guidance to government, businesses, and other organisations on how to keep themselves safe. A role in MI5 means you'll do unique and challenging work in a supportive and encouraging environment, making a real difference to UK national security.

Job description

The UK faces growing threats to its cyber security. Staying ahead of rapidly evolving technological challenges and increasing demand from our partners is critical. That’s why our cyber team works at pace to analyse data and detect malicious activity that could harm national security. As a Cyber Threat Intelligence Analyst, you’ll support MI5’s cyber threat work and partner strategy. Drawing on your significant experience, you’ll identify, investigate, and analyse cyber threats, carrying out meaningful work that keeps the UK safe.

Work spans a range of technical areas, offering real scope. Day-to-day activities may include carrying out network analysis, applying an understanding of internet protocols to review network indicators, events, and topologies. Alternatively, disk and memory forensics knowledge may be applied to operating system artefacts, files and malware. Responsibilities may involve producing accurate reports or developing analytical or workflow capabilities, creating a diverse mix of investigative cyber work.

This role goes beyond supporting MI5’s operations, involving close collaboration with partners across government, finance, and the wider public sector to help meet growing demand. Activities range from performing intricate cyber analysis tasks and briefing internal and external stakeholders to using a variety of cyber tools. The role offers a good level of autonomy, while also encouraging you to support others by listening, guiding, and advising.

Person specification

You don’t need a specific degree to apply, but you’ll need significant experience working in cyber security, networking protocols, and data analysis, as well as either network- or host-based forensics. You’ll come from an applied cyber background, where you’ve gained experience in threat analysis, SOC analysis, threat intelligence, or similar. This may include experience in other government departments, law enforcement, or financial, regulatory, or legal institutions.

Our cyber team uses a wide range of tools and technologies, so expertise in any one is not essential. You might have had exposure to forensic tools such as X-Ways, FTK, and EnCase, or network and security analysis programmes including Elasticsearch, Splunk, and Wireshark. This will be supported by an awareness of coding and programming, allowing you to read and understand inputs.

Working as part of a busy yet collaborative team, you’ll be confident engaging with colleagues as well as external partners. With a well-developed analytical mindset, an organised approach, and a natural technical curiosity, you’ll think creatively to solve problems and seek to understand how and why incidents occur. There is an opportunity to turn findings into clear, well-structured reports, so good written communication skills and the ability to confidently explain complex technical subjects to non-technical audiences are essential. You’ll be keen to continue developing your technical capability, making the most of learning opportunities to stay ahead in a rapidly evolving cyber landscape.

Benefits

You’ll receive a starting salary of £53,267 plus other benefits, including:

  • 25 days’ annual leave, rising automatically to 30 days after 5 years' service, plus an additional 10.5 days of public and privilege holidays
  • opportunities to be recognised through our employee performance scheme
  • an interest-free season ticket loan
  • an excellent pension scheme
  • a cycle to work scheme
  • facilities such as a gym, restaurant, and on-site coffee bars (at some locations)
  • paid parental and adoption leave

Things you need to know

Artificial intelligence

Artificial intelligence can be a useful tool to support your application, however, all examples and statements provided must be truthful, factually accurate and taken directly from your own experience. Where plagiarism has been identified (presenting the ideas and experiences of others, or generated by artificial intelligence, as your own) applications may be withdrawn and internal candidates may be subject to disciplinary action. Please see our candidate guidance (opens in a new window) for more information on appropriate and inappropriate use.

Selection process details

Our recruitment process is fair, transparent, and based on merit. Here is a brief overview of each stage, in order:

  1. Online Situational Judgement Test (SJT) in which you rate the appropriateness of responses to a series of short scenarios.
  2. Application sift looking at your skills and motivation for the role and organisation.
  3. An online HR and Competency Interview.
  4. An in-person interview looking at your technical skills.
  5. If successful, you’ll receive a conditional offer of employment.

Please note that you must successfully pass each stage of the process to progress to the next. Your application may take around 6 to 9 months to process, including vetting, so we advise you to continue any current employment until you receive your final job offer



Feedback will only be provided if you attend an interview or assessment.

Security

Successful candidates must undergo a criminal record check.Successful candidates must meet the security requirements before they can be appointed. The level of security needed is developed vetting (opens in a new window).

See our vetting charter (opens in a new window).People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

Open to UK nationals only.

Working for the Civil Service

Please note this Post is NOT regulated by the Civil Service Commission.The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.

Diversity and Inclusion

The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see theCivil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window).

Apply and further information

Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

Contact point for applicants

Job contact :

Recruitment team

Further information

https://www.mi5.gov.uk/

Salary range

  • £53,267 - £67,369 per year