×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Data Security Security Manager

Threat Intelligence Analyst

Job in Glasgow, Glasgow City Area, G1, Scotland, UK
Listing for: TRIA
Part Time position
Listed on 2025-12-31
Job specializations:
  • IT/Tech
    Cybersecurity, Data Security, Security Manager
Salary/Wage Range or Industry Benchmark: 500 - 600 GBP Daily GBP 500.00 600.00 DAY
Job Description & How to Apply Below

Threat Intelligence Analyst – initial 3‑6 month contract

Glasgow or Edinburgh (2 days a week onsite)

£500 - £600 a day (inside IR35)

We’re seeking a highly experienced Threat Intelligence Analyst to lead adversary tracking, threat analysis, and intelligence integration across this large organisation. This is a senior, hands‑on role combining strategic threat insight with operational delivery, acting as the primary threat intelligence specialist within the Info Sec function and managing a third‑party intelligence provider.

This role is ideal for someone who understands the UK threat landscape, particularly critical national infrastructure and public sector risks, and can translate threat intelligence into actionable detection, response, and executive insight.

Key Responsibilities
  • Lead threat actor tracking and attribution, focusing on APTs, ransomware, supply chain attacks and UK‑relevant campaigns
  • Maintain adversary profiles using MITRE ATT&CK, Diamond Model and sector‑specific threat frameworks
  • Correlate internal security telemetry with external intelligence feeds (e.g. MISP, Recorded Future, ISACs, Microsoft TI)
  • Operationalise STIX / TAXII feeds and enrich IOC / IOA pipelines for SOC and Incident Response teams
  • Translate threat intelligence into actionable detections, working with engineers on KQL / SPL queries and proactive threat hunts
  • Produce regular threat reports and briefings for SOC leadership, CISO and senior stakeholders, including board‑level risk narratives
  • Manage and oversee a third‑party cyber threat intelligence provider, ensuring quality, relevance and value
  • Engage with UK threat‑sharing communities and maintain internal threat intelligence documentation and playbooks
Required Skills & Experience
  • 5+ years’ experience in Threat Intelligence, SOC or Incident Response
  • Strong working knowledge of MITRE ATT&CK and threat actor lifecycle analysis
  • Hands‑on experience with threat intelligence platforms such as MISP, Recorded Future, Anomali or similar
  • Strong experience with Microsoft security tooling, ideally Sentinel and Defender
  • Proficiency in KQL and working knowledge of Python for automation and enrichment
  • Experience integrating intelligence into SIEM, EDR / XDR, and cloud security platforms (Microsoft, AWS, Crowd Strike, etc.)
  • Deep understanding of the UK cyber threat landscape, particularly critical national infrastructure and public sector threats
  • Comfortable operating as a sole senior threat intelligence specialist while collaborating across SOC and Info Sec teams
Desirable Certifications
  • GIAC Cyber Threat Intelligence (GCTI)
  • CREST Threat Intelligence Analyst
  • GCIH, SC-200, AWS Security Specialty

We’re looking for someone who can interview in Jan and ideally start within a few weeks so please apply asap

#J-18808-Ljbffr
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search