Threat Security Analyst

The Cyber Threat Analyst is responsible for identifying, analysing, and reporting cyber threats that could impact the organisation's IT and OT environments. The role supports the protection of critical national infrastructure by delivering timely threat intelligence, actionable insights, and risk-based recommendations to security and operational teams.

Key Responsibilities

• Monitor, analyse, and assess cyber threats, threat actors, and campaigns relevant to the utilities sector
• Produce actionable threat intelligence to support SOC, incident response, and risk teams
• Track emerging threats affecting IT, OT, SCADA, and critical infrastructure
• Correlate intelligence from internal telemetry, SIEM, and external intelligence feeds
• Support incident response and post-incident analysis with threat context
• Maintain threat models aligned to MITRE ATT&CK (IT & OT)
• Brief senior stakeholders on threat trends, risks, and mitigations
• Collaborate with government, industry, and intelligence-sharing bodies where appropriate

Key Skills & Experience

• Experience in cyber threat intelligence / threat analysis
• Knowledge of utilities, energy, or critical infrastructure environments
• Understanding of IT and OT security, including SCADA systems
• Familiarity with MITRE ATT&CK, kill chain, and adversary techniques
• Experience using SIEM, threat intelligence platforms, and OSINT
• Strong analytical and written communication skills

Desirable

• Experience with NIS2, NERC CIP, or similar utilities regulations
• Background supporting SOC or Incident Response
• Exposure to nation-state and advanced persistent threat (APT) activity