Threat Hunting Specialist
Posting Date: 14 Jan 2025
Function: Cyber Security
Unit: Networks
Location: Assembly, Bristol, United Kingdom
Salary: Competitive with Great Benefits
BT Group is one of the most critical of all UK Critical National Infrastructure. Our job is simple - defend it from Cyber Attack. Your role at BT is pivotal in helping us achieve this. You will have access to an unparalleled level of data and security tooling to help us achieve our goal of being the world’s most trusted connector of people, devices and machine by 2030.
This role follows hybrid working & requires 3 days in the office - choice of Bristol, Ipswich or Manchester
What you’ll be doing
* Conduct proactive threat hunting activities to identify and mitigate potential security threats, aligning with the MITRE ATT&CK Framework.
* Analyse and interpret security data from various sources, including logs, network traffic, and endpoint data.
* Develop and implement advanced threat detection techniques and tools.
* Collaborate with the incident response team to investigate and respond to security incidents.
* Create and maintain detailed documentation of threat hunting activities and findings.
* Stay up-to-date with the latest threat intelligence and cybersecurity trends.
* Provide recommendations for improving security posture and threat detection capabilities.
* Lead an intelligence-led vulnerability management process.
* Fill the role of CTI SME within a wide range of Security engagements.
* Lead collaboration activities with internal teams to provide understanding of potential adversaries and attack vectors.
* Deliver verbal presentations and threat briefs to internal and external stakeholders at all seniority levels.
* Manage relationships within the wider Information Security community and represent BT in various forums.
* Oversee Vendor relationships to ensure effective integration and usage of vendor platforms.
Skills & Experience Required for the Role
Must Have:
* Proven experience in threat hunting, incident response, malware analysis, or a similar role.
* Current relevant professional qualifications in Threat Hunting and/or Information Security (e.g., CEH, GCIH, GCFA) or willingness to work towards them.
* Strong knowledge of cybersecurity principles, threat landscapes, and attack vectors.
* Experience with Crowdstrike and Microsoft Defender hunting methodologies.
* Familiarity with the MITRE ATT&CK framework.
* Knowledge of security tools and technologies such as SIEM, EDR, and IDS/IPS.
* Excellent analytical and problem-solving skills.
* Strong oral and written communication skills.
* Proactive Team Player.
* Demonstrable experience of operational delivery in a fast-paced security environment.
* Knowledge and understanding of current security threats, threat models, frameworks, and common mitigations.
* People skills with the ability to communicate effectively.
Nice to Have:
* Experience of intelligence-led vulnerability management processes.
* Experience with scripting and automation (e.g., Python, PowerShell).
* Experience within another Telecommunications/CNI environment.
* Network analysis skills.
At BT, we entertain, educate, and empower millions of people every single day. We’re a brand built on connecting people – whether that’s friends, family, businesses, or communities. Working here, you’ll receive an attractive salary and a range of competitive benefits, but you’ll also be joining an ambitious organisation with a culture of togetherness, collaboration, and inclusivity that takes a genuine interest in your progress and development.
* 10% on target bonus
* 25 days annual leave (not including bank holidays), increasing with service
* Huge range of flexible benefits including cycle to work, healthcare, season ticket loan
* World-class training and development opportunities
* Option to join BT Shares Saving schemes.
* Discounted broadband, mobile, and TV packages
* Access to 100’s of retail discounts including the BT shop
About us
BT is part of BT Group, along with EE, Openreach, and Plusnet. Millions of people rely on us every day to help them live their lives, power their businesses, and keep their public services running. We connect friends to family, clients to colleagues, people to possibilities. We keep the wheels of business spinning and the emergency services responding.
We value diversity and celebrate difference. We embed diversity and inclusion into everything that we do. It’s fundamental to our purpose: we connect for good.
We all stick to the same values: Personal, Simple, and Brilliant. From day one, you’ll get stuck into tough challenges, pitch in with ideas, and make things happen. But you won’t be alone: we’ll be there with help and support, learning and development.
This is your chance to make a real difference to the world: to be part of the digital transformation of countless lives and businesses. Grab it.
Although these roles are listed as full-time, if you’re a job share partnership, work reduced hours, or any other way of working flexibly, please still get in touch. We will also offer reasonable adjustments for the selection process if required, so please do not hesitate to inform us.
Studies have shown that women and people who are disabled, LGBTQ+, neurodiverse, or from ethnic minority backgrounds are less likely to apply for jobs unless they meet every single qualification and criteria. We're committed to building a diverse, inclusive, and authentic workplace where everyone can be their best, so if you're excited about this role but your past experience doesn't align perfectly with every requirement on the Job Description, please apply anyway - you may just be the right candidate for this or other roles in our wider team.
#J-18808-Ljbffr