Salary: £35,000 - 60,000 per year Requirements: Deep understanding of adversarial tactics, techniques, and procedures (TTPs) and threat actor lifecycles. Proven experience in malware, phishing, and SIEM log analysis. Strong grasp of threat modeling and risk assessment frameworks. Skilled in OSINT collection and analysis. Demonstrated leadership in Cyber Threat Intelligence (CTI) environments, including mentoring and service development. Excellent communication skills, able to translate complex threats into clear insights. Experience supporting cyber incident response under pressure. Ability to work independently and manage stakeholder relationships effectively. Eligible for SC and NPPV3 clearance. Highly experienced in cyber threat intelligence or analytical roles (desirable). GIAC Cyber Threat Intelligence (GCTI) or CREST Registered Threat Intelligence Analyst (desirable). Experience developing cybercrime mitigation strategies (desirable). Understanding of UK policing cyber environments and threat landscape (desirable). Completed intelligence analysis training (e.g., NIAT, RISC UK) (desirable). Responsibilities: Support advanced threat hunting activities across national policing infrastructure, identifying indicators of compromise (IOCs), tactics, techniques, and procedures (TTPs), and emerging threat patterns. Profile cyber adversaries by analyzing behavioral patterns, infrastructure, and motivations to inform strategic and tactical defense measures. Collaborate with national partners including NCSC and NCA to share intelligence, coordinate responses, and align threat assessments. Produce high-quality, actionable intelligence reports and briefings for various stakeholders, including technical teams, senior police leadership, and government departments. Correlate intelligence from multiple sources (OSINT, SIGINT, internal telemetry, etc.) to build a comprehensive threat picture and drive proactive defense. Support and lead pre-incident planning, threat modeling, and attack surface reduction initiatives. Act as a senior point of contact during live incidents, supporting decision-making and coordinating intelligence-led responses. Mentor and develop NMC colleagues, fostering a culture of continuous learning and analytical excellence. Perform a leadership role during the managers absence, overseeing team operations, prioritizing workloads, and ensuring service continuity. Translate complex threat intelligence into clear, concise insights tailored to operational, strategic, and executive audiences. Present at various senior boards and forums (internal and external) on the benefits of establishing a healthy cybersecurity posture. Technologies: Support LESS Security More: We are Police Digital Service, dedicated to harnessing the power of digital, data, and technology to enable UK policing to better protect the communities it serves. Our team consists of experts in commercial services, technical assurance, data, digital transformation, and innovation, all with unique experience in policing and national program delivery. We offer a friendly and flexible working environment with excellent benefits, including 28 days of annual leave plus bank holidays, rising to 30 days after 5 years. We also provide an excellent pension scheme, life assurance cover, and comprehensive training and development resources. Our values emphasize the importance of people, doing the right thing, innovation, teamwork, and pride in our work. last updated 8 week of 2026