Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire
Cyber Security Threat Intelligence Analyst
About this role
Capital One is looking for a talented Cyber Security Threat Intelligence Analyst to join our Active Defense team.
This role plays an integral part in protecting our customers, our associates, and our brand. The team helps identify, track, and collect adversarial tactics, techniques, and procedures (TTPs), and indicators of compromise.
The role involves fighting threats by identifying and responding to malpractices such as brand impersonations, spoofed domains, and phishing attempts. It also involves assisting in tactical investigations, operational planning, and communicating information effectively with partners, stakeholders, and leadership.
The position requires technical knowledge of network protocols and infrastructure, understanding of cloud infrastructures, and cyber threats to those networks and applications. The candidate should be able to work cross-functionally and produce intelligence products to support business requirements, proactively identifying areas for cooperation. Excellent communication skills are essential for managing or triaging collection workflows.
This role is part of an exciting and dynamic environment and will be key in building detections to defend Capital One's brand, systems, and data.
What you’ll do
1. Produce intelligence products analyzing cyber adversary trends and their impact on Capital One’s consumer products and defenses.
2. Proactively monitor, collect, and leverage intelligence from external data sources, including deep and dark web, and other OSINT sources.
3. Assist in developing countermeasures through integration of threat intelligence and operational data.
4. Create and refine workflows synthesizing data from malware infections, cyber attack patterns, and open/closed source intelligence.
5. Engage with stakeholders to understand their priority needs for collaboration.
What we’re looking for
* Experience in producing intelligence products to combat cyber threats or conducting cybercrime investigations.
* Experience evaluating cyber adversaries, IOCs, and TTPs.
* Experience with vendors and external resources for cyber intelligence in the financial sector.
* Knowledge of the intelligence cycle principles and applying them to cyber threat analysis.
* Understanding of cloud concepts and resources (AWS, Azure, GCP).
* Experience analyzing attack vectors such as account takeovers, malware infections, phishing kits, session hijacking.
* Proficiency in OSINT social media research.
* Understanding of computer networking concepts.
Work Environment
This is a permanent position based at our Nottingham Head Office. We offer a hybrid working model: in-office on Tuesdays, Wednesdays, and Thursdays, and remote on Mondays and Fridays. We are open to flexible working arrangements.
Benefits
* Competitive salary and benefits package including pension, bonus, generous holidays, private medical insurance, and flexible benefits.
* Access to our facilities including gyms, restaurants, mindfulness and music rooms, and rooftop running tracks.
Our Commitment to Diversity
We value diversity and inclusion, partnering with organizations like Women in Finance, Race At Work, Stonewall, and upReach. We have internal support networks such as REACH, OutFront, Mind Your Mind, Women in Tech, and EmpowHER.
If you need a reasonable adjustment during our recruitment process, contact ukrecruitment@capitalone.com. For technical support or questions about the process, email Careers@capitalone.com.
About Capital One
We are a leading information-based technology company committed to helping our customers succeed through innovation, simplicity, and humanity in banking. We foster a collaborative, respectful environment focused on doing the right thing and changing banking for good.
#J-18808-Ljbffr