Head of Threat Intelligence

Location:Greater London
Job Type:Full Time

Reporting to the Global Head of Cybersecurity Intelligence Group, the Head of Cybersecurity Intelligence Group, EMEA will provide situational awareness to decision makers and act as a subject matter expert responsible for leading and mentoring an analytic team. The position requires a sharp intellect, an eye for detail, a high analytical capability and a good technical/cyber underpinning.

This position will require working closely with the lines of business and creating strong relationships with key stakeholders. You will build a thorough understanding of their day-to-day operations, activities, people, systems and processes to ensure you can provide high impact intelligence to protect the firm.

The responsibilities for this position include, but are not limited to, the following:

  • Lead a team of highly-skilled intelligence analysts in the EMEA region.

  • Lead deep-dive intelligence analysis of suspicious activity and attempted attacks.

  • Produce Cyber Intelligence Reports and briefings, providing detailed analysis on cyber events, including relevant political, economic and geopolitical variables. Provide a forward-looking view of the threat, predicting shifts in adversarial intent, goals and strategic objectives.

  • Collaborate with peer cybersecurity teams to understand events and support analysis of malicious cybersecurity incidents.

  • Track potential threats associated with attempted intrusions, network & host-based attacks, and coordinate incident response efforts with cybersecurity teams.

  • Act as a subject matter expert and mentor for subordinate analysts.

  • Closely follow open source and closed intelligence source reporting on associated actor groups (nation-state, criminal, hacktivist and terrorist), incidents and campaigns.

  • Maintain knowledge of the threat landscape by monitoring open and closed intelligence sources and contribute to quarterly threat landscape briefings.

  • Identify, develop, manage and productively leverage external relationships to enhance intelligence collection efforts.

  • Provide regular written and verbal briefings and presentations for Global Cybersecurity partners and Lines of Businesses up to the senior executive level.

  • Contribute the cybersecurity perspective to discussions and decisions regarding JPMC global technology infrastructure and technology deployments.

The candidate will also need to learn to use of one or more High Security Access (HSA) systems. Users of these systems are subject to enhanced screening, which includes both criminal and credit background checks, and/or other enhanced screening at the time of accepting the position and on an annual basis thereafter. The enhanced screening will need to be successfully completed prior to commencing employment or assignment.


Essential Qualifications

  • 3+ years in an intelligence analyst role and 3+ years in a cyber-role

  • Strong knowledge or experience in one or more of the following:

  • Investment banking

  • Asset management

  • Consumer and/or Commercial banking

  • Excellent understanding of networking concepts and Information Security, including emerging threats and attack methodologies.

  • Specialist training or skills in one or more of the following:

  • Open Source Intelligence (OSINT) gathering and/or analysis

  • Social Media Intelligence (SMI/SOCMINT) gathering and/or analysis

  • Human Intelligence (HUMINT) analysis

  • Signals Intelligence (SIGINT) analysis

  • Subject matter expert in one or more of the following areas: regional geographic expertise, thematic (e.g. criminal groups) expertise, corporate intelligence, banking/finance.

  • Significant and detailed threat actor knowledge.

  • Excellent written and verbal communication skills


    Highly Desired

  • Significant malware analysis, virus exploitation and mitigation techniques experience.

  • Coding (scripting) experience e.g. Perl, VB Script, Python etc.

  • Working knowledge of global threats to international cyber security, and conversant in the tactics, techniques and procedures used by cyber adversaries.

  • Bachelor’s degree in Engineering, Computer Science, Business Management or Technology related fields or related field or equivalent experience.