Share this Job

Cyber Threat Hunter

Date: 05-Jan-2023

Location: Oxford, GB, OX4 4DQ Oxford/ Hybrid, GB

Company: Nominet

We’re Nominet – a world-leading domain name registry. For over 25 years, we’ve been operating at the heart of internet infrastructure. While we're best known for running .UK domains, we also help protect public services from cyber threat.

Our aim is to create a world which is more connected, inclusive and secure. We know that technology has the power to transform lives by creating opportunities and providing support where it’s needed most.

As a public benefit company, our work funds the ability to make a positive impact on society. We’ve donated millions to projects that use technology to improve peoples’ lives and have committed to delivering £60m worth of support over the next three years.

We understand the impact the Internet has on the environment and are committed to helping the UK reach Net Zero by 2050. We’re already a Carbon Neutral company through offsetting our emissions and will continue to work on reducing our footprint.

 

About the role 

 

Nominet Cyber is a leading provider of Protective DNS (PDNS) solutions to governments globally. Nominet have been the guardian of the .UK registry for 25 years and this expertise in DNS has evolved into their Nominet Cyber division.  

 

Nominet Cyber’s Protective DNS (PDNS) is specifically designed for operating at scale for governments and national critical infrastructure, offering world-class threat intelligence, discovery and blocking of malicious activity to enable quick incident response, and provide unrivalled visibility across a nation’s most critical networks to build national cyber situational awareness.  

 

The essential bits 

 

Your key responsibilities will be to detect, analyse, explore, and present findings on cyber security threats discovered via PDNS. It will involve using open-source and proprietary tools to explore large data sets to find anomalous behaviour and patterns that is indicative of threats. 

 

You will work closely with threat feed providers to improve quality, accuracy and timeliness to positively impact PDNS customers. You will also influence and contribute to Nominet’s own threat intel efforts in producing bespoke and high-quality threat feeds. Collaborate with colleagues globally to explore and develop new cyber security, threat hunting, and OSINT tools and techniques to support the mission of providing protection from threats at whole-of-government scale. 

 

Producing clear threat insights in the form of authored reports and presentations to inform internal and external stakeholders is critical. 

 

It is essential that you take a keen interest and have enthusiasm for working on real data sets at scale that will make a difference to the security of internet infrastructure. 

About you and your experience 

 

You will have a background in cyber threat analysis, threat hunting, threat intelligence, SOC (Security Operations Centre) Analyst or in incident response. An understanding of authoritative and recursive DNS, experience in working with internet protocols, and using command line tools as well as suitable scripting or coding experience, are all highly desirable. You will be able and willing to document and communicate your findings effectively, using your understanding of common TTPs and threat actors, demonstratable knowledge of the cybersecurity landscape, and emerging threats and security solutions. 

 

Critical thinking and novel approaches to a unique problem set are imperative.  

 

You will demonstrate high personal drive and ownership with an ability to innovate to provide positive outcomes to the safety of the wider community. 

 

What is in it for you?

 

This is a fantastic opportunity to work at the intersection of whole-of-government scale, a public good working to uplift cyber posture across a diverse set of customers, and help shape a global service. You will work closely with colleagues globally from diverse backgrounds and cyber expertise, and shape Nominet’s efforts in this strategic area. The role also offers a rare opportunity to be considered for secondment to the NCSC (National Cyber Security Centre) Industry 100 (i100) scheme. 

 

The Nominet way of working empowers our people to be flexible between home and the office, operating on a hybrid basis. This empowers everyone to take ownership day to day, balancing the needs of our people and business. You will be required to come into the Oxford office for key activities to ensure we have a collaborative and connected working environment. 

 

Pension match to 7%, performance related bonus scheme, private medical insurance, 30 days annual leave, reward portal, support to buy tech equipment tax free, holiday buy scheme, discounted shopping, on-site gym and shower facilities, Medi-cash (claiming cash back on things like optical, dental, inoculations and prescriptions), Employee Assistance Program, Dental Insurance, Health Assessments, Cycle2Work scheme, free- on site car parking, broad range of tools and resources to support your personal and professional development, Nominet Give Hub. We also have an active Social Committee. 

 

 

Data protection

If you choose to explore an opportunity, and subsequently share your CV or other personal details with Nominet, these details will be held by Nominet for 12 months in accordance with our Privacy Policy and used by our recruitment team and hiring managers in the process to contact you regarding this or other relevant opportunities at Nominet.  If you would like Nominet to delete or update your details at any time, please follow the steps set out in the Privacy Policy describing your individual rights.  If you have any questions about Nominet’s data protection practices, please email: dpo@nominet.uk

Equal opportunities

Cybersecurity is a community effort. That’s why we’re committed to building an inclusive, diverse community that celebrates and welcomes everyone – unless they’re a cybercriminal, of course.

We’re proud to be an Equal Opportunity and Affirmative Action Employer, and we’d encourage you to join us whatever your background.

We consider everyone equally: your race, age, religion, sexual orientation, gender identity, ability, marital status, nationality, or any other protected characteristic won’t affect your application.

We want to give you every opportunity to show us your best self, so if there are any adjustments we could make to the recruitment and selection process to support you, please let us know.

Security checks

All roles working for Nominet will be subject to a Baseline Personnel Security Standard (BPSS) check. Some roles due to the nature of their work, will require additional security clearance.

Due to the volume of applications we receive, we sometimes close our vacancies early. It is therefore advisable to apply as early as possible if you would like to be considered for a role with us.


Job Segment: Open Source, Technology