Menu

Threat Assessment Lead

Job details
Posting date: 30 June 2025
Salary: £60,300 to £66,330 per year
Additional salary information: New entrants to the Civil Service will start their role on the salary band minimum: £60,300 for National Roles. You may be eligible for an additional non-pensionable allowance, pending a Capability and Skills assessment, with a value of up to £20,100 (lo
Hours: Full time
Closing date: 10 July 2025
Location: Manchester
Company: Government Recruitment Service
Job type: Permanent
Job reference: 412934/1

Apply for this job

Summary

Cyber Security at the Home Office is critical to protecting a large government department and safeguarding critical digital infrastructure. The Cyber Security Operations Centre (CSOC) Threat Intelligence team is tasked with understanding and contextualising the Home Office’s cyber threat landscape. The team manages the department’s intelligence requirements, based on assessed threats to Home Office systems, then seeks to obtain and analyse data to identify threats and their potential impact. The specialised team of six works alongside other CSOC areas to provide awareness of threats, allowing for the deployment of targeted defences and the sharing of timely and actionable guidance.

The Threat Intelligence Lead plays a critical role in the success of the Cyber Security Operations Centre (CSOC) by overseeing all threat intelligence activities. This includes defining intelligence requirements, managing collection and analysis, and ensuring timely dissemination of insights. The role supports protective monitoring, contributes to incident response, and leads the development of team members through line management and professional development.

As the Threat Intelligence Lead, your day-today responsibilities will be to:

  • Lead the delivery of cyber threat intelligence processes, ensuring outputs align with organisational policies and effectively communicate findings.
  • Analyse complex threat intelligence to assess risk, prioritise vulnerabilities, and inform strategic mitigation efforts.
  • Define tools and policies to assess the threat landscape and advise on risk reduction strategies.
  • Maintain and enhance the Threat Intelligence Platform to support automated intelligence and incident investigations.
  • Collaborate with stakeholders to develop tactical threat management plans and oversee their execution.
  • Apply advanced knowledge of threat assessment tools and methodologies to develop templates and test scripts.
  • Manage the Threat Intelligence team, aligning their work with CSOC operational goals and strategic direction.
  • Oversee the use of information systems to prioritise cyber risks and support the vulnerability management team with expert guidance.

Due to the requirements of the role, the successful candidates will be required to work full-time (37 hours per week).

Hybrid Working

DDaT is geographically spread across multiple locations with most staff working in line with the Department’s hybrid working arrangements (a minimum of 60% of time in an office location, with the remainder working from home).The successful candidate will be based at Manchester Soapworks and there may be a requirement for occasional travel to other locations.

Proud member of the Disability Confident employer scheme

Disability Confident
A Disability Confident employer will generally offer an interview to any applicant that declares they have a disability and meets the minimum criteria for the job as defined by the employer. It is important to note that in certain recruitment situations such as high-volume, seasonal and high-peak times, the employer may wish to limit the overall numbers of interviews offered to both disabled people and non-disabled people. For more details please go to Disability Confident.

Apply for this job