Threat Intelligence & Hunting Analyst

At Deliveroo, it is our mission to build the definitive food company. In order to do that, we’re building a company where everyone can belong, grow and do the best work of their lives. 

As a Threat Intelligence & Hunting analyst you’ll be part of a growing Security Operations team who are focused on detecting attacks against a backdrop of an ever-advancing cyber threat landscape with automation at the heart of everything we do. You’ll be responsible for performing in-depth research into the threats most likely to target Deliveroo, and then using this research to produce actionable insights, perform proactive threat investigations and take actions to secure our IT environment. This position operates during regular business hours and does not require shift work.

The role is a unique opportunity to be part of the overall Security Operations strategy where you can harness our existing process and technology investments and bring new ways of working to help us protect our employees, customers, riders and restaurants. As we continue to grow our business, your specialist capabilities will play a key part in our story.

• Analyse and contextualise complex threat intelligence data to make it accessible and actionable for broader business use.
• Develop detailed and actionable threat intelligence and threat hunting reports for internal and external stakeholders
• Keep an eye on external cyber threat data to actively hunt for threat traces and effective respond to mitigate risks 
• Evaluate the quality, accuracy and reliability of gathered intelligence sources to ensure quality insights.
• Conduct in-depth research on cyber threat trends, focusing on malware, vulnerabilities, and indicators of compromise (IOCs).
• Perform proactive threat hunting activities in our IT environment based on your own research, to identify evidence of malicious activity.
• Engineer new detection content to ensure we can continuously monitor and respond to the threats most likely to target Deliveroo.
• Analyse EDR, Cloud and SAAS log data for evidence of malicious activity and take action as required.
• Work alongside our incident response team to capture first hand experience of the threats targeting Deliveroo, and translate this into proactive threat intelligence and threat hunting activities that will help to secure our environment.
• Support other projects and tasks as assigned. Demonstrate a proactive approach to overcoming challenges and driving success.
• Foster strong relationships with internal security functions, key stakeholders in Enterprise Technology, and other relevant departments to ensure cohesive security efforts.

• Detailed understanding and experience with numerous types of cyber security incidents, attacks, and events.
• Previous use or strong understanding of CTI methodologies such as Diamond model or investigative frameworks such as MITRE ATT&CK and Cyber Kill Chain.
• Ability to write technical assessment reports that are accessible and understandable at all organisational levels.
• Experience in utilising commercial or open-source threat intelligence tools within an enterprise environment.
• Keen interest in dark web analysis using specialised tools and understanding the adversarial slang.
• Experience performing threat hunting tasks in an enterprise environment, or working closely with threat hunting teams.
• Ability to analyse various log sources (e.g. EDR, AWS CloudTrail, Google Workspace) for evidence of malicious activity.
• Experience or a keen interest in detection engineering, such as using EDR/XDR or SIEM/SOAR tools.
• Understanding of Security Operations and response in an enterprise environment, including supporting technologies and methodologies. 
• Strong presentation and communication skills, both verbal and written.

Preferred, but not required

• Malware analysis
• Scripting experience, e.g. Python

Our mission is to be the definitive food company. We are transforming the way the world eats by making food more convenient and accessible. We give people the opportunity to eat what they want, when and where they want it.

We are a technology-driven company at the forefront of the most rapidly expanding industry in the world. We are still a small team, making a very large impact, seeking to answer some of the most interesting questions out there. We move fast, value autonomy and ownership, and we are always looking for new ideas.

At Deliveroo we know that people are the heart of the business and we prioritise their welfare. We offer a wide range of competitive benefits in areas including health, family, finance, community, convenience, growth and relocation.

We believe a great workplace is one that represents the world we live in and how beautifully diverse it can be. That means we have no judgement when it comes to any one of the things that make you who you are - your gender, race, sexuality, religion or a secret aversion to coriander. All you need is a passion for (most) food and a desire to be part of one of the fastest growing startups in an incredibly exciting space.

Please click here to view our candidate privacy policy.