Cyber Threat Analyst

Hatfield, England, United Kingdom

6/18/2025

Contract type: Permanent

Location: Hatfield (Hybrid working – 3 days in the office)

Working hours per week: 40 hours

Level: Mid-level

Application closing date: 1st July 2025

About Us

Our mission is to deliver joy in every shop, through unbeatable choice, unrivaled service, and reassuringly good value.

We’re Ocado Retail, a market-leading, joint venture between Ocado Group and M&S and the world’s largest dedicated online supermarket ocado.com. Not only is Ocado.com the only place to shop a full range of M&S food online, but it’s also the home to the widest online supermarket range in the UK and champion of small, independent brands. We’re also the brains behind Zoom by Ocado, our same-day grocery delivery service.

About The Team And The Role

The Cyber Threat Analyst plays a crucial role in protecting ORL’s information systems and data. This position is responsible for identifying, analysing, and mitigating cyber threats. The ideal candidate will proactively monitor the threat landscape, investigate security incidents, and provide actionable intelligence to enhance our security posture. This role requires a strong understanding of current and emerging cyber threats, attack methodologies, and security technologies.

What You’ll Do

• Threat Monitoring and Identification: Continuously monitor internal and external threat intelligence feeds, security alerts, and various data sources to identify potential cyber threats, vulnerabilities, and suspicious activities.
• Incident Analysis and Response: Investigate security incidents, analyse attack vectors and malware, determine the scope and impact of breaches, and support incident response efforts to contain and remediate threats.
• Vulnerability Assessment: Assist in conducting vulnerability assessments and penetration testing activities to identify weaknesses in our systems and networks.
• Threat Intelligence Reporting: Develop and disseminate timely and actionable threat intelligence reports, security advisories, and briefings to relevant stakeholders, including technical teams and management.
• Security Tool Management: Utilise and configure security tools such as Security Information and Event Management (SIEM) systems, Intrusion Detection/Prevention Systems (IDS/IPS), endpoint detection and response (EDR) solutions, and threat intelligence platforms.
• Data Analysis and Correlation: Analyse security event data, network traffic, and logs to identify patterns, anomalies, and indicators of compromise (IOCs).
• Collaboration: Work closely with IT and other business units to implement security controls, share threat information, and improve overall security awareness and practices.
• Stay Current: Keep abreast of the latest cybersecurity threats, attack techniques, TTPs (Tactics, Techniques, and Procedures), and industry best practices through continuous learning and research.
• Documentation: Maintain detailed records of investigations, incidents, and remediation activities. Develop and update security procedures and documentation.
• Assist with incident and support tickets, and alerts, and provide support to the IT team as needed.
  
  

Who you are

Essential:

• Proven experience in a cybersecurity role, such as a Security Analyst, Threat Analyst, or similar.
• Strong understanding of common cyber threats, attack vectors (e.g., phishing, malware, ransomware, APTs), and vulnerability types.
• Experience with security technologies such as SIEM, IDS/IPS, firewalls, EDR, and vulnerability scanning tools.
• Knowledge of network protocols (TCP/IP, DNS, HTTP/S, etc.) and network security principles.
• Familiarity with operating systems (Windows, Linux, macOS) and their security configurations.
• Analytical and problem-solving skills with the ability to analyse large datasets and identify malicious activity.
• Understanding of incident response methodologies and processes.
• Basic knowledge of malware analysis techniques.
• Excellent verbal and written communication skills, with the ability to explain complex technical issues to both technical and non-technical audiences.
• Ability to work effectively both independently and as part of a team in a fast-paced environment.
  
  

Desirable:

• Relevant cybersecurity certifications such as CompTIA Security+, CySA+, CEH, GCIH, CISSP, or similar.
• Experience with threat intelligence platforms and feeds.
• Knowledge of scripting languages (e.g., Python, PowerShell) for automation and data analysis.
• Familiarity with cybersecurity frameworks (e.g., NIST Cybersecurity Framework, MITRE ATT&CK).
• Experience with cloud security concepts and platforms (e.g., AWS, Azure, GCP).
• Understanding of digital forensics principles.
• A Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
  
  

What’s In It For You

By joining Ocado Retail you’ll have the chance to experience life at the world’s largest online retailer, work with an amazing bunch of people who challenge what’s possible each day, and grow your skills and career in online retail.

If that’s not enough to tempt you, you’ll also get access to loads of great benefits to sweeten the deal. Here’s a taste of what we offer:

Health & Wellbeing: Private medical insurance with the option to add your family, Digital GP appointments, market-leading family policies, mental health support, discounted gym memberships, dental insurance, and more.

Spend & Save: Annual bonus scheme split between personal and business objectives, recognition with reward platform, up to 7% matched pension contributions, 15% Ocado discount, 20% M&S discount, free breakfast every day in the office, electric vehicle leasing scheme and free shuttle bus from Hatfield station to the office.

Never miss the moments that matter: Blended/Hybrid working, 26 days holiday plus 8 flexible bank holidays, options to buy an extra holiday, 2 weeks work from anywhere, and lifestyle break opportunities.

Our Hiring Process

Lucky for us, we get loads of great applications and we really appreciate that so many people put the time and effort in to apply. To recognise that, we treat all applications respectfully and fairly. So, if yours stands out, you’ll follow our standard hiring process – one of our Talent Partners will talk you through this in an initial call.

Everyone’s welcome

We’re an equal opportunities employer. That means that we make sure all potential colleagues are treated fairly and equally. If you require reasonable adjustments during the recruitment process, please let us know on the application form.