CrawlJobs Logo
LegalAndGeneral Logo LegalAndGeneral · IT - Administration

Threat Simulation Analyst

United Kingdom, London · Job Posted January 03, 2026
Apply Position
Job Link Share

Job Description

We're looking for a Threat Simulation Analyst to join our Group CISO team. You'll play a key role in fusing together strategic, operational and tactical threat intelligence across L&G to support and inform the creation and delivery of engaging threat simulations - collaborating with key stakeholders across the organisation to test L&G’s ability to respond to cyber attacks.

Job Responsibility

  • Developing threat simulation exercises and scheduling quarterly (at least) exercises with all Group Business Units
  • Reviewing threat intelligence, data and trends and creating CSIRT exercises that support the development of mitigations
  • Developing and creating metrics by which progress of the threat simulation exercises can be demonstrated
  • Leading regular reviews with internal stakeholders to obtain and ensure that current and possible threats are exercised to best practice
  • Conducting threat intelligence research utilising open source, paid, community and national feeds to monitor and assess current and emerging threats that could pose a risk to L&G
  • Coordinating with other security and operational teams to ensure any threat assessments and actions are progressed as required
  • Producing written or verbal threat intelligence artifacts as required, identifying trends within physical security, cyber security or geo-politics
  • Defining, developing and delivering processes and systems to ensure a consistent and good level of service that means divisions can comply with all regulatory and security requirements

Requirements

  • Strong understanding of Strategic, Operational and Tactical threat intelligence
  • A current understanding of cyber security incidents and how they could be practised within exercises to test the resilience of L&G
  • Experience in the creation and implementation of short-term and long-term plans for developing a programme of exercises
  • Threat intelligence and/or Information Technology industry certification (CREST, SANS or equivalent) would be great
  • Prior experience of delivering tabletop exercises or crisis simulations would be a huge plus!

Nice to have

  • Threat intelligence and/or Information Technology industry certification (CREST, SANS or equivalent)
  • Prior experience of delivering tabletop exercises or crisis simulations

What we offer

  • The opportunity to participate in our annual, performance -related bonus plan and valuable share schemes
  • Generous pension contribution
  • Life assurance
  • Healthcare Plan (permanent employees only)
  • At least 25 days holiday, plus public holidays, 26 days after 2 years’ service. There’s also the option to buy and sell holiday
  • Competitive family leave
  • Participate in our electric car scheme, which offers employees the option to hire a brand-new electric car through tax efficient salary sacrifice (permanent employees only)
  • There are the many discounts we offer – both for our own products and at a range of high street stores and online
  • In 2023, some of our workspaces were redesigned. Our offices are great spaces to connect and collaborate and have your wellbeing at the heart
LegalAndGeneral - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Threat Simulation Analyst

8 matching positions

Threat Analyst

As a Threat Analyst at NTT DATA, you will be responsible for researching and ana...
Location
Location
Romania , Sibiu
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Computer Science, International Relations, or Intelligence Studies strongly preferred
  • Minimum 1–3 years of experience in cybersecurity or IT security roles
  • Advanced scripting capabilities (Python, PowerShell preferred)
  • Strong proficiency with threat intelligence platforms like MISP, ThreatConnect, or Anomali, Security Alliance
  • Deep familiarity with MITRE ATT&CK framework, dark web monitoring techniques, and attack simulation techniques
  • Demonstrated skills in cyber threat modeling, malware reverse engineering, and API-triggered automation
  • Strong analytical and problem-solving abilities
  • Excellent written and verbal communication skills
  • Attention to detail and accuracy in technical analysis
  • Direct experience working in government, military, or intelligence organizations advantageous
Job Responsibility
Job Responsibility
  • Research, track, and analyze Indicators of Compromise (IOCs) and threat actor profiles using sources that include open-source (OSINT), dark web forums, government feeds, and commercial intelligence platforms
  • Conduct detailed analysis of Threat Actor Tactics, Techniques, and Procedures (TTPs) and malware
  • Deliver actionable intelligence insights to enhance detection, prevention, and response embedded within the threat lifecycle
  • Develop and deliver weekly threat briefs, annual landscape overviews, and ad-hoc risk signals for both technical and non-technical audiences
  • Produce detailed reports based on industry-specific campaigns or identified vulnerability patterns
  • Communicate emerging threats to relevant technical stakeholders, influencing rapid mitigation strategy formulation
  • Integrate threat intelligence feeds (TIPs) into platforms like SIEM or SOAR, prioritizing automation workflows where required
  • Track and assess malware campaigns, underground forums, and marketplaces to identify emerging attack vectors
  • Analyze threat data to produce predictive insights about probable trends and future adversarial strategies
  • Represent NTT DATA at external security forums and intelligence-sharing communities
What we offer
What we offer
  • Smooth integration and a supportive mentor
  • Choose from Remote, Hybrid or Office work opportunities
  • Projects have different working hours to suit your needs
  • Sponsored certifications, trainings and top e-learning platforms
  • Private Health Insurance
  • Individual coaching sessions or joining our accredited Coaching School
  • Epic parties or themed events
  • Fulltime
Read More
Arrow Right

Social Engineering Simulation Senior Analyst

Location
Location
United States , Charlotte; Chandler; Irving; McLean; Minneapolis
Salary
Salary:
100000.00 - 196000.00 USD / Year
https://www.wellsfargo.com/ Logo
Wells Fargo
Expiration Date
June 29, 2026
Flip Icon
Requirements
Requirements
  • 4+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 4+ years of cybersecurity experience or a related field, with direct work on phishing, social engineering, or security awareness programs, or equivalent demonstrated through work experience, training, or military experience
  • Hands-on experience with phishing or social engineering simulation platforms (e.g., Proofpoint, Cofense, KnowBe4)
  • Strong understanding of cybersecurity fundamentals, including threat landscape, attack vectors, and risk mitigation strategies
  • Proven ability to synthesize data into actionable insights for both technical and non-technical audiences
  • Excellent written and verbal communication skills with the ability to influence stakeholders
  • Strong problem-solving mindset with a focus on continuous improvement and innovation and demonstrated ability to manage multiple priorities and deliver results in a dynamic environment
Job Responsibility
Job Responsibility
  • Design, develop, and execute realistic and adaptive social engineering simulations (e.g., phishing, vishing, smishing) aligned to current threat intelligence
  • Analyze simulation, behavioral, and campaign data to identify trends, high-risk populations, and emerging vulnerabilities
  • Translate complex data and simulation results into actionable insights, executive-ready reporting, and clear recommendations to improve security posture
  • Partner with threat intelligence, red team, fraud, and cyber defense functions to ensure simulations reflect real-world attack techniques
  • Develop targeted, data-driven awareness campaigns and interventions to influence employee behavior and reduce risk
  • Help build and maintain dashboards and reporting frameworks to track key performance indicators (e.g., click rates, report rates, repeat behavior)
  • Conduct hypothesis-driven testing (e.g., A/B testing of phishing scenarios and training approaches) to continuously improve program effectiveness
  • Contribute to the development of enterprise human risk scoring methodologies and segmentation strategies
  • Stay current with emerging social engineering trends, adversary tactics, and evolving regulatory expectations
What we offer
What we offer
  • Health benefits
  • 401(k) Plan
  • Paid time off
  • Disability benefits
  • Life insurance, critical illness insurance, and accident insurance
  • Parental leave
  • Critical caregiving leave
  • Discounts and savings
  • Commuter benefits
  • Tuition reimbursement
  • Fulltime
!
Read More
Arrow Right

Ai Lead Application Architecture - Vice President

We are seeking a highly experienced and technically proficient Sr Applied AI Eng...
Location
Location
India , Pune
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15 years of relevant experience in leading Apps Development or systems design role
  • Extensive experience system analysis and in programming of software applications
  • Demonstrable exposure and practical experience with AI development
  • Knowledge of capital market is plus
  • Experience in managing and implementing successful projects
  • Subject Matter Expert (SME) in at least one area of Applications Development
  • Ability to adjust priorities quickly as circumstances dictate
  • Demonstrated leadership and project management skills
  • Consistently demonstrates clear and concise written and verbal communication
  • Bachelor’s degree/University degree or equivalent experience
Job Responsibility
Job Responsibility
  • Lead the design, development, and implementation of complex middleware applications using Java and Spring Boot: Utilize AI-powered code generation tools (e.g., Devin, Copilot, Codex) to accelerate development, automate boilerplate code, suggest optimal implementations, and enforce architectural patterns. Leverage AI for design pattern identification and complex system architecture validation
  • Architect and optimize database interactions with Oracle, SQL, and MongoDB, ensuring high performance and data integrity: Employ AI to analyze database query performance, suggest advanced indexing strategies, optimize schema designs, and generate efficient SQL/NoSQL queries. AI-driven tools can also assist in predicting database load and recommending scaling solutions
  • Drive the adoption and continuous improvement of CI/CD pipelines to facilitate rapid and reliable software delivery: Integrate AI into CI/CD processes for intelligent test case generation, predictive failure analysis, automated code vulnerability scanning, and optimization of pipeline execution times based on historical data
  • Collaborate with cross-functional teams, including product management, QA, and operations, to define requirements, design solutions, and deliver high-quality software:Use AI-powered communication and summarization tools (e.g., Claude) to streamline requirement gathering, document analysis, and stakeholder communication. AI can also assist in translating technical designs into accessible formats for various audiences
  • Mentor and provide technical guidance to junior and mid-level software engineers, fostering a culture of technical excellence and continuous learning: Leverage AI platforms for personalized learning paths, automated code feedback, and explanations of complex technical concepts. Encourage junior engineers to adopt AI-driven development practices
  • Actively research and experiment with AI technologies to identify opportunities for enhancing developer productivity, automating tasks, and improving software quality:Continuously explore emerging AI tools and techniques (such as Anti Gravity for complex problem-solving) and assess their applicability to our development ecosystem
  • Participate in code reviews, ensuring adherence to coding standards, best practices, and architectural guidelines: Utilize AI-powered code analysis tools to pre-scan code for potential bugs, security vulnerabilities, performance bottlenecks, and style deviations, allowing human reviewers to focus on higher-level logic and design
  • Troubleshoot and resolve complex technical issues, ensuring the stability and performance of production systems: Implement AI-driven anomaly detection in monitoring systems, leverage AI for rapid log analysis and root cause identification, and automate incident response workflows
  • Contribute to the strategic planning and technical roadmap for our middleware platforms: Employ AI to analyze industry trends, forecast technology evolution, assess the impact of new features, and prioritize roadmap initiatives based on data-driven insights
  • Conduct tasks related to feasibility studies, time and cost estimates, IT planning, risk technology, applications development, and model development: Utilize AI for data synthesis, predictive modeling for estimations, identification of potential IT risks, and accelerated model prototyping and validation
  • Fulltime
Read More
Arrow Right

Cybersecurity Analyst

We are seeking a detail-oriented Cybersecurity Analyst to strengthen our securit...
Location
Location
United States , Delray Beach
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2–4 years of experience in cybersecurity, SOC operations, or related IT security roles
  • Experience with SIEM tools (Splunk, Sentinel, QRadar, LogRhythm, etc.)
  • Hands-on experience with EDR platforms (Defender, CrowdStrike, SentinelOne)
  • Understanding of vulnerability management tools (Qualys, Nessus, Rapid7)
  • Knowledge of common attack vectors, malware behavior, and incident response processes
  • Familiarity with networking fundamentals (TCP/IP, DNS, ports, firewalls)
  • Ability to review and analyze logs from servers, firewalls, and endpoints
  • Strong written communication and documentation skills
  • Analytical mindset with the ability to identify patterns and anomalies
  • Security+ or similar certifications are a plus
Job Responsibility
Job Responsibility
  • Monitor SIEM alerts, logs, and security dashboards for potential threats
  • Investigate suspicious behavior, malware activity, and endpoint security incidents
  • Perform vulnerability scans and track remediation efforts with IT teams
  • Support endpoint security tools including EDR platforms, antivirus, and application control
  • Assist in incident response activities including containment, analysis, and documentation
  • Review firewall rules, access permissions, and authentication logs for anomalies
  • Assist with compliance efforts including audits, risk assessments, and policy documentation
  • Help build and maintain security playbooks, SOPs, and incident response guides
  • Participate in phishing simulations, user awareness training, and security education initiatives
  • Collaborate with infrastructure and application teams to implement security best practices
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
Read More
Arrow Right

Senior Java Engineer – Agentic AI Driven Development - Vice President

Location
Location
Canada , Mississauga
Salary
Salary:
120800.00 - 170800.00 USD / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Core Java: Strong understanding of Java (JDK 8+, preferably Java 11/17), including multithreading, collections, garbage collection, and JVM internals
  • Frameworks: Extensive experience with Spring Framework (Spring Boot, Spring MVC, Spring Data JPA, Spring Security)
  • Middleware: Proven experience in designing and developing RESTful APIs and microservices
  • Relational Databases: Strong proficiency in SQL and experience with Oracle databases, including schema design, query optimization, and stored procedures
  • NoSQL Databases: Experience with MongoDB, including data modeling, querying, and performance tuning
  • CI/CD & DevOps: Hands-on experience with CI/CD tools and practices (e.g., Jenkins, GitLab CI, GitHub Actions, Maven/Gradle, Docker, Kubernetes)
  • Version Control: Proficiency with Git and standard branching strategies (e.g., Gitflow)
  • Testing: Experience with unit testing frameworks (JUnit, Mockito) and integration testing
  • Demonstrable exposure and practical experience with AI development tools such as Devin, GitHub Copilot, Claude, Anti Gravity, and Codex
  • Strong understanding of AI/ML concepts, prompt engineering, and integrating AI into software development workflows (e.g., for code generation, testing, debugging, and documentation)
Job Responsibility
Job Responsibility
  • Lead the design, development, and implementation of complex middleware applications using Java and Spring Boot:Utilize AI-powered code generation tools (e.g., Devin, Copilot, Codex) to accelerate development, automate boilerplate code, suggest optimal implementations, and enforce architectural patterns. Leverage AI for design pattern identification and complex system architecture validation
  • Architect and optimize database interactions with Oracle, SQL, and MongoDB, ensuring high performance and data integrity: Employ AI to analyze database query performance, suggest advanced indexing strategies, optimize schema designs, and generate efficient SQL/NoSQL queries. AI-driven tools can also assist in predicting database load and recommending scaling solutions
  • Drive the adoption and continuous improvement of CI/CD pipelines to facilitate rapid and reliable software delivery: Integrate AI into CI/CD processes for intelligent test case generation, predictive failure analysis, automated code vulnerability scanning, and optimization of pipeline execution times based on historical data
  • Collaborate with cross-functional teams, including product management, QA, and operations, to define requirements, design solutions, and deliver high-quality software:Use AI-powered communication and summarization tools (e.g., Claude) to streamline requirement gathering, document analysis, and stakeholder communication. AI can also assist in translating technical designs into accessible formats for various audiences
  • Mentor and provide technical guidance to junior and mid-level software engineers, fostering a culture of technical excellence and continuous learning: Leverage AI platforms for personalized learning paths, automated code feedback, and explanations of complex technical concepts. Encourage junior engineers to adopt AI-driven development practices
  • Actively research and experiment with AI technologies to identify opportunities for enhancing developer productivity, automating tasks, and improving software quality. Continuously explore emerging AI tools and techniques (such as Anti Gravity for complex problem-solving) and assess their applicability to our development ecosystem
  • Participate in code reviews, ensuring adherence to coding standards, best practices, and architectural guidelines: Utilize AI-powered code analysis tools to pre-scan code for potential bugs, security vulnerabilities, performance bottlenecks, and style deviations, allowing human reviewers to focus on higher-level logic and design
  • Troubleshoot and resolve complex technical issues, ensuring the stability and performance of production systems. Implement AI-driven anomaly detection in monitoring systems, leverage AI for rapid log analysis and root cause identification, and automate incident response workflows
  • Contribute to the strategic planning and technical roadmap for our middleware platforms: Employ AI to analyze industry trends, forecast technology evolution, assess the impact of new features, and prioritize roadmap initiatives based on data-driven insights
  • Conduct tasks related to feasibility studies, time and cost estimates, IT planning, risk technology, applications development, and model development: Utilize AI for data synthesis, predictive modeling for estimations, identification of potential IT risks, and accelerated model prototyping and validation
  • Fulltime
Read More
Arrow Right

Senior General / Interdisciplinary Engineer Analyst

DCS Corp is recruiting for a Senior General/Interdisciplinary Engineer Analyst t...
Location
Location
United States , Ogden
Salary
Salary:
Not provided
dcscorp.com Logo
DCS Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • U.S. Citizenship is required
  • A Bachelor's degree plus 15 years of experience, 8 of which must be in the DoD
  • An adjudicated DoD Secret Security clearance on the First Day of employment
  • Experience in engineering and technical resources with either USAF command or control reporting systems, tactical radar, shelter and radome systems, aircraft trainer pods, radios and communication systems, EW systems, or threat emitters depending on the specific branch needs
Job Responsibility
Job Responsibility
  • Conduct and support all engineering and technical activities required during the material solution analysis, technology, engineering, and manufacturing development, production and deployment, and operation and support phases of the systems acquisition process
  • Develop/prepare engineering and technical documentation inherently part of the activities listed above
  • Conduct systems architectural analyses to include system design/design feasibility and state-of-the-art assessment
  • Produce architectures, document planned and existing systems, determine-deficiencies, develop alternatives, recommend solutions, and support development of a plan to implement the chosen solution per acquisition and sustainment system engineering processes
  • Track and ensure system architecture and interoperability requirements for the baselined system is maintained
  • Detail operational requirements and functional interactions within the system and with other systems
  • Translate DoD user requirements into system requirements for designing, developing, testing and evaluating systems and subsystems using USAF and DoD approved acquisition methods
  • Provide engineering analysis of system training, training equipment and simulator requirements
  • Prepare technical documentation
  • Provide engineering evaluation of equipment and simulator designs
  • Fulltime
Read More
Arrow Right

Data Security Analyst

We are looking for a Data Security Analyst to support and strengthen email and m...
Location
Location
United States , Chicago
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 5 years of experience in cybersecurity, messaging security, or information security roles
  • Strong hands-on knowledge of Proofpoint administration, including encryption policies, rule configuration, and quarantine management
  • Experience diagnosing mail flow problems within hybrid environments such as Microsoft 365 and Exchange
  • Familiarity with phishing simulation platforms and security awareness training tools
  • Working knowledge of SIEM technologies and integration with security monitoring solutions
  • Solid understanding of cybersecurity policies, email threat protection, and application security concepts
  • Excellent communication, documentation, analytical, and problem-solving abilities
Job Responsibility
Job Responsibility
  • Investigate and resolve complex email security and delivery issues, including routing failures, encryption challenges, quarantine events, and user-reported security concerns
  • Review dashboards, system logs, and alert activity to identify and respond to phishing attempts, malware incidents, spoofing, and impersonation threats
  • Administer and optimize Proofpoint Essentials and related integrations to maintain strong protection across the messaging environment
  • Configure and maintain email security controls, including encryption settings, policy rules, and quarantine management processes
  • Lead initiatives involving Proofpoint enhancements, platform updates, and rollout of new security capabilities
  • Develop clear guidance and training materials for IT teams and end users on secure email practices and available protection tools
  • Support security awareness efforts by helping manage phishing simulation activities and user education programs
  • Collaborate with broader security operations by connecting email security insights with SIEM platforms and other enterprise security tools where applicable
What we offer
What we offer
  • Medical, vision, dental, and life and disability insurance
  • 401(k) plan
Read More
Arrow Right

Information Security Analyst II

Our client is a leading energy infrastructure company focused on delivering sust...
Location
Location
United States , San Diego
Salary
Salary:
55.00 - 57.00 USD / Hour
tpsmithgroup.com Logo
Tucker Parker Smith Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2–5 years of experience in cybersecurity awareness, information security, training, or a related field
  • Experience training or mentoring employees with varying levels of technical expertise
  • Strong presentation, verbal communication, and written communication skills
  • Ability to explain technical cybersecurity concepts to non-technical audiences
  • Experience developing and reporting on training effectiveness metrics
  • Strong critical thinking and problem-solving abilities
  • Ability to work independently while collaborating effectively within a team environment
  • Strong organizational and time management skills
Job Responsibility
Job Responsibility
  • Develop, maintain, and deliver engaging cybersecurity awareness and training programs for employees across the organization
  • Create and present cybersecurity awareness content through virtual and in-person presentations
  • Translate technical cybersecurity concepts such as phishing, ransomware, MFA, and data protection into clear, user-friendly language
  • Manage and support security awareness platforms and learning tools
  • Analyze training participation, phishing simulation results, and user behavior data to generate meaningful metrics and reports
  • Continuously improve awareness content and training materials based on emerging threats, organizational needs, and performance metrics
  • Partner with IT, Security, HR, and Compliance teams to align awareness initiatives with company policies and risk management goals
  • Support enterprise-wide security campaigns, communications, and awareness events including Security Awareness Month and phishing simulations
  • Fulltime
Read More
Arrow Right