We are currently recruiting for a Threat Hunting Manager to join our Information Technology team.

Your main purpose will be to protect Aviva and its customers from the damage caused by cyber-attacks. As Lead of the Global Threat Hunting Team, you will report into the Head Group CISO Security Operations Detect & Response function. You will support Aviva in ensuring that security incidents are handled efficiently to minimise the impact and reduce the risk to the business.  You will develop new threat hunts, utilising the MITRE ATT&CK Framework techniques, to make the unknown known.

The role will involve engagement with stakeholders from across the global Aviva business, leveraging technology and initiatives from the global CISO function and its suppliers.

You must be able to demonstrate your technical abilities and knowledge of Operating systems and networking technologies. You will have the ability to review large amounts of data to find anomalous or suspicious activity.

You will demonstrate strong interpersonal skills and be able to explain security related topics whilst maintaining an excellent level of customer service.

The role will contribute towards the operation of the Information Security function at Aviva via the provision of subject matter expertise across Aviva and subsidiaries; the role will be based on our Bristol office with some travel to other Aviva locations.

Duties & Responsibilities

• Delivering the Threat Hunting service and managing the Threat Hunting Team

• Mentoring and coaching the Threat Hunting Team and others in Global CISO Function

• Responding to and Supporting of Cyber Security incidents from the Global Security Operations Centre and other areas of the business

• Threat Hunting using available tools and data to find unknown and previously undetected threats based off the MITRE ATT&CK Framework

• Supporting the global markets in further analysis of suspicious or malicious activity

• Responding to security incidents from the Global Security Operations Centre

• Threat Hunting for unknown and undetected malicious activity

• Analysing large data sets to find anomalous and suspicious behaviour

• Be on Stand-by/On-Call in the event of a major security incident

Skills & Experience

• Degree or equivalent experience in information security, computer forensics, information technology or software development

• People Management – managing a team of six

• Experience of SIEM tools and log analysis

• Experience of Operating Systems (Windows, Linux)

• Experience in scripting (python, PowerShell, BASH, etcetera).

• Experience of Cloud environments (AWS, Azure, GCP)

• Knowledge of Information Security regulatory and legislative requirements

• Experience of writing, updating and reviewing processes

• Good communication skills with the ability to engage with a variety of different people

What will you get for this role?

• Salary circa £80,000 depending on skills, experience and qualifications

• Generous defined contribution pension scheme

• Annual performance related bonus and pay review

• Holiday allowance of 29 days plus bank holidays and the option to buy/sell up to 5 additional days

• Up to 40% discount for some Aviva products through “My Aviva Extras” plus discounts for "Friends & Family". (Some exclusions apply)

• Excellent range of flexible benefits to include a matching share save scheme

Working at Aviva

At Aviva, we’re people with a purpose. To be with you today, for a better tomorrow.

We bring this to life by ensuring managing risk is at the heart of the way we all work. We love people who do the right thing for our customers, and our colleagues. We want people who speak up, who take ownership, and who make good decisions.

The way we do this is important too, we’re all about our people – that’s you – so we can be pretty flexible. If you want to work from home some of the time or change your hours so you can pick up your kids or care for someone in your family, we’re very open to that. In fact, we don’t advertise roles as either part or full time, because we know each person has different needs, just as each business area has different needs. So, it’s up to you to discuss working hours during your interview.

We care deeply about being inclusive and that means we encourage applications from people with diverse backgrounds and experiences. We want our employees to bring their whole self to work and that starts with you.

We interview every disabled applicant* that meets the minimum criteria for the job. Once you’ve applied, please send us a separate email stating that you have a disclosed disability, and we’ll make sure we interview you.

We’d love it if you could submit your application online. If you require an alternative method of applying, please give Guv Johal a call on 0750 008 7919 or send an email to Guv.Johal@Aviva.com.

*As defined in The Equality Act 2010*. By ‘minimum criteria’ we mean you should provide us with evidence which demonstrates that you generally meet the level of competence required and have the qualifications, skills or experience defined as essential to perform the role.