Talent page

Vacancy Opportunities throughout our Network
Holland FinTech
Holland FinTech

Threat Intelligence Team Lead (Engineering & Data)

NCC Group

NCC Group

Multiple locations
Posted on Friday, February 9, 2024

Role: Team Lead – Threat Intelligence Engineering and Data Curation

Location: US Remote / London / Manchester

Thanks for checking out our job opening; we are excited that YOU are interested in learning more about NCC Group.

We are on a mission to make society a safer and more secure place. Our people are the ones who make that possible; a global community of talented individuals working together towards a safer future.

We aim to create an environment where everyone can reach their full potential. We work together, we are brilliantly creative, we embrace difference and we want you to join in our mission, to make the world safer and more secure.

Take a look at our website here to learn more about why we’re one of the leading global Cyber Security and Risk Mitigation business…


The Opportunity:

You will be responsible for supporting the development and future growth of our technical intelligence collection activities, data curation as well as the maintenance and administration of our Threat Intelligence platforms.

This role is pivotal in optimising the technical infrastructure that supports our threat intelligence operations, with a focus on deriving maximum value from the data we collect.

You will play a crucial role in shaping and maintaining the technical backbone of our threat intelligence operations. You will be responsible for assessing, enhancing, and innovating the infrastructure to ensure efficient data processing, analysis, and dissemination.

You will have a strong technical background, a passion for cybersecurity, and a creative mindset to explore new ways of harnessing data for actionable threat intelligence.

As part of this role you will be liaising with multiple stakeholder is the Global TI team, as well as our Global Incident Response and SOC Teams, and NCC Group’s security teams.

Key Accountabilities:

Infrastructure Optimisation: Assess and optimise the technical infrastructure supporting threat intelligence operations, ensuring scalability, reliability, performance and the security of this. Collaborate with cross-functional teams to implement improvements and upgrades to existing systems.

Data Integration and Analysis: Work closely with threat intelligence analysts to understand data requirements and implement systems for efficient data collection, processing, and analysis. Explore new technologies and methodologies to enhance the integration and analysis of diverse data sources. Make informed suggestions regarding the

Innovation and Research: Stay abreast of industry trends, emerging technologies, and threat intelligence best practices. Identify and propose innovative solutions to derive actionable intelligence from collected data.

Tool Evaluation and Implementation: Evaluate and recommend new tools and technologies that can enhance the efficiency and capabilities of the threat intelligence infrastructure.Lead the implementation and integration of selected tools into the existing technical environment.

Collaboration: Collaborate with threat intelligence analysts, researchers, and other technical teams to ensure seamless integration between infrastructure components. Provide technical support and expertise to the broader threat intelligence team.

TeamDevelopment: Recruit, mentor, and develop a team of analysts, engineers and data scientists to build a highly capable and cohesive team.

Desirable Requirements:

  • Bachelor's or Master's degree in Computer Science, Information Security, or a related field.
  • Dev-ops certification such as AZ-400 or equivalent would be desirable.
  • Proven experience in a technical role related to threat intelligence infrastructure.
  • Strong proficiency in scripting and programming languages (e.g., Python, Bash) for automation and data manipulation.
  • Experience with big data technologies, database management, and data warehousing.
  • Familiarity with threat intelligence platforms and tools.


  • Focusing on Clients and Customers
  • Working as One NCC
  • Always Learning
  • Being Inclusive and Respectful
  • Delivering Brilliantly

About NCC Group

The NCC Group family has over 2,200 members located all around the world, providing a trusted advisory service to 15,000 customers. Born in the UK, we have now have offices in North America, Canada, Europe, Asia- Pacific and United Arab Emirates.

We are passionate about helping our customers to protect their brand, value and reputation against the ever-evolving threat landscape. We fuel that passion with investment in our people and our business.

Our values and code of ethics are at the heart of how we operate – we work together, we are brilliantly creative and we embrace difference. We treat everyone and everything with equal respect.

We want to create an environment where all colleagues feel psychologically, emotionally and physically safe to be authentic, sharing their personal experiences to represent the diversity of the world they live in, and have equal opportunity to achieve their best.

About your application

We review every application received and will get in touch if your skills and experience match what we’re looking for. If you don’t hear back from us within 10 days, please don’t be too disappointed – we may keep your CV on our database for any future vacancies and we would encourage you to keep an eye on our career opportunities as there may be other suitable roles.

If you do not want us to retain your details, please email global.ta@nccgroup.com. All personal data is held in accordance with the NCC Group Privacy Policy. We are committed to diversity and flexibility in the workplace. If you require any reasonable adjustments to support you during the application process, please tell us at any stage.

Please note that this role involves mandatory pre-employment background checks due to the nature of the work NCC Group does. To apply, you must be willing and able to undergo the vetting process. This role being advertised will be subject to BS7858 screening as a mandatory requirement.