NMC Senior Cyber Threat Hunter
<p><b>Salary: £35,000 - 60,000 per year</b></p>
<b>Requirements:</b>
<ul><li>Deep understanding of adversarial tactics and techniques as well as threat actor lifecycles.</li><li>Ability to operate in high-pressured environments with proven experience of taking a technical lead role in support of the response to cyber incidents.</li><li>Strong experience hunting and tracking targeted threats.</li><li>Strong grasp of threat modelling and risk assessment frameworks.</li><li>Skilled in OSINT collection and analysis.</li><li>Demonstrated leadership in a threat hunting team, including mentoring and service development.</li><li>Excellent communication skills - able to translate complex threats into clear insights.</li><li>Ability to work independently and proactively as well as manage stakeholder relationships effectively.</li><li>Experienced in managing and coordinating as a lead within a team.</li><li>Excellent inter-personal skills and a collaborative mindset.</li><li>Prepared to be flexible to meet the demands during a cyber incident.</li><li>Eligible for SC and NPPV3 clearance.</li><li>Relevant accreditations in Cyber Threat Hunting (e.g., DFIR, OSINT, CREST) are desirable.</li><li>Understanding of the UK policing cyber environment and its threat landscape.</li><li>Proven experience of mentoring/leading a team.</li></ul>
<b>Responsibilities:</b>
<ul><li>Lead and conduct advanced threat hunting activities across national policing infrastructure, identifying indicators of compromise (IOCs), tactics, techniques, and procedures (TTPs), and emerging threat patterns.</li><li>Profile cyber adversaries by analyzing behavioral patterns, infrastructure, and motivations to inform strategic and tactical defense measures.</li><li>Collaborate with national partners including NCSC and NCA to share findings and coordinate responses.</li><li>Produce high-quality, actionable reports and briefings for various stakeholders, including technical teams, senior police leadership, and government departments.</li><li>Correlate and disseminate intelligence from multiple sources (OSINT, SIGINT, internal telemetry, etc.) to build a comprehensive threat picture and drive proactive defense.</li><li>Support and lead pre-incident planning, threat modeling, and attack surface reduction initiatives.</li><li>Act as a senior point of contact and take a lead role during live incidents, providing both written and verbal updates during managed cyber incidents to senior policing stakeholders.</li><li>Mentor and develop NMC colleagues, fostering a culture of continuous learning and analytical excellence.</li><li>Step into a leadership role during the managers absence, overseeing team operations, prioritizing workloads, and ensuring service continuity.</li><li>Drive innovation in threat hunting practices by evaluating new tools, techniques, and methodologies to enhance capability.</li><li>Engage with internal teams (Detect and Respond, Malware Analysis, Vulnerability Management, Threat Hunting) to ensure a threat hunting mentality is integrated across all cyber defense functions.</li><li>Translate complex threat intelligence into clear, concise insights tailored to operational, strategic, and executive audiences.</li><li>Contribute to the development of national cyber resilience strategies and support cross-force collaboration on threat hunting findings and practices.</li><li>Present at various senior boards and forums (internal and external) on the benefits of establishing a healthy cybersecurity posture.</li></ul>
<b>Technologies:</b>
<ul><li>Support</li><li>Office 365</li><li>Security</li></ul>
<p><b>More:</b></p>
<p>At Police Digital Service, we empower UK policing to stay ahead of evolving threats in a rapidly changing digital landscape. As the trusted technology partner for law enforcement, we provide cutting-edge services and strategic guidance to help forces maximize their tech investments, improve public safety, and ensure value for money. The National Management Centre (NMC) is a core part of our organization, offering 24/7/365 cyber threat detection, response, and risk management capabilities across UK policing. We promote work-life balance with 28 days of annual leave plus bank holidays, rising to 30 days after 5 years, and flexible working hours. Our commitment to employee well-being includes an employee assistance program and retail discounts. We encourage diversity and are dedicated to equal opportunities for all.</p>
<p>last updated 8 week of 2026</p>
<b>Requirements:</b>
<ul><li>Deep understanding of adversarial tactics and techniques as well as threat actor lifecycles.</li><li>Ability to operate in high-pressured environments with proven experience of taking a technical lead role in support of the response to cyber incidents.</li><li>Strong experience hunting and tracking targeted threats.</li><li>Strong grasp of threat modelling and risk assessment frameworks.</li><li>Skilled in OSINT collection and analysis.</li><li>Demonstrated leadership in a threat hunting team, including mentoring and service development.</li><li>Excellent communication skills - able to translate complex threats into clear insights.</li><li>Ability to work independently and proactively as well as manage stakeholder relationships effectively.</li><li>Experienced in managing and coordinating as a lead within a team.</li><li>Excellent inter-personal skills and a collaborative mindset.</li><li>Prepared to be flexible to meet the demands during a cyber incident.</li><li>Eligible for SC and NPPV3 clearance.</li><li>Relevant accreditations in Cyber Threat Hunting (e.g., DFIR, OSINT, CREST) are desirable.</li><li>Understanding of the UK policing cyber environment and its threat landscape.</li><li>Proven experience of mentoring/leading a team.</li></ul>
<b>Responsibilities:</b>
<ul><li>Lead and conduct advanced threat hunting activities across national policing infrastructure, identifying indicators of compromise (IOCs), tactics, techniques, and procedures (TTPs), and emerging threat patterns.</li><li>Profile cyber adversaries by analyzing behavioral patterns, infrastructure, and motivations to inform strategic and tactical defense measures.</li><li>Collaborate with national partners including NCSC and NCA to share findings and coordinate responses.</li><li>Produce high-quality, actionable reports and briefings for various stakeholders, including technical teams, senior police leadership, and government departments.</li><li>Correlate and disseminate intelligence from multiple sources (OSINT, SIGINT, internal telemetry, etc.) to build a comprehensive threat picture and drive proactive defense.</li><li>Support and lead pre-incident planning, threat modeling, and attack surface reduction initiatives.</li><li>Act as a senior point of contact and take a lead role during live incidents, providing both written and verbal updates during managed cyber incidents to senior policing stakeholders.</li><li>Mentor and develop NMC colleagues, fostering a culture of continuous learning and analytical excellence.</li><li>Step into a leadership role during the managers absence, overseeing team operations, prioritizing workloads, and ensuring service continuity.</li><li>Drive innovation in threat hunting practices by evaluating new tools, techniques, and methodologies to enhance capability.</li><li>Engage with internal teams (Detect and Respond, Malware Analysis, Vulnerability Management, Threat Hunting) to ensure a threat hunting mentality is integrated across all cyber defense functions.</li><li>Translate complex threat intelligence into clear, concise insights tailored to operational, strategic, and executive audiences.</li><li>Contribute to the development of national cyber resilience strategies and support cross-force collaboration on threat hunting findings and practices.</li><li>Present at various senior boards and forums (internal and external) on the benefits of establishing a healthy cybersecurity posture.</li></ul>
<b>Technologies:</b>
<ul><li>Support</li><li>Office 365</li><li>Security</li></ul>
<p><b>More:</b></p>
<p>At Police Digital Service, we empower UK policing to stay ahead of evolving threats in a rapidly changing digital landscape. As the trusted technology partner for law enforcement, we provide cutting-edge services and strategic guidance to help forces maximize their tech investments, improve public safety, and ensure value for money. The National Management Centre (NMC) is a core part of our organization, offering 24/7/365 cyber threat detection, response, and risk management capabilities across UK policing. We promote work-life balance with 28 days of annual leave plus bank holidays, rising to 30 days after 5 years, and flexible working hours. Our commitment to employee well-being includes an employee assistance program and retail discounts. We encourage diversity and are dedicated to equal opportunities for all.</p>
<p>last updated 8 week of 2026</p>