Microsoft UK • Cheltenham, United Kingdom

Threat Intelligence Librarian

Employment type:  Full time

3 days/week at home

Fully flexible hours

Job Description


Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity.

Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions.

The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate.

Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world.

The Microsoft Threat Intelligence Center (MSTIC) is a cyber threat actor focused intelligence team that discovers, tracks, and disrupts threats to protect Microsoft and its customers and partners.

MSTIC’s vision is to create a safer world through the creation and dissemination of accurate, timely, and actionable cyber threat actor intelligence.

MSTIC is recruiting a ‘Threat Intelligence Librarian’ with skills in information organization and design, and intelligence analysis. We are seeking a candidate able to help us build out our analytical model and inform and enforce the processes that support its use across MSTIC.

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.


  • Work with analysts to understand the workflows and investigation techniques used by the team to identify process and information organization needs.
  • Contribute to and help maintain the analytical model taxonomy that allows us to articulate analyst observations and assessments.
  • Work with engineers/developers/data scientists to integrate with systems that solve analyst needs.
  • Work with partner teams to identify areas of overlap and find collaborative solutions that reduce duplication of effort and create clarity.


  • Experience with and an understanding of the intelligence analysis investigation cycle.
  • Good understanding of cyber-attack terminology and preferably some experience in working cyber investigations.
  • Excellent communication and interpersonal skills.
  • Ability to work effectively in a fast-paced, global team environment.
  • 3+ years work or academic experience in anomaly detection, cybersecurity, data analysis, data modeling, geopolitical analysis, information organization and design, journalism, software development lifecycle, taxonomy development, and/or threat actor tracking.

Additional or Preferred Qualifications

  • Master’s Degree in Library and Information Science (MLS or MLIS), Archives and Records Administration (MARA), or related field

#MSFTSecurity #MSTIC #MSecR

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.

Company benefits

Wellbeing allowance
Health insurance
Dental coverage
Gym membership
Mental health platform access
Buy or sell annual leave
Shared parental leave
Matched pension contribution
Charity donation scheme
Employee assistance programme
Employee discounts
Volunteer days
Fertility treatment leave
Open to compressed hours
Open to job sharing
Fertility benefits
Enhanced sick pay
Enhanced sick days
Compassionate leave
Travel insurance
20 days annual leave + bank holidays
Enhanced maternity leave
Enhanced paternity leave
Adoption leave
Childcare credits
Carer’s leave
Cycle to work scheme
Faith rooms
Annual bonus
Annual pay rises
Company car
Open to part-time employees
Pregnancy loss leave
Life insurance
Equity packages
Financial coaching
Relocation packages
Employees are very happy with their working location freedom
Employees are very happy with the flexibility in the hours they work
Employees are largely happy with the benefits their company offers
Work-life balance
Employees feel that they can switch off quite easily from work
Role modelling
Employees feel that most people work flexibly
Employees feel that they can mostly manage how they get their own work done

Working at Microsoft UK

Company employees

Globally: 220,000

Gender diversity (male:female)


Office locations

London, Reading, Cambridge, Romsey, Manchester, Edinburgh

Hiring Countries

United Kingdom

Awards & Achievements

Most flexible companies

Most flexible companies

Flexa100 2024

Other jobs you might like