<div class="content-intro"><p><strong>WPP is the trusted growth partner for the world’s leading brands. </strong></p>
<p><strong>We unite cutting-edge media intelligence and data solutions, world-class creativity, next-generation production, transformative enterprise solutions and expert strategic counsel in a single company – powered by exceptional talent and our agentic marketing platform, WPP Open, to help our clients navigate change, capture opportunity and deliver transformational growth. </strong><br><strong> </strong><br><strong>We have been building the world's most valuable brands for 50 years and have global reach across 100+ markets, with deep local expertise.</strong><br><strong> </strong><br><strong>Our people are the key to our success. We're committed to fostering a culture of creativity, belonging and continuous learning, attracting and developing the brightest talent, and providing exciting career opportunities that help our people grow. </strong><br><strong> </strong><br><strong>For more information, visit <a href="https://eur02.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwpp.com%2F&data=05%7C02%7CErica.Durr%40wpp.com%7C9bf4566a65bc46a48ac008de749116ea%7C150b5e663d884dee83f6ed149b727a00%7C0%7C0%7C639076363668176216%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=Q9juosud56XGLThSFZ1NpPZd6FXpJPxV74OeRZWoh%2B4%3D&reserved=0" target="_blank">WPP.com.</a></strong><br><strong> </strong></p></div><p><span style="text-decoration: underline;"><strong>Why we're hiring:</strong></span></p>
<p>The Head of Threat Intelligence & Knowledge Sharing is responsible for establishing, leading, and maturing a comprehensive cyber threat intelligence (CTI) capability that supports detection engineering, incident response, threat hunting, vulnerability management, and executive decision-making. Additionally, this role owns the Operational Security knowledge management function, ensuring all processes, insights, and lessons learned are captured, validated, structured, and shared in alignment with ITIL knowledge management standards.</p>
<p><span style="text-decoration: underline;"><strong>What you'll be doing:</strong></span></p>
<p><strong>Core Responsibilities</strong></p>
<p><strong>Threat Intelligence Strategy & Leadership</strong></p>
<ul>
<li>Lead the Cyber Threat Intelligence (CTI) function across operational, tactical, and strategic domains.</li>
<li>Define the intelligence lifecycle, collection strategy, and analytical standards.</li>
<li>Own the production of intelligence reports, threat landscape assessments, and adversary TTP analysis.</li>
<li>Maintain a centralised repository of indicators of compromise (IOCs), threat artefacts, and contextual insights.</li>
<li>Ensure intelligence outputs directly support SOC, Incident Response, Detection Engineering, and Threat Hunting.</li>
</ul>
<p><strong>Integration & Operational Enablement</strong></p>
<ul>
<li>Embed threat intelligence into detection engineering, SIEM/EDR rule development, and automation workflows.</li>
<li>Support incident investigations with tailored intelligence and enrichment.</li>
<li>Enable proactive threat hunting by providing context on adversary behaviour and emerging trends.</li>
<li>Collaborate with vulnerability management teams to prioritise exposures based on threat context.</li>
</ul>
<p><strong>Intelligence Sharing & External Collaboration</strong></p>
<ul>
<li>Develop and manage intelligence-sharing partnerships with vendors, ISACs, MSSPs, and OpCos.</li>
<li>Ensure consistent, secure dissemination of intelligence to internal stakeholders.</li>
<li>Represent Operational Security in external intelligence forums, working groups, and industry collaborations.</li>
</ul>
<p><strong>Knowledge Sharing (ITIL-Aligned)</strong></p>
<ul>
<li>Own the Operational Security Knowledge Management Framework in line with ITIL standards.</li>
<li>Define and maintain the lifecycle for knowledge artefacts: creation, validation, approval, publishing, review.</li>
<li>Ensure all SOPs, playbooks, lessons learned, incident reports, and intelligence summaries are structured, version-controlled, and searchable.</li>
<li>Promote visibility, collaboration, and continual improvement across Operational Security.</li>
<li>Ensure knowledge assets support consistent service delivery and reduce reliance on tacit knowledge.</li>
</ul>
<p><strong>Team Leadership & Capability Development</strong></p>
<ul>
<li>Lead and mentor Threat Intelligence Analysts and Knowledge Managers.</li>
<li>Define capability roadmaps, learning plans, and certification pathways.</li>
<li>Ensure consistent analytical quality across intelligence outputs.</li>
<li>Foster a culture of continuous learning, curiosity, and intelligence-led operational improvement.</li>
</ul>
<p><strong>Governance, Quality Assurance & Reporting</strong></p>
<ul>
<li>Ensure CTI and knowledge-sharing activities comply with governance, privacy, and audit standards.</li>
<li>Oversee risk rating methodologies and structured threat assessments.</li>
<li>Deliver executive-level intelligence reporting for leadership and governance bodies.</li>
<li>Maintain audit-ready knowledge and intelligence artefacts with strong version control.</li>
</ul>
<p><span style="text-decoration: underline;"><strong>What you'll need:</strong></span></p>
<p><strong>Threat Intelligence Expertise</strong></p>
<ul>
<li>Extensive experience leading cyber threat intelligence programs.</li>
<li>Strong understanding of adversary TTPs, malware behaviour, and global threat landscape trends.</li>
<li>Hands-on experience with CTI tooling, OSINT sources, enrichment platforms, and data correlation.</li>
<li>Ability to produce operational, tactical, and strategic intelligence tailored to multiple audiences.</li>
</ul>
<p><strong>Knowledge Management & ITIL</strong></p>
<ul>
<li>Strong understanding of ITIL 4 knowledge management practices and the Service Value System (SVS).</li>
<li>Experience designing and maintaining enterprise knowledge frameworks.</li>
<li>Ability to govern structured repositories, taxonomies, and lifecycle-managed content.</li>
</ul>
<p><strong>Leadership & Collaboration</strong></p>
<ul>
<li>Experience leading multidisciplinary intelligence or security teams.</li>
<li>Ability to influence stakeholders and communicate complex intelligence clearly.</li>
<li>Strong interpersonal skills for cross-functional engagement and external partnerships.</li>
</ul>
<p><strong>Certifications (Preferred)</strong></p>
<ul>
<li>SANS GCTI, GREM, GCIA, GOSI.</li>
<li>ITIL 4 Foundation or higher.</li>
<li>Relevant intelligence tradecraft certifications (e.g., CREST).</li>
<li>Security qualifications such as CISSP, GIAC, or equivalent (advantageous).</li>
</ul>
<p><strong>Key Attributes</strong></p>
<ul>
<li>Analytical thinker with strong investigative instincts.</li>
<li>Excellent written communication and reporting skills.</li>
<li>Structured, organised, and documentation-driven.</li>
<li>Collaborative leader who promotes visibility and shared understanding.</li>
</ul>
<p>Strong ethical judgement and discretion in handling sensitive intelligence</p>
<p><span style="text-decoration: underline;"><strong>Who you are:</strong></span></p>
<p><strong>You're open<em>:</em> </strong>We are inclusive and collaborative; we encourage the free exchange of ideas; we respect and celebrate diverse views. We are open-minded: to new ideas, new partnerships, new ways of working.</p>
<p><strong>You're optimistic<em>:</em></strong> <span id="628d56ad5d8a35dab853e65d9daa237c" class="editor-module-hl-green-solid">We believe</span> in the power of creativity, technology and talent to create brighter futures or our people, our clients and our communities. We approach all that we do with conviction: to try the new and to seek the unexpected.</p>
<p><strong>You're extraordinary:</strong> we are stronger together: through collaboration we achieve the amazing. We are creative leaders and pioneers of our industry; we provide extraordinary every day.</p>
<p><span style="text-decoration: underline;"><strong>What we'll give you:</strong></span></p>
<p><strong>Passionate, inspired people</strong> – We aim to create a culture in which people can do extraordinary work.</p>
<p><strong>Scale and opportunity</strong> – We offer the opportunity to create, influence and complete projects at a scale that is unparalleled in the industry.</p>
<p><strong>Challenging and stimulating work</strong> – Unique work and the opportunity to join a group of creative problem solvers. Are you up for the challenge?</p><div class="content-conclusion"><p><strong>We believe the best work happens when we're together, fostering creativity, collaboration, and connection. That's why we’ve adopted a hybrid approach, with teams in the office around four days a week. If you require accommodations or flexibility, please discuss this with the hiring team during the interview process.</strong></p>
<p><strong>WPP is an equal opportunity employer and considers applicants for all positions without discrimination or regard to particular characteristics. We are committed to fostering a culture of respect in which everyone feels they belong and has the same opportunities to progress in their careers.</strong></p>
<h4><strong>Please read our Privacy Notice (<a href="https://www.wpp.com/en/careers/wpp-privacy-policy-for-recruitment">https://www.wpp.com/en/careers/wpp-privacy-policy-for-recruitment</a>) for more information on how we process the information you provide.</strong></h4></div>
