Join our team

Discover your potential at CORVID, where every single person has the ability to make a difference.

Fancy joining a friendly bunch of tech enthusiasts who are committed to delivering industry-leading cyber security? With a generous salary, prime location, and plenty of autonomy, it’s easy to see why CORVID attracts the best in the business.

Current vacancies

Welcome to CORVID

Everyone’s welcome here. It doesn’t matter who you are, what you look like, or what you believe in. If you’re expecting a bunch of middle-aged men in suits and a mandatory 9 to 5, you’re in for a surprise. We’re unapologetically different, and we’d love you to join us.

  • Unique start-up mentality, backed by a large global parent company
  • Expand your skillset through on-the-job learning and development
  • Work with cutting edge technologies
  • Flexible hours – tailor your work/life balance in a way that suits you

Meet your new team

Placeholder
Incident Response
Placeholder
Development
Placeholder
Infrastructure
Placeholder
Business Support

Senior Incident Response Analyst

Terms: Permanent
Location: Cheltenham, Gloucestershire
Salary: Up to £75k

CORVID provides advanced and innovative cyber security protection services, using sophisticated means to detect and manage technical security incidents. There is an opportunity for an experienced Incident Response (IR) Technical Lead to join this team.

Key responsibilities

As a senior responder, you will be responsible for monitoring identifiers and suspect activity that indicates a potential security incident. This will make use of intrusion prevention systems, vulnerability scanning tools, and malware forensics. You will be proficient in IR with an understanding of real-world APT tools, tactics, and procedures, and be able to quickly determine the nature of the threat and deliver the appropriate response.

Skills and experience

You will be expected to have:

  • A technical career background in cyber of at least five years
  • Experience in incident response or incident analysis
  • Good awareness of the current threat landscape
  • Familiarity with host forensic artefacts on both Windows and Linux, and their acquisition, processing, and interpretation
  • Ability to undertake forensic analysis of a host to support requirements such as proof of existence and proof of execution
  • Experience with network analysis and network intrusion detection
  • Understanding of firewall rules, Windows and Linux tools for analysing packet capture, netflow, and raw log files such as those generated by firewalls, web servers, and proxies
  • Experience of writing and implementing Snort/Suricata rules
  • Excellent understanding of TCP/IP networking and protocols (including HTTP, SSL/TLS, HTTPS, HTTP/2, DNS, SMTP, IPSEC)
  • Good understanding of modern malware – execution methods, persistence, detection, C2 methods, delivery mechanisms (JavaScript, PowerShell, etc.), and entry points (phishing, drive-by, etc.)
  • Knowledge of analysing artefacts to deduce behaviour of malware in an estate, including methods of entry, evidence of lateral movement, C2/exfiltration analysis, and remediation activities
  • Familiarity with the challenges of processing large volumes of log traffic, including Windows event logs
  • Familiarity with malware dynamic analysis to determine potential malicious intent of samples
  • Some experience with static analysis and reverse-engineering of samples and C2 protocols
  • Ability to innovate malware hunting methods
  • General technical analysis and data correlation skills
  • Familiarity with Elastic, Splunk, or similar would be beneficial
  • Understanding of vulnerabilities and vulnerability detection
  • Ability to launch and interpret network vulnerability scans, web scans, and port scans
  • Good communication, reporting, and analytical skills
  • Ability to produce and to review reports
  • Proven experience with scripting/programming languages
  • Ability to commit to small development projects (for example, in C or C++) as well as ad-hoc scripting (for example, in Python)
  • Ability to work in and perform system administration skills using Windows and Linux
  • Mentoring and teamworking skills – ability to mentor as well as to learn from other team members
  • Ability to review peer incident notes and reports
How to apply

To apply for this role, please visit the main Ultra application site.

Junior Incident Response Analyst

Terms: Permanent
Location: Cheltenham, Gloucestershire
Salary: From £22k

CORVID provides advanced and innovative cyber security protection services across the wider Ultra Group, using sophisticated means to detect and manage technical security incidents.

As part of our Incident Response team, you will be responsible for monitoring identifiers and suspect activity that indicates a potential security incident. This will make use of intrusion prevention systems, vulnerability scanning tools, and malware forensics.

Skills and experience

You will be expected to have:

  • A computer science degree (or similar) or 2 years' experience working in a technical environment (e.g. IT department or electronics engineering)
  • Good attention to detail
  • A genuine interest in technology and technical security
  • An understanding of network analysis tools and an ability to conduct packet capture analysis
  • An awareness of networking principles, including TCP/IP, DNS, etc., and commonly used internet protocols such as SMTP, HTTP, etc.
  • Knowledge of intrusion detection systems and methods of security hacking/penetration testing
  • An understanding of malware triage and the methods used to determine whether an identified file exhibits potential malicious intent
  • Working knowledge of at least one scripting language (Python, PHP, etc.)
How to apply

Please email your CV and cover letter to careers@corvid.co.uk.

Software Developer

Terms: Permanent
Location: Cheltenham, Gloucestershire
Salary: £35 – £55k

Who are we looking for?

We’re seeking a passionate and competent full stack developer, with at least 5 years' professional experience, to deliver software solutions for a variety of products and services. The work is varied and includes development of both web and app user interfaces for a variety of cyber security services.

Software developers at CORVID are encouraged to explore original ideas and concepts to help solve difficult problems. The work is diverse, as the team develops and supports many applications and projects. Developers will sometimes work as part of a team on a large project, and sometimes alone to solve a particular problem.

We encourage original thinking and innovation. You will report to the Head of Development, and will be pivotal in developing complex features.

Skills and experience
  • Strong C# coding abilities
  • Experience in front end development – Blazor or Razor, HTML 5, Bootstrap, CSS3, Javascript, JQuery, etc.
  • Operational knowledge of relational and noSQL database technologies, particularly big data solutions
  • Experience in  designing RESTful APIs
  • A good understanding of source control, bug tracking, and the software development lifecycle
Advantageous skills
  • MongoDB
  • ElasticSearch
  • Kafka
  • RabbitMQ
  • Git
  • Python
  • WPF
  • MVC
  • Entity Framework
  • C
  • TCP/IP
  • Linux
  • Docker
Background and understanding
  • A keen interest in emerging technologies
  • A positive attitude and the desire to add value
  • Able to follow a fast, iterative, agile development approach
How to apply

To apply for this role, please visit the main Ultra application site.

Looking for something else?

If none of our vacancies match what you're looking for but you'd still like to join our team, email your CV to careers@corvid.co.uk and we'll make sure you’re the first to know if any relevant opportunities arise.