Principal Incident & Threat Analyst ( Cyber Threat Intelligence )

Discover. A brighter future.

With us, you’ll do meaningful work from Day 1. Our collaborative culture is built on three core behaviors: We Play to Win, We Get Better Every Day & We Succeed Together. And we mean it — we want you to grow and make a difference at one of the world's leading digital banking and payments companies. We value what makes you unique so that you have an opportunity to shine.

Come build your future, while being the reason millions of people find a brighter financial future with Discover.

Job Description:

Discover Financial Services is looking for an experienced Principal Incident & Threat Analyst to join their Cyber Threat Intelligence team to support the organizations’ goal of identifying and defending against threats to the firm. As a Principal Incident & Threat Analyst you will collect and analyze indicators and adversary TTP’s to identify and mitigate threats.  Principal Incident & Threat Analyst collaborate with cybersecurity and other enterprise teams to evaluate Discover's cyber defense posture, processes, and procedures in context to given threats.  You’ll create meaningful, actionable outputs to improve detection and prevention capabilities.

Responsibilities:

• Collect requirements from stakeholders for research and analysis

• Utilize knowledge of the MITRE ATT&CK framework to overlay researched threats to existing controls

• Work with the alert logic creation team to develop succinct detection rules to identify threats in the environment

• Review triage and incident cases for trend analysis

• Conduct threat briefings across the enterprise at varying levels of knowledge and understanding.

• Work with the Enterprise Vulnerability Management team to identify and address emergent threats to the firm

• Coordinate with the Incident and Crisis Management team to mitigate the risk of external vendors compromises

• Educate members of the Cyber Security group on relevant threats to the environment and our vertical

• Create and disseminate Threat Bulletins, Reports, and Updates on a regular basis

• Monitor and track threat actors/groups identified as most likely to attack the firm and/or our vertical and work with relevant internal teams on defensive measures

• Monitor Intelligence feeds/sources for work initiation

• Develops junior members of the team through training and knowledge sharing opportunities.

• Key contributor to strategy and prioritization of program initiatives

• Provide Sr. Manager feedback on junior analyst performance

• Coordinate prioritization of team assignments with Sr. Manager

Other responsibilities may include:

• Maintains an in-depth knowledge of security trends, attacker techniques, and relevant threat actors. Use data analysis and Threat Intelligence to detect, disrupt, and eradicate threat actors. Proactively detects advanced threats and adversaries that evade traditional security controls. Develops hunt scenarios, translate them into iterative processes, and leverage findings to create new detection methodologies. Identifies innovative detection and responsive opportunities and processes consistent with business goals and corporate risk tolerance 

• Provides mitigation services for identified threats and security incidents 

• Test security effectiveness and defensive readiness for the organization 

• Builds and maintains effective relationships with peers and internal business partners 

• Assists in the development of presentations and executive briefings regarding relevant security incidents and findings to senior management 

• Generate strategically relevant attack scenarios to simulate adversaries. Draws attention to business impact of computer, system, and network security issues. Evaluates effectiveness of defense-in-depth architecture against identified threats 

Minimum Qualifications 

At a minimum, here’s what we need from you: 

• Bachelors – Computer Science, Information Security or related 

• 6+ Years – Cybersecurity, Software Engineering, Data Analytics or related 

• In lieu of a degree 8+ Years – Information Security, Computer Science, Data Analytics or related 

Internal applicants only: technical proficiency rating of proficient on the Dreyfus cybersecurity scale 

Preferred Qualifications 

If we had our say, we’d also look for: 

• Prior Cyber Threat Intelligence Experience

• Demonstrable experience with Cyber Threat Intelligence vendor tools and services

• Knowledge and understanding of the Intelligence Lifecycle

• Experience building common Threat Intelligence products

• MITRE ATT&CK Framework

• CISA Known Exploited Vulnerabilities list

• GIAC (GCIH or GCIA  or GCTI)

External applicants will be required to perform a technical interview. 

What are you waiting for? Apply today! 

And by the way, while you're waiting to hear from us, don't forget to check out the great benefits Discover offers. 

The same way we treat our employees is how we treat all applicants – with respect. Discover Financial Services is an equal opportunity employer (EEO is the law). We thrive on diversity & inclusion. You will be treated fairly throughout our recruiting process and without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or any other characteristic protected by federal, state, or local law in consideration for a career at Discover. 

Application Deadline:

The application window for this position is anticipated to close on Mar-25-2024. We encourage you to apply as soon as possible. The posting may be available past this date, but it is not guaranteed.

Compensation:

The base pay for this position generally ranges between $88,500.00 to $149,300.00. Additional incentives may be provided as part of a market competitive total compensation package. Factors, such as but not limited to, geographical location, relevant experience, education, and skill level may impact the pay for this position.

Benefits:

We also offer a range of benefits and programs based on eligibility. These benefits include:

• Paid Parental Leave

• Paid Time Off

• 401(k) Plan

• Medical, Dental, Vision, & Health Savings Account

• STD, Life, LTD and AD&D

• Recognition Program

• Education Assistance

• Commuter Benefits

• Family Support Programs

• Employee Stock Purchase Plan

Learn more at MyDiscoverBenefits.com.

What are you waiting for? Apply today!

All Discover employees place our customers at the very center of our work. To deliver on our promises to our customers, each of us contribute every day to a culture that values compliance and risk management.

Discover is committed to a diverse and inclusive workplace. Discover is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status, or other legally protected status. (Know Your Rights)

Discover complies with federal, state, and local laws applicable to qualified individuals with disabilities and is committed to providing reasonable accommodations. If you require a reasonable accommodation to search for a position, to complete an application, and/or to participate in an interview, please email HireAccommodation@discover.com. Any information you provide regarding your accommodation needs will be kept confidential and will only be used to determine and provide necessary accommodation.