Job Description
The Threat Intel Analyst will use their expert knowledge of malicious software to research and analyze Cyber Threats, report their findings, use their intelligence to predict similar attacks, and help to counter the activities of cybercriminals for the organization.
Job duties include:
- Conduct Cyber Threat analysis, identify mitigation and/or remediation courses of action; develop actionable intelligence used to protect organizational IT assets
- Utilize Threat Intelligence and Threat Models to create threat hypotheses
- Prepare and report risk analysis and threat findings
- Create, recommend, and assist with development of new security content as the result of hunt missions to include signatures, alerts, workflows, and automation
- Coordinate with different teams to improve threat detection, response, and improve overall security posture of the Enterprise
- Proactively and iteratively search through systems and networks to detect advanced threats
- Analyze host, network, and application logs in addition to malware and code
- Identify, track and investigate high priority threat campaigns, malicious actors with the interest, capability and TTPs (Techniques, Tactics and Procedures)
- Bring a comprehensive understanding, analyzing and tracking the Cyber Threat landscape, including identifying and analyzing Cyber Threats actors, APT TTPs and/or activities to enhance cybersecurity posture of the IT operating environment
- Implement defined procedures for remediation, or make an informed decision to escalate
The candidate should have at minimum ONE of the following certifications:
Certified Information System Security Professional (CISSP).
SANS - GCIA Intrusion Analyst
SANS - GREM Reverse Engineering Malware
SANS - GISF Security Fundamentals SANS - GXPN Exploit Researcher and Advanced Penetration Tester
SANS - GMON Continuous Monitoring Certification
OSCP (Certified Professional)
OSCE (Certified Expert)
OSWP (Wireless Professional)
OSEE (Exploitation Expert)
CCSP Certified Cloud Security Professional
LPT Licensed Penetration Tester
ECSA EC-Council Certified Security Analyst