Cyber Threat Intelligence Lead

JOB DUTIES AND RESPONSIBILITIES

Directs the collection, analysis, production, and integration of cyber threat intelligence into CSOC detection and response workflows. Maintains continual situational awareness and applicable context of threat actors, tactics, techniques, and procedures (TTPs), and active campaigns to inform the creation of detection content, cyber hunting priorities, and strategic leadership decisions. Produce actionable intelligence reports, indicators of compromise (IOCs), and early-warning assessments to support CSOC operations. Integrates with the detection engineering and threat hunting teams, drive development of signatures, rules, queries and detection content. The candidate will maintain comprehensive tracking of threat actors, trends, and metrics; deliver timely customized strategic, tactical or metrics based reports to customers.

QUALIFICATIONS

Education, Background, and Years of ExperienceBachelor’s degree in computer science, engineering, cybersecurity or STEM

Seven (7) years of experience as a Tier III senior cyber security analyst performing intelligence analysis, collection management, and technical analysis.

Five (5) years of hands-on experience with experience in the last two (2) years that includes host-based and network-based security monitoring using cybersecurity capabilities.

ADDITIONAL SKILLS & QUALIFICATIONS Required Skills

Possess a strong cyber security background with experience in the identification of advanced cyber threat activities, intrusion detection, incident response, malware analysis, and security content development (e.g., signatures, rules, etc.); and cyber threat intelligence.

Ability to read and write scripts at an intermediate level to support cyber threat detection such as VB scripts, Python, Powershell and HTML, XML.

Cyber threat analysis with ability to identify, mitigate or remediation courses of action; developing actionable intelligence used to protect organizational IT assets.

Preferred SkillsGCTI, GFCA…