"Alerted.org

Job Description

A fortune 100 organization is seeking a Senior Cyber Threat Intelligence Analyst (SCTIA) that will sit onsite 4 days a week in Erlanger Kentucky. The SCTIA provides support to leaders and cyber security analysts by consuming, analyzing, and reporting tactical, operational, and strategic threat intelligence. The SCTIAs focus their efforts on processing indicators of compromise from known attacks, emerging cyber threats, current events and their potential cyber impacts, threat actors, threat actor tools and techniques, motivations of threat actors, and malware, etc. The SCTIA will need to use intelligence processes and tools to work all of this threat information to develop intelligence products that are useful to leadership and cyber security analysts in the security operations center, incident responders, hunt teams, vulnerability management, etc.

The SCTIA will need to build and maintain a deep understanding of business operations and environment in order to determine the relevance of the threat information, and well as the vectors adversaries may use to attack the organization. The SCTIA will provide direct support and assist in investigations conducted by cyber incident responders, physical security, security operations center, hunt teams, insider threat, legal, etc.

Responsibilities include, but are not limited to:

• Demonstrate and apply subject matter expertise in a variety of information security disciplines, both technical and non-technical

• Responsible for the collection, processing, analysis, and production of tactical, operational, and strategic intelligence throughout the organization

• Prioritize work, collate information from various sources, and move swiftly toward strong analytical conclusions

• Help develop and maintain CTI processes, procedures, playbooks, etc.

• Develop, maintain, and execute the threat communication / product distribution processes

• Author professional looking reports that can be clearly understood by technical, non-technical, and executive consumers based on the audience

• Accept and incorporate intelligence product feedback from consumers and stakeholders

• Accept editorial input from the CTI Manager and higher

• Readiness to defend analysis in the face of opposing opinions

• Employ predictive analytic methods to determine changes in adversarys capabilities, motivations, and intent, while providing recommendations to reduce risk before exposure to threats occur

• Use intelligence tools to hunt large sets of data to find threat activity and analyze it.

• Provide direct analytic support to the security operations teams providing context to active risks and threats using intelligence

• Work individually, with a team, and in a hybrid managing services environment utilization various partners in dynamic ways

• Help prioritize and lead cases, investigations, daily work tasks, and projects with management guidance

We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to [email protected] . The EEOC "Know Your Rights" Poster is available here (https://www.eeoc.gov/sites/default/files/2023-06/22-088\_EEOC\_KnowYourRights6.12ScreenRdr.pdf) .

To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .

Skills and Requirements

7+ years of experience in cyber security

3+ years of experience in a cyber threat intelligence role

3+ years of direct experience actively managing/using threat intelligence to reduce risk and threat exposure

Strong experience in vulnerability, exploitation, penetration testing concepts

Strong experience with information security, host- and network-based forensics, monitoring, detection, and incident response best practices

Strong experience in computer intrusions, malicious code, and technical aspects of associated threat vectors, adversarial TTPs, and their relation to the cyber kill chain

Understanding the MITRE attack framework. Security certifications such as CISSP or SANS preferred

Exposure to assessing technical intelligence collection and analytic products, including behavioral analysis and reverse engineering outputs from researcher teams or automated sandbox testing

Familiarity with various technologies such as SIEM, IDS/IPS, Proxy, endpoint and enterprise incident management systems, as well as applications such as Microsoft Office, ServiceNow, or comparable products

Knowledge of the cyber threat landscape for manufacturing, brokerage services, business operation, research, supply chain, transportation, etc on a global scale null

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to [email protected].