Cyber Security Threat Intelligence Analyst/Security Analyst

Job Description

Core objective:

Develop a baseline Threat and Risk Model:

Articulating current and emerging threats, along with suggested remediation plans and a gap analysis of emerging threats against existing SOC services to highlight areas of greatest risk

Key consideration:

The engagement would require the candidate to possess strong technical and analytical skills to build the relationship between assets, vulnerabilities, threats and risks with a strategic and technical cyber intelligence skill set. 5-7 year's experience in cybersecurity with in-depth understanding of threat intelligence and analysis, threat Intel industry approach and model(s)

Standard Job Requirements

• Develop a threat and risk model and underlying threat analysis process.
• Develop processes and procedures that enable ingested intelligence and vulnerability data to be transformed into an updated view of the organisation's threat landscape with risk profiles specific critical assets
• Develop threat scenario and corresponding attack vectors(potential) considering top 5 threats
• Develop and recommend the improvements on current playbooks for the top five threats

Technical Competencies

• Strong analytical and problem solving skills
• Knowledge of security intelligence threats and threat actors.
• Knowledge of log formats for syslog, http logs, DB logs and how to gather forensics for trace-ability back to event
• Knowledge of frameworks of Indicators of Compromise for example OpenIOC and data formats like STIX,JSON etc
• Experience with log management or security information management tools
• Experience on or good understanding about Threat Intelligence and Threat Hunting platforms
• Should have a good understanding of SANS Top 20 Critical Security Controls; Ten Steps to Cyber Security.
• Ability to make information security risk determinations based of of threat intelligence analysis
• Effective verbal and written communication skills