Cyber Threat Intelligence Analyst

Job Description

The incumbent will be responsible for running the cyber threat intelligence operations and enhancing the existing threat research processes.

Job Responsibilities

Cyber Threat Intelligence Analyst is a specialist role within Group Security Operations Center. Candidate must have good knowledge relating to the current cyber threat landscape and have past working experience in investigating and analysing cyber security incidents and providing assessments to enhance the detection, prevention, response and monitoring capabilities for the Bank's security operations.

• Participate in the intelligence cycle and manage information provided by various intelligence sources
• Perform analysis on campaigns, threat actor TTPs (Tactics, Techniques and Procedures), technical indicators of compromise, cyber-attack trend, and exploitation of technology and prepare threat assessments on new developments, threats, or vulnerabilities
• Work with internal and external partners to manage the ingestion, aggregation and sharing cyber threat intelligence internally and externally
• Research on advanced threat actors' TTPs and capabilities to provide adversarial intelligence to support threat hunters
• Proactively identify threat trends and provide insights to improve overall Cybersecurity risk posture
• Support any cyber incident response and investigation
• Participate in industry threat intelligence forums to maintain up-to-date security industry awareness and attack trends

Job Requirements

• Minimum 5-6 years of relevant experience with at least 2-3 years of Security Operations experience
• Advanced understanding of Cyber Security concepts and how Cyber Operations are conducted
• Advanced understanding on the MITRE ATT&CK Framework and related frameworks
• Advanced understanding on adversarial mindset and motivations
• Advanced understanding on the use of threat modeling tools like STRIDE, DREAD and analytical tools like Diamond Model
• Good understanding of endpoint and network architecture
• Good understanding of modern web, cloud and container technologies
• Experienced with using commercial and OSINT threat information tools
• Experienced with the use of SIEM and TIP
• Diploma/Degree in Cyber Security/Information Technology/Engineering from recognised academic institutions
• Professional Cyber Security related qualifications (E.g. GCTI, GOSI, GCIH, GCFA, GNFA, etc.) is preferred

If you are interested in this position, please click "Apply Now" and we will review your qualifications & reach out to you for further discussion & next steps, if your skillsets meet the needs of the role.

Only shortlisted candidates will be responded to, therefore if you do not receive a response within 14 days please accept this as notification that you have not been shortlisted.

EA Licence No: 11C5502
Registration No: R1876903