Cyber Threat Intelligence Analyst III

About The Position

Requirements

• Experience monitoring, tracking, and analyzing Threat Actor Groups and emerging threats in service of the enterprise's defense through paid and open-source tools.
• Experience in proactively combating Cyber Crime and profiling threat actors targeting certain areas of business
• Fraud and Brand Protection experience utilizing tools such as Recorded Future, BrandVerity, ShadowDragon, RedPoints, Maltego, and others.
• Experience reporting on current trends and threat actors actively targeting company assets
• Experience with Dark Web Personas, Sock Puppet Accounts, and related methodologies
• Experience with proactively threat hunting within a specific environment to identify IOC’s as well as potential attack vectors and vulnerabilities
• Strong interpersonal skills required to establish and maintain positive relationships, as well as strong communication skills in the form of clear and concise reporting and delivering presentations to technical and non-technical customers.
• Demonstrated ability to identify, coordinate and respond to security incidents using commercial and/or open-source technologies
• Experience with Threat Intelligence methodology in investigations, and the groups behind targeted attacks and tactics, techniques, and procedures
• Ability to summarize events/incidents effectively to different constituencies such as legal counsel, executive management and technical staff, both in written and verbal forms.
• Prior experience leading and participating in major/critical cyber security incidents
• 5+ years cyber threat analysis
• 5+ cyber intelligence and risk experience
• A Bachelor’s degree in Information Security, Computer Science, Information Systems, or another related field.

Nice To Haves

• Reading comprehension of Standard Chinese Language a plus
• Preferred certifications include, but not required: GIAC Forensic Examiner (GCFE), GIAC Forensic Analyst (GCFA), GIAC Cyber Threat Intelligence (GCTI), Certified Ethical Hack (CEH), Certified Information Systems Security Professional (CISSP). Career development plan to include certifications upon hire.

Responsibilities

• Lead and manage the Threat Intelligence team's day-to-day operations to monitor, track and analyze Threat Actor Groups and emerging threats in service of the enterprise's defense.
• Lead and own projects involving multiple team members and stakeholders to identify, contextualize, and assess potential cyber threats to InComm Payments
• Help Cyber and the business understand global cyber events and mitigate threats as they relate to InComm Payments
• Lead investigations of cyber threat campaigns and drive recommended actions for InComm Payments
• Work with Cyber Intelligence collectors to identify and address information gaps and with strategic analysts to identify emerging threats
• Build productive relationships with customers, stakeholders, and sources throughout the business
• Author written products for large and diverse audiences within InComm Payments
• Brief partners throughout the business on current cyber threats and events
• Program metrics and reporting structures collect and analyze data for precisely timely reporting of activity.