Cyber Threat Intelligence Collections Analyst

About The Position

Requirements

• 5+ years of experience with a combination of cyber threat intelligence or research AND threat detection or incident response work, at least 1 year of which should be in a large multinational company
• Knowledge of collections management processes and ability to implement them in non-intelligence environments
• Ability to understand complex IT platforms and implemention feed integration and automation tasks to support AI initiatives
• Intimate knowledge of the MITRE ATT&CK Framework, Cyber Kill Chain, Diamond Model of Intrusion Analysis, or other relevant network defense and intelligence frameworks
• Experience with collecting, analyzing, and interpreting data from multiple sources, documenting the results and providing meaningful analytic products (e.g., a Collections Manager)
• Knowledge of the principal methods, procedures, and techniques of gathering information and producing, reporting, and sharing intelligence
• Knowledge of enterprise level ticketing systems, SLA management, and processes found within cyber fusion centers

Responsibilities

• Maintain and be the primary subject matter expert on threat modeling methodology such as Kill Chain, Diamond Model, and MITRE ATT&CK framework to identify, classify, prioritize and report on cyber threats using a structured approach.
• Lead US team’s daily, weekly, monthly, and quarterly cadenced threat intelligence reporting program.
• Develops a risk-based model of historical threat activity, trends and common attack vectors tied to TTPs and tunes alert so that future platform integrations and automations can support AI initiatives
• Collects and manages cyber threat intelligence related to threats to the organization through feed integration with partner institutions, mailing lists, open source news, and industry partnerships.
• Provides high fidelity reporting that strengthens relationships between the GTMR team and other groups, both internal (e.g., other CFC teams) and external (e.g., paid partnerships, and trust groups).
• Share relevant cyber intelligence findings to variety of internal audiences (Senior Leadership, IT Teams, User communities, etc.) and external trust groups.
• Participation in after hours on-call rotation when required.

Benefits

• The expected compensation range for this position is between $93,500 - $156,450.
• Bonus based on performance and eligibility target payout is 10% of annual salary paid out annually.
• Paid time off subject to eligibility, including paid parental leave, vacation, sick, and bereavement.
• In addition to salary, PepsiCo offers a comprehensive benefits package to support our employees and their families, subject to elections and eligibility: Medical, Dental, Vision, Disability, Health, and Dependent Care Reimbursement Accounts, Employee Assistance Program (EAP), Insurance (Accident, Group Legal, Life), Defined Contribution Retirement Plan.