DescriptionKey Responsibilities
- Monitor open-source and restricted channels for relevant threats, vulnerabilities and indicators of compromise.
- Assess exposure and impact through vulnerability and configuration information.
- Analyse malware, phishing campaigns and network intrusions to identify threat actors’ tactics, techniques and procedures.
- Develop and maintain threat profiles on adversary groups, detailing their objectives, capabilities and methods of operations.
- Create and disseminate threat intelligence reports to internal stakeholders, including executive summaries suitable for non-technical audiences.
- Work closely with the cyber security incident response team to provide real-time analysis during active security incidents.
- Collaborate with external partners, industry groups and government agencies to share intelligence and best practices.
- Monitor external attack surface and security posture and work with asset owners to remediate the findings.
Qualifications
- Diploma or Bachelor’s degree in Computer Science, Information Technology, Information Security Management or a related field.
- 3-5 years of experience in cybersecurity, with a focus on threat intelligence, incident response, vulnerability management or a related area.
- CISSP, CISM, GCTI certified.
Competencies
- Hands-on experience on threat intelligence platforms, EASM, SPM, SIEM and vulnerability assessment tools.
- Working knowledge on frameworks, best practices, industry standard scoring models such as MITRE, CIS, CVSS, EPSS.
- Strong written and verbal communication skills, including the ability to present complex technical information in a clear and concise manner.
- Proficiency in one or more programming languages (Python, PowerShell, etc) is a plus.