Cyber Threat Intelligence (CTI) Analyst
Indexed description
We are seeking a highly skilled Cyber Threat Intelligence (CTI) Analyst based in Greece to join our Threat Intelligence team.
The ideal candidate is technically strong, analytically rigorous, and deeply familiar with adversary tradecraft. This role goes beyond monitoring feeds. You will analyze adversary behavior, correlate multi-source intelligence, map activity to MITRE ATT&CK, and produce actionable intelligence that drives detection engineering, incident response, and strategic security decisions. You will operate at the intersection of intelligence analysis, detection engineering, and adversary emulation.
Responsibilities
- Work with STIX/TAXII feeds and threat intelligence platforms
- Assist in automation of ingestion, normalization, and correlation pipelines
- Contribute to intelligence scoring models (risk scoring, actor confidence, exploit maturity)
- Validate intelligence through internal telemetry and honeypot data (if applicable)
- Cross-Team Collaboration
- Support SOC during active investigations
- Provide adversary insights during incident response
- Contribute to purple-team exercises and threat emulation scenarios
- Present findings to technical and executive stakeholders
- Strong understanding of:
- Adversary TTPs
- Kill Chain & MITRE ATT&CK framework
- IOC lifecycle & enrichment techniques
- Experience with:
- Threat Intelligence Platforms (TIPs)
- Malware analysis reports
- Log analysis (Splunk, ELK, etc.)
- OSINT collection techniques
- Knowledge of:
- STIX/TAXII
- YARA / Sigma rule creation
- Network protocols & traffic analysis
- Windows & Linux security telemetry
- Scripting capability (Python preferred) for data processing and automation
- Experience tracking specific threat actors (APT28, Lazarus, FIN7, etc.)
- Familiarity with exploit development trends and CVE weaponization timelines
- Experience with honeypots and telemetry-driven intelligence
- Understanding of ransomware ecosystems & initial access brokers
- Knowledge of ML-assisted threat detection (bonus)
- Strong hypothesis-driven analytical thinking
- Ability to differentiate noise from signal
- Clear technical writing skills
- Ability to brief senior leadership concisely
- Operational security awareness
- GIAC (GCTI, GCIA, GCED)
- OSCP / OSCE
- CISSP
- SANS CTI-related certifications
- Highly competitive salary reviewed upwards on a regular basis
- Working from home: Hit your goals from the comfort of your home because we value performance, not the place
- Participation in state-of-the-art project and tech challenges and participation in large-scale projects
- Personal and professional development, amongst industry experts and talented people
- Continuous learning, having access to board resources
- Onboarding plan and training so that you have a smooth induction and feel confident and ready to take over your new role
- Equipment support so you have all the tools to do effectively and efficiently your work
- No dress code as we want you to be as comfortable as possible
This is a full-time position with competitive salary and benefits. If you have a passion for cyber threat intelligence and are looking for an exciting opportunity to work with cutting-edge technology, we would love to hear from you!
Note: All applications will be treated with strict confidentiality.
To apply, please send us your CV at [email protected]
Requirements
This position in available only for Greek residents.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search