Threat Intelligence Analyst
Indexed description
We are Hiring: Cyber Threat Intelligence (CTI) Analyst
Are you ready to shift our defenses from reactive to predictive? We are looking for a highly strategic and analytical Cyber Threat Intelligence (CTI) Analyst to join our advanced SOC team!
In this role, you won't just wait for internal alerts. Instead, you will track external threat actors, monitor the dark web, analyze emerging exploit trends, and dissect global campaigns. Your mission will be to translate complex threat data into highly actionable intelligence, ensuring our SOC knows exactly who is targeting us, what methods they are using, and how to defend against them before an attack occurs.
Key Responsibilities:
Intelligence Collection & Analysis
- Monitor open-source intelligence (OSINT), closed hacker forums, commercial threat feeds, and dark web marketplaces to identify emerging exploits and active campaigns.
- Track and profile Advanced Persistent Threats (APTs) and cybercriminal syndicates, documenting their specific Tactics, Techniques, and Procedures (TTPs).
- Analyze global geopolitical events and industry-specific trends to predict upcoming shifts in the threat landscape targeting our regional footprint.
Operationalization & Detection Support
- Translate raw threat data into highly actionable Indicators of Compromise (IoCs) and Indicators of Behavior (IoBs).
- Partner with Threat Hunters and Detection Engineers to inject threat intelligence directly into SIEM watchlists, firewall blocks, and automated SOAR playbooks.
- Author and issue timely tactical alerts, weekly threat briefings, and executive-level threat intelligence reports detailing immediate digital risks.
Vulnerability & Brand Protection
- Evaluate newly disclosed vulnerabilities (CVEs) against our actual technology stack, guiding patching priorities based on real-world exploitation.
- Track credential leaks, data dumps, and lookalike domain registrations to mitigate typosquatting, phishing infrastructure, and brand impersonation.
Job Requirements & Qualifications
Experience & Track Record:
- Total Experience: Minimum of 4–6+ years of technical experience in cybersecurity.
- CTI Focus: At least 2–3 years focused strictly on cyber threat intelligence or cybercrime investigation.
- Analytical Portfolio: A demonstrated history of authoring comprehensive threat intelligence reports, whitepapers, or tactical advisories.
Technical Skills & Tools:
- Framework Mastery: Expert-level capability utilizing the MITRE ATT&CK framework, the Cyber Kill Chain, and the Diamond Model of Intrusion Analysis.
- TIP Platforms: Hands-on experience administering and pivoting data within Threat Intelligence Platforms such as MISP, Anomali ThreatStream, Recorded Future, or ThreatConnect.
- Investigative Pivoting: Advanced skills utilizing infrastructure lookup tools like VirusTotal, Shodan, Censys, DomainTools, and passive DNS repositories to map adversary C2 networks.
- Log & Script Literacy: Basic proficiency with Python or SQL to parse unstructured intelligence feeds, scrape open-source repositories, and interact with threat-feed APIs.
Preferred Professional Certifications (Highly Prioritized):
- Dedicated Threat Intelligence: GCTI or CTIA.
- Advanced Architecture & Response: CISSP or GCIH.
💼 Ready to outsmart the adversaries? Apply directly via the link below or connect with our Talent Acquisition team.
#Hiring #CyberSecurityJobs #ThreatIntelligence #CTI #SOC #OSINT #InfoSec #TechCareers
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search