Lead, Threat Intel Operations

Capital Management Firm #017

Primary functions and essential responsibilities

Build out a threat intelligence program that provides relevant intel to the security teams, technology teams, key business stakeholders, as well as portfolio companies.
Conduct all-source cyber intelligence collection, analysis, and dissemination
Consume and evaluate threat intelligence to understand the evolving threat landscape, adversarial tactics, techniques, and procedures (TTPs), and threats that could impact our environment
Build internal and external intel sharing processes
Monitor the threat landscape for updates threats, intel, trends, and changes
Provide intelligence to support the development of use cases mapped to common frameworks for detecting new/evolving threats
Prepare intelligence briefs on cyber threats that convey potential impact, risks, or relevance for the firm
Support detection and incident response with context and analysis
Lead the effort to identify new intelligence feeds and implement process intake
Correlate threat intelligence for campaign analysis
Model threats using MITRE ATT&CK framework and make recommendations for countermeasure development
Develop internal documentation including procedures and playbooks
Develop operational metrics for reporting and continuous program improvement
Support the build of an insider threat program
Effectively build relationships and interact with colleagues across the Cybersecurity team, as well as the broader Technology and Application teams
Perform other duties as needed

Qualifications

Education:

Bachelor’s degree in threat intelligence, International Relations, Computer Science, Information Technology, Business, or Security Operations
Experience Required:

6-8 years of experience in Enterprise Cybersecurity, or with a reputed Services / consulting firm offering security operations consulting or equivalent government Agency/Military experience
Experience engaging in a 24×7 operational environment
Experience producing finished intelligence at different operational levels
Experience building processes and procedures
Experience with building a cyber intelligence program
Experience distilling raw data into actionable intelligence and extensive experience with analytical tradecraft
Understand and clearly communicate the key reasons why an organization would want threat intelligence and how they would use it

General Requirements:

Proven ability to deliver high quality written and/or oral intelligence
Effectively understand, analyze, and communicate risks
Strong understanding of technical sources for threat intelligence and knowledge of methods for threat analysis
Understanding of state-sponsored and cybercriminal cyber groups and tradecraft
Familiarity with Python or other relevant coding languages
Familiarity with cyber threat scenarios
Strong understanding of the offensive and defensive side of security
Understanding of common Attack methods and their SIEM signatures
Elevated level of personal integrity, and the ability to professionally handle confidential matters and show an appropriate level of judgment and maturity
Ability to interact effectively at all levels with sensitivity to cultural diversity
Ability to adapt as the external environment and organization evolves
Passionate about Cybersecurity domain and has the inclination to learn current technologies / concepts / improvements
Knowledge of cyber security frameworks and attack methodologies
Well-developed analytic, critical thinking skills and demonstrated problem-solving abilities and decision-making skills.
Dedicated team player: ability to collaborate well with others to solve problems and actively incorporate input from various sources
Ability to work in a fast paced, dynamic organization, managing multiple priorities in a deadline driven environment
Strong sense of ownership and accountability
Inquisitive and committed to continual improvement/learning
Comfort in dealing with ambiguity and uncertainty in a dynamic environment

To apply for this job email your details to Graham.Gates@TechExecOnline.com

Job Location