Posted 5 years ago
The Threat Intelligence Analyst may be responsible for but is not limited to;
- Identify and hunt for threat actor TTPs across internal/external repositories
- Correlate collected intelligence, to build upon a larger knowledge base of tracked threat activity
- Present tactical and strategic intelligence about threat groups, the methodologies they use and the motivations behind their activity
- Prepare intelligence reports/findings at both the technical and strategic levels
- Convey both verbally and in writing the importance of findings for a variety of audiences
- Prepare and deliver briefings and reports to the client’s executives, security team or fellow analysts
- Foster client trust and ongoing relationship building through proactive and continuous engagement
- Prioritize and execute tasks with minimal direction or oversight
- Provide cogent cyber threat intelligence analysis to clients and various internal teams in written and oral form
- Create custom analytic products based on conclusions and judgments derived from open and closed Intelligence sources and independent research
- Provide timely support for clients’ incident response, hunting, threat intelligence teams by collecting relevant intelligence and/or performing unique research and providing analysis
- Perform technical analysis on malicious or suspicious artifacts (malicious executables and documents, packet captures, etc.)
- Work closely Incident response teams to update and improve intelligence reporting and collection processes