Cyber Threat Intelligence Analyst (AVP/VP)

  • Competitive
  • Singapore Singapore Singapore SG
  • Permanent, Full time
  • Morgan McKinley Singapore
  • 21 Aug 18 2018-08-21

Cyber Threat Intelligence Analyst (AVP/VP)

We are seeking for an experience Cyber Threat Intelligence Analyst for our client who are expanding their Cyber security team. Incumbent is expected to collect, research, coordinate, and deliver intelligence gathered from various sources to increase the cyber threat awareness, programs and initiatives within APAC.

Responsibilities:

  • Participate in the development of CTI methodologies and activities across APAC.
  • Work closely with threat intelligence feeds, external intelligence parties and internal stakeholders.
  • Create awareness and educate Management and operational teams regarding the threat landscape, active and developing campaigns, and other aspects of CTI.
  • Identify and track threats (actors, campaigns) across domains (crime, espionage, hacktivism) of potential concern by utilizing both technical and actor information, threat intelligence platforms, and other sources.
  • Work closely with existing infrastructure and security team.

Requirements:
  • Minimum 5 years of experience in the information security (cyber security) field.
  • Formal training and experience in intelligence analysis or targeting / collections management preferred.
  • Prior experience as part of a security operations or incident response organization will be preferred.
  • Independent, self-motivated and innovative with good problem solving, interpersonal and communication skills, and can foster teamwork.
  • Strong understanding of cyber threat analysis models such as kill chain, diamond model, etc and how they apply to both targeted and non-targeted threats
  • Experience using commercial and open source (OSINT) information to support intelligence analysis
  • Experience in common scripting languages such as Python, Ruby, LUA, Powershell or BASH
  • Strong understanding of common security products and technologies utilized in Enterprise environments (proxies, WAF, Firewalls, IDPS, Anti-Malware, Endpoint, etc)
  • Understanding of the OSI stack and the various protocols from layer 1 - 7 including SNMP, HTTP, VPN, DNS, etc.

Registration No: R1106192

EA Licence No: 11C5502