Cyber Threat Intelligence Analyst

The Cyber Threat Intelligence Analyst plays a crucial role in enhancing an organization’s cybersecurity posture by leveraging threat intelligence frameworks and tools. This position involves analyzing potential threats, detecting intrusion patterns, and reporting metrics on adversarial behavior.

Key Responsibilities

• Leverage a collection framework to organize threat intelligence.
• Report potential compromise areas using various intel sources.
• Apply the indicator lifecycle to incoming indicators.
• Detect intrusion patterns to predict Indicators of Compromise (IOCs) and related actions.
• Utilize Cyber Threat Intelligence (CTI) tools to identify trends and guide defenses.
• Report metrics on adversarial behavior for proactive action.
• Merge Kill Chain and Diamond models for effective CTI.
• Leverage the MITRE ATT&CK framework in CTI reporting.
• Process and maintain a current threat database by analyzing logs (SIEM/EDR/UEBA).
• Understand modern threats, vectors, and exploitation tactics.

Required Skills & Qualifications

• Familiarity with OSINT/CTI tools such as MISP, YARA, and DomainTools.
• Experience in processing indicators and analyzing logs for insider risk.
• Strong analytical skills with an understanding of cybersecurity frameworks.
• Ability to report findings clearly and concisely to stakeholders.
• Knowledge of adversarial behavior and threat detection methodologies.