252915 - Threat Intelligence Analyst
Collects and analyzes multi-source information about cybersecurity threats to develop deep understanding and awareness of cyber threats and threat actors’ Tactics, Techniques and Procedures (TTPs), to derive and report indicators that help organizations detect and predict cyber incidents and protect systems and networks from cyber threats
Main Tasks:
Identify appropriate sources to provide threat intelligence on newly discovered cyber threats and vulnerabilities.
Collect and analyze threat intelligence information on cyber threats and newly discovered vulnerabilities and assess their impacts on the organization.
Identify indicators that help in detecting and predicting cyber incidents based on the results of analyzing cybersecurity threat intelligence
Provide real-time cyber threat intelligence analysis and support during cybersecurity incidents and exercises
Monitor and report validated threat activities
Educational Level:
Educational Field:
Database and network design and administration
Software and applications development and analysis
Skills:
Effective communication with individuals and leaders
Technical skills:
Knowledge of the various sources of threat intelligence and the types of organizations and teams involved in gathering cybersecurity threat intelligence.
Knowledge of methodologies and methods for collecting and analyzing cybersecurity threat intelligence to support the organization's cybersecurity operations.
Knowledge of different formats for indicators of compromise and threat models and the skill in using them.
Knowledge of groups and sources of advanced persistent threats that are sources of cyber threats, the methods they use, and the skill in detecting them.
Skill in evaluating information for reliability, validity and relevance.