Cyber Security Threat Analyst

Country

State

Date Published

Job ID

Travel Amount

• Develop, create, and drive current and new reporting methods of Intelligence analysis for the leadership team for purposes of situational awareness and making Intelligence actionable.
• Provide required escalation, prioritization, and visibility of threats based on impact analysis, and validate proper mitigation controls are in place until remediation activities are complete.
• Coordinate and monitor, management of vulnerabilities reported by third-party pen-tests, third-party monitoring tools, and internal audits.
• Ability to collaborate extensively with asset owners to help them understand their vulnerabilities and assist them to develop remediation and mitigation strategies.
• Collecting threat information from various sources including daily threat review meetings, identify the impact to BMC assets, and coordinate action plans with security teams, and other relevant stakeholders.

• Candidates must be familiar with OSINT and be able to leverage these tools in daily threat monitoring.
• Strong written, communication, and presentation skills along with the ability to work in a highly collaborative environment.
• Understanding of the OWASP Top 10 vulnerabilities. Familiarity with 3rd party libraries and remediations.
• Bachelor’s/equivalent degree or higher in IT, CS, IS, with a focus in cybersecurity. Certifications a plus.
• Understanding of network services, vulnerabilities, and attacks. Knowledge of application exploits and vulnerabilities. Knowledge of ports and services typical in the configuration of web servers, file servers, and workstations.
• 2+ years of experience in cybersecurity or information technology security role, with specialization in cyber threat intelligence.
• Candidates must be familiar with vulnerability attributes like CVEs, CVSS, and threat detection and hunting frameworks like MITRE ATT&CK framework.
• Demonstrated analytical skills to determine what threat and intelligence requirements can be gathered from what sources, what inferences or assumptions can be determined and project threat scenarios.

• Analytical and detail-oriented individuals must have a passion for information security, creativity to identify gaps, and initiative to evolve their Cyber Security skills.
• Good deductive reasoning skills, creative thinker.
• Identifies opportunities for process and technical security improvements in the environment.
• Understanding of IT security compliance frameworks like ISO, PCI, HIPPA, SOX