Cleared Threat Intelligence Analyst

  • Location:
    Offsite, Spring, Texas, US
  • Area of Interest
    Security
  • Compensation Range
    121600 USD - 167800 USD
  • Job Type
    Professional
  • Technology Interest
    Security
  • Job Id
    1386482

Cleared Threat Intelligence Analyst

 

Qualifications

The Cyber Intelligence Analyst should be an independent, critical thinker skilled in the intelligence process and able to satisfy intelligence requirements under tight deadlines
  • Required: Bachelor's degree in IT, Computer Science, Intelligence or equivalent
  • 5+ years of cybersecurity, threat intelligence or IT experience; 2+ years of experience in operational or tactical cyber threat analysis; experience can include one or more of the following cyber-security functions: Cyber Threat Intelligence, Threat Hunting, System Administration, Intrusion Detection/Prevention, Monitoring, Incident Response, Digital Forensics, Vulnerability Management
  • Active TS/SCI 
  • Prior experience as a technical cyber threat intelligence (or related) subject matter expert that has worked across organizational boundaries to analyze cyber threats
  • Knowledge of advanced cyber threats, threat vectors, attacker methodology to include, tools, tactics, and procedures and how they tie into the Cyber Kill Chain or ATT&CK framework, Diamond Model etc
  • Experience in malware detection and analysis using static and dynamic malware analysis methods
  • Knowledge of how malicious code operates and how technical vulnerabilities are exploited with premium threat intelligence tooling and/or open-source intelligence techniques
  • Experienced in developing network and host-based signatures such as Snort, Yara and ClamAV to identify specific malware
  • Experience building and maintaining relationships with intelligence partners
  • Experience with disseminating information in accordance with TLP classification and handling protocols, to intelligence partners through the appropriate mechanisms
 

Responsibilities

 
  • The Cyber Intelligence Analyst will work on moderate to high complexity assignments where analysis requires an in-depth evaluation of variable factors
  • Work closely with US Government organizations in support of threat intelligence efforts
  • The Cyber Intelligence Analyst will be part of the Threat Intelligence & Interdiction Talos team
  • The Cyber Intelligence Analyst will provide decision making support and work on moderate to highly complex assignments requiring technical expertise
  • Generate tailored and actionable products based on analyzed threat campaigns, external and customer driven events and incidents
  • Collaborate with technical and threat intelligence analysts to provide indications and warnings, and contribute to predictive analysis of malicious activity
  • Develop analytical hypotheses, prove (or disprove) those hypotheses through research; communicate that information to stakeholders both verbally and in writing
  • Review and analyze internal, open source, and dark web datasets to find threat information and use it to provide value
  • Apply knowledge of current cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks
  • Provide accurate and priority driven analysis on cyber activity/threats, and present complex operational/technical topics to senior managers, customers and stakeholders
  • Establish and maintain excellent working relationships/partnerships with the Cisco Talos Incident Response and support teams throughout the organization, as well as different business segments
  • Produce intelligence products at the Strategic, Operational, and Tactical level for audiences with diverse technological backgrounds
  • Conduct detailed technical analysis supported by industry accepted threat intelligence analytical frameworks, tools, and standards
  • Create and evaluate trend/correlation analysis for scenario forecasting at both the tactical and operational level
  • Develop and refine cyber-threat intelligence collection and analysis processes
  • Provide expertise and recommend relevant remediation and countermeasures during incident response efforts
  • Provide security risk mitigation methods and compensating controls to help drive remediation efforts for customers
  • Collect and analyze artifacts including malicious executables, scripts, documents, and packet captures
  • Generate presentations that illustrate research through visualizations, charts, graphs, infographics, and evidence capture for senior leadership
  • Provide input for the development of objectives, key results, and program metrics
  • Exhibit strong critical thinking and problem-solving skills with sound judgement
  • Maintain or develop professional contacts in the various communities in support of operations 
 
WHY CISCO SECURE

#WeAreCisco, where each person is unique. We bring our talents to work as a team each day, helping power an inclusive future for all. Get to know us!
 
We’re global, we’re adaptable, we’re diverse, and our security portfolio is as extensive as it is groundbreaking. Have you heard of Threat, Detection & Response, Zero Trust by Duo, Common Services Engineering, or Cloud & Network Security? Those are only a few of our product teams! The only thing we’re missing is YOU.   
 
Join an enterprise security leader with a start-up culture, committed to driving innovation and giving you the opportunity to make an impact. We #InnovateToWin and we know we’re better together, that’s why we’re dedicated to inclusivity, collaboration, and diversity in everything we do. 
 
We’re proud to be the Best Security Company in 2021 with the Best Authentication Technology and the Best Small and Mid-Size Enterprises Security Solution in 2022 by SC Media. Cisco Secure continues to grow and evolve year after year with 100% of Fortune 100 Companies using our products, and we’re excited to see the new heights we’ll reach with your passion for security, your customer focus, and your desire to change things up!
 
What else can you expect? An ongoing investment in your growth—that’s why we offer many employee resource groups (called Inclusive Communities), mentorship programs, and hundreds of learning resources to consistently level up your skillset and explore your interests. Because when you succeed, we succeed!
 
“Cisco Secure offers an environment that combines cutting-edge, mission-critical, technology with some of the brightest, most diverse set of people I’ve ever had the pleasure of working with.” – Chief of Staff, Engineering
 
Join Cisco Secure – Be You, With Us!


#CiscoSecureEng23
#TalosEngFY23



Message to applicants applying to work in the U.S.:
When available, the salary range posted for this position reflects the projected hiring range for new hire salaries in U.S. locations. For non-sales roles, the hiring ranges reflect base salary and do not include bonuses, equity, or benefits. Hiring ranges for sales positions include base and incentive target, and do not include equity or benefits. Individual pay is determined by the candidate's hiring location and additional factors, including but not limited to skillset, experience, and relevant education, certifications or training. Applicants may not be eligible for the full salary range based on their U.S. hiring location. The recruiter can share more details about compensation for the role in your location during the hiring process.

Share