Monitor multiple sources for cyber threats, including open-source intelligence (OSINT), dark web, industry reports, and internal security tools.
Analyse cyber threat data to identify emerging trends, tactics, techniques, and procedures (TTPs) used by threat actors.
Conduct in-depth analysis of threat indicators, malware, and vulnerabilities to assess potential impact on the organization.
Provide recommendations for mitigating identified threats and improving the organizations security posture.
Assist in incident response activities by providing intelligence support during security incidents and breaches.
Collaborate with incident response teams to identify, contain, and remediate security incidents based on threat intelligence insights.
Proactively search for signs of malicious activity within the organizations network and endpoints using threat intelligence and analysis techniques.
Develop and refine hypotheses for identifying and tracking potential threats and indicators of compromise (IOCs).
Recommend improvements to detection capabilities based on threat hunting findings and analysis.
Work with cybersecurity tool vendors to enhance threat detection and response capabilities based on intelligence requirements.
Evaluate and recommend new tools, technologies, and methodologies to improve the effectiveness of cyber threat intelligence operations.
Qualifications :
Bachelor s degree in computer science, Information Security, or related field (or equivalent experience).
Strong understanding of cybersecurity principles, threat landscape, and attack vectors.
Experience with cyber threat intelligence platforms, tools, and techniques.
Proficiency in analysing malware, network traffic, and log data for threat identification.
Excellent analytical, critical thinking, and problem-solving skills.
Effective communication and presentation abilities, with the capacity to convey technical information to non-technical stakeholders.
Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Threat Intelligence Analyst (CTIA), or equivalent are preferred.
Knowledge of programming/scripting languages (e.g., Python, PowerShell) for automation and data analysis is a plus.
