Lead Threat Intelligence Analyst

Proficient in using Threat Intelligence Platforms (TIPs) like OpenCTI. Mapping intelligence data to STIX/TAXII frameworks. Strong analytic skills in processing, correlating, and synthesizing intelligence. SIEM experience or related/equal experience. Ability to discuss security issues with technical and leadership audiences. Technical writing skills for customer or executive audiences. Proficiency in English. Deep understanding of threat actors, their motivations, TTPs (aligned to MITRE ATT&CK). Leverage Scripting experience. Preferred: Malware Analysis, Digital Forensics or Incident Response experience.

Monitor and evaluate cyber threat reporting from various sources. Analyze threat intelligence, correlating findings to create a comprehensive threat picture. Produce customer-facing summaries and detailed formal reports. Recommend mitigation measures based on technical analysis. Map intelligence data to STIX threat objects. Ingest intelligence reports into the Threat Intelligence Platform. Collect, process, and analyze dark web activity and data leak sites. Create visualizations of threat actor activity and trends. Respond to threat intelligence requests for information (RFIs). Participate in incident event escalations. Review and approve customer communications based on threat intelligence. Provide intelligence-driven support to various security teams. Brief internal teams, clients, and stakeholders on emerging threats. Mentor junior analysts and contribute to team processes.