- Monitor cyber threats and assess the latest threat landscape to anticipate necessary detection and response measures in security operations.
- Analyze security indicators and the tactics, techniques, and procedures of threat groups, ensuring coverage for anomaly detection and prevention within the SOC.
- Conduct intelligence-led analysis and investigations to identify potential threat actors and their attack methods, supporting root cause analysis and providing remediation recommendations.
- Perform threat hunting to uncover assets that may be vulnerable to future attacks.
- Support the vulnerability management cycle for assets and networks, including prioritization, and integrating vulnerability intelligence into SOC operations.
- Bachelor’s degree in computer science, Information Technology, or a related field.
- At least 3 years in a cybersecurity discipline, with 1 year of security intelligence experience.
- Good understanding of cyber threats, vulnerabilities, TTPs, intelligence lifecycle, IR lifecycle, and security operations.
- Understanding of Cyber Kill Chains, MITRE ATTACK Framework, or other relevant standards.
- Professional cyber security certifications, e.g., CISSP, CISM, CISA, GCTI, CTIA, or equivalent professional certifications