Lead Threat Intelligence Analyst

ADP

Makati City, Metro Manila
Permanent
Full-time

2 months ago

Collect, analyze, investigate, store & disseminate threat intel (actors, campaigns, TTPs, IOAs, IOCs) • Collect & analyze artifacts including malicious executables, scripts, documents & packet captures • Conduct detailed tech analysis supported by industry accepted analytical frameworks, tools & standards • Collaborate with tech & threat intel analysts to provide indications & warnings, and contribute to predictive analysis • Develop & refine cyber threat intel collection & analysis processes • Apply knowledge of current cyber threats & associated TTPs to infiltrate computer networks • Generate tailored & actionable products based on analyzed threat campaigns, external & internal events, and incidents • Develop analytical hypotheses; prove/disprove those hypotheses • Produce quality intel products at the operational & tactical level for audiences with diverse tech backgrounds • Review, process & analyze external brand abuse, and digital risk data • Develop automations & dashboards to measure trends • Ability to work in a fast-paced environment with minimal supervision • Review & analyze internal, open source & dark web data to find threats and use it to provide value to ADP • Provide accurate & priority driven analysis on cyber threats, & present complex operational/tech topics to senior managers & stakeholders • Establish & maintain excellent working relationships/partnerships within GSO & other ADP units • Trend/correlation analysis for forecasting • Provide recommendations on remediation & countermeasures • Provide security risk mitigation methods & compensating controls to drive remediation efforts • Generate presentations (ie visuals, charts, graphs, infographics, evidence capture) for senior leadership • Provide input for the development of objectives, KRA & metrics • Strong critical thinking & problem-solving skills • Develop professional contacts in support of operations • Support the CIRC/SOC with intel collection, analysis &/or dissemination

BASIC REQUIREMENTS • 5+ years experience in cybersecurity, threat intel or IT ; 2+ years experience in threat analysis; experience can include Cyber Threat Intel, Threat Hunting, System Administration, IDP, Monitoring, IR, Digital Forensics, &/or Vulnerability Management • Ability to write scripts for automation process development using Python, Perl, Net & other languages • Ability to work with API & implement integrations between tools • Ability to introduce & provide improvements to the current processes for more efficiency & actionability • Experience with threat intel tools (eg Recorded Future, Titan, ThreatQ, VT, ThreatConnect, Spycloud) • Experience as a technical cyber threat intel analyst who has worked across organizations to analyze cyber threats • Candidates must be able work independently with minimal supervision • Excellent English verbal & written communication skills EDUCATION: • A Computer Science degree is a +, but not required • SANS FOR578, GIAC OSI, Security+, CISSP, GCTI, GREM, OSCP or similar training & certification is a + OTHER COMPETENCIES • Knowledge of advanced cyber threats, threat vectors, attacker methodology such as TTPs, Cyber Kill Chain, ATT&CK framework, Diamond Model etc • Experience in malware detection & analysis using static & dynamic analysis • Knowledge of cloud services & their attack surface • Knowledge of how malicious code operates & how technical vulnerabilities are exploited • Experience with premium threat intel tooling & open-source intel techniques • Experience developing network & host-based signatures to identify specific malware • Experience disseminating information in accordance with TLP classification & handling protocols • Experience with various link analysis & intel software applications • Ability to initiate, coordinate & prioritize responsibilities & follow through on tasks to completion • Understanding Mandarin, Farsi, Korean, Arabic is a + • Banking/Financial industry experienceDiversity, Equity, Inclusion & Equal Employment Opportunity at ADP: ADP affirms that inequality is detrimental to our associates, our clients, and the communities we serve. Our goal is to impact lasting change through our actions. Together, we unite for equality and equity. ADP is committed to equal employment opportunities regardless of any protected characteristic, including race, color, genetic information, creed, national origin, religion, sex, affectional or sexual orientation, gender identity or expression, lawful alien status, ancestry, age, marital status, or protected veteran status and will not discriminate against anyone on the basis of a disability. We support an inclusive workplace where associates excel based on personal merit, qualifications, experience, ability, and job performance.Ethics at ADP: ADP has a long, proud history of conducting business with the highest ethical standards and full compliance with all applicable laws. We also expect our people to uphold our values with the highest level of integrity and behave in a manner that fosters an honest and respectful workplace. Click to learn more about ADP’s culture and our full set of values.

ADP

Apply Now