Principal Analyst - Threat Intelligence

Role Overview

As a Principal Analyst – Threat Intelligence, you will have strong analytical and investigative skills and be capable of receiving mass data and translating it into actionable intelligence findings.

You will conduct research and analysis, collaborate to author analytic documents identifying findings, presenting hypotheses, intelligence gaps, and recommendations, review weekly, monthly, and on-demand reports enabling discussions related to our mission, and contribute to the enhancement of the Threat Intelligence Center processes, tool selection, and capabilities through continuous innovation.

• Collection, analysis, and distribution of threat intelligence from multiple sources.
• Manage threat intelligence platforms and monitor feed sources for efficacy.
• Prepare intelligence products including high-quality papers, assessments, briefings, recommendations, and findings.
• Develop, manage, optimize, and continuously improve processes to enhance the overall cyber threat intelligence function.
• Develop and validate templates; validate TIP processes and procedures.
• Assist in authoring and in the definition of corporate intelligence requirements both inside and outside of the team to include key business areas or units.
• Disseminate intel products, including threat alerts, reports, briefings, etc.
• Contribute to situational awareness activities or processes within the organization and business, providing business context to active or emerging threats.
• Conduct intelligence assessments to determine key characteristics of the attack, attribution, and actor motivation, intent, and capability.
• Enhance the Threat Intelligence Center processes, tool selection, and capabilities through continuous innovation.
• Explore future TI developments continuously and mentor junior team members.
• Any other responsibilities as required by the Line Manager.

• In-depth analytical and monitoring skills, team cooperation, and ability to work in a high-pressured environment.
• Effective communication with key stakeholders.
• Passion for security with an understanding of adversary motivations, capabilities, intent, and tools and techniques of the trade.
• Expertise in understanding and applying the intelligence lifecycle.
• In-depth awareness and use of open-source intelligence tools and methods.
• Expertise in collection methods, intelligence production and analysis, analytic writing, argument mapping, and structured analytic techniques.
• Training in critical thinking, cyber intelligence, and cyber counterintelligence.
• Strong knowledge of threat intelligence platforms.
• Strong analytic tradecraft and ability to defend analysis against countervailing opinion.
• Strong understanding of the information security threat landscape.
• Formal intelligence analysis training and/or intelligence application experience.
• Ability to work well with others in a fast-paced dynamic environment.
• Excellent verbal and written communication skills with strong interpersonal, facilitation, and communication skills.
• Ability to learn and perform analysis quickly while balancing attention to detail and thoroughness.
• In-depth knowledge and understanding of cyber-attack vectors, detection techniques, malware analysis, cybercrime networks, and methodologies.
• Experience working in large-scale security operations, especially in large corporations, military, or government organizations.
• Experience with threat intelligence analytics software.
• Strong understanding of threat models, including the security kill chain and diamond model.
• CISSP, GIAC, or similar Information Security/CTI certification is preferred.