Threat Intelligence Lead, Ransomware Affiliates

This job is with Standard Chartered Bank, an inclusive employer and a member of my Gwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly.

Job Summary  We are seeking a Lead, Ransomware Affiliates who has extensive knowledge in Intelligence Analysis, Data Querying and Analysis and General Cyber Security Awareness to join our Cyber Intelligence - Threat Management team in Newark. The successful candidate will be responsible for serving as a Threat Lead who will have ownership and accountability for the development of high impact intelligence related to defined geographic or thematic threat.
The candidate should have a comprehensive understanding of cyber threat intelligence, intelligence processes, and technical investigative skills. They should also have experience in incident response, malware analysis, and risk management. As part of the Threat Lead role, you will be responsible for driving the strategy around intelligence collection, requirements, stakeholder engagement and identifying creative solutions for delivering impactful intelligence across the Group.
We appreciate self-driven candidates who will be working closely with the wider Cyber Intelligence - Threat Management teams, creating and maintaining a list of business stakeholders (e.g. within the different lines of business) and engage regularly with those stakeholders to understand their business and threat landscape. We believe that a willingness to acquire new skills will contribute to success in this role.

Key Responsibilities    Threat lead for the Ransomware Affiliate Threat Area (RATA) which focuses on the individual threat actors (affiliates) that form part of the broader Ransomware-as-a-Service (RaaS) program, and is directly accountable for the development of high impact intelligence relating to the threat area.
Produce high quality standardised intelligence reports to a full range of stakeholders, from technical peers to senior executives, providing detailed analysis on cyber events, including relevant economic and geopolitical variables.
Provide decision-makers with a strategic view of the threat, predicting shifts in adversarial intent, goals and strategic objectives.
Create and maintain detailed threat actor profiles on all relevant threat actors and groups within the threat area, mapping known TTPs to the MITRE ATT&CK framework.
Profile and track threat actors (Ransomware Affiliates) in intelligence analysis platform - Synapse.
Analyse patterns of adversary behaviours and develop hunting rules resulting in automated detection and curated threat data feed.
Support various source (internal/external) analysis to understand and track adversaries targeting the bank.
Act as a part of incident response team where appropriate and provide operational cyber intelligence support during ongoing incidents
Establish, develop and own relationships with senior internal and external stakeholders, and provide in-person/video intelligence briefings where needed.
Protect the bank by performing technical research into advanced, targeted attacks, malware campaigns, malware and other emerging technologies that post risk to the bank
Actively contribute to driving forward the maturity of the team through continual process improvements, particularly intelligence analysis methodology and intelligence production.
Although the role does not currently have direct people leader responsibilities, as a senior analyst and threat area lead, you will provide coaching and mentoring to junior analysts;  This will include reviewing and editing intelligence products from other members of the team and providing appropriate feedback and suggestions.

Maintain the highest standards of risk management, particularly regarding intelligence collection operations, data processing and confidentiality of information handling.
Qualifications    4+ years of cyber threat intelligence experience preferably in Banking and Financial services sector or law enforcement
Bachelor's degree in computer related major
In-depth knowledge of the global cyber threat landscape, including threat actors, attack types, tactics, techniques…