Job Role:
The Threat Intelligence Engineer plays a crucial role in safeguarding the community against malicious actors on the Internet.
This position involves developing threat analysis and hunting insights, creating novel data-driven solutions, and sharing valuable knowledge to reinforce the defensive capabilities of both the Security Operations Center (SOC) and customers.
* Key Responsibilities:
* Design and implement threat insights, dashboards, and automated enrichments for cyber threat intelligence.
* Leverage SOC data feeds and third-party threat intelligence from government and commercial providers to derive actionable insights.
* Develop and continuously evolve threat analysis strategies to proactively identify malicious activities within customer environments based on observed data insights.
* Collaborate with the larger SOC team and customers to investigate and report malicious cyber activities, providing in-depth analysis for stakeholders.
* Work alongside data scientists, analysts, and the reporting manager to build prototypes, reports, and visualizations that illuminate emerging threats for the SOC and customers.
* Contribute to the development of software and scripts that integrate and operationalize SOC datasets for threat hunting, vulnerability discovery, and other security missions.
Requirements:
* A solid understanding of cyber threats and the threat intelligence lifecycle.
* Proven experience in identifying, analyzing, and mitigating malicious online activities.
* Experience working with security-oriented data sources, such as SIEM logs and threat intelligence platforms, and familiarity with data normalization and correlation techniques.
* Hands-on experience in building or contributing to threat analysis and/or hunting programs, ideally within a SOC environment.
Benefits:
As a Threat Intelligence Engineer, you will have the opportunity to work on challenging projects, collaborate with a talented team, and contribute to the development of cutting-edge security solutions.