Plus
Включить Plus
Назад
Company hidden
3 часа назад

Cyber Threat Intelligence Analyst

Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Cyber Threat Intelligence Analyst (Cybersecurity): Delivering advanced cyber threat intelligence, threat analysis, proactive threat hunting, and operational support for federal SOC with an accent on IOCs, TTPs, emerging vulnerabilities, and threat actor activity. Focus on correlating security events, developing intelligence reports, supporting incident response, and enhancing detection capabilities in cloud and enterprise environments.

Location: United States-based federal program (SBA ECS), supporting 24x7x365 operations.

Company

hirify.global provides cybersecurity services to the Small Business Administration (SBA) Enterprise Cybersecurity Services program.

What you will do

  • Provide cyber threat intelligence and operational analysis for SBA SOC.
  • Conduct proactive threat hunting across enterprise systems, cloud, endpoints, and networks.
  • Analyze IOCs, TTPs, malware, and emerging threats from intelligence feeds and advisories.
  • Perform advanced correlation of SIEM data, EDR telemetry, logs, and network traffic.
  • Support incident response, investigations, digital forensics, and threat attribution.
  • Develop reports, briefings, playbooks, threat models, and detection content.
  • Research APTs, ransomware, insider threats, and provide countermeasures.

Requirements

  • Bachelor’s degree in Cybersecurity, Computer Science, IT, or related (experience may substitute)
  • Minimum 5 years in cybersecurity operations, threat intelligence, threat hunting, incident response, or SOC
  • Experience with threat intelligence analysis, IOCs, TTPs, SIEM, EDR, IDS/IPS, network tools.
  • Knowledge of NIST frameworks, MITRE ATT&CK, cyber kill chain.
  • Cloud security experience in Azure, AWS, Microsoft 365.
  • Ability to support 24x7x365 operations
  • Strong analytical, investigative, communication skills.

Nice to have

  • GIAC Cyber Threat Intelligence (GCTI)
  • GIAC Certified Incident Handler (GCIH)
  • GIAC Certified Forensic Analyst (GCFA)
  • CISSP
  • CompTIA CySA+
  • CEH
  • Splunk Enterprise Security Certified Admin
  • Microsoft Security Operations Analyst Associate (SC-200)

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →