Associate - Cyber Threat Intelligence

The Global Security Operations organization is looking for a Mid to Senior/expert level Cyber Threat Intelligence Analyst to join the Threat Intelligence (TI) team. As a Cyber Threat Intelligence Analyst, you will be a key member of the team that supports the Chief Information Security Officers (CISOs) organization by providing Cyber Threat Intelligence (CTI) to security operation teams. Your role will involve leading cyber risk reduction efforts by identifying emerging Cyber Threats facing Northern Trust and Northern Trust technologies. Your responsibilities will include acting as a Technical Liaison between CTI and Global Threat Management (GTM) to lead cyber exposure/risk assessment activities from emerging threats. You will enable Threat Hunting operations by identifying technical indicators (such as IOCs) and Techniques, Tactics, and Procedures (TTPs) from emerging threat activity. Additionally, you will identify high and critical Vulnerabilities being exploited by Cyber Criminals and Nation State groups to support the Vulnerability Management (VM) teams prioritization efforts. Your role will also involve leading Intelligence-Driven Risk Identification and Risk Reduction Efforts across the organization. To excel in this role, you should maintain knowledge of changing technologies, attack methods, and the emerging threat landscape. You will be responsible for producing and delivering operational written and oral threat intelligence briefings tailored to the business interests of non-technical and technical stakeholders across the organization. Furthermore, you will track intelligence gaps and support Requests for Information (RFIs) efforts across the organization to fill identified intelligence gaps. In terms of qualifications, you should have a BA/BS in Computer Science or equivalent practical experience. Experience in cybersecurity consulting and/or cybersecurity operations, including Vulnerability Management, Incident Response, Threat Hunting, and Cyber Threat Intelligence, is required. Extensive knowledge of the MITRE ATT&CK framework and the ability to apply the framework to support threat detection and reduction efforts are essential. Detailed knowledge of global cyber threats, threat actors, and the tactics, techniques, and procedures used by cyber adversaries, particularly those targeting the financial services sector, is crucial. Additionally, experience in large-scale information technology implementations and operations is preferred. Industry certifications such as the GIAC Cyber Threat Intelligence (GCTI) certification would be beneficial but not mandatory. Demonstrated ability to produce concise, refined, written threat intelligence assessments and briefings, as well as experience tailoring oral threat intelligence briefings to non-technical and technical leaders across the organization, are required. You should be a proactive communicator and team-player with a proven ability to independently identify, analyze, and share relationships and technical, geopolitical, business, and financial implications between persisting and emerging cyber threats and threat vectors.,