Cyber Threat Intelligence Lead

Experience :8 to 12 years
Location: Mumbai (Candidate from Mumbai Location are preferred)

Job Purpose/Summary:

• Cyber Threat Intelligence (CTI)
• Vulnerability Assessment
• Sandboxing

Key Responsibilities:

The Cyber Threat Intelligence Analyst (Team Leader) will be in charge of ensuring the good delivery of these three services:

• Collect, analyze and exploit customized outputs from our Cyber Threat Intelligence partner and open-source intelligence to anticipate emerging cyber threats and get knowledge on threat actors, tactics, techniques and procedures.
  - Performs cyber threat hunting on Indicators of Compromise (IoCs) through our security tools (EDR, SIEM, SOAR, etc.) to detect prior compromise. - Ask for blocking IoCs in anticipation in our different security tools (EDR, Antivirus, Proxies, Email Protection solution, etc.).
• Communicate on vulnerabilities related to the software used in the Saint-Gobains scope.
• Update on a regular basis our software inventory in the scope of Vulnerability Assessment Service.
• Analyze on request the maliciousness of packages and files in our sandbox and formalize synthesis.
• Produce and communicate monthly KPIs on each activity.

Key Performance Indicators:

• Collect, analyze and exploit customized outputs from our Cyber Threat Intelligence partner and open-source intelligence to anticipate emerging cyber threats and get knowledge on threat actors, tactics, techniques and procedures.
  - Performs cyber threat hunting on Indicators of Compromise (IoCs) through our security tools (EDR, SIEM, SOAR, etc.) to detect prior compromise. - Ask for blocking IoCs in anticipation in our different security tools (EDR, Antivirus, Proxies, Email Protection solution, etc.).
• Communicate on vulnerabilities related to the software used in the Saint-Gobains scope.
• Update on a regular basis our software inventory in the scope of Vulnerability Assessment Service.
• Analyze on request the maliciousness of packages and files in our sandbox and formalize synthesis.
• Produce and communicate monthly KPIs on each activity.

Qualificaton:

• Bachelor’s Degree in Computer Engineering, Information Technology or any relevant certifications.
• Experience in investigating and reporting on cyber-attacks.
• Ability to demonstrate comprehensive, practical knowledge of research/collection skills and analytic methods.
• Strong technical skills with an interest in open source intelligence investigations and malware analysis.
• In-depth knowledge of security tools such as SIEM, IDS/IPS, web proxies, SIEM and firewalls.
• Team-oriented and skilled in working within a collaborative environment and with other Service Lines.
• Good sense of priorities and good sense of initiative.
• Rigorous and autonomous.
• Excellent writing skills in English and ability to communicate complicate technical challenges in a business language to a range of stakeholders.
• Ability to manage and drive a team of analysts.
• Contribute to the development strategy of the Identify Service Line.