Threat Intelligence Lead

Job Summary:

We are seeking a skilled Threat Intelligence Lead with expertise in Threat Intelligence, Threat Hunting, and Digital Risk Management to strengthen our organization's security posture. The ideal candidate will have experience identifying, analyzing, and mitigating cyber threats, with a strong understanding of adversary tactics, techniques, and procedures (TTPs). The role also involves managing digital risks, including brand protection, dark web monitoring, and third-party risk intelligence.

Key Responsibilities:

Threat Intelligence & Research:

- Collect, analyze, and operationalize cyber threat intelligence from open-source, commercial, and proprietary sources.

- Monitor and track emerging cyber threats, including nation-state actors, cybercriminal groups, and hacktivists.

- Develop and maintain threat intelligence reports, briefings, and dashboards to inform security teams and leadership.

Digital Risk Management:

- Identify and mitigate digital risks related to brand reputation, social media threats, impersonation, and fraudulent activities.

- Monitor dark web, underground forums, and illicit marketplaces for leaked credentials, intellectual property theft, and data breaches.

- Assess and track third-party and supply chain risks, providing intelligence-driven recommendations.

- Work with legal, fraud, and risk teams to develop mitigation strategies for digital threats.

Threat Hunting & Incident Response:

- Collaborate with SOC and Incident Response teams to provide intelligence-driven threat detection and response.

- Investigate advanced persistent threats (APTs) and targeted attacks using frameworks like MITRE ATT&CK and Cyber Kill Chain.

- Correlate threat intelligence with security events to enhance proactive threat detection.

Collaboration & Stakeholder Engagement:

- Engage with industry threat intelligence communities, government agencies, and vendors for threat intelligence sharing.

- Provide strategic threat intelligence insights to leadership and security teams for proactive risk mitigation.

- Work closely with Red and Blue Teams to improve adversary simulation exercises.

Automation & Tooling:

- Utilize Threat Intelligence Platforms (TIPs), SIEM (Splunk, ELK), SOAR, and EDR for threat enrichment and automation.

- Develop custom threat detection rules and signatures using YARA, Sigma, and other frameworks.

- Work with AI/ML teams to enhance automated risk identification and threat detection capabilities.

Required Skills & Experience:

- 6-8 years of experience in Threat Intelligence, Threat Hunting, or Digital Risk Management.

- Strong knowledge of cyber threat intelligence frameworks (MITRE ATT&CK, Diamond Model, Cyber Kill Chain).

- Expertise in digital risk protection (brand monitoring, dark web intelligence, social media threats, fraud detection).

- Hands-on experience with Threat Intelligence Platforms (TIPs), SIEM, SOAR, and EDR solutions.

- Proficiency in OSINT, dark web monitoring, and third-party risk intelligence.

- Experience analyzing malware, exploits, and Indicators of Compromise (IOCs).

- Strong scripting skills in Python, PowerShell, or similar for automation and threat analysis.

- Certifications such asCTIA, CISSP, CEH, or equivalent are preferred.

- Understanding of AI/ML-driven threat detection techniques.

- Knowledge of regulatory compliance (NIST, GDPR, ISO 27001, RBI guidelines).