Cyber Security Analyst

We are seeking a highly skilled Senior Information Security Engineer to significantly enhance our Cyber Defense capabilities. This role will concentrate on Threat Intelligence, Purple Teaming, SOC operations, AI Governance, Threat Hunting, and the development of proactive security strategies. The successful candidate will collaborate closely with red and blue teams, Security Operations, the AI Governance team, and senior leadership to bolster the organization's overall security posture.

Key Responsibilities:

1. Threat Intelligence & Threat Management

• Lead the complete Threat Intelligence lifecycle: collection, analysis, enrichment, and dissemination of intelligence.
• Actively monitor Threat Intelligence alerts pertinent to the organization, sector, technologies, and critical assets using the OpenCTI platform.
• Analyze and validate threat intelligence utilizing open-source intelligence (OSINT), commercial feeds, and community sources.
• Track active campaigns, APT groups, malware families, vulnerabilities, Indicators of Compromise (IOCs), and Indicators of Attack (IOAs), assessing their relevance to the organization.
• Map adversary Tactics, Techniques, and Procedures (TTPs) to the MITRE ATT&CK framework.
• Apply foundational concepts from the Cyber Kill Chain, MITRE ATT&CK Framework, Pyramid of Pain, and the Diamond Model of Intrusion Analysis.

2. Purple Teaming

• Plan and execute quarterly Purple Team exercises (Linux & Windows) in collaboration with Red Team and Blue Team.
• Utilize tools such as Vectr or similar platforms for coordinating, tracking, and measuring purple team activities.
• Develop detailed reports and contribute to annual security metrics.
• Present key findings, insights, and risk mitigation strategies to senior leadership and technical stakeholders.

3. Threat Hunting & Honeypots

• Conduct threat hunting using IOCs and hypothesis-driven approaches.
• Deploy, monitor, and analyze data from honeypots (Internal & External) to detect early indicators of malicious activity.
• Collaborate with the SOC team to enhance proactive detection capabilities.

4. AI Governance & Security

• Develop and implement governance processes to minimize risks associated with untrusted AI tools used by employees.
• Assess AI-related threats, restrict access to unsafe platforms, and ensure policy compliance.
• Work with leadership to establish secure and compliant AI usage frameworks.

Required Skills & Qualifications:

• Bachelor's or Master's degree in Information Security, Computer Science, or a related field.
• 3-5 years of hands-on experience in cybersecurity roles (e.g., Threat Intelligence, SOC, Incident Response, Red/Blue/Purple Teaming).
• Strong understanding of adversary tactics, malware behavior, and attack kill-chains.
• Experience with enterprise security tools (SIEM, EDR, threat intelligence platforms, OSINT tools).
• Proficiency with cybersecurity frameworks and standards such as MITRE ATT&CK, NIST, SANS, and OWASP.
• Excellent analytical, communication, and reporting skills.
• Ability to present complex technical topics effectively to leadership.
• Programming or scripting knowledge (Python, PowerShell, etc.).

Preferred Certifications:

• CompTIA Security+ or CTI-related certifications.