IntroductionWe are seeking an experienced and proactive Cyber Threat Intelligence Analyst to join our CTI team. The ideal candidate will have a deep understanding of cyber threat intelligence, preferably a technical background, an analytical mindset and very good communication skills. As a Cyber Threat Intelligence Analyst, you will conduct all-source analysis of malicious cyber intentions and capabilities in support of IBM’s Chief Information Security Office (CISO) to counter threats to IBM systems, users, and clients.
Your Role and ResponsibilitiesThreat Intelligence: Gather, process, and analyze cyber threat intelligence from various internal and external sources. Identify patterns and trends to anticipate and mitigate potential threats. Determine relevance and risk to IBM based on IBM’s business, installed base and location. Apply your skills to form hypotheses, critically assess and choose analysis techniques, then query, merge, enrich, evaluate, and pivot within data to attain and share insights with relevant stakeholders across IBM.
Alert and Case Analysis: Analyze and investigate suspicious activities as seen by our SOC and CSIRT teams to assess the level of threat by correlating gathered threat intel with actual alerts as seen in the IBM environment.
Incident Response: Assist CSIRT by enriching alerts and findings with Threat Intel.
Vulnerability Assessment: Monitor for Proof-of-Concepts and exploitation of relevant vulnerabilities.
Collaboration: Besides your ability to work independently, you are expected to collaborate in (virtual) teams and interface with stakeholders within the CISO organization like SOC, Threat Hunt and Incident Response and with our Business Information Security Officers (BISO) and other business stakeholders across IBM.*Please refer that this position is 1 year contract and requires to enter an office in IBM Singapore once a week.Required Technical and Professional Expertise- Domain knowledge in cyber security, including the ability to speak with authority on the broad threat landscape. Knowledge of networking, cloud technology and other enterprise IT technologies.
- Very strong interpersonal skills and excellent English oral and written communication skills.
- At least 5 years of experience in the cyber security space, of which at least 2 years as a Cyber Threat Intel analyst.
- A passion for learning and developing your skills.
*Please refer that this position is 1 year contract and requires to enter an office in IBM Singapore once a week.Preferred Technical and Professional Expertise- Knowledge of query languages like KQL (Kibana QL), XQL (Cortex QL).
- Native Chinese speaker.
- Understanding of geopolitics and how they are relevant to multinational enterprises.
- A passion for learning and developing your skills.