Cyber Threat Intelligence Analyst - Armonk NY REMOTE

Title: Cyber Threat Intelligence Analyst
Location: Armonk NY REMOTE
Duration: 6+ monthContract

US Citizen, Green Card, only No Third-party agencies corp to corp.

Responsibilities:

• Respond to requests for ad-hoc reporting and research topics from management as required.
• Work with various intelligence collection and reporting tools and frameworks to produce reports
• Develop and refine cyber-threat intelligence collection and analysis processes
• Produce detailed intelligence analysis reports on cyber-threats and convey potential impact
• Present relevant findings to both technical and non-technical audiences
• Issue advisories on critical threats and vulnerabilities
• Develop capabilities to enhance cyber-threat intelligence capabilities
• Support detection and Incident Response teams with context and analysis support
• Provide expertise and recommend relevant remediation and countermeasures
• Develop in-house tools to assist with the collection and analysis of intelligence information

Desired Skills and Experience:

• Extensive knowledge of standards of intelligence collection and analysis research methods.
• Understanding of external factors and how that affects the security of an organization
• Familiarity with cyber-threats, mitigations, motivations, and techniques
• Experience with intelligence analysis tools, methods, and the intelligence life-cycle
• Experience distilling raw data into actionable intelligence information
• Ability to generate defensible analytical products
• Ability to generate coherent visualized data
• Ability to prepare and present research findings in both client and public settings
• Maintain or develop professional contacts in the various communities in support of operations
• Experience with conducting operations in the open, deep and dark web in a secure manner
• Outstanding written and oral communication skills and the ability to prioritize work
• Foreign language proficiency is a plus

Technical Knowledge:

• - Strong understanding of security risk mitigation methods and compensating controls
• - Working knowledge of how malicious code operates and how technical vulnerabilities are exploited
• - Knowledge of databases, query design, and how to analyze data thus obtained
• - Tracking and reporting on cyber-espionage, cyber-crime, and other malicious threat actors.
• - Ability to convey system risks/assessments/vulnerabilities at a technical level
• - Experience performing security assessments on the system and detecting forensic artifacts
• - Experience with EDR platforms and how they operate
• - Strong understanding of Windows, Unix/Linux, Active Directory, firewalls, proxies, etc.
• - Familiarity with automation concepts and proficiency in scripting languages.
• Understanding of cloud services