Cyber Threat Intelligence Analyst is a specialist role within UOB’s Group Security Operations Center

UOB (Posted 28 May 2022)

Cyber Threat Intelligence Analyst is a specialist role within UOB’s Group Security Operations Center. The incumbent will be responsible for running the cyber threat intelligence operations and enhancing the existing threat research processes. He/She must have good knowledge relating to the current cyber threat landscape and have past working experience in investigating and analysing cyber security incidents and providing assessments to enhance the detection, prevention, response and monitoring capabilities for the Bank’s security operations. Key Responsibilities

• Participate in the intelligence cycle and manage information provided by various intelligence sources

• Perform analysis on campaigns, threat actor TTPs (Tactics, Techniques and Procedures), technical indicators of compromise, cyber-attack trend, and exploitation of technology and prepare threat assessments on new developments, threats or vulnerabilities

• Work with internal and external partners to manage the ingestion, aggregation and sharing cyber threat intelligence internally and externally

• Research on advanced threat actors' TTPs and capabilities to provide adversarial intelligence to support threat hunters

• Proactively identify threat trends and provide insights to improve overall Cybersecurity risk posture

• Support any cyber incident response and investigation

• Participate in industry threat intelligence forums to maintain up-to-date security industry awareness and attack trends

Job Requirements Education

• Diploma/Degree in Cyber Security/Information Technology/Engineering from recognised academic institutions

• Professional Cyber Security related qualifications (E.g. GCTI, GOSI, GCIH, GCFA, GNFA, etc.) is preferred

Technical Skills And Experience

• Minimum 5-6 years of relevant experience with at least 2-3 years of Security Operations experience

• Advanced understanding of Cyber Security concepts and how Cyber Operations are conducted

• Advanced understanding on the MITRE ATT&CK Framework and related frameworks

• Advanced understanding on adversarial mindset and motivations

• Advanced understanding on the use of threat modeling tools like STRIDE, DREAD and analytical tools like Diamond Model

• Good understanding of endpoint and network architecture

• Good understanding of modern web, cloud and container technologies

• Experienced with using commercial and OSINT threat information tools

• Experienced with the use of SIEM and TIP

Soft Skills

• Excellent writing and presentation skills

• Ability to succinctly and accurately convey verbalization of thoughts and ideas

• Ability to tailor products suitable for different consumers

• Strong analytical and problem-solving skills

• Ability to adhere to work processes and procedures

Other Requirements

• Ability to work independently

• Ability to work well with the rest of the team and department