Cyber Threat Intelligence Lead

UBS (Posted 31 Jan 23)

We’re looking for a Cyber Threat Intelligence Lead to:

• lead a team of intelligence analysts in the APAC region, supporting UBS’s follow-the-sun operations.

• oversee production of cyber threat intelligence across the spectrum of operational levels.

• leverage your expertise with intelligence operations to help shape the team’s strategy and continuous improvement.

• provide expert intelligence support to all teams across the Cyber Defense and Strategy function.

• perform all-source cyber intelligence collection and analysis.

• consume and evaluate threat intel to understand the evolving threat landscape, adversarial tactics, techniques, and procedures (TTPs), and areas of concern/targeting that could potentially impact our environment.

• respond to requests for ad-hoc reporting and research topics from management as required.

• produce detailed intelligence analysis on cyber threats and convey potential impact.

Your team

You’ll be working in the Global Cyber Threat Intelligence team, informing UBS cyber defense teams. As a Cyber Threat Intelligence Lead, you’ll play an important role in protecting the firm from cyber-attacks and advanced threat actors.

Your expertise

• 4-6 years of experience in a threat intelligence role, or conducting structured analysis in an intelligence role or similar

• detailed knowledge of global cyber threats, threat actors and the tactics, techniques and procedures (TTPs) used by cyber adversaries, particularly as they relate to the financial sector

• extensive experience with analytical tradecraft with deep knowledge of analytic frameworks, such as analysis of competing hypotheses (ACH), what-if analysis, alternative futures analysis, intelligence preparation of the operating environment (IPOE), etc

• significant expertise in intelligence report production, to include critically evaluating the application of analytic tradecraft

• experience conducting threat modeling and leveraging threat modeling frameworks

• existing relationships with threat intelligence sharing communities and trust groups

• expertise with models for threat analysis, such as the Diamond Model, Cyber Kill Chain

• experience with concepts and terminology concerning forecasting and predictive methodologies

• nuanced understanding of external factors (political, economic, social, etc) that influence the threat landscape, preferably with subject matter expertise in a geographic region