2 months ago
Anyone can have an innovative idea. Here they get heard.
The Cyber Threat Intelligence Analyst is responsible for tracking the tactics, techniques and procedures (TTPs) related to threat actors, campaigns and malware, and for providing intelligence analysis in the form of timely alerts, briefs, and analytical assessments. Focusing on threats related to information technology environments, the Cyber Threat Intelligence Analyst will produce actionable intelligence in a clear and concise manner. The individual will report top threats to American Express Financial Technologies by providing awareness, indications, warnings, and operational readiness briefings.
Multiple American Express operational information security teams make up the Fusion Center which protects American Express’ brand, global business operations, technology infrastructure, and client trust against cyber threats worldwide. This position will support the Fusion Center from a threat intelligence perspective, as well as take a key role in third-party engagement and information sharing with partners in the UK. This third-party engagement will require the individual to work two days a week embedded in a third-party organization based in London for the first six to 12 months. The remaining three days a week will be spent working directly with the UK security operations center (SOC) based in Brighton. As such, this role offers the successful candidate the opportunity to apply and develop their skills in two mature cyber security environments surrounded by experienced and supportive colleagues.
American Express is a supportive employer. The Cyber Threat Intelligence Analyst will be mentored by a highly experienced senior analyst and will receive adequate training and instruction to excel as an intelligence analyst in this highly interesting and challenging field.
ESSENTIAL DUTIES AND RESPONSIBILITIES
The Cyber Threat Intelligence Analyst is expected to:
* Stay up to date with technology trends, malware and cyber attacks related to an assigned tactical topic.
* Perform open source intelligence (OSINT) collection and analysis, identifying indications of cyber threats, malicious code, malicious websites, and vulnerabilities.
* Identify credible, new intelligence, and subject matter resources relative to current and emerging threats.
* Analyze, process, and compare data to produce intelligence products.
* Author assessments on cyber threats, attacks, and incidents of interest to American Express.
* Create written and verbal intelligence products for internal American Express customers to assist in proactively addressing threats.
* Develop and present key findings to senior leadership.
* Provide subject matter expertise on cyber threats to support current analytic operations and initiatives.
* Work with third parties developing shared intelligence.
* Demonstrate professionalism and excellent communication skills when representing American Express in third-party relationships.
Offer of employment with American Express is conditioned upon the successful completion of a background verification check, subject to applicable laws and regulations.
* Must have strong verbal and written communication skills, interpersonal collaborative skills, and the ability to communicate security and risk-related concepts to technical and non-technical audiences
* Ability to review information to determine its significance, validate its accuracy and assess its reliability.
* Good knowledge of common security controls, detection capabilities, and other practices and solutions for securing digital environments.
* This knowledge should, preferably, include an understanding of packet flows, TCP and UDP traffic, firewall and proxy technologies, anti-virus, intrusion detection and prevention systems, as well as other host-based monitoring, email monitoring, and anti-spam technologies.
* Understanding of what information or assets are of value to threat actors and how organizations are breached.
* Working knowledge in one or more of the following areas:
* Nation State Threat Actors
* Cyber Crime
* Extremist Groups and Cyber Terrorists
* Distributed Denial of Service Attacks
* Emerging Threats
* Social Engineering
* Experience working in one or more of threat intelligence, security operations, or forensics.
DESIRABLE KNOWLEDGE / SKILLS / EXPERIENCE
* Experience in analyzing malware, hacking tools, and threat actor tactics, techniques and procedures to characterize threat actors’ technical methods for accomplishing their missions.
* Understanding of modern technical security controls (i.e. firewalls, SIEMs, IPS, HIPS, web proxies).
* Can apply a variety of structured analytic techniques to generate and test a hypothesis, assess cause and effect, challenge analysis, and support decision making.
* Basic understanding of forensic analysis on and data captures from networks (packet capture), hosts (volatile/live memory), electronic media, log data, and network devices in support of intrusion analysis or enterprise level information security operations.
* Previous experience as a Military Threat Operations team member, Security Researcher, Cyber Threat Researcher, or Cyber Crime Investigator.
* Bachelor's degree or equivalent combination of education and experience preferred.
Why American Express?
Talk to our people and you’ll find out what we’re really all about. Open, creative, risk-taking, collaborative and innovative are just some of the expressions you’ll hear. It’s our culture that makes American Express an outstanding place to work, and a big part of why we regularly win best workplace awards all over the world including recognition amongst the World’s Best Multinational Workplaces by Great Place to Work and Glassdoor’s 2017 Best Places to Work. If you’re ready to take on a challenge and make an impact, you owe it to yourself to launch or grow your career here.
A competitive benefits offering designed to support our employees’ total health and wellbeing, including:
* Health care scheme
* Defined contribution pension plan
* Dental scheme
* Virtual GP
* Life assurance
* Income protection
* Core holiday allowance with opportunity to buy or sell additional days
* A range of flexible benefits to choose from designed to suit your lifestyle: healthcare plan options, health assessments, critical illness coverage, cycle to work, season ticket loans
* Employee Discount Portal
* Back up childcare/adultcare
* Onsite facilities include; Fitness classes, Health Checks, Digital Health Kiosk, Physiotherapy, Healthy Living Nurse, Wellness Studio, Costa Coffee and subsidised staff restaurant
To complete your application please click on the links below.However,If you require any assistance with the completion of this process or need any reasonable adjustments to be made then please contact the Campus Recruitment Team.
Schedule (Full-Time/Part-Time): Full-time
Date Posted: Oct 31, 2018, 3:26:17 AM