Cyber Threat Intelligence Analyst

Job Description

The Cyber Threat Intelligence Analyst identifies, collects, analyses and reports on cyber threats. This role works with the Incident Response team to rapidly assess and attribute incidents. This position also works with IT and other departments to identify root cause and develop corrective and preventive measures. The incumbent possesses the skills needed to identify patterns and leverage technical information to develop threat and threat actor profiles. Additionally, this position works with information security peers to identify and make recommendations to the Vice President – Information Security to improve the security stance and incident response capabilities of the organization.

Reporting to the Vice President – Information Security, the Cyber Threat Intelligence Analyst is responsible for contributing to SPE's intelligence collection, analysis, dissemination and vendor management. In addition, the position is responsible for link analysis and report production.

Responsibilities:
• Collect and analyse information from various sources, including open source reports, information sharing partners, and cyber security vendors. Synthesize findings to assess threat to SPE and conduct research in security tools to determine SPE's exposure.
• Develop Global and/or technical expertise on threat actors, attack trends, and attack tactics, techniques, and procedures (TTPs). Leverage this expertise to identify novel techniques and their ability to bypass common security controls. Brief senior leadership on findings.
• Leverage knowledge of common attacker techniques and SPE business process to develop and refine queries in Information Security's big data platform (Splunk) and identify malicious activity
• Support incident response by providing in-depth analysis of noteworthy incidents and brief leadership on findings
• Conduct research on attacker infrastructure to discover and curate previously unknown indicators of compromise (IOCs) and submit IOCs to security tools for detection and blocking.

Requirements:
• 1-3 years of related experience
• Bachelors degree in related field
• Outstanding research skills and ability to synthesize information from multiple sources
• Experience with data analysis and identifying patterns in large data sets
• Familiarity with information security concepts and knowledge of the cyber threat landscape
• Demonstrated understanding of the culture, politics and conditions of foreign countries in one or more regions of the world
• Excellent verbal and written communication skills and strong attention to detail
• Ability to work independently

Preferred:
• Experience with SQL or other query languages
• Knowledge of current adversary techniques, vulnerability disclosures, data breach incidents, and security analysis techniques
• Ability to articulate at a high-level common malware execution chains and/or offensive tools used by cyber adversaries

* Sony Pictures - CA - Culver City Area & Studios

Jobcode: Reference SBJ-r1n4vg-3-133-156-156-42 in your application.