Threat Intelligence Analyst

Proficient in using tools such as Splunk, FireEye, and Palantir for threat hunting and analysis. Skilled in Python and SQL for data manipulation and automation of threat intelligence tasks.

Experienced in developing and implementing cyber threat intelligence governance frameworks. Proficient in ensuring compliance with legal and regulatory requirements.

Experienced in analyzing cyber threats, including malware, phishing, and advanced persistent threats (APTs). Proficient in creating threat models and risk assessments.

Skilled in using open-source intelligence (OSINT) tools and techniques to gather threat intelligence. Experienced in analyzing social media, forums, and other public sources for threat indicators.

Skilled in developing and delivering cyber threat intelligence training to internal and external stakeholders. Experienced in creating training materials and conducting training sessions.

Skilled in writing clear and concise intelligence reports, including threat briefs, situation reports, and trend analyses. Able to effectively communicate complex technical information to non-technical stakeholders.

Experienced in analyzing malware, including static and dynamic analysis. Proficient in using tools such as IDA Pro, Ghidra, and Cuckoo Sandbox.

Skilled in sharing threat intelligence with internal and external stakeholders. Experienced in participating in threat intelligence sharing communities such as Infragard and FIRST.

Skilled in incident response, including containment, eradication, and recovery. Experienced in working with incident response teams to mitigate cyber threats.

Skilled in identifying and analyzing cyber threat trends, including emerging threats and threat actor tactics, techniques, and procedures (TTPs). Experienced in developing threat trend reports.

Proficient in using threat intelligence platforms such as Anomali, ThreatConnect, and Recorded Future. Experienced in integrating threat intelligence feeds into security operations.

Experienced in attributing cyber threats to specific threat actors or groups. Proficient in using attribution frameworks such as the Diamond Model.

Experienced in automating threat intelligence tasks using scripting languages such as Python and PowerShell. Proficient in using automation tools such as Ansible and Puppet.

Skilled in conducting cyber threat simulations, including tabletop exercises and red teaming. Experienced in developing and executing cyber threat simulation scenarios.

Experienced in all phases of the cyber threat intelligence lifecycle, including collection, processing, analysis, and dissemination. Skilled in developing and maintaining threat intelligence programs.

Experienced in identifying and analyzing cyber threat indicators, including IP addresses, domain names, and file hashes. Proficient in using tools such as VirusTotal and PassiveTotal.

Skilled in innovating and improving cyber threat intelligence processes and tools. Experienced in developing and implementing new threat intelligence techniques and methodologies.

Experienced in developing and tracking cyber threat intelligence metrics, including effectiveness and impact. Proficient in using metrics frameworks such as the Intelligence Cycle.

Skilled in collaborating with other threat intelligence analysts and teams. Experienced in participating in threat intelligence working groups and communities.

Experienced in proactive threat hunting, identifying indicators of compromise (IOCs), and developing detection rules. Proficient in using threat hunting frameworks such as MITRE ATT&CK.