Ensign is hiring !

Duties and Responsibilities

• Performs collection of information for the different levels of cyber threat intelligence, including strategic, operational and tactical intelligence.

• Support the intelligence mission planning in meeting information requirements.

• Continuously performs analysis on information collected to produce actionable intelligence.

• Supports the identification and documentation of Indicators of Compromise (IoCs).

• Leverages internal and external resources to research threats, vulnerabilities and intelligence on various threat actors and exploitation tools and platforms.

• Perform threat research to identify tactics, techniques and procedures (TTP) of threat actors and work with multi-disciplines to improve prevention and detection methods.

• Develop and maintain threat actor and TTP knowledge base to train and update threat models.

Requirements

Basic Requirements

• Experience with cyber threat intelligence or other intelligence services

• Experience in writing reports for both management and technical readers

• Good English proficiency

• Ability to work both individually and with the team

• Bachelor Degree in Business Administration, Economics, Behavioural Sciences, Languages, Psychology, Political Science, Mathematics, Statistics, Computer Engineering, Computer Science, Cyber Security, Information Security, Applied Sciences or other equivalents

Clearance

Applicants selected will be subjected to security investigations and may need to meet eligibility requirements for access to classified information.

Preferred Skills /Qualities

• Experience with research, technical and business documentation and analysis.

• Good understanding of CTI frameworks like Mitre ATT&CK, Cyber Kill Chain, Diamond Model and able to develop threat models based on the frameworks.

• Ability to show proficiency in programming and scripting, e.g. Java, .NET Programming, Python & PERL scripting, etc.

• Ability to demonstrate flexibility, initiative and innovation in dealing with ambiguous, fast-paced situations.

• Ability to show proficiency in one or more regional languages and dialects.

• Ability to configure, manage and use cyber threat intelligence platforms.

• Possession of excellent presentation and briefing skills.

• Possession of excellent oral and written communication skills.

• Professional certifications, including CTIA, CRTIA, GOSI, GCTI, GMON, or other SANS certifications.