Security Engineer – CTI
H&R Block is seeking a research and detail-oriented Cyber Threat Intelligence Analyst to join our team. The successful candidate will be responsible for collecting and analyzing threat data from a variety of sources, researching emerging threat patterns, generating actionable intelligence and advising on security enhancements.
Primary Duties and Responsibilities:
- Gather cyber threat information from various sources to monitor emerging threats, malware, vulnerabilities and attack techniques.
- Manage threat intelligence feeds.
- Monitor and analyze cyber threat data to identify potential threats and vulnerabilities.
- Understand the tactics, techniques, and procedures (TTPs) used by threat actors.
- Generate reports and briefings on actionable threat intelligence findings for stakeholders.
- Collaborate with other teams including but not limited to SOC, Vulnerability Management, Application Security, Risk Management etc. to ensure effective security measures are in place.
- Provide threat intelligence support during security incidents to help teams identify the TTPs used by threat actors.
- Create strategies and procedures for dealing with future threats.
- May perform other duties and responsibilities as assigned.
- Stay up to date on the latest security threats and vulnerabilities by participating in information sharing communities, forums and newsfeeds.
- Utilize and potentially develop tools and scripts to automate threat intel data collection.
Need to have:
- Bachelor's degree in computer science.
- Minimum 2+ years of experience in Threat Intelligence.
- Strong understanding of cyber threat frameworks.
- Knowledge of threat intelligence platforms, SIEM and other cyber security tools.
- Knowledge of attack vectors, threat actor behavior, malware, vulnerabilities and incident response methodologies.
- Strong analytical and decision-making skills.
- Excellent oral and written communication skills.
