Cyber Threat Intelligence Consultant, Mandiant Intelligence

Minimum qualifications:

• Bachelor's degree or equivalent practical experience.
• 4 years of experience in a consulting or customer-facing role.
• Experience in threat intelligence analysis, application, and reporting outcomes to executive audiences.
• Experience with an operating system (e.g., Linux, other OS) and scripting capabilities in Python or Bash.
• Active US Government Top Secret/Sensitive Compartmentalized Information (TS/SCI) security clearance.

Preferred qualifications:

• 4 years of experience in an intelligence practitioner role.
• Experience with Cyber Threat Intelligence (CTI) methodologies and application within cybersecurity organizations.
• Experience deploying and analyzing data from technical security controls (e.g., web proxy, firewalls, IPS, IDS, mail content scanning appliances, enterprise antivirus solutions, network analyzers).
• Experience with standard network logging formats, network management security monitoring systems, security information and event management, network packet analysis tools, and forensic analysis tools.
• Experience in the analysis of CTI, supporting monitoring, detection, and response capabilities.
• Excellent report writing skills with the ability to service operational and tactical audiences.

About the job

Mandiant is a recognized leader in cybersecurity expertise and has earned the trust of security professionals and company executives around the world. Our unique combination of renowned frontline experience, nation-state grade threat intelligence, machine intelligence, and the industry's best security validation ensures.

In this role, you will encompass execution across the entire CTI lifecycle including assessment, process design, tool selection, collections development, training, and managerial mentorship. You will act as an advisor and will be responsible for guiding the development of CTI functions across the globe and empowering cybersecurity organizations to leverage threat intelligence at organizations of all shapes and sizes. Part of Google Cloud, Mandiant is a recognized leader in dynamic cyber defense, threat intelligence, and incident response services. Mandiant's cybersecurity expertise has earned the trust of security professionals and company executives around the world. Our unique combination of renowned frontline experience responding to some of the most complex breaches, nation-state grade threat intelligence, machine intelligence, and the industry's best security validation ensures that Mandiant knows more about today's advanced threats than anyone.

Responsibilities

• Develop customer's core threat intelligence capabilities and maturation.
• Support Cyber Threat Intelligence (CTI) collection and process, organize, analyze, and assist in contextualization of incident indicators.
• Map threat actor capabilities to organizational defense and develop Cyber Threat Profiles based on industry, geographical location, critical assets, etc.
• Integrate Cyber Threat Intelligence (CTI) workflows into cyber defense functions (e.g., SOC, IR, Hunt, Risk) and support the creation and tuning of CTI standard operating procedures.
• Develop engagement deliverables and support customer briefings.