Threat Intelligence and Vulnerability Management Lead
Threat Intelligence and Vulnerability Management Lead
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
Job Description:
The Threat Intelligence & Vulnerability Management Lead is responsible for setting up leading and functionally steering a team of analysts and engineers.
Play a core role in proactively identifying emerging threats and providing actionable intelligence to support decisionmaking and incident response efforts as well as identifying assessing and prioritizing vulnerabilities in the METRO systems and applications.
Collect analyze and interpret threat intelligence data from various sources including opensource intelligence (OSINT) dark web monitoring security vendors and METRO threat intelligence tools such as Recorded Future.
Identify and assess potential threats vulnerabilities and risks to the METRO systems networks and data and provide recommendations for mitigation and remediation.
Collaborate with internal teams such as SOC analysts incident response teams and security operations to provide timely and relevant threat intelligence information to support incident detection response and recovery efforts.
Monitor and track threat actors their tactics techniques and procedures (TTPs) and emerging trends in the cyber threat landscape to anticipate and proactively defend against potential attacks.
Develop and maintain threat intelligence reports briefings and presentations to communicate findings trends and recommendations to stakeholders including senior management and technical teams.
Technical & Soft Skills:
Good knowledge of SOC technologies and tools such as Google Chronicle SIEM CrowdStrike EDR/EPP Vectra NDR Recorded Future TI etc.
Familiarity with threat intelligence platforms and tools such as threat intelligence feeds threat intelligence platforms (TIPs) and threat hunting tools.
Knowledge of cyber threat landscape including understanding of threat actors their tactics techniques and procedures (TTPs) and emerging trends.
Proficiency in concepts of vulnerability assessments and scans using automated tools (Qualys SCCP Polaris )
Understanding of common vulnerabilities and exposures (CVEs) Common Vulnerability Scoring System (CVSS) and vulnerability databases.
Familiarity with vulnerability management frameworks and methodologies such as the National Vulnerability Database (NVD) and the Common Vulnerability Enumeration (CVE) system.
Excellent communication and interpersonal skills to effectively collaborate with clients stakeholders and internal teams.
Proficient in producing threat intelligence reports briefings and presentations to communicate findings trends and recommendations to stakeholders.
Strong organizational and time management skills with the ability to coordinate and prioritize multiple tasks simultaneously.
Ability to work under pressure especially during critical security incidents.
Qualifications :
Qualifications
- Bachelors degree in Computer Science Information Technology Cybersecurity or a related field.
- A Masters degree or relevant certifications (e.g. CSA CHFI SANS/GIAC) may be preferred.
Remote Work :
No
Employment Type :
Fulltime
Employment Type
Full-time
