Senior Analyst, Mandiant Intelligence Services - Singapore - GOOGLE ASIA PACIFIC PTE. LTD.

Description

PRODUCT AREA

Part of Google Cloud, Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. By scaling decades of frontline experience, Mandiant helps organizations to be confident in their readiness to defend against and respond to cyber threats.

JOB DESCRIPTION

Advanced Intelligence Access (AIA) is Mandiant's premium and most flexible Applied Intelligence solution. It provides customers the same access to Mandiant threat data as other Applied Intelligence offerings but is delivered through a full-time intelligence integrator. The fully dedicated aspect of AIA provides customers the highest level of cyber defense integration possible and delivers the most rapid expert insights through custom tooling and dynamic support. Advanced Intelligence Access is tailored to the needs of each customer, allowing for improved integration and outcomes.

Qualifications

JOB RESPONSIBILITIES

• Evaluate current and emerging tools and best practices for tracking advanced persistent threats, and tools, techniques, and procedures (TTPs) of attacker's motivations, industry and attacker trends.
• Perform strategic, operational, and tactical research and all-source analysis tailored to the client's vertical, geographic footprint, and network mapping to produce timely and tailored intelligence.
• Present tactical and strategic intelligence about threat groups, their methodologies, and motivations. Convey tailored findings, verbally and/or in writing, to a variety of audiences.
• Engage clients from C-Suite to security operation centers (SOCs) regularly to comprehensively identify and action their evolving intelligence needs and requests for information.
• Operate independently and proactively in support of the client's needs engaging Mandiant colleagues and clients to consistently connect Mandiant's value with client requirements.

MINIMUM QUALIFICATIONS

• 5 years of experience in a cyber threat intelligence role in a customer-facing environment.
• Experience managing executive stakeholders and navigating in a global company (e.g. presenting to internal audiences including executives).
• Experience operationalizing Cyber Threat Intelligence (CTI) methodologies and applications.
• Experience managing and executing variable term projects.

PREFERRED QUALIFICATIONS

• Experience evaluating host and network forensic reports of electronic media, packet capture, log data analysis, malware triage, and network devices in support of information security operations.
• Experience analyzing raw data points from technical security controls, to include web proxy, firewalls, IPS, IDS, mail content scanning appliances, enterprise antivirus solutions, network analyzers, etc.
• Experience processing and analyzing tactical CTI within an operational environment, supporting monitoring, detection, and response capabilities.
• Ability to correlate raw intelligence from sensors, incident response engagements, and other sources into reports and briefings.
• Ability to take complex, ambiguous topics, build strategy, and influence stakeholders.