Discover Financial Services is looking for an experienced Information Security Analyst to join their Cyber Threat Intelligence team to support the organizations’ goal of identifying and defending against threats to the firm. As a Threat Intelligence Analyst you will collect and analyze indicators and adversary TTP’s to identify and mitigate threats. Threat Intelligence Analysts collaborate with cybersecurity and other enterprise teams to evaluate Discover's cyber defense posture, processes, and procedures in context to given threats. You’ll create meaningful, actionable outputs to improve detection and prevention capabilities.

Responsibilities:

• Collect requirements from stakeholders for research and analysis
• Utilize knowledge of the MITRE ATT&CK framework to overlay researched threats to existing controls
• Work with the alert logic creation team to develop succinct detection rules to identify threats in the environment
• Review triage and incident cases for trend analysis
• Conduct threat briefings across the enterprise at varying levels of knowledge and understanding.
• Work closely with the Enterprise Vulnerability Management team to identify and address emergent threats to the firm
• Coordinate with the Incident and Crisis Management team to mitigate the risk of external vendors compromises
• Educate members of the Cyber Security group on relevant threats to the environment and our vertical
• Create and disseminate Threat Bulletins, Reports, and Updates on a regular basis
• Monitor and track threat actors/groups identified as most likely to attack the firm and/or our vertical and work with relevant internal teams on defensive measures
• Guide junior staff on projects and initiatives

Other responsibilities may include:

• Maintains an in-depth knowledge of security trends, attacker techniques, and relevant threat actors. Use data analysis and threat intelligence to detect, disrupt, and eradicate threat actors. Proactively detects advanced threats and adversaries that evade traditional security controls. Develops hunt scenarios, translate them into iterative processes, and leverage findings to create new detection methodologies. Identifies innovative detection and responsive opportunities and processes consistent with business goals and corporate risk tolerance 
• Provides mitigation services for identified threats and security incidents 
• Test security effectiveness and defensive readiness for the organization 

• Builds and maintains effective relationships with peers and internal business partners 
• Assists in the development of presentations and executive briefings regarding relevant security incidents and findings to senior management 
• Generate strategically relevant attack scenarios to simulate adversaries. Draws attention to business impact of computer, system, and network security issues. Evaluates effectiveness of defense-in-depth architecture against identified threats 

Minimum Qualifications:

• Bachelors – Computer Science, Information Security
• 4+ Years – Cybersecurity, Software Engineering, Data Analytics or related 
• In lieu of a degree 6+ Years – Information Security, Computer Science, Data Analytics or related

• Internal applicants only: technical proficiency rating of competent on the Dreyfus cybersecurity scale

Preferred Qualifications:

• Prior Cyber Threat Intelligence Experience
• Demonstrable experience with cyber threat intelligence vendor tools and services
• Knowledge and understanding of the Intelligence Lifecycle
• Experience building common Threat Intelligence products
• MITRE ATT&CK Framework
• CISA Known Exploited Vulnerabilities list
• GIAC (GCIH or GCIA or GCTI)