Saudi Aramco Careers
Senior Cyber Threat Intelligence Analyst
Requisition ID: 1177903
Req Number: 16250BR
We are seeking a Senior Cyber Threat Intelligence Analyst to join the Security Intelligence Center Division of Information Technology.
The Security Intelligence Center Division is responsible for providing security operations, including 24/7 Security Operations Center (SOC), cyber intelligence, forensic services, network and endpoint protections as well as running Security Information and Event Management (SIEM) system, Log Management System (LMS) and Cyber Intelligence Management System (CIMS).
The Cyber Threat Intelligence Senior Analyst's primary role is to conduct threat intelligence ingestion, threat hunting, and integration of security reports within Saudi Aramco cybersecurity systems. This includes working closely with security staff to capture high-fidelity Indicators of Compromise (IOCs) for detecting malicious activity to enhance cyber security operations.
As a successful candidate you will hold a Bachelor’s degree in Computer Science or a related degree, from a recognized and approved program. An advanced degree is preferred.
You will have eight years of experience in Information Security including at least 5 in Cyber Threat Intelligence.
You will have working user level knowledge of a Security Information and Event Management (SIEM), a Log Management Systems, an Incident Response Platform (IRP) and a Threat Intelligence Platform (TIP).
You must have knowledge in both YARA and snort rules, both writing and using.
You must be able to demonstrate a working understanding of OODA, ICD 203 & 208, LM CKC methodology
You understand how Intelligence-Driven Defense is used to protect a large enterprise.
You must have experience in Forensic Analysis.
You have working-use knowledge of Intrusion Protection Systems, WebGateways, as well email security appliances.
You will have the ability to identify indicators of compromise (IOCs), evaluate existing defenses against identified attacks to determine vulnerabilities, correlate intelligence in order to identify campaigns and track activities of specific campaigns.
Duties & Responsibilities:
You will be required to manage and orient internal and external sources of intelligence, review threat reports/feeds, and digest threat information into cyber threat intelligence.
You will also be required to manage a threat intelligence platform, optimize its integration with other cyber security systems, optimize cyber threat intelligence models, and develop/maintain strategic cyber intelligence-related partnerships.
Moreover, you must also aid/guide cyber security analysts in threat hunting as well as cyber threat mitigations.
Furthermore, you must also guide/mentor junior cyber threat intelligence analysts.