Senior Threat Intelligence Analyst

September 15

Apply Now

Receive Emails with Similar Jobs

Allstate

WebsiteLinkedInAll Job Openings

Auto Insurance • Life Insurance • Retirement Planning • Homeowners Insurance • Motorcycle Insurance

10,000+

💰 Post-IPO Equity on 2014-01

Description

• The Senior Threat Intelligence Analyst will be responsible for supporting the monitoring, collection, analysis, reporting, and assessment of impact for threat related data from vendors, internal sources, and open-source intelligence. • Leveraging threat severity and risk, this individual will help drive timely reporting and mitigation by partnering with Incident Handling / Incident Response, Threat Hunting, Vulnerability Management, other departments within Allstate Information Security, and system/application owners. • The role will be accountable for helping to research and compile reports and data on the state of the threat landscape and presenting that data to multiple levels of leadership. • Act as a threat intelligence SME in at least one of the following areas: malware analysis, exploit/vulnerability analysis, Advanced Persistent Threats (APTs), digital forensics, incident handling, cybercrime. • Support the Threat Management process providing guidance on improvements that can be made to the identification, assessment, and mitigation of threats to the environment. • Collect, analyze, and assess technical (IOCs) and non-technical (HUMINT) threat, vulnerability, and security incident-related information made available from platform vendors, 3rd parties, and internal sources to help determine course of action for the Allstate environment. • Partner with other security professionals to determine and implement mitigating controls. • Generate ad-hoc and scheduled briefs, reports, whitepapers, and presentations on threats and associated activities necessary to protect the environment.

Requirements

• Bachelor’s degree in Information Systems or related field preferred. • 5+ years’ experience in either threat management, security assurance, or related field. • Familiar with industry standard security best practices and threat management processes including technical and non-technical reporting. • Experience with threat research, threat indicator sharing (such as STIX/TAXII), vulnerability scanning tools (such as Qualys) and other security tools. • Good knowledge of operating systems security (Windows, *nix). • Understanding of secure network/systems configuration management. • Understanding of networking concepts and devices (Firewalls, Routers, Switches, Load Balancers, etc.). • Experience programming and scripting. • Able to effectively work independently and in a team environment. • Able to interact with all levels of management, business, and IT, and is required to act in a professional and confident manner. • Self-motivator possessing a high sense of urgency and a high level of integrity. • Excellent analytical and problem-solving skills. • Excellent communication (oral, written, presentation), interpersonal and consultative skills. • Experience with GRC tools such as Archer, and Threat Intel’ tools such as ThreatConnect, helpful but not required. • Certifications: Obtained certifications in one or more of the following, or relevant experience: GIAC, GCTI, GCIH, CEH, CISSP, CISA #LI-JJ1