LanTro Việt Nam

Mô tả Công việc

SUMMARY OF POSITION AND OBJECTIVES:

As part of the Security Intelligence team, you will be assessing and reducing threats to Eurofins.

You will be responsible for tracking targeted campaigns and threat actors, analyzing intrusions, utilizing data gathered through incident response, discovering our threat surface, and analyzing and translating threats to Eurofins’ infrastructure and leveraging intelligence to improve the security posture.

POSITION & OBJECTIVES:

Job Description:

• Proactively identify and track targeted intrusion cyber threats, trends and new developments by adversaries throughout multiple regions by analysis of raw intelligence and data.
• Conduct thorough analysis of threat data from various sources, including open-source intelligence (OSINT), dark web monitoring and proprietary threat feeds.
• Apply analytic best practices and tradecraft to gathered intelligence in a consistent manner.
• Provide finished intelligence analysis assessments to internal stakeholders through written reporting with minimal supervision.
• Identify intelligence gaps and submit requests for information to fill gaps.
• Provide peer review of proposed/draft reporting and analytic uplift to team members.
• Prioritize, categorize and respond to requests for information from internal stakeholders.
• Assist in the development and enhancement of threat intelligence tools and processes.
• Work closely with incident response, threat hunting, vulnerability management and security operations teams to provide intelligence support during security incidents.

Yêu Cầu Công Việc

Technical Knowledge:

• Familiarity with Threat Intelligence Platforms (TIPs) and tools.
• Proficiency in analyzing malware and vulnerabilities.
• Knowledge in any of programming languages like Python, Bash Scripts, PowerShell (Nice to have).
• Hands-on Experience with setup, configuration, integration of MISP and leveraging the tool to enhance Security Intelligence in Eurofins with different playbooks created in SOAR.
• Understanding of technical terminology, tools and tactics employed by threat actors.
• Ability or willingness to learn to conduct technical analysis of the tools and tradecraft used by threat actors.
• Good knowledge of MITRE ATT&ck framework and known APT groups activity

Personal Qualities:

• Excellent verbal and written communication skills (concise writing and oral convincing);
• Eager to learn and continuously develop personal and technical capabilities.
• Excellent interpersonal, analytical, detail-oriented, and problem-solving skills.
• Proactive personality who can adapt to changing priorities and a keen analytical mindset to investigate cases.
• Good team player with ability to work with team spread across the world.

QUALIFICATIONS AND EXPERIENCE REQUIRED:

• BE/B.Tech/MCA or any other equivalent degree.
• 4+ year experience in Security / Threat Intelligence role.
• 5 years of incremental experience in the areas of Cybersecurity