Threat Intel Analyst
Do you like complex puzzles laced with mystery? Do you speak fluent STIX/TAXII? Do you obsess over TLP markings? We’ve been waiting for you!
We are looking for a motivated individual to work closely with our Security Operations Center (SOC) by bringing tailored threat intelligence insight to our SOC, threat hunting and incident response operations.
An ideal candidate meets the following guidelines:
|Be located in, or willing to relocate to Austin, TX (sorry, not a remote position)|
|Highly detail oriented and self-driven|
|Experience working in a SOC environment or incident response capacity|
|Experience with SIEM platforms|
|Experience with MITRE ATT&CK|
|Familiarity with threat rule formats such as Sigma, Suricata, Bro/Zeek, Yara, etc.|
|Experience with Common Information Model and other data standardization formats|
|Experience with intel sharing standards such as STIX, OpenIOC, MISP, etc.|
|Experience with various open source intel (OSINT) tools|
|Experience with vulnerability management|
|Familiarity with NIST Cyber Security Framework, CIS, and other industry standards|
|Experience with TheHive, Cortex, MISP, Graylog, Elastic Stack, osquery, sysmon|