Jr. Cyber Threat Analyst

3 weeks ago


Southern Manila District, Philippines HRTX Full time

You will be reporting on technical subject matter such as malware developments, offensive security tools, vulnerability exploits, cloud security, and mobile security. Cyber Threat Analysts are expected to familiarize themselves with these topics continuously, identifying threat leads from a variety of sources. Cyber Threat Analysts are also expected to analyze malware and create effective detections, which their senior peers will review and validate. Cyber Threat Analysts must be able to communicate this subject matter effectively to various audiences, both verbally and in writing.

Specific Duties and Responsibilities
  • Threat Lead Identification: Research new adversary tactics, techniques, and procedures (TTPs) using open sources (public information such as security vendor reporting, social media, code repositories); closed sources (dark web and underground forums); and proprietary sources.
  • Subject Matter: Threat leads should focus on team priority intelligence requirements (PIRs). Examples of such subject matter include malware developments, offensive security tools, vulnerability exploits, cloud security, and mobile security.
  • Key Detail Identification: During research, identify and take note of infection chains, host and network IoCs, malware samples, threat actors, and MITRE ATT&CK tactics and techniques.
  • Author Insikt Notes: Write TTP Instances detailing identified threat leads. TTP Instances include a combination of information from open-source reporting and your own analysis (i.e. code review, static malware analysis). TTP Instances are written and formatted to help our customers understand infection chains while also helping them prepare and validate their defenses.
  • Cadence: Write at least 2 TTP Instance notes daily.
  • Quality: Authored TTP Instances should include minimal grammatical or syntax errors. Plagiarism is not acceptable.
  • Malware Analysis: Using sandbox environments and static analysis tools, analyze malware samples associated with threat leads.
  • Use Cases: Malware analysis is used to provide additional insight into an event, validate open-source reporting, uncover additional IoCs, and assist peers and customers in detection engineering.
  • Detection Engineering: Create malware or vulnerability detections (e.g. YARA, Sigma, Snort, Nuclei) that can be used for threat hunting, detection, and classification.
  • Cadence: Create at least 1 malware or vulnerability detection per month
  • Delivery: In most cases, these detections will be delivered alongside a TTP Instance.
  • Information Security: Adhere to and implement quality and information security policies and carry out its processes and procedures accordingly.
Required Skills
  • Demonstrable experience writing reports on technical subject matter (e.g. malware, vulnerability exploits, offensive security tools) in a clear, concise, and logical format
  • Disciplined time management
  • Self-starting, self-motivated, and thrive in a collaborative environment
  • Ability to receive and apply constructive feedback from peers and leadership
Minimum Qualifications
  • B.S. equivalent in computer science, information systems, or cyber intelligence
  • At least one (1) year professional experience, Malware Analysis & Technical Writing
  • Technical proficiency in Cyber Threat Intelligence and Threat Intelligence Platforms
  • Experience working with open-source intelligence (OSINT) and/or large data sets
  • Experience working with sandboxes, virtual machines, or other malware analysis tools
  • Familiarity with the MITRE ATT&CK Framework, including the ability map reported activity to ATT&CK tactics and techniques
  • Familiarity with interpreting and mapping cyberattacks to the Diamond Model of Intrusion Analysis
  • Adeptness in cybersecurity and data protection
Good-To-Have Skills
  • Experience creating malware detections (e.g. YARA, Sigma, Snort)
  • Experience creating vulnerability detections (e.g. Nuclei)
#J-18808-Ljbffr

  • Southern Manila District, Philippines HRTX Full time

    Overview As a Threat Intelligence Analyst, you will research and analyze emerging cyber threats, produce concise analyst notes, and communicate findings to both technical and non-technical audiences. You will use open-source intelligence (OSINT) and internal tools such as the Recorded Future Intelligence Cloud to inform clients and internal stakeholders of...


  • Southern Manila District, Philippines HRTX Full time

    Overview As a Threat Intelligence Analyst, you will research and analyze emerging cyber threats, produce concise analyst notes, and communicate findings to both technical and non-technical audiences. You will use open-source intelligence (OSINT) and internal tools such as the Recorded Future Intelligence Cloud to inform clients and internal stakeholders of...


  • Manila, National Capital Region, Philippines Check Point Software Full time ₱900,000 - ₱1,200,000 per year

    Why Join Us?Check Point Infinity External Risk Management, otherwise known as Cyberint, continuously reduces external cyber risk by managing and mitigating an array of external cyber security threats with one unified solution.We are looking for aCyber Threat Intelligence Analystto be an integral part of our Intelligence teams, combining both cutting-edge...


  • Manila, National Capital Region, Philippines Coins Full time ₱900,000 - ₱1,200,000 per year

    Join the Pioneer Crypto Brand in the PhilippinesCoins is the most established crypto brand in The Philippines and has gained the trust of more than 18 million users. Through the easy-to-use mobile app, users can buy and sell a variety of different cryptocurrencies and access a wide range of financial services.Coins is fully regulated by the Bangko Sentral ng...


  • Manila, Philippines Procter & Gamble Full time

    Job Location MANILA NET PARK OFFICE Job Description The Security Analyst role belongs to the 'Cyber Defense' job family. This family is a collection of jobs that are focused on protecting networks, applications, and infrastructure from cyber threats globally. As a Security Analyst at Band 1 level, you will play a key part in proactively protecting networks,...

  • Vulnerability Analyst

    3 weeks ago


    Southern Manila District, Philippines HRTX Full time

    Overview Vulnerability Analysts aid in the identification, assessment, and communication of new and emergent threats in the cybersecurity landscape, specifically vulnerability intelligence and detections. As a Vulnerability Analyst, you will be expected to familiarize yourself with high-impact and critical vulnerabilities, proofs-of-concept, and reports of...


  • Manila, Philippines Procter & Gamble Full time

    Overview Job Location : MANILA NET PARK OFFICE Job Description The Security Analyst plays a key role in proactively protecting networks, applications, and infrastructure from cyber threats globally. This role involves resolving complex problems, building and improving procedures, facilitating communication, and driving the remediation of discovered...


  • Manila, Philippines Melco Resorts & Entertainment Full time

    Senior Analyst, Cyber Security Operations Position Summary The Senior Analyst, Cyber Security Operations acts as a critical escalation point within the Cyber Security Operations Center (CSOC) team. The analyst is responsible for advanced analysis, incident handling, and in-depth investigations of security events, and mentors CSOC Analysts to guide complex...


  • Manila, National Capital Region, Philippines Melco Resorts & Entertainment Full time ₱1,200,000 - ₱2,400,000 per year

    REQ12454 Senior Analyst, Cyber Security Operations (Open)Position SummaryThe Senior Analyst, Cyber Security Operations acts as a critical escalation point within the Cyber Security Operations Center (CSOC) team. He/she is responsible for advanced analysis, incident handling, and in-depth investigations of security events. The analyst serves as a mentor to...


  • , Metro Manila, Philippines Buscojobs Full time

    Cyber Security Analyst – Muntinlupa Posted today Overview Responsibilities and requirements from multiple postings compiled below. This description includes cybersecurity analyst responsibilities, incident response, vulnerability assessment, and related qualifications commonly required for roles in Muntinlupa/Metro Manila. Roles may be onsite with 24/7...