5 years of experience in an investigative role involved in the production of threat intelligence for decision-makers/customers and involved in direct customer support.
Experience in training or education related to cyber threats, or technical cyber security concepts.
Experience in an investigative or operational role involved in the research and writing of threat intelligence products for decision-makers/customers.
Preferred qualifications:
Experience evaluating host and network forensic reports of electronic media, packet capture, log data analysis, malware triage and network devices in support of information security operations
Experience analyzing raw data points from technical security controls, to include web proxy, firewalls, IPS, IDS, mail content scanning appliances, enterprise antivirus solutions, network analyzers, etc.
Experience processing and analyzing tactical CTI within an operational environment, supporting monitoring, detection, and response capabilities.
Ability to correlate raw intelligence from sensors, incident response engagements, and other sources into reports and briefings.
Ability to take complex, ambiguous topics, build strategy, and influence stakeholders.