Threat Intelligence & Vulnerability Analyst (SOC Tier 2)

Bangkok, TH

Applications have closed

True Digital Group

Enabling Digital Transformation As a subsidiary of True Corporation, a leading communications conglomerate in Thailand, True Digital Group (TDG) ambition is to transform Thailand and the region for digital revolutions. uncover new...

View company page

Our team's mandate is to provide world-class service in Cyber Security as the leading Cyber Security service provider in Thailand and ASEAN Market. You will be joining TDG's Cyber Security team to protect our clients from cybercrime and support multifaceted countermeasures against cyber attacks by Threat Intelligence and remediation automation.

The Threat Intelligence and Vulnerability Analyst (TIVA) is responsible for providing a combination of strategic, tactical and operational intelligence to the MDR Centre and its constituency. They gather and analyse tactical cyber threat and vulnerabilities intelligence and provide timely intelligence support to incident responders and guidance to threat hunter.

Key Responsibilities

  • Establishes priority intelligence requirements for all key stakeholders.
  • Demonstrates an understanding of business processes, risk management, and related standards and regulatory requirements.
  • Performs threat modelling to identify, classify, prioritise and rate threats based on thorough analysis of the organisation’s top risks and critical assets, and derive appropriate use cases to be implemented into the MDR platform.
  • Investigates and researches known indicators, correlates events, identifies malicious activity, and discovers new sources to provide early warning for a variety of threats.
  • Analyzes internal and external threat intelligence data sets, including vulnerabilities intelligence, detect and track emerging threats and security trends.
  • Produces timely, accurate, relevant and predictive intelligence by identifying and reporting on malicious actors, campaigns, and other relevant activities.
  • Produce and deliver timely, actionable threat intelligence to foster situational awareness, enable proactive decision-making, and promote enhance active defence measures within True Digital.
  • Monitors open source information feeds and threat actor activity to identify activity levels and indicators for threats, targets of interest and possible attack vectors.
  • Works with the other MDR Centre team to ensure that actionable indicators of compromise are incorporated into appropriate technologies.
  • Proactively recommends short-term and long-term changes based on threat intelligence to improve MDR Centre tools and detection capabilities.

Qualifications

  • Bachelor degree in a related field such as information security, management or computer engineering.
  • Active CISSP & CISM certifications are required.
  • Other relevant certifications (such as GCIH, GCIA, GCFA, GPEN, CEH, GWAPT and others) desirable.
  • Experience working in the Information Security field, including any of the following: threat intelligence, security operations, incident response, malware analysis, and/or vulnerability management.
  • Experience with open source and Dark Web intelligence analysis tools.
  • Prior experience in the Service Provider Industry is a plus.
  • Experience operating all areas of the intelligence lifecycle.
  • Experience in collecting intelligence from various information sources including but not limited to; malware analysis, open source/paid feeds and technical reports.
  • Possess experience in tracking evolving threats and providing threat intelligence support to incident response teams.
  • Excellent problem solving/analytical thinking skills.
  • Demonstrable verbal and written communication skills.
  • Ability to create and provide executive level presentations.
  • Experience in collaborating as part of a larger security/intelligence team.
  • Working experience in a MDR Centre, Security Operations Centre (SOC), Managed Security Service (MSS), or enterprise network environment preferred.

OUR COMMITMENT TO YOU

We value our people and have the mission to attract and retain exceptional talent. We work in a truly agile environment where opinions are encouraged collaboration…. everyone has an opinion….opinions are valued…..and have no time for finger pointing and politics, instead we test & learn and celebrate successes as a team.

We will provide a training and coaching program to all our team members, tailored to your development needs and aspirations. This can cover a wide range of skills, like mastering new technologies, further developing your skills in presenting to a non-technical audience or supporting you to grow in a leadership position.

OUR OFFER

Employee Provident Fund – Annual Bonus - Annual health check-up - Medical Service @Workplace – Medical Expense Reimbursement - Health & Life Insurance - Fitness, Spa, Day care – Employee Privileges – Employee Loan - Education Loan - Scholarship for Employees' Children - Learning Center - Staff Activities - Smart Casual

Tags: Agile Automation CEH CISM CISSP Cyber crime GCFA GCIA GCIH GPEN GWAPT Incident response Malware Open Source Risk management SOC Threat intelligence Vulnerabilities Vulnerability management

Perks/benefits: Career development Fitness / gym Salary bonus Team events

Region: Asia/Pacific
Country: Thailand
Job stats:  20  2  0

More jobs like this

Explore more InfoSec/Cybersecurity career opportunities

Find open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Analysis, Cryptography, Digital Forensics and Cyber Security in general, filtered by job title or popular skill, toolset and products used.