Threat Intelligence & Vulnerability Analyst (SOC Tier 2)
Bangkok, TH
True Digital Group
Enabling Digital Transformation As a subsidiary of True Corporation, a leading communications conglomerate in Thailand, True Digital Group (TDG) ambition is to transform Thailand and the region for digital revolutions. uncover new...Our team's mandate is to provide world-class service in Cyber Security as the leading Cyber Security service provider in Thailand and ASEAN Market. You will be joining TDG's Cyber Security team to protect our clients from cybercrime and support multifaceted countermeasures against cyber attacks by Threat Intelligence and remediation automation.
The Threat Intelligence and Vulnerability Analyst (TIVA) is responsible for providing a combination of strategic, tactical and operational intelligence to the MDR Centre and its constituency. They gather and analyse tactical cyber threat and vulnerabilities intelligence and provide timely intelligence support to incident responders and guidance to threat hunter.
Key Responsibilities
- Establishes priority intelligence requirements for all key stakeholders.
- Demonstrates an understanding of business processes, risk management, and related standards and regulatory requirements.
- Performs threat modelling to identify, classify, prioritise and rate threats based on thorough analysis of the organisation’s top risks and critical assets, and derive appropriate use cases to be implemented into the MDR platform.
- Investigates and researches known indicators, correlates events, identifies malicious activity, and discovers new sources to provide early warning for a variety of threats.
- Analyzes internal and external threat intelligence data sets, including vulnerabilities intelligence, detect and track emerging threats and security trends.
- Produces timely, accurate, relevant and predictive intelligence by identifying and reporting on malicious actors, campaigns, and other relevant activities.
- Produce and deliver timely, actionable threat intelligence to foster situational awareness, enable proactive decision-making, and promote enhance active defence measures within True Digital.
- Monitors open source information feeds and threat actor activity to identify activity levels and indicators for threats, targets of interest and possible attack vectors.
- Works with the other MDR Centre team to ensure that actionable indicators of compromise are incorporated into appropriate technologies.
- Proactively recommends short-term and long-term changes based on threat intelligence to improve MDR Centre tools and detection capabilities.
Qualifications
- Bachelor degree in a related field such as information security, management or computer engineering.
- Active CISSP & CISM certifications are required.
- Other relevant certifications (such as GCIH, GCIA, GCFA, GPEN, CEH, GWAPT and others) desirable.
- Experience working in the Information Security field, including any of the following: threat intelligence, security operations, incident response, malware analysis, and/or vulnerability management.
- Experience with open source and Dark Web intelligence analysis tools.
- Prior experience in the Service Provider Industry is a plus.
- Experience operating all areas of the intelligence lifecycle.
- Experience in collecting intelligence from various information sources including but not limited to; malware analysis, open source/paid feeds and technical reports.
- Possess experience in tracking evolving threats and providing threat intelligence support to incident response teams.
- Excellent problem solving/analytical thinking skills.
- Demonstrable verbal and written communication skills.
- Ability to create and provide executive level presentations.
- Experience in collaborating as part of a larger security/intelligence team.
- Working experience in a MDR Centre, Security Operations Centre (SOC), Managed Security Service (MSS), or enterprise network environment preferred.
OUR COMMITMENT TO YOU
We value our people and have the mission to attract and retain exceptional talent. We work in a truly agile environment where opinions are encouraged collaboration…. everyone has an opinion….opinions are valued…..and have no time for finger pointing and politics, instead we test & learn and celebrate successes as a team.
We will provide a training and coaching program to all our team members, tailored to your development needs and aspirations. This can cover a wide range of skills, like mastering new technologies, further developing your skills in presenting to a non-technical audience or supporting you to grow in a leadership position.
OUR OFFER
Employee Provident Fund – Annual Bonus - Annual health check-up - Medical Service @Workplace – Medical Expense Reimbursement - Health & Life Insurance - Fitness, Spa, Day care – Employee Privileges – Employee Loan - Education Loan - Scholarship for Employees' Children - Learning Center - Staff Activities - Smart Casual
Tags: Agile Automation CEH CISM CISSP Cyber crime GCFA GCIA GCIH GPEN GWAPT Incident response Malware Open Source Risk management SOC Threat intelligence Vulnerabilities Vulnerability management
Perks/benefits: Career development Fitness / gym Salary bonus Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Chief Information Security Officer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open IT Security Engineer jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs