Website Injazat
Job Details
Job Position – Information Security Specialist
Company Name – Injazat
A CTI Senior Analyst possess fine sense of ethics, a working understanding of regional legalities and a familiarity of industry standards surrounding open-source intelligence.
The Specialist – Information Security will focus on full CTI lifecycle elements including collection, enrichment, and analysis of actionable intelligence basis defined PIRs. The candidate should have strong documentation, language skills, and analytical abilities. The analyst will work on assignments as well as operational tasks that are varied and frequently require interpretation and independent determination of the appropriate course of action for executive decision making.
The Specialist – Information Security will work within the Cyber Threat Intelligence team in Cyber Fusion Center for Injazat. This position includes understanding of MSSP environment and customer’s organizational strategy along with their operating objectives tied to Strategic, Tactical and Operational CTI strategy.
- Mapping out malicious internet infrastructure and identifying related OSINT/CYBINT covering Deep, Dark, Surface web.
- Understanding what information could lead to a potential threat for our customers gleaning various social media services around the world.
- Actively participate in the development, documentation, and implementation of new processes to expand and mature capabilities for the organization.
- Thrive in culturally diverse research matters and be aware of cultural, social, and linguistic norms that may impact findings. (Fluency or proficiency in multiple languages including Arabic a plus) ensures that threats and vulnerabilities to the organization’s business systems and applications (both in-house and cloud-based) are minimized.
- Review and analyze open source datasets to find actionable and contextual threat information.
- Gather and record key indicators and information about threat infrastructure and campaigns.
- Collect intelligence based on established requirements and fully analyze based on operational procedures.
- Analytical and technological skills to extract intelligence (information) from available data (data), ability to find the necessary information and how to extract it.
- Investigate, analyze and prepare analytical data and deliver intelligence value in different terms (short, medium and long) in an automated way on various topics related to our field functional, geographical, sectoral, etc.
- BA/BS/BE degree in IT, Computer Science, Intelligence or equivalent and nine (9) years or more cybersecurity experience; Masters and seven (7) years or more cybersecurity experience ; PhD and four (4) years or more cybersecurity experience. This experience along with Cyber Threat Intelligence domain coverage can include one or more of the following cyber-security functions Threat Hunting, System Administration, Intrusion Detection/Prevention, Monitoring, Incident Response, Digital Forensics, Vulnerability Management. A minimum of 3 years of experience in operational or tactical cyber threat analysis in aggregate is a good differentiator.
- Subject matter expertise (SME) in the analysis of sophisticated threat actors, their TTPs and associated malware.
- Certifications such as CISSP, SANS 578 (GCTI), CREST Certified Practitioner/Registered Threat Intelligence Analyst, or similar.
- Familiarity with reverse engineering tools such as IDA Pro, Ghidra, Windbg or Ollydbg
- Understanding of industry standard threat frameworks (Lockheed Martin Cyber Kill Chain, Diamond Model, MITRE ATT&CK).
- A background in intelligence analysis is a must, with knowledge of IR best practices at an enterprise level.
- Experience working in, or related to, Operational Technology (OT), Industrial Control Systems (ICS) and/or IoT industries.
- Understanding of cybersecurity frameworks for ICS/OT environments (ISA-99/IEC 62443, NIST SP 800-82, NIST CSF, CIS, etc.).
- Skill in handling cybersecurity bigdata
- Experience working in, or related to, risk management platforms.
- Experience within a managed security services (MSSP) environment working with big or medium size customers in their threat intelligence transformation journey.
- Experience working with SOAR tools and threat intelligence playbook development & integration.
- Experience working with various Cloud platforms, such as AWS, GCP or Azure.
To apply for this job please visit careers-injazat.icims.com.