Overview
Maersk is a global leader in logistics services with over 100,000 employees across 130 countries. A.P. Moller - Maersk is an integrated container logistics company working to connect and simplify its customers’ supply chains, offering simple end-to-end products and digital services, seamless customer engagement and a superior end-to-end delivery network.
What we offer: a diverse and inclusive culture where you are valued for who you are and rewarded for what you bring. We offer hybrid working where possible, along with benefits such as pension and health/dental insurances.
What you’ll be doing
You will conduct the collection, analysis and dissemination of threat intelligence and provide knowledge and expertise to the relevant stakeholders within Maersk. Cyber Threat Intelligence is a key part of Maersk’s Cyber Operations department and is responsible for the identification and reporting of cyber threats targeting Maersk entities.
Responsibilities
* Deputise for the Head of CTI where required.
* Produce and update threat actor profiles, detailing their motivations, capabilities, and infrastructure to enhance understanding of potential adversaries.
* Conduct intrusion analysis to support incident response and to develop in-depth understanding of threats targeting the organisation.
* Update and maintain an enterprise TTP framework to track coverage across the organisation.
* Create, review and update CTI processes and documentation, and upskill other team members.
* Identify areas and gaps for continuous improvement and ensure stakeholders adopt a threat-led approach.
* Be accountable for the effective collection, analysis, and dissemination of intelligence reports.
* Determine, prioritise and monitor internal and external sources for threat data.
* Prioritise, validate and correlate threat data to obtain actionable information on existing and emerging threats to Maersk.
* Configure and use the chosen threat intelligence platforms (TIPs).
* Produce and disseminate strategic, operational, and tactical threat intelligence reports to relevant stakeholders.
* Conduct tactical investigations into key indicators and TTPs sourced from TIPs and Incident Response activities.
* Regularly review and update Priority Intelligence Requirements (PIRs).
* Maintain knowledge of principal cyber security threat actors through open-source and social media monitoring, and industry events where possible.
* Provide finished intelligence products to key stakeholders.
* Lead collaboration with teams across the Cyber organisation to support threat intelligence initiatives and feed logging and monitoring strategies with CTI at the core.
* Identify, prioritise, and communicate threats from newly identified vulnerabilities that pose a threat to Maersk.
* Develop processes where automation can improve threat intelligence efficiency.
* Support security incident management and deliver briefings to senior management.
* Ensure threat intelligence drives improvements and remediation plans by participating in operational and change projects.
* Scope and respond to Requests for Information (RFIs) from Maersk stakeholders.
To succeed in this role, we believe that you can offer
Professional qualifications:
* Professional training in threat intelligence or cyber security analysis.
* Open-source intelligence and formal intelligence qualifications are favourable.
* Qualifications such as CEH, SANS, CRTIA, OSCP or equivalent are desirable.
Technical skills & knowledge:
* High proficiency in using threat intelligence platforms (e.g. MISP), security tools, and SIEM solutions.
* Extensive experience in collection, analysis, production, and dissemination of intelligence.
* Strong technical understanding of networking, internet protocols and information security.
* Experience using the Cyber Kill Chain, MITRE ATT&CK Framework and Diamond Model.
* Advanced knowledge of the cyber threat landscape and familiarity with attacker tactics, techniques and procedures.
* Experience supporting security breaches, incident management and delivering briefings to senior management.
* Knowledge of vulnerability analysis methods and systems (e.g., CVE, CVSS).
* Understanding of risk in maritime, transport and logistics sectors is preferable.
* Ability to analyse political and geopolitical developments in relation to cyber security threat vectors and policy making.
* Knowledge of threats to cloud-based systems and incident response in cloud environments.
Experience
* At least four years of experience operating in a cyber threat intelligence function or similar.
* Experience in other cyber security fields (DFIR, threat hunting, or security engineering) is desirable but not essential.
* Experience conducting intrusion analysis and contextualising indicators using open-source and proprietary tools.
* Experience developing and maintaining threat intelligence and directing collection from multiple sources.
* Familiarity with one or more Threat Intelligence Platforms.
* Experience with automation in a security operations context is desirable but not essential.
Are you ready to be part of something transformational at Maersk and join a team that’s setting a new standard in cybersecurity? If so, we would love to hear from you!
Maersk is committed to a diverse and inclusive workplace, and we embrace different styles of thinking. We are an equal opportunities employer and welcome applicants without regard to race, colour, gender, sex, age, religion, creed, national origin, ancestry, citizenship, marital status, sexual orientation, physical or mental disability, medical condition, pregnancy or parental leave, veteran status, gender identity, genetic information, or any other characteristic protected by law. We will consider qualified applicants with criminal histories in a manner consistent with all legal requirements.
We are happy to support your need for any adjustments during the application and hiring process. If you need special assistance or an accommodation to use our website, apply for a position, or perform a job, please contact us by emailing accommodationrequests@maersk.com.
#J-18808-Ljbffr