Overview
Cyber Analyst – Threat Intelligence at A.P. Moller - Maersk. This role is part of Maersk’s Cyber Operations and focuses on the collection, analysis and dissemination of threat intelligence to support secure decision-making across the organisation.
About Maersk: Maersk is a global container logistics company with over 100,000 employees across 130 countries. We offer a diverse and inclusive workplace with opportunities to learn and grow, including hybrid working options and industry-leading benefits.
What you’ll be doing
You will conduct the collection, analysis and dissemination of threat intelligence and provide knowledge and expertise to relevant stakeholders within Maersk. Cyber Threat Intelligence identifies and reports cyber threats targeting Maersk entities.
Responsibilities
* Accountable for the effective collection, analysis, and dissemination of intelligence reports.
* Determine, prioritise and monitor internal and external sources for threat data.
* Prioritise, validate and correlate threat data to obtain actionable information on existing and emerging threats to Maersk.
* Configure and use the chosen threat intelligence platforms.
* Produce and disseminate strategic, operational, and tactical threat intelligence reports to relevant stakeholders.
* Produce and update threat actor profiles detailing motivations, capabilities and infrastructure.
* Regularly review and update Priority Intelligence Requirements (PIRs) as the threat landscape changes.
* Maintain in-depth knowledge of principal cyber security threat actors through open-source and social media monitoring, and attendance at industry events where possible.
* Provide finished intelligence summaries with analytical insights on a daily/weekly cadence with minimal supervision.
* Conduct tactical investigations into key indicators and TTPs from threat intelligence sources and Incident Response activities.
* Identify areas and gaps for process improvements.
* Collaborate with Cyber Operations teams to provide threat intelligence that informs logging and monitoring strategies with CTI at the core.
* Identify, prioritise, and communicate threats related to newly identified vulnerabilities relevant to Maersk.
* Define and enhance threat intelligence capabilities by developing processes where automation can improve efficiency.
* Support security incident management and deliver briefings to senior management.
* Ensure threat intelligence is used to drive improvements and remediation plans by participating in operational and change projects.
* Scope and respond to RFIs from Maersk stakeholders.
To succeed in this role, we believe that you can offer
Professional qualifications:
* Professional training in threat intelligence or cyber security analysis.
* Open-source intelligence and formal intelligence qualifications are favourable.
* Qualifications such as CEH, SANS, CRTIA, OSCP or equivalent are desirable.
Technical skills & knowledge:
* Extensive experience in collection, analysis, production, and dissemination of intelligence.
* Strong technical understanding of networking, internet protocols and information security.
* Experience using the Cyber Kill Chain, MITRE ATT&CK Framework and Diamond Model.
* Advanced knowledge of the cyber threat landscape and familiarity with attacker tactics, techniques and procedures.
* Experience supporting security breaches, incident management and delivering briefings to senior management.
* Knowledge of standard methods for analysis and prioritisation of vulnerabilities (e.g., CVE, CVSS).
* Understanding of risk issues in maritime, transport and logistics is preferable.
* Advanced ability to analyse the intersection of political/geopolitical developments with cyber threat vectors and policymaking.
* Knowledge of threats to cloud-based systems and incident response in cloud environments.
Experience:
* At least two years of experience in a cyber threat intelligence function.
* Experience developing and maintaining threat intelligence and directing collection from multiple sources.
* Familiarity with Threat Intelligence Platforms.
* Experience with automation in a security operations context is desirable but not essential.
* Experience collecting and analysing threat data from security tooling and internal sources is desirable but not essential.
We will consider qualified applicants with criminal histories in a manner consistent with all legal requirements. We are an equal opportunities employer and welcome applicants regardless of race, colour, gender, age, religion, creed, national origin, ancestry, citizenship, marital status, sexual orientation, disability, or any other characteristic protected by applicable law.
We’re happy to support your need for adjustments during the application and hiring process. If you need special assistance, please contact accommodationrequests@maersk.com.
Seniority level
* Not Applicable
Employment type
* Full-time
Job function
* Other, Information Technology, and Management
Industries
* Transportation, Logistics, Supply Chain and Storage
#J-18808-Ljbffr