Cyber Threat Intelligence Analyst

Senior Tactical Cyber Threat Intelligence Analyst

EY Technology:

Technology has always been at the heart of what we do and deliver at EY. We need technology to keep an organization the size of ours working efficiently. We have 250,000 people in more than 140 countries, all of whom rely on secure technology to be able to do their job every single day.  Everything from the laptops we use, to the ability to work remotely on our mobile devices and connecting our people and our clients, to enabling hundreds of internal tools and external solutions delivered to our clients.  Technology solutions are integrated in the client services we deliver and is key to us being more innovative as an organization.

At the root of the security offered to EY Technology is Cyber Threat intelligence, the team responsible for identifying, researching, and reporting on the evolving emerging threats facing the firm.  Cyber Threat Intelligence prides itself on providing the firm with early warning and predictive analysis to identify and mitigate threats which may otherwise hinder operations.

• EY Technology supports our technology needs through three business units:
• Client Technology (CT) - focuses on developing new technology services for our clients. It enables EY to identify new technology-based opportunities faster, and pursue those opportunities more rapidly.
• Enterprise Workplace Technology (EWT) – EWT supports our Core Business Services functions and will deliver fit-for-purpose technology infrastructure at the cheapest possible cost for quality services. EWT will also support our internal technology needs by focusing on a better user experience.
• Information Security (Info Sec) - Info Sec prevents, detects, responds and mitigates cyber-risk, protecting EY and client data, and our information management systems.  

The opportunity

As a member in the Cyber Threat Intelligence team in Cyber and Investigative Services (CIS), the candidate will identify, research, and report on emerging threats to EY to strategically shape and guide the approach the firm takes to protect its people and assets.  The position offers a unique opportunity to inform and influence leadership with creative, thought provoking approaches to detect and defeat complex threats facing the firm. This position requires technical skills to allow for the candidate to have deep understand of potential threats that may impact the Firm to achieve the greatest potential for success for the candidate and the team.

Your key responsibilities

This role will be responsible for providing technical guidance and understanding of threats the Firm faces. The analyst will conduct collection, analysis, and production of Cyber Threat Intelligence in support of EY CIS, EY Technology, and additional lines of business.  CTI analysts maintain awareness of the global threat landscape to influence a strong EY security posture.  The CTI analyst will review open source, third-party, and proprietary threat information and enrich it with contextual analysis that will result tactical intelligence.  Significant time will be spent conducting threat analysis around active and emerging threats and generating tactical intelligence for CIS staff, executives, management, and other stakeholders.

Skills and attributes for success

• Technical ability to attribute threats and related tactics, techniques, and procedures (TTPs) to facilitate defensive actions within an organization. 
• Understanding of technical concepts
• Ability to collaborate with cross-functional teams
• Attention to detail

To qualify for the role you must have

• 5+ years of experience conducting incident response and triage OR
• 3+ years of experience directly related to threat analysis, digital forensics, malware analysis, or threat hunting
• Understanding of cyber threats, attack vectors, and common exploitation techniques.
• Exposure to the MITRE ATT&CK and Diamond Treat Model
• Effective written and verbal communication skills
• Understanding of cybersecurity principles

Ideally, you’ll also have

• Experience in Cyber Threat Intelligence
• Exposure to writing intelligence reports for various levels of stakeholders

What we look for

We are looking for an mid-level, self-driven analyst that can operate independently.  The ideal candidate will seek to improve others while continuously learning and developing a understanding of current and evolving TTPs to applied defensive approaches to detection or prevention of potential cyber security that may impact the Firm while keep stakeholders informed.

What working at EY offers

As part of this role, you'll work in a highly integrated, globally diverse team with the opportunity and tools to grow, develop and drive your career forward. Here, you can combine global opportunity with flexible working. The EY benefits package goes above and beyond too, focusing on your physical, emotional, financial and social well-being. Your recruiter can talk to you about the benefits available in your country. Here’s a snapshot of what we offer:

• Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We’ll provide the tools and flexibility, so you can make a significant impact, your way.
• Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You’ll be accepted for who you are and empowered to use your voice to help others find theirs.