Consultant, Cyber Threat Intelligence

at  Ensign InfoSecurity

Ensign is hiring !
About Ensign InfoSecurity
Ensign InfoSecurity is Southeast Asia’s largest cybersecurity provider for products and services. We have offices in Singapore, Hong Kong and Malaysia with round-the-clock Cyber Security Operations Centres and Research and Development centres complemented by international strategic partners.
Our customers include world-renowned enterprises and government agencies with countless success stories. Ensign InfoSecurity provides organisations with proprietary technologies and tailored services to defend against advanced threats—while managing risk and ensuring compliance through innovative and fit-for-purpose solutions.
Our people make the difference. They are the ones who will endeavour to protect our clients. They are what we are all about.
About the Cyber Threat Intelligence Team
Reporting to the Head of Assurance (Consulting), the Cybersecurity Consultant / Cybersecurity Consultant will be responsible for Cyber Threat Intelligence (CTI) operations to support our services to clients.
The CTI team collaborates with other teams in delivering the outcomes for our clients in cyber defence and response, which may include the support of cross-functional projects that require resources from multiple business units.

Duties and Responsibilities

• Performs collection of information for the different levels of cyber threat intelligence, including strategic, operational and tactical intelligence.
• Support the intelligence mission planning in meeting information requirements.
• Continuously performs analysis on information collected to produce actionable intelligence.
• Supports the identification and documentation of Indicators of Compromise (IoCs).
• Leverages internal and external resources to research threats, vulnerabilities and intelligence on various threat actors and exploitation tools and platforms.
• Perform threat research to identify tactics, techniques and procedures (TTP) of threat actors and work with multi-disciplines to improve prevention and detection methods.
• Develop and maintain threat actor and TTP knowledge base to train and update threat models.

Requirements

Basic Requirements

• Experience with cyber threat intelligence or other intelligence services
• Experience in writing reports for both management and technical readers
• Good English proficiency
• Ability to work both individually and with the team
• Bachelor Degree in Business Administration, Economics, Behavioural Sciences, Languages, Psychology, Political Science, Mathematics, Statistics, Computer Engineering, Computer Science, Cyber Security, Information Security, Applied Sciences or other equivalents

Qualifications
More experienced or credentialed candidates may be considered for more senior roles in the team.
Clearance
Applicants selected will be subjected to security investigations and may need to meet eligibility requirements for access to classified information.

Preferred Skills /Qualities

• Experience with research, technical and business documentation and analysis.
• Good understanding of CTI frameworks like Mitre ATT&CK, Cyber Kill Chain, Diamond Model and able to develop threat models based on the frameworks.
• Ability to show proficiency in programming and scripting, e.g. Java, .NET Programming, Python & PERL scripting, etc.
• Ability to demonstrate flexibility, initiative and innovation in dealing with ambiguous, fast-paced situations.
• Ability to show proficiency in one or more regional languages and dialects.
• Ability to configure, manage and use cyber threat intelligence platforms.
• Possession of excellent presentation and briefing skills.
• Possession of excellent oral and written communication skills.
• Professional certifications, including CTIA, CRTIA, GOSI, GCTI, GMON, or other SANS certifications.
• Language proficiency in Bahasa Indonesia

• Performs collection of information for the different levels of cyber threat intelligence, including strategic, operational and tactical intelligence.
• Support the intelligence mission planning in meeting information requirements.
• Continuously performs analysis on information collected to produce actionable intelligence.
• Supports the identification and documentation of Indicators of Compromise (IoCs).
• Leverages internal and external resources to research threats, vulnerabilities and intelligence on various threat actors and exploitation tools and platforms.
• Perform threat research to identify tactics, techniques and procedures (TTP) of threat actors and work with multi-disciplines to improve prevention and detection methods.
• Develop and maintain threat actor and TTP knowledge base to train and update threat models