Associate Director, Threat Intelligence Analyst

Country:

Location:

Additional Location: Palm Beach Gardens(FL)

About Carrier
Carrier Global Corporation, global leader in intelligent climate and energy solutions, is committed to creating solutions that matter for people and our planet for generations to come. From the beginning, we've led in inventing new technologies and entirely new industries. Today, we continue to lead because we have a world-class, diverse workforce that puts the customer at the center of everything we do. For more information, visit corporate.carrier.com or follow Carrier on social media at @Carrier.

About this position
The Associate Director, Threat Intelligence Analyst is responsible for leading advanced response measures to sophisticated threats on the Carrier network.  The identification of new and emerging threats, attack methodologies, and countermeasures development are critical to this role.  Must poses an extensive understanding of the Cyber Kill Chain, risk assessment and countermeasures strategy / development.  The ideal candidate will be able to leverage their extensive experience to convey company risk and response actions to a wide-ranging audience of executive and highly technical groups.

Responsibilities:

• Identifies industry sector-specific threats and assesses risk to the company.  
• Initiates inter team coordination to respond to advanced threats across detection, Hunt and Intelligence teams. 
• Identify opportunities for the creation of Hunt engagements as well as detections to drive SOC/IR investigations. 
• Monitoring of Intelligence sources to identify threats to the Carrier network. 
• Curation and dissemination of relevant threat intelligence data to Carrier leadership and key stakeholders. 
• Mapping of threats to MITRE Att&ck framework to form risk assessments. 
• Baseline attacker methodologies and compare against existing countermeasures to assess residual risk. 
• Lead efforts to mitigate risk within the organization through cross collaboration with all teams. 
• Dissect attacks on network and near industry peers to identify network weaknesses and develop strategies to mitigate risk.  

Basic Qualifications

• High School Diploma /GED with 10+ years experience in cybersecurity, OR
  Associate Degree with 7+ years experience in cybersecurity, OR
  Bachelor’s Degree with 5+ years experience in cybersecurity.
• 2+ years of Incident Response experience mapping attacks to the Cyber Kill-Chain. 
• 2+ years of Rule development experience, aligning detection methodologies to the MITRE ATT&CK Framework.
• 2+ years professional experience in technical professional writing. 
• 2+ years experience leading and mentoring junior analysts or working closely with MSP staff (Managed Service Provider).
• 4+ years Threat Intelligence work, with attack modeling using MITRE ATT&CK or Diamond Threat Model to identify Advanced Persistent Threat Groups and convey risk to the company.

Preferred Qualifications (assets)

• 2 or more of the following Certifications: GCTI, GCIH, GCIA, CISSP, Security+, CEH, OCSP. 
• Good knowledge of primary APT groups (Advanced Persistent Threat Groups), modus operandi, and techniques leveraged. 
• Ability to convey technical concepts to a diverse audience of varying skillsets. 
• Able to develop and lead hunt engagements, emphasizing attacker methods vs. indicators. 
• Good understanding of network security concepts and best practices. 
• Malware Analysis / Forensics & IR background 
• Rule development experience (YARA, SNORT, BRO, etc.) 
• Proficient in DarkWeb collection. 
• Good public speaking skills.

Additional information

• Immigration sponsorship is not supported for this position

RSRCAR
#LI-Hybrid

Carrier is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.

Job Applicant's Privacy Notice:

Click on this link to read the Job Applicant's Privacy Notice