Cyber Security Analyst

Cyber Security Specialist - Incident Response - Dublin

Location: Dublin 1 / Hybrid (3 days in the office)

Contract Start Date: 18th November 2024

Contract Type: Fixed Term (12 months – Renewable)

Role Overview: We are seeking an experienced Cyber Threat Intelligence Consultant/Developer Resource (Senior Level) to enhance our client Cyber Threat Intelligence Operations Centre. The ideal candidate will possess a robust operational and development background in Cyber Threat Intelligence, along with the ability to lead complex projects and collaborate effectively within a team.

Key Responsibilities:

• Stand up and mature an advanced Cyber Threat Intelligence Operations Centre.
• Develop CTI collection, monitoring, and alerting processes, along with bespoke scripting solutions.
• Lead buildouts using technologies such as Elasticsearch, Kibana, MinIO, RabbitMQ, Redis, web frameworks, Docker containers, and ML/LLM-based applications.
• Collaborate with the Cyber Resilience team to enhance their skill set in relevant technologies.
• Engage with the CIISI-IE Community to foster trusted collaboration and enhance sector resilience.
• Present complex technical topics and provide recommendations to large audiences.
• Produce high-quality strategic and technical threat intelligence products.
• Ensure effective knowledge transfer to upskill current and future staff members.

Mandatory Requirements:

• Minimum of 7 years of operational and development experience in Cyber Threat Intelligence.
• An honors degree in Information Systems, Computer Science, or Computer Forensics.
• Professional cyber security qualifications (GCTI, CISSP, CEH, OSCP/OSCE, SANS certifications, etc.).
• Prior experience in establishing and enhancing a Cyber Threat Intelligence Operations Centre.
• Hands-on experience in developing CTI collection, monitoring, alerting, and bespoke scripting.
• Banking industry experience.

Technical Skills:

• Proficient with buildouts using Elasticsearch, Kibana, MinIO, RabbitMQ, Redis, Docker containers, and ML/LLM applications.
• Detailed understanding of the Irish financial services sector and experience in operational roles (SOC, forensics, blue/red teaming).
• Knowledge of CTI methodologies, including MITRE ATT&CK and the Extended Kill Chain.
• Experience with MISP and CTI platforms, along with YARA rules and STIX/TAXII.

Analytical Skills:

• Strong analytical techniques in threat mapping, hunting, and tracking.
• Demonstrated ability to present complex technical information and lead discussions.

Additional Responsibilities:

• Provide advanced CTI capabilities to the CTI team, focusing on advanced threat hunting, trending, and horizon scanning.
• Stay ahead of emerging technologies and capabilities to enhance the CTI products and services.