Threat Intelligence Analyst

Starr Insurance Companies is a leading insurance and investment organization, providing commercial property and casualty insurance, including travel and accident coverage, to almost every imaginable business and industry in virtually every part of the world.
Cornelius Vander Starr established his first insurance company in Shanghai, China in 1919. Today, we are one of the world’s fastest growing insurance organizations, capable of writing in 128 countries on 6 continents.

We are seeking a proactive & detail-oriented Threat Intelligence Analyst to join our cybersecurity team. The ideal candidate will be responsible for identifying & mitigating cyber risks & threats by continuously monitoring both internal & external landscapes. This role involves working with various threat intelligence tools, evaluating emerging security technologies, & producing detailed intelligence reports. The Threat Intelligence Analyst will also play a key role in incident response efforts & improving security controls & procedures.

- Cyber Risk & Threat Identification: Proactively & continuously monitor the internal & external landscape for relevant events, risks, & threats related to malicious code, vulnerabilities, & attacks.

- Threat Intelligence Tools Management: Assist in the ownership & management of threat intelligence monitoring tool services, product contracts, & vendor relationships.

- Technology Evaluation & Implementation: Assist in the evaluation, development, testing, & implementation of emerging data access control technologies, information systems security issues, safeguards, & techniques.

- Mitigation Recommendations: Recommend mitigation Tactics, Techniques, & Procedures (TTPs) for identified malicious logic within the environment.

- Intelligence Reporting: Regularly develop & produce succinct written intelligence reports constructed from technical analysis & collected threat information for relevant groups inside & outside of IT.

- Threat Tracking & Incident Response: Track potential threats associated with attempted intrusions, network & host-based attacks, & coordinate incident response efforts with cybersecurity teams.

- Security Controls Improvement: Provide feedback & recommendations for the improvement of security controls & response procedures.

- Communication: Communicate effectively with peer Security/Operations teams & management, with expected interactions with business users & vendors.

• Bachelor's Degree in Information Technology, Engineering, or a related field preferred but not required.
• 2 years of experience working in the Information Technology or Computing Field preferred, but years in other career paths will be considered.
• Basic understanding of security defenses (anti-virus, firewalls, access controls).
• Basic understanding of types of attacks, exploits, & methods used to compromise or damage computing systems & networks.
• Basic understanding of networking & internet communications.
• Security+ or similar security certification is a plus.

Preferred Experience with Technologies:

• Splunk Log & Event Platform (basic query & report building).
• Network Access Control.
• Vulnerability Scanning.
• Advanced Detection & Response Endpoint Agents.
• Network Packet Capture & Event Analysis.
• Threat Intelligence Platforms.
• Microsoft Patching & Device Management Platforms.
• Experience with Splunk SOAR is a plus.
• Experience with scripting (batch, PowerShell, Python, etc.) is a plus.

• Analytical Thinking: The ability to critically analyze data, identify patterns, & draw meaningful conclusions is essential for interpreting threat intelligence information.
• Communication Skills: Clear & concise communication is vital for conveying complex technical information to non-technical stakeholders, writing reports, & collaborating with team members.
• Attention to Detail: Meticulous attention to detail is necessary to accurately assess threats, identify anomalies, & ensure the reliability of intelligence reports.
• Problem-Solving Skills: The ability to think creatively & develop innovative solutions to emerging threats & security challenges is important.
• Collaboration & Teamwork: Working effectively with other analysts, IT staff, & external partners is crucial for sharing information & coordinating responses to threats.
• Adaptability & Flexibility: The threat landscape is constantly evolving, so being able to quickly adapt to new information, tools, & techniques is important.
• Time Management: Efficiently managing time & prioritizing tasks ensures that critical threats are addressed promptly & resources are used effectively.
• Ethical Judgment & Integrity: Maintaining high ethical standards & integrity is essential for handling sensitive information & making decisions that impact organizational security.
• Curiosity & Continuous Learning: A natural curiosity & commitment to continuous learning help analysts stay updated with the latest threats, technologies, & best practices in the field.
• Stress Management: The ability to remain calm & focused under pressure is important, especially when dealing with high-stakes security incidents.

#LI-EP1

Starr is an equal opportunity employer, which means we'll consider all suitably qualified applicants regardless of gender identity or expression, ethnic origin, nationality, religion or beliefs, age, sexual orientation, disability status or any other protected characteristic. We recruit and develop our people based on merit and we're committed to creating an inclusive environment for all employees. We offer first class training and development opportunities to all employees. Our aim is to grow our own talent and bring out the best in people.