Cyber Threat Intelligence Analyst I
Every day, Global Payments makes it possible for millions of people to move money between buyers and sellers using our payments solutions for credit, debit, prepaid and merchant services. Our worldwide team helps over 3 million companies, more than 1,300 financial institutions and over 600 million cardholders grow with confidence and achieve amazing results. We are driven by our passion for success and we are proud to deliver best-in-class payment technology and software solutions. Join our dynamic team and make your mark on the payments technology landscape of tomorrow.
Summary of This Role
As part of the Threat Intelligence Team, you'll be responsible for identifying emerging cyber threats, vulnerabilities, and attack trends based on information from various sources, including open source research, dark web forums, and threat intelligence feeds.
You will also help the Threat Operations team gain insight into attacker behavior from analyzing malware samples, phishing emails, and other threat artifacts to better understand threat actor TTPs, and synthesize threat information from multiple sources, disciplines, agencies, and data aggregators to help define the threat landscape.
What Part Will You Play?
• Conduct proactive research to anticipate and mitigate potential cyber threats and vulnerabilities that target Global Payments, its customers, and the financial industry vertical.
• Interpret and recommend action associated with imminent or hostile intentions or activities which may impact Global Payments objectives, resources, or capabilities.
• Utilize information and assessments for the purposes of informing leadership and customers, developing and refining objectives, supporting operation planning and execution, and assessing the effects of operations on Global Payments' interests.
• Participate in the process of coordination, validation, and management of all-source threat intelligence collection requirements, plans, and/or activities, and assist with the identification of intelligence collection shortfalls.
• Produce actionable intelligence to the security teams by following the Threat intelligence lifecycle framework.
• Collaborate with other blue team elements to provide additional insights and intelligence-driven assessments.
• Develop and maintain threat profiles for key adversaries, including their tactics, techniques, and procedures (TTPs), motivations, and capabilities.
• Develop and deliver threat briefings to both technical and non-technical audiences.
What Are We Looking For in This Role?
Minimum Qualifications
Bachelor's Degree with concentration in information security, networking or development / computer science
Two (2) Years of Relevant Experience with Information Technology (networking, development, or systems), Cybersecurity, or Threat Intelligence.
Four (4) years related experience may be considered in lieu of a degree.
Preferred Qualifications:
Relevant IT/Security related Certifications or Training (CompTIA, SANS, etc)
Understanding of the MITRE ATT&CK framework and threat modeling methodologies.
Experience working with a threat intelligence platform (TIP), such as Anomali, ThreatConnect, or ThreatQuotient.
Strong writing and briefing skills for both technical and executive audiences.
What Are Our Desired Skills and Capabilities?
Ability to communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means
Skills / Knowledge - Having wide-ranging experience, uses professional concepts and company objectives to resolve complex issues in creative and effective ways.
Job Complexity - Works on complex issues where analysis of situations or data requires an in-depth evaluation of variable factors. Exercises judgment in selecting methods, techniques and evaluation criteria for obtaining results.
Ability to develop or recommend analytic approaches or solutions to problems and situations for which information is incomplete or for which no precedent exists.
Skill in evaluating information for reliability, validity, and relevance, to include critical target elements for the Global Payments cyber domain
Ability to accurately and completely source all data used in intelligence, assessment and/or planning products - Skill in conducting research using deep web techniques
Global Payments Inc. is an equal opportunity employer. Global Payments provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex (including pregnancy), national origin, ancestry, age, marital status, sexual orientation, gender identity or expression, disability, veteran status, genetic information or any other basis protected by law. If you wish to request reasonable accommodations related to applying for employment or provide feedback about the accessibility of this website, please contact jobs@globalpay.com.
