Cyber Threat Intelligence Analyst

American International Group Reston , VA 20190

Posted 2 months ago

Functional Area:

IT - Information Technology

Estimated Travel Percentage (%): Up to 25%

Relocation Provided: Yes

AIG Employee Services, Inc.

The gCDC is AIG's world-class cybersecurity operations center. Our team is made up of cybersecurity professionals from both the public and private sectors with first-hand experience preventing and remediating high-profile cyber threats. The gCDC works to reduce cyber risk and keep safe AIG's information and data assets by:

  • Rapidly detecting, responding to, and containing security incidents;

  • Communicating cyber threat intelligence to relevant stakeholders;

  • Analyzing incident metrics;

  • Identifying at-risk data; and

  • Supporting the notification of compromised data.

Position Responsibilities:

  • 60% data management, 40% cyber threat intelligence analysis

  • Analyze performance metrics and recommend organizational and process changes to improve efficiency of the Security Operations Center (SOC)

  • Directly support the gCDC Data Analytics & Reporting manager in the development, enhancement and maintenance of AIG cyber threat incident datasets for multiple geographies and business lines

  • Communicate threat intelligence information to business executives by understanding technical detail, and translating to reflect business impact

  • Brief AIG business leaders on cyber threat intelligence data affecting the firm, and the industry more broadly.

  • Directly support development, production, and dissemination of finished intelligence related to threats, policy analysis, and industry trends

Core Competencies:

  • Evaluate datasets and final metrics reports for consistency, completeness and statistical accuracy.

  • Communicate clearlyin written and oral formwith peers, partners, and business leaders.

  • Interact with customers and other teams to obtain data requirements for new and existing applications.

  • Audit data on a regular basis and ensure data integrity.

  • Manage a regular report running schedule and process.

  • Maintain process improvements for data management activities.

  • Perform data analysis using statistical tools.

  • Generate data reports on periodic basis for business leaders.

  • Identify and correct data entry errors.

  • Address any issues, questions and problems in accurate and timely manner.

  • Create a database for storing data dictionaries and troubleshooting problems.

Experience:

Minimum of three (3) years of experience with security monitoring, event and anomaly analysis, and incident response or malware analysis.

Formal Education & Certification

  • Bachelor of Science in Computer Science, Information Systems, or Software Engineering preferred, or relevant military, intelligence, or law enforcement experience.

  • Preferred Certifications: GIAC Certified Intrusion Analyst (GCIA), GIAC Certified Incident Handler (GCIH)

NOTE: An equivalent combination of experience, education and/or training may be substituted for the listed minimum requirements.

WORKING CONDITIONS

Occasional travel may be required, but less than 10% of the time. Analyst will be required to be on call.

It has been and will continue to be the policy of American International Group, Inc., its subsidiaries and affiliates to be an Equal Opportunity Employer. We provide equal opportunity to all qualified individuals regardless of race, color, religion, age, gender, gender expression, national origin, veteran status, disability or any other legally protected categories.

At AIG, we believe that diversity and inclusion are critical to our future and our mission creating a foundation for a creative workplace that leads to innovation, growth, and profitability. Through a wide variety of programs and initiatives, we invest in each employee, seeking to ensure that our people are not only respected as individuals, but also truly valued for their unique perspectives.


upload resume icon
See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Threat Intelligence Intern Summer 2019

Fireeye

Posted 3 days ago

VIEW JOBS 1/17/2019 12:00:00 AM 2019-04-17T00:00 Position Title: Threat Intelligence Intern - Summer 2019 Location: Reston, VA The Company: FireEye is the intelligence-led security company. Working as a seamless, scalable extension of customer security operations, FireEye offers a single platform that blends innovative security technologies, nation-state grade threat intelligence, and world-renowned Mandiant® consulting. With this approach, FireEye eliminates the complexity and burden of cyber security for organizations struggling to prepare for, prevent, and respond to cyber attacks. FireEye has over 5,600 customers across 67 countries, including more than 40 percent of the Forbes Global 2000. The Role: FireEye iSIGHT Threat Intelligence is a proactive, forward-looking means of qualifying threats poised to disrupt your business based on the intents, tools, and tactics of the attacker. Our high-fidelity, comprehensive intelligence delivers visibility beyond the typical attack lifecycle, adding context and priority to global threats before, during, and after an attack. Interns will develop iSIGHT intelligence capabilities and coverage to fill identified gaps in our completion of customer requirements to deliver the most comprehensive, contextually rich, actionable intelligence. Responsibilities: * Create written intelligence reporting to address coverage needs, under the direction of senior analysts. These will typically be two to seven page analytical reports, delivered to specific or multiple Intelligence customers. * Complete an approximately two-week, hands-on training course on FireEye iSIGHT Intelligence, analyst work within the Intelligence group, and subject matter. * Identify and nominate solutions relevant to the areas they work on that could be implemented to increase value to Intelligence customers. Areas which interns are assigned to work on will be determined based upon their interests, their expertise, and which intelligence needs senior analysts evaluate as priority. Requirements: The internship will include on-the-job training to provide specific subject matter expertise. So, interns will need to have the capability to learn designated subject matter and roles relatively easily, but are not necessarily expected to already have direct experience in the threat intelligence analyst role. Internship candidates deemed to likely have the necessary skill sets will be asked to perform a simple evaluation task during the candidate selection process to evaluate their capabilities. Beneficial experience, skills, and knowledge include the following: * Ability to demonstrate comprehensive, practical knowledge of research and collection skills as well as analytic methods * Ability to assess and analyze information from various sources to develop actionable intelligence * Strong writing skills with ability to communicate clearly and efficiently * Strong interpersonal skills and ability to collaborate in a team environment Desired: * Previous experience or knowledge of cybersecurity concepts * Experience with analyzing large data sets to identify notable conclusions or actionable trends for reporting * Foreign language expertise (Russian, Chinese, etc…) * Familiarity with tools such as Wireshark, nmap, Metasploit, Nessus, Snort, etc. * Understanding of one or more of the following: C/C++, PHP, Perl, Python, JavaScript, Ruby, SQL, Assembly FireEye is an Equal Opportunity Employer: All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability. Fireeye Reston VA

Cyber Threat Intelligence Analyst

American International Group