Global Threat Intelligence And Analysis Senior Intelligence Analyst

Cigna Bloomfield , CT 06002

Posted 2 months ago

Global Threat Intelligence & Analysis Senior Intelligence Analyst:

Cigna's Global Threat Intelligence & Analysis Team (TI&A) has a mission to continuously monitor and analyze the cyber threat landscape to identify threats against Cigna and convert information into actionable intelligence in order to inform decision makers, enrich alerts, guide threat hunting and focus our investments on the right controls. Cigna's global foot print, including a significant presence in EMEA and APAC, presents a unique and interesting data collection and analysis opportunity. Harnessing Cigna data sources to produce organic intelligence and correlating that intelligence with external sources will be the primary objective and the earmark of success for the right candidate in this role. This role will report to the Global TI&A Senior Manager and will also contribute to the continuous surveillance of and reporting on the cyber threat landscape, emerging TTP and the reported activities of threat actors who pose the greatest risk to Cigna. Routinely the intelligence produced will require briefing leadership and the right candidate must have experience producing and delivering reports to technical and non-technical senior leaders.

Essential Duties and Responsibilities:

  • Monitor and analyze the cyber threat landscape in order to identify external and emerging cyber threats to Cigna and its affiliates;

  • Conduct analysis on Threat information to identify current impact and identify potential mitigations;

  • Translate data analysis into written or verbal intelligence updates to share with senior management, information systems professionals, and technical and non-technical users;

  • Communicate to fellow stakeholders and senior leadership the cyber risk to the organization through operational briefings and threat intelligence reports;

  • Extract and communicate trends from the cyber threat landscape;

  • Establish methods of correlating and enriching internal network anomalies with threat intelligence for the purposes of increasing situational awareness among tier one SOC analysts, informing threat hunts, providing attribution, and aiding in the establishment of strategic countermeasures;

  • Develop, create, and drive current and new reporting methods and products, with the goal of increasing situational awareness and ensuring Intelligence products are actionable;

  • Support incident response and threat hunting activities to include providing intelligence context, analysis support, industry expertise, and recommendations around remediation and countermeasures;

  • Mentor junior team members, support their growth and the development of methods by which they may initiate tactical mitigations based on results of analysis and determination of threat validity;

  • Continuously evaluate the effectiveness of methods of intelligence ingestion, as well as the reliability of data feeds;

  • Evaluate new intelligence sources and make recommendations for improvements and new sources;

  • Assist in maintaining an effective Threat Actor Intelligence program, which provisions for the identification, tracking, and prioritization of cyber threat actors of various types;

  • Maintain memberships and establish intelligence-sharing relationships with appropriate sources within the intelligence community;

  • Partner with Adversary Simulation to ensure that red and purple team campaigns emulate TTP of relevant threat actors

Knowledge, Skills and Abilities:

  • Possess knowledge of Intelligence Community (IC) fundamentals (classifications, Traffic Light Protocol (TLP), Intelligence Sharing and Analysis Centers (ISACs);

  • Ability to apply analytical understanding of hacker methodologies and tactics, system vulnerabilities, and key indicators of attacks and exploits;

  • Ability to communicate complex ideas and concepts effectively, using the correct grammar and terminology, both orally and in writing, with senior management staff, information systems professionals, and technical and non-technical users;

  • Ability to quickly and effectively digest disparate data sources to determine security implications and risk levels;

  • Able to provide recommendations of security improvements by assessing current efficacy of current capabilities/solutions, evaluating trends and anticipating requirements;

  • Possess knowledge of virtual environments, Cloud platforms (IaaS), network operating systems, mobile device environments, and data encryption methods;

  • Demonstrated expertise in network communication protocols, operating systems, servers, firewall implementation, IPS/IDS systems, and advanced malware detection systems;

  • Must be able to multi-task and work independently on moderate to complex assignments using independent professional discretion and judgment as well as transition quickly between projects with minimal supervision;

  • Ability to maintain effective working relationships with colleagues, users, contractors, and vendors;

  • Has in-depth knowledge of security systems and understands the life cycle of network threats, attacks, attack vectors, and methods of exploitation;

  • Possesses the ability to use in-depth knowledge to identify and present actionable intelligence to team members and senior leadership;

  • Maintain advanced knowledge of tools and techniques for analysis and identification of the nature of threats;

  • Ability to perform security analysis of network traffic data and report on threats as needed, and act as the escalation point for additional analysis.

Technical Skills Required:

  • Strong understanding of networking protocols and infrastructure designs; including routing, firewall functionality, host and network intrusion detection systems, encryption, load balancing, and other network protocols;

  • Experience with log analysis, traffic flow analysis and experience with associated infrastructure and systems to aid in the identification of malware or other malicious behavior;

  • Experience utilizing a broad array of security tools including Security Information and Event Management (SIEM) system, intrusion detection systems, web proxy systems, routers, switches, firewall deployment and other tools used to assess network security;

  • Demonstrated knowledge of techniques used to analyze network traffic for malicious activity and perform packet analysis;

  • Identify, extract, and leverage intelligence from intrusion attempts carried out by advanced cybercriminals or advanced persistent threat (APT) groups;

  • Piece together and track intrusion campaigns and activity carried out by various threat actors, and nation-state/advanced threat actor activity;

  • Manage, share, and receive intelligence on adversary groups;

  • Fully analyze network and host activity in successful and unsuccessful intrusions by advanced attackers;

  • Leverage intelligence to better defend against and respond to future intrusions.

Soft Skills:

  • Ability to communicate complex ideas simply and effectively;

  • Demonstrated ability to work in a team environment both in-person and remotely, with minimal supervision, alongside a Global Information Protection Team;

  • Must be able to perform well under pressure while maintaining a professional image and approach;

  • Possess strong time management skills and the ability to effectively prioritize tasks and work independently with minimal daily management interaction;

  • Excellent written and verbal communication skills, analytical ability, strong judgment and leadership skills, and the ability to work effectively with peers, IT management, and senior leaders;

  • Ability to participate in meetings and projects with customers and partners , including those involving technical topics or technical service delivery;

  • Strong problem solving skills, and a desire to attempt to work through blockers prior to seeking assistance.

Education Requirements:

  • Bachelor degree in Computer Science, Information Technology or equivalent practical experience (military/government experience, etc.)
  • 7+ years of Cyber Security focused experience, threat intelligence or related IT experience preferred

Preferred Qualifications:

  • Scripting in languages such as Python, Perl, Powershell and a deep understanding of command line across Linux, Unix, OSX, Windows, etc.

  • Industry recognized certification in cyber security such as GCIA, GCIH, CISSP or similar are a plus but experience is preferred

  • Networking certifications (e.g. CCNA - Security, CCNP) and demonstrated practical experience

  • Military/Government experience performing Cyber Threat Intelligence work

This position is not eligible to be performed in Colorado.

About Cigna

Cigna Corporation exists to improve lives. We are a global health service company dedicated to improving the health, well-being and peace of mind of those we serve. Together, with colleagues around the world, we aspire to transform health services, making them more affordable and accessible to millions. Through our unmatched expertise, bold action, fresh ideas and an unwavering commitment to patient-centered care, we are a force of health services innovation. When you work with us, or one of our subsidiaries, you'll enjoy meaningful career experiences that enrich people's lives. What difference will you make?

Qualified applicants will be considered without regard to race, color, age, disability, sex, childbirth (including pregnancy) or related medical conditions including but not limited to lactation, sexual orientation, gender identity or expression, veteran or military status, religion, national origin, ancestry, marital or familial status, genetic information, status with regard to public assistance, citizenship status or any other characteristic protected by applicable equal employment opportunity laws.

If you require reasonable accommodation in completing the online application process, please email: SeeYourself@cigna.com for support. Do not email SeeYourself@cigna.com for an update on your application or to provide your resume as you will not receive a response.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Global Product Manager Residential Load Centers

ABB LTD

Posted 2 months ago

VIEW JOBS 9/16/2021 12:00:00 AM 2021-12-15T00:00 Global Product Manager - Residential Load Centers Take your next career step at ABB with a global team that is energizing the transformation of society and industry to achieve a more productive, sustainable future. At ABB, we have the clear goal of driving diversity and inclusion across all dimensions: gender, LGBTQ+, abilities, ethnicity and generations. Together, we are embarking on a journey where each and every one of us, individually and collectively, welcomes and celebrates individual differences. The Global Product Manager is in charge of driving the long-term profitable growth of all product (GPG NEMA Flow Goods), system and services within the Electrification Smart Building globally. You will also work with the global marketing and sales teams to define marketing plans. Reporting to the GPG (Global Product Group) Product Management Leader - NEMA Flow Goods, you will be accountable for the long-term profitable growth and marketing of the ABB Load centers and Meter load center combos offering to targeted market segments, by developing and managing it through life cycle phases, according to market needs and Product Group strategy and targets. Your responsibilities * Market situation analysis: Leads market intelligence analysis. Understands and defines current market segmentation and related product/system/service positioning. Identifies potential gaps in portfolio, both against competition and new market opportunities * Existing products: Owns the technical and market specification for the product/system/service and determines a product/system/service business plan that supports sustainable growth. Leads life cycle management process, analyses current product/system/service, defines and tracks performance metrics, plans appropriate measures (e.g. enhancements, cost reductions, phase-outs) and makes decisions on product/ system/service obsolescence and end-of life to ensure current and future market requirements are met and maximize profitability * Internal/external interface: Acts as interface between external market and internal functions (e.g. Sales, Operations, and Research & Development), forecasting volume trends on a regular basis to ensure Operation's capability to fulfil customer orders. Sets targets and monitors product/system/service costs, giving inputs to Operations functions (e.g. Supply Chain Management, Engineering, Production) to maximize competitiveness and profitability * New product development: Defines new product/system/service plans, sets technical, price, cost and capital expenditure targets. Contributes to development of new portfolios by leading customer need and value analysis, planning the roadmap to create maximum value, follow-up of product/system/service portfolio performance. Understanding of utility standards and working closely with Utility standards team is critical * Product market communications: Initiates and drives product market communication strategy, including product launch planning and implementation. Manages different channel to market scenarios in coordination with channel partners International Marketing & Sales to ensure best market coverage. * Product values: Defines product customer value proposition per segment and channel and ensures clear communication to channels and users, to deliver clear product/system/service positioning within the portfolio with defined values per product/system/service line * Offering to market & pricing Management: Responsible for product/system/service profitability and margin. Drives the annual business planning process and facilitates agreement between sales demand and supply. Monitors global sales target fulfilment and tender volumes and take appropriate actions. * In preparation for new product launch, and otherwise as required, defines pricing strategies and manages global frame agreements and/or large-scale cross border projects to ensure one ABB approach. Ensures correct pricing is applied for all countries, products/systems/ services within relevant business area * Process development and Training: Continuously develops product management processes and tools, including interfaces to other key functions and develops sales and tendering tools to support the Sales organization. Initiates creation of external and internal product training modules and programs * Innovation: Initiates and drives cross functional and cross-organization product and solution innovation teams, monitors development of all standards and market trends and provides inputs to Research & Development (R&D) for patent screening process and intellectual property rights protection * People leadership and development: Ensure that the area of responsibility is properly organized, staffed and directed. Build an effective, capable and high performing organization. Develop talent, appoint managers and review effectiveness * Performance targets: Ensure achievement of established targets, through oversight and definition of improvement actions as needed. Focus on achievement of Revenues, Gross Margin % and Project On-Time and On-Cost (e.g. meeting market requirement specification, Time to Market) Your background * 4 year degree in Engineering with minimum 10 years experience in Electrical industry. * Proven experience in Product management / Product Marketing / sales. * Strategic thinking, able to analyze and manage complex business situations. * Full availability for international travel. * Knowledge of NEMA(National Electrical Manufacturers Association) Products and Systems. * Knowledge of Legacy GE/ABB products. * Experience with customer relations via service, visits, relationships, etc. * Proven intercultural competence. * International experience / global mindset. * Cross functional team management experience. * Strong analysis and problem-solving skills. * Strong Communication skills. * Strong team building and networking capability. * Assertiveness and ability to work in a virtual team. * Candidates must already have a work authorization that would permit them to work for ABB in the US. Benefits * Retirement plan * Life insurance * Disability insurance * Medical insurance * Wellbeing program More about us ABB Smart Buildings digitally transforms commercial, industrial and residential buildings for the highest comfort, efficiency, safety and security - enhancing quality of life in buildings of the future through safe, smart and sustainable electrification solutions, services and products. We look forward to receiving your application. If you want to discover more about ABB, take another look at our website www.abb.com. Equal Employment Opportunity and Affirmative Action at ABB ABB is an Equal Employment Opportunity (EEO) and Affirmative Action Employer encouraging diversity in the workplace. All qualified applicants will receive consideration for employment without regard to their race, creed, color, ancestry, religion, sex, national origin, citizen status, age, sexual orientation, gender identity, disability, marital status, family medical leave status, or protected veterans status. For more information regarding your (EEO) rights as an applicant, please visit the following websites: http://www1.eeoc.gov/employers/upload/eeoc_self_print_poster.pdf http://www1.eeoc.gov/employers/poster.cfm. http://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP_EEO_Supplement_Final_JRF_QA_508c.pdf As an Equal Employment Opportunity and Affirmative Action Employer, applicants may request to review the Affirmative Action Plan of a particular ABB facility between the hours of 9:00 A.M. - 5:00 P.M. EST Monday through Friday by contacting an ABB HR Representative at 1-888-694-7762. Protected veterans and qualified individuals with a disability may request a reasonable accommodation if you are unable or limited in your ability to use or access ABB's career site as a result of your disability. You may request reasonable accommodations by calling an ABB HR Representative at 1-888-694-7762 or by sending an email to US-AskHR@abb.com. Resumes and applications will not be accepted in this manner. ABB LTD Bloomfield CT

Global Threat Intelligence And Analysis Senior Intelligence Analyst

Cigna