Cyber Threat Intelligence Specialist

ROLE OBJECTIVE

The Cyber Threat Intelligence Specialist will work on all – tactical, operational & strategic Cyber Threat Intelligence initiatives, contributing to process improvement that will in turn lead to an increased CTI maturity at NRD Cyber Security. This role will help the SOC team work more efficiently, while providing added value to customers and increasing the cyber resilience of Europe as a whole.

RESPONSIBILITIES

• Monitor threat information coming from: open and commercial sources, our peers and partners;
• Conduct research on malicious infrastructure used by attackers;
• Produce actionable threat intelligence, reports, & detection scenarios/rules to detect relevant threats;
• Respond to RFI’s (Requests for Information) and apply analytical skills to collect and share relevant IoC’s (Indicators of Compromise);
• Gather, organize, log, and maintain CTI data;
• Assist in incident and forensic investigations;
• Implement new CTI processes and workflows to deploy in all aspects to address complex threats and risks;
• Automate the process of analysing, enriching, contextualising and uploading of CTI from automated sources;
• Implement and apply Source Evaluation and Information Reliability in relevant Threat Intelligence Platforms;
• Assist in creating and promoting a sharing culture, including work to maintain and improve an Information Sharing and Analysis Center (ISAC);
• Ensure constant, accurate, and quality project documentation to ensure alignment with project goals, KPIs, and reporting.

REQUIREMENTS

• Proven experience of 2+ years as a CTI Analyst, Cyber Threat Hunter or Incident Responder, including high skills in forensics and investigation of network, endpoint and cloud logs;
• Knowledge of security technologies and solutions including: SIEM, TIP, EDR, SOAR tools;
• Hands-on experience in monitoring and analyzing threat intelligence feeds and platforms, OSINT, dark-web and social media;
• Experience creating, maintaining, and using automations or SOARs;
• Ability to articulate and communicate intelligence openly and publicly at all levels;
• Be able to operate threat intelligence platforms such as MISP & OpenCTI;
• Strong analytical, problem-solving, and critical thinking skills;
• Strong organizational and time management skills;
• Fluency in Lithuanian and English, both written and spoken.

PREFERRED ADDITIONAL QUALIFICATIONS

• Certificates in Cyber Security, specifically fields of Cyber Threat Intelligence, Incident Response, or Digital Forensics;
• Experience at a global SOC, MSSP, or other organization with a varied security toolset would be seen as a large advantage.

WE OFFER

• Experienced team – highly motivated professionals, that truly want to make an impact;
• Excellent opportunity to grow and improve your information security know-how;
• Private health insurance;
• Quarterly team building events;
• Flexible work conditions – modern office in the city center, possibility to work from home;
• Office life pleasures: gaming activities, library and green zone for relaxation and chats;
• Salary based on your competencies and experience (gross): 3000 – 5000 EUR per month.