• Job code: QR8556
  • Security

Threat Intelligence Integration Expert / Data Security Engineer

Amsterdam

For our client in Amsterdam we are looking for a Threat Intelligence Integration Expert / Data Security Engineer.


The Global CISO organisation is responsible to assist management, business and other tribes in providing customer friendly services in a safe and secure way. Business leaders and CISO are jointly responsible for bank-wide security. CISO is mandated to drive required change in all domains, business and IT.


Global Intelligence Centre

The key mission of GIC is to enable stakeholders to be a step ahead in an ever changing world by delivering outstanding intelligence products and services that empowers our stakeholders with decision advantage. GIC illuminates complex topics and provides actionable recommendations. By combining people from various backgrounds the team ensures a thorough understanding of all levels of the threat landscape providing a depth and breadth coverage of relevant threats and events.


Threat Intelligence Integration Expert

The function of the Intelligence Integration Expert is to assess how intelligence and threat data is being utilised within the organisation. As such the role is central in ensuring the available data is being properly integrated into security detection and response processes. Thus improving the security of the company by making sure external data is leveraged and translated into insights for internal use.


The successful candidate is expected to actively work with internal and external peers to assess and further develop the understanding and integrations of the available threat data, contributing to the mission of GIC.


Key Responsibilities

- Identification of current threat intelligence processes and the integration of TI in the organisation in line with strategic objectives. Will include analysing current intelligence requirements, data collection, analysis and delivery in the context of detection and response processes

- Improvement or creation of security intelligence integrations

- Identify and develop new opportunities to automate current manual processes

- Assessment of current threat intelligence platform in context of applicability - gap analysis and matching requirements to solutions

- Evaluation of current Threat Intelligence Platform:

- Suitability mapped to existing and future requirements - suitability for implementation with broader detection tooling/processes

- Gap analysis of the top three TIPs for closer comparison

- Facilitate the process of TIP change/renewal.

- Point of Contact for senior management on integration and detection related issues


Experience and skills

- Experience with working in a complex and challenging environment

- Experience with solutions/data engineering in a security operations environment

- Knowledge on attack-vectors, security threats and mitigation techniques

- Experience with intelligence analysis techniques and methodologies

- Understanding of the concept of the intelligence cycle

- Experience with commercial and open source TIP products and intelligence sources

- Experience working with threat intelligence frameworks and concepts like the Kill Chain and ATT&CK

- Ability to develop documentation around technical projects

- Good level of English


Inter-personal skills

- Experience in working collaboratively across multi-functional teams in an agile environment

- Creative and flexible mindset

- Strong organisational sensitivity

- Strong communication and presentation skills


Desired qualifications

- Bachelor’s or preferably Master’s degree in Cybersecurity , computer science or comparable degree

- 5+ years’ experience within a relevant domain

- International work experience with strong network within international security initiatives

- Proven expertise in Security/Cybercrime/Forensics/Anti-Fraud


Apply