Cyber Threat Intelligence (CTI) Analyst

Cyber Threat Intelligence (CTI) Analyst

Important Information 

Location: Singapore

Job mode: Contract

Job Summary:

We are seeking a skilled and experienced CTI Analyst to join our growing Security Operations team. The ideal candidate will be a proactive and resourceful individual with a passion for identifying and neutralizing advanced threats to strengthen the company's defenses. This role requires a deep understanding of threat hunting methodologies, a strong analytical mindset, and exceptional communication skills.

Key Responsibilities:

- Conduct proactive threat hunting activities across various environments (endpoints, networks, cloud)

- Develop and maintain threat hunting hypotheses based on current threat intelligence and organizational risk assessments

- Apply structured threat hunting methodologies leveraging frameworks such as MITRE ATT&CK, PEAK, TAHITI, THMM, and Diamond Model

- Analyze security logs, network traffic, and endpoint data to identify malicious activity and potential threats

- Investigate security incidents and provide detailed reports on findings, including root cause analysis and remediation recommendations

- Develop and manage Cyber Threat Intelligence while staying up to date on the latest threat landscape, attack techniques, and emerging technologies

- Present findings and recommendations to technical and executive audiences

Requirements:

- Bachelor's degree in Computer Science, Cybersecurity, or a related field

- At least 10 years of experience in cybersecurity, with a minimum of 8 years focused on threat intelligence/hunting

- Strong understanding of various operating systems (Windows, Linux, macOS)

- Experience with various security tools and technologies (SIEM, EDR, network monitoring tools)

- Proficiency in scripting (Python, PowerShell)

- Strong analytical and problem-solving skills

- Excellent communication and presentation skills to translate technical findings into business impact

- Experience with threat intelligence platforms, feeds, and CTI frameworks

- Relevant security certifications (e.g., SANS GIAC, GNFA, GCFA, Offensive Security, etc)

Nice to Have:

- Experience with cloud platforms (AWS, Azure, GCP) and container security

- Familiarity with EDR/XDR solutions, SIEM platforms, and threat hunting tooling

- Knowledge of YARA rules, IOC analysis, and behavioral-based analysis

Encora is a global company that offers Software and Digital Engineering solutions. Our practices include Cloud Services, Product Engineering & Application Modernization, Data & Analytics, Digital Experience & Design Services, DevSecOps, Cybersecurity, Quality Engineering, AI & LLM Engineering, among others. 

At Encora, we hire professionals based solely on their skills and do not discriminate based on age, disability, religion, gender, sexual orientation, socioeconomic status, or nationality.