IBM IBM Security - X-Force - Strategic Cyber Threat Analyst - IRIS in St Louis, Missouri

Job Description

IBM X-Force Incident Response & Intelligence Services (IRIS) is looking for analysts to join their Threat Intelligence Production Team (TIPT). The candidate will provide industry-leading threat intelligence services across several security domains in an exciting and growing security delivery organization within IBM.

Analysts will work with clients to achieve an enhanced cyber security posture by performing the following tasks, including, but not limited to: the production of Strategic Threat Assessments (STAs) and Impact Assessments, supporting incident response teams and conducting in-person threat briefings to leaders in cyber security.

Analysts will also work with teams across and external to IBM Security to support the intelligence needs of the organization, foster collaboration and promote IBM’s thought leadership in the cyber security space. Analysts will be involved in the development of content for external publication, including, but not limited to: blogs for SecurityIntelligence, an IBM sponsored security blog, the annual IBM X-Force Threat Intelligence Index, and op-eds for trusted security news outlets.

The ideal candidate will have demonstrated strong skills in written and verbal communication, and have a strong foundation in cyber security threats, policy, operations and best practices; ideally in large enterprise environments or government.

Analysts will occasionally travel for training, conferences or client engagements.

Threat Analyst Skills:

Demonstrates and provides subject matter expertise of the threat landscape including, but not limited to cyber attack vectors, threat actors, security trends, and security policies and recommendations in both the government and commercial space.

Takes a proactive approach to learning about the latest threats, threat actors, tactics, techniques and procedures and malware.

Proficient in writing a cohesive narrative around security research for both a technical and non-technical audience.

Possesses strong verbal communication skills to deliver strategic, tactical and operational intelligence to audiences with varying degrees of technical knowledge.

Experience conducting and correlating threat research using OSINT, incident response engagement data, and proprietary tools, performing threat modeling, and producing intelligence threat assessments.

Required Technical and Professional Expertise

  • At least 5-7 years of experience conducting security research and producing threat assessments with subject matter expertise in one or more of the following specialties: attack vectors, threat actors, industry or sector-specific threats, and network security. 

  • At least 3-5 years of experience verbally communicating security threats to both technical and non-technical audiences via training, conferences, or client engagements. 

  • A strong understanding of attacker methodologies, attack lifecycle, Cyber Kill Chain, etc.

Preferred Tech and Prof Experience

  • Experience performing data analysis

  • Experience working as part of a threat intelligence team

  • Technical skills such as network or endpoint security, managed services, incident response, programming and malware analysis.

EO Statement

IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.