Job Description Summary:
We are seeking a dedicated and analytical Cyber Threat Intelligence Analyst to support our Adversarial Cyber Threat Intelligence initiatives. This role focuses on identifying and monitoring external threat actors and their capabilities, assessing ongoing attack campaigns, and providing actionable intelligence to enhance PayPal's security posture.
The ideal candidate will have a strong background in threat intelligence, analysis of attack patterns, and an understanding of the tactics, techniques, and procedures (TTPs) used by cyber adversaries. If you are passionate about cybersecurity and enjoy working in a dynamic environment to protect our organization, this role is for you.
Job Description:
As a senior team member on our Cyber Threat Intelligence team, you will be collaborating with our Threat Analysis and Planning team to strategically drive how PayPal prepares for and responds to threats.
Supporting the following services, an ideal candidate will be able to:
Threat Actor Profiling:
- Identify and monitor external threat groups targeting PayPal, analyzing their intent, opportunity, and capabilities based on associated attack campaigns, TTPs, indicators of compromise (IOCs), and victimology.
- Develop comprehensive profiles for relevant threat actors to inform strategic defense initiatives.
Threat Actor Campaign Analysis:
- Provide situational awareness of ongoing attack campaigns of interest, enumerating attacker TTPs for further investigation.
- Conduct in-depth analyses to pivot to responsible threat actors and maintain an updated understanding of their activities.
Threat Infrastructure Counterintelligence:
- Identify and assess the validity of potential attacker infrastructure based on inputs from other Cyber Threat Intelligence services.
- Confirmed attacker infrastructure will be shared with internal teams and external partners to facilitate proactive mitigation efforts.
Activity Group Monitoring:
- Analyze internal incident data sources to identify trends, attack patterns, and potential threat actor groups actively impacting the organization.
- Collaborate with incident response teams to enhance detection capabilities and response strategies.
TTP Analysis:
- Conduct targeted technical analyses of individual tactics, techniques, and procedures utilized in attack campaigns by threat actors of interest.
- Forward analysis results to internal teams for improved detection, mitigation, and vulnerability assessments.
Skills we think will make you successful in this role include:
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
- 4+ years of experience in threat intelligence, cybersecurity analysis, threat hunting, or a related field, with a strong focus on external threat actors.
- Proficient understanding of attack methodologies, TTPs, and frameworks such as MITRE ATT&CK and Diamond Model Analysis.
- Experience with threat intelligence platforms and tools for data collection and analysis.
- Strong analytical writing and critical thinking skills with the ability to synthesize complex information into actionable intelligence.
- Excellent communication skills, capable of conveying technical findings to both technical and non-technical audiences.
- Familiarity with incident response processes and collaboration with cross-functional teams is a plus.