Director, Cyber Threat Intelligence

Job Description

Paramount is seeking a Director of Cyber Threat Intelligence (CTI) to join its Global Information Security Group. This position will be a vital leader of the Threat Response team, leading CTI activities and capabilities development while supporting analysts and threat hunters globally using a wide variety of tools. As the CTI leader, the candidate will be responsible for crafting and maintaining a global CTI program that aligns with leading industry standards, advice, and direction. This involves operating and continually improving existing CTI processes, as well as the development of new processes in response to evolving threats and business requirements while continuously motivating to drive strategic, tactical and threat-focused cyber intelligence. This is a remote position with travel, as needed, primarily to NY or DC.
Overview & Responsibilities

(This position is open for 100% remote)
• Collect information for various levels of cyber threat intelligence, including strategic, operational and tactical intelligence
• Continuously perform analysis on information collected to produce practical intelligence
• Leverage internal and external resources to research threats, vulnerabilities and intelligence on various threat actors and exploitation tools and platforms
• Develop threat models that leverage vulnerabilities present in the environment and countermeasures to defeat those models
• Propose hypotheses based on threat intelligence to direct threat hunting and vulnerability management activities
• Perform threat research to identify tactics, techniques and procedures of threat actors to improve prevention and detection methods
• Build the intelligence used to inform Paramount's cybersecurity strategy, providing leadership with valuable threat insights, and allow proactive and tactical controls to be implemented
• Establish and apply a threat modeling methodology to identify, classify, prioritize and report cyber threats using a structured approach!
• Build and maintain documentation/knowledgebase of cyber threats, threat vectors, threat actors, and threat trends for periodic reporting, threat modeling activities and security incidents
• Production of quality intelligence reports, briefings and on-demand assessments to be consumed both at the executive and technical practitioner level
• Availability during off-hours and holidays

Basic Qualifications:
• 5+ years of technical experience, with preferred past experience leading a cyber team in threat intelligence, threat hunting, penetration testing or incident response
• Extensive experience and understanding of intelligence processes: analytical methods, the intelligence cycle, intelligence collection plans, source and information evaluation
• Solid grasp of common threat analysis models such as the MITRE ATT&CK, Cyber Kill Chain, Diamond Model, Pyramid of Pain, DeTT&CT and modern penetration testing technique
• Minimum of one of the following certifications: SANS GCTI, SANS GOSI, CREST CRTIA, CREST CPTIA or ECC CTIA

Additional Qualifications:
• Familiarity with common techniques used by malware and threat actors and industry standard lexicon for discussing such threats
• Experience with TIP/TI solutions such as MISP, Recorded Future, Anomali, etc.
• Deep technical understanding of a variety of enterprise IT and cloud-based architectures and technologies, such as networking, server infrastructure, operating systems, web applications, databases, containerization and mobile
• Experience working in a security operations center, red team or blue team operations and ability to think both like an attacker and defender
• Be a self-starter, work independently and able to quickly adjust to changing priorities
• Excellent English verbal and written communication skills!
• Knowledge of digital, cyber security and data privacy laws
• Experience working in a similar role in threat intelligence, research or incident response that involved elements of threat actor tracking and investigation
• Strong verbal and written communication skills. Ability to analyze, summarize, and communicate large volumes of information in a clear and succinct manner with careful attention to detail
• Deep technical knowledge of the cyber threat landscape including threat actors, charge types, tactics, tools and procedures, and effective countermeasures

Education: (e.g., degree, certifications)

Required:
• Bachelor's degree in a related field or equivalent experience
• Minimum of one of the following certifications: SANS GCTI, SANS GOSI, CREST CRTIA, CREST CPTIA or ECC CTIA

Preferred:
• Masters in Cybersecurity or related computer science field

Paramount is an equal opportunity employer (EOE) including disability/vet.

Jobcode: Reference SBJ-g6059j-18-226-28-48-42 in your application.