Cyber Threat Intelligence Analyst

Control Risks' Digital Risks practice works with our global clients to anticipate and mitigate threats, whilst harnessing digital opportunities to drive innovation and growth.

This APAC based role primarily involves delivering analysis of cyber threats and their implications to all business sectors and to public sector organisations and working with global and regional resources to support winning new engagements. The analyst will support delivery of strategic threat assessments and lead on delivery of specific threat consulting engagements, such as response to client subject matter requests and focused threat assessments. The role will also require the analyst to support our tactical CTI team in delivering investigations and responsive intelligence to our Incident Response team. The role requires the candidate to produce, enhance and contribute to content published on our cyber threat intelligence platform. The role will also need to participate in the winning and delivery of bespoke projects for clients, as well as support regional and global marketing activities.

The Cyber Threat Intelligence Analyst can be based in Control Risks' offices in Singapore, Sydney, or Hong Kong. Applicants will be currently resident in the locations for which they are applying.

Responsibilities:

Intelligence product delivery and scoping:

• Responsible for proactively collecting and analysing information from all sources to produce actionable intelligence for our bespoke clients.
• Providing analysis of all threat actors – nation state, cybercriminal, activist – from a technical capability assessment perspective and from an intent and motivation perspective.
• Understand our clients requirements, scope their intelligence and commercial needs and work with the CTI, Digital Risks and other teams to provide priced scopes of works that are properly risk assessed across our threat assessment, investigative and digital due diligence product sets.
• Supporting the development of new information sources and capabilities for collection and analysis.
• Produce intelligence reports and update region specific content for the intelligence platform product.
• Provide regional expertise into the CTI team to aid prioritisation of content coverage and intelligence collection for platform publication.
• Demonstrate strong understanding of the geopolitical, technological, economic and social drivers of cyber threats to produce forward looking intelligence analysis.

Business development responsibilities:

• Responsible for developing, maintaining and demonstrating strong subject matter expertise in cyber threat actors, computer network operations, electronic warfare, disinformation and geopolitics through attendance at conferences, industry events and constant research.
• Responsible for liaising with senior team members and other internal teams, such as Markets and Partnerships, to highlight key threat developments and reports to be shared with clients and prospects.
• Responsible for coordinating internally with CTI, Digital Risks and other internal stakeholders to share feedback from client engagements and discussions, including client scope requirements, subject matter asks and commercial intelligence on fees and market preferences.
• To deputise for senior CTI colleagues in reviewing scopes and work, delivering external briefings, pitches and internal engagements.

Marketing and business development:

• Production of marketing materials and public facing analysis designed to demonstrate CTI capability and subject matter to a public audience.
• Development of thought leadership tailored to specific high priority APAC geomarkets.

Essential:

• Highly motivated individual with ability to self-task and develop own research.
• Practical knowledge and understanding of cyber security concepts and methods.
• Practical experience in the field of intelligence collection, analysis and reviewing.
• Ability to present technical information and analysis to a non-technical audience.

Preferred:

• Demonstrable experience in the field of geopolitics through academic or professional engagement.
• Demonstrable experience of business development, marketing or winning client work.
• Educated to degree / masters level or several years’ work experience in an intelligence, cyber security or social science field (Terrorism, Politics, International Relations, Intelligence Studies).
• Understanding of both qualitative and quantitative analytical tools and techniques.
• Intelligence analysis (CREST, NIAT, GIAT, DIAM, City and Guilds), CTI (CRTIA, CPTIA) or cyber security (CISSP, CEH, CLASS) qualifications are highly desirable but not essential.
• Languages preferred: Chinese Mandarin.

Qualifications and specialist skills:

• The desired candidate may have a background in CTI, intelligence collection or analysis, geopolitical risk analysis.
• Familiarity with following analysis and collection tools: Maltego, RiskIQ, SOCMINT, OSINT enginges, complex Boolean searches, MS Office suite (particularly Word and Excel), use of secure research network.