Sr. Threat Intelligence Analyst

**ADP is hiring a Lead Cyber Threat Intelligence Analyst**

In this role, the Senior Threat Intelligence Analyst will be responsible for the tactical, and operational analysis of cyber, fraud and physical threats that may impact ADP. The Cyber Threat Intelligence Analyst will demonstrate technical expertise and leadership in the areas of threat intelligence, brand protection, and data analysis.

You will work alongside a team of intelligence analysts, threat hunters, and security operations team to help improved and action Intelligence. Assist in producing a comprehensive operating picture and cyber security situational awareness. You will work with various intelligence collection and reporting tools and frameworks to produce reports and/or products. Collect, process, catalog, and document information as required based on defined intelligence requirements

To thrive in this threat position, you'll need to be an expert in building and enhancing intelligence products and services. You'll also need experience working with structured and unstructured data and are great at maintaining situation awareness. You know how to work with Security Operations team to create the most value and identify gaps in available intelligence information and engage with leadership on strategies to meet intelligence requirements through Intelligence collection processes

**WHAT YOU'LL DO**:
**Here's what you can expect on a typical day in the life of a Senior Threat Intelligence Analyst at ADP.**
- Generate tailored and actionable products based on analyzed threat campaigns, external and internal events and incidents.
- Collaborate with technical and threat intelligence analysts to provide indications and warnings and contribute to predictive analysis of malicious activity.
- Develop analytical hypotheses, prove (or disprove) those hypotheses through research; communicate that information to stakeholders both verbally and in writing.
- Review and analyze internal, open source, and dark web datasets to find threat information and use it to provide value to ADP.
- Provide accurate and priority driven analysis on cyber activity/threats, and present complex operational/technical topics to senior managers and stakeholders.
- Establish and maintain excellent working relationships/partnerships with the cyber security and infrastructure support teams throughout the organization, as well as different business segments.
- Produce intelligence products at the Operational, and Tactical level for audiences with diverse technological backgrounds.
- Collect, analyze, investigate, store, and disseminate threat intelligence (actors, campaigns, TTPs, IOAs, IOCs)
- Conduct detailed technical analysis supported by industry accepted threat intelligence analytical frameworks, tools, and standards.
- Create and evaluate trend/correlation analysis for scenario forecasting at both the tactical and operational level.
- Develop and refine cyber-threat intelligence collection and analysis processes.
- Provide expertise and recommend relevant remediation and countermeasures during incident response efforts.
- Provide security risk mitigation methods and compensating controls to help drive remediation efforts for the business.
- Collect and analyze artifacts including malicious executables, scripts, documents, and packet captures.
- Generate presentations that illustrate research through visualizations, charts, graphs, infographics, and evidence capture for senior leadership.
- Provide input for the development of objectives, key results, and program metrics.
- Exhibit strong critical thinking and problem-solving skills with sound judgement.
- Maintain or develop professional contacts in the various communities in support of operations.
- Support the Critical Incident Response Center (CIRC)/SOC with intelligence collection, analysis and/or dissemination as it relates to on-going investigations

**REQUIRED QUALIFICATIONS**:

- A Computer Science College degree is a plus but not required. What's more important is having the skills and experience to do the job.
- 5+ years of cybersecurity, threat intelligence or IT experience; 2+ years of experience in operational or tactical cyber threat analysis; experience can include one or more of the following cyber-security functions: Cyber Threat Intelligence, Threat Hunting, System Administration, Intrusion Detection/Prevention, Monitoring, Incident Response, Digital Forensics, Vulnerability Management
- Holds certifications such as SANS FOR578, GIAC OSI, Security+, CISSP, GCTI, GREM, OSCP or similar training and certification.

**TO SUCCEED IN THIS ROLE**
- Knowledge of advanced cyber threats, threat vectors, attacker methodology to include, tools, tactics, and procedures and how they tie into the Cyber Kill Chain or ATT&CK framework, Diamond Model etc.
- Experience in malware detection and analysis using static and dynamic malware analysis methods
- Knowledge of cloud services and their attack surface.
- Knowledge of how