Senior Threat Intelligence Analyst

at ABN AMRO
πŸ“ Amstelveen, Netherlands
EUR 70,200-100,200 per year
SENIOR
βœ… Hybrid

πŸ•™ 36-40 hours per week

SCRAPED

Used Tools & Technologies

Not specified

Required Skills & Competences ?

Security @ 4 Communication @ 4 Mentoring @ 4

Details

We are looking for an experienced, self-driven Cyber Threat Intelligence Analyst who can operate independently and as part of a high-performing team in the Global Cyber Intelligence Center (GCIC) at ABN AMRO. The role focuses on defending against cyber threat activity by collecting and producing intelligence to drive active cyber defence efforts, supporting incident response tasks, and improving internal intelligence processes and analytic capacity.

Responsibilities

  • Review all-source intelligence including internal, open source and closed source intelligence to identify emerging threat trends, TTPs and IOCs.
  • Transform trends and TTPs into timely, actionable intelligence products that contribute to ABN AMRO’s defensive posture (prevention, detection and Red Team activities).
  • Conduct intelligence investigations into malicious cyber activity to provide attribution, identify adversary TTPs, and provide additional context to threats to the network.
  • Produce high-quality written reports, presentations and briefings for audiences ranging from technical teams to executive management.
  • Support time-sensitive and critical cyber incident response activities by providing intelligence (including TTPs and IOCs) to shorten the incident response cycle and protect the network.
  • Establish and maintain productive internal working relationships with teams including Security Operations Center, Supply Chain Security, Red Team and Brand Protection.
  • Contribute to the wider cyber threat intelligence community by establishing sharing relationships with industry and government organisations.
  • Stay up-to-date on cyber threat trends, defensive cyber practices, tooling and processes and apply industry standard practices to GCIC operations.

Working environment

You will work within the Global Cyber Intelligence Center (GCIC) team in the ABN AMRO CISO Cyber Defence Grid. The team includes intelligence analysts, malware analysts and reverse engineers, SOC analysts and forensics, incident response and Red Team operations. ABN AMRO is an English-language working environment and supports hybrid working arrangements subject to operational requirements.

Requirements

  • 5+ years of experience with the cyber threat intelligence cycle, including collection, production and writing of intelligence.
  • 5+ years experience with threat analysis models such as the Diamond Model, Cyber Kill Chain, and MITRE ATT&CK TTP framework.
  • Experience conducting technical threat intelligence investigations into malicious activity, including attribution and TTP analysis.

Desirable / additional:

  • Familiarity with technical engineering requirements associated with producing intelligence.
  • Experience with and understanding of incident response processes.

Soft skills:

  • Strong research, analytical and problem-solving skills.
  • Excellent verbal, written and interpersonal communication skills; ability to tailor briefings to different audiences.
  • Experience mentoring junior threat intelligence staff.
  • Ability to work independently and as part of a team and to operate under pressure during incident response.

Benefits

  • Gross monthly salary: €5.847 - €8.353 (based on a 36-hour work week, includes vacation pay and benefit budget).
  • Benefit Budget equal to 11% of salary (monthly purchases via Benefit Shop or paid out if unused).
  • Five weeks of vacation per year (option to purchase up to four additional weeks).
  • Personal development budget of €1,000 per year (can accumulate up to €3,000).
  • Possibility to work from home (in consultation with team and depending on position).
  • Annual public transport pass with free public transportation throughout the Netherlands.
  • Excellent pension scheme.

About ABN AMRO

ABN AMRO promotes an inclusive culture, internal career opportunities and training, and supports hybrid working. Equal opportunities and sustainable, customer-focused banking are emphasized. External recruiters should have a signed agreement to submit candidates.

Application

If this opportunity interests you, please submit your application as soon as possible. The vacancy follows an application procedure including online application, CV selection, interviews, possible assessment, job offer and onboarding.