Cyber Security Threat Intelligence Analyst

Job Description
The Ford Cyber Defense Center (CDC) is an integral part of the IT Security & Controls Department. The position opportunity is for a Threat Intelligence Analyst. The Threat Intelligence Analyst enables the Threat Intelligence program for the CDC, providing context-aware Threat Intelligence to the team to aid in the CDC’s mission. The CDC mission is to provide proactive and reactive security services to protect Ford Motor Company Global digital information assets from compromise. The scope for the CDC is for any Ford Motor Company asset or asset of any subsidiary or joint venture worldwide.

Ford Motor Company must be able to respond to information security-related incidents in a manner that protects corporate information and ensures the protection of additional information which might be affected by the incident.

The Cyber Defense Threat Intelligence Analyst will be focused on addressing relevant threat intelligence feeds and data and making that information actionable by the CDC resources that require it to perform their job effectively.

Responsibilities for the role may include but would not be limited to:

  • Initiate, organize and conduct data collection and research using all the tools and applications as well as proactive open source information
  • Produce a finished product for dissemination
  • Aggregation of data into appropriate organization systems, and datasets
  • Identify credible, new intelligence and subject matter resources relative to current and emerging threats
  • Identify internal knowledge gaps and propose new solutions or tools to address
  • Consistent delivery successful Threat Intelligence Feedback Loop to inform tools and process so they are “context-aware” and organizationally appropriate.
  • Support intelligence metric definition and reporting
  • Gain proficiency in security platforms such as SIEM, NIDS/HIDS, firewalls, WAF, and malware detection and remediation platforms
  • Perform network traffic and anomaly analysis, as well as indicators of compromise from system logs (Unix & Windows), application/database and firewall logs, NIDS/HIDS alerts, WAF alerts, endpoint malware alerts and other emerging log sources/technologies
  • Maintain relationships with partners and peers in order to strategically seek correlative data across all programs. Facilitate program and partner meetings
  • Mentors interns and less experienced team members

Additional responsibilities may include:

  • Liaison with industry partners, and subject matter experts via briefings, email, conference calls, private listserv, and quarterly and/or annual conferences
  • Analyze threat feeds to produce daily/weekly Threat Intelligence brief and regular threat trend reporting
  • As they pertain to cyber security, advise the organization on both preventative and containment strategies
  • Produce and deliver training to the CDC team
  • Performing documentation review and improvement, attending meetings as needed
  • Communicate and escalate issues and information as required by process or management
  • Become proficient in developing rules and signatures for IDS, IPS, and/or other signature matching technology

BASIC QUALIFICATIONS

  • Bachelor’s degree
  • 2+ years’ experience in IT Security

PREFERRED QUALIFICATIONS

  • Bachelors in computer science or other technical fields
  • 3+ years of Information Technology experience with network security technologies, threat and vulnerability management, and host/network-based security strategies
  • Solid and demonstrable comprehension of Information Security including malware, emerging threats, attacks, and vulnerability management
  • Experience with QRadar or other SIEM a plus
  • Network, Security, or Platform certification(s) (S+, N+, MCSP, CNA) CISSP or SANS GIAC GCIA certification desired
  • Thorough understanding of computer interactions including hardware, software, network, client/server, operating systems
  • Experience with network security technologies, specifically TCP/IP, and related network tools

The distance between imagination and … creation. It can be measured in years of innovation, or in moments of brilliance. When you join the Ford team; discover all the benefits, rewards and development opportunities you’d expect from a diverse global leader. You’ll become part of a team that is already leading the way, with ingenious solutions and attainable products – and it is always ready to go further.

Candidates for positions with Ford Motor Company must be legally authorized to work in the United States on a permanent basis. Verification of employment eligibility will be required at the time of hire. Visa sponsorship is not available for this position.

Ford Motor Company is an equal opportunity employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status.

Source:http://jobs.corporate.ford.com/ShowJob/Id/1251487/Cyber%20Security%20Threat%20Intelligence%20Analyst