Cyber Threat Intelligence & Operations Specialist (CIS / Eastern European Focus)

About the Company

Behemoth Security Pte. Ltd. is a Singapore-based cybersecurity consultancy specialising in threat intelligence, security advisory, and compliance services for international clients, with a primary focus on the European Union market. Our operations involve monitoring and analysing cyber threats originating from the Commonwealth of Independent States (CIS) and Eastern European regions, liaising with EU-based clients on regulatory compliance (NIS2 Directive, DORA, GDPR), and coordinating product development with our distributed engineering team across Eastern Europe.

The Role

We are seeking a Cyber Threat Intelligence & Operations Specialist to serve as the operational backbone of our CIS/Eastern European threat intelligence practice and day-to-day business operations. This role is critical to our ability to deliver actionable intelligence on Russian-speaking and Eastern European threat actors to our EU client base, and to coordinate our Ukrainian-based development team.

The successful candidate will operate at the intersection of cyber threat intelligence (CTI), client engagement, product coordination, and business operations - requiring a rare combination of native-level language capability, cultural fluency with CIS/Eastern European contexts, and cybersecurity domain knowledge.

Key Responsibilities

Cyber Threat Intelligence (approximately 40%)

- Monitor, collect, and analyse intelligence from Russian-language sources including underground forums (e.g., XSS, Exploit.in, RAMP), Telegram channels, dark web marketplaces, and paste sites

- Track and profile CIS-origin threat actors, APT groups, and cybercriminal ecosystems relevant to our EU client base

- Produce finished intelligence reports, threat briefings, and indicators of compromise (IOCs) from Russian and Ukrainian-language source materials

- Conduct open-source intelligence (OSINT) investigations in Russian, Ukrainian, and English across multiple platforms

- Translate, contextualise, and interpret nuanced threat actor communications, slang, and cultural references that automated translation tools cannot accurately capture

Operations & Contract Management (approximately 30%)

- Manage day-to-day operational tasks including client communications, contract lifecycle management, and engagement scheduling

- Prepare, review, and administer service agreements and consultancy contracts with EU-based clients

- Coordinate project timelines, deliverables, and resource allocation across the organisation

- Support invoicing, vendor management, and operational reporting

Product Development Coordination (approximately 20%)

- Serve as the primary liaison with our Ukrainian-based development team, conducting daily standups, sprint reviews, and technical requirement discussions in Ukrainian

- Translate business requirements and client feedback into actionable product specifications

- Ensure development priorities align with the threat intelligence requirements and client needs

- Manage cross-timezone coordination between Singapore operations and Eastern European development resources

Compliance & Client Advisory Support (approximately 10%)

- Support client-facing engagements related to EU cybersecurity regulations (NIS2 Directive, DORA, GDPR)

- Assist in preparing compliance assessment frameworks and documentation

- Maintain awareness of the evolving regulatory landscape across EU and CIS jurisdictions

Requirements

Mandatory:

- Native or bilingual proficiency in Russian (spoken and written) - this is essential for monitoring and interpreting Russian-language threat intelligence sources with full cultural and contextual accuracy. Automated translation is wholly insufficient for this domain.

- Native or bilingual in Ukrainian (spoken and written) - required for daily coordination with our Ukrainian development team and to differentiate between Russian-language and Ukrainian-language source materials in the Eastern European cyber threat landscape

- Professional fluency in English (spoken and written) - for client-facing reports, documentation, and international communication

- Minimum 2 years of relevant experience in at least two of the following areas: cyber threat intelligence, cybersecurity operations, IT project coordination, or business operations in an international/cross-cultural environment

- Demonstrated understanding of the CIS and Eastern European cyber threat landscape, including familiarity with major threat actor groups, motivations, and tactics

- Experience working with geographically distributed teams across multiple time zones

- Strong organisational skills with experience in contract administration or project management

Preferred:

- Professional certifications in cybersecurity (e.g., CompTIA Security+, GIAC GCTI, OSCP, CEH) or equivalent demonstrated competency. We prefer real world experience and unique talent in the Russian-speaking cyber environment than certificates, but they're useful to understand your background.

- Familiarity with threat intelligence platforms (e.g., MISP, OpenCTI, Recorded Future, Mandiant Advantage), or ability to quickly learn.

- Experience with Agile/Scrum methodologies in product development contexts

- Knowledge of EU cybersecurity regulatory frameworks (NIS2, DORA, GDPR). If not provided, must be able to go through a quick internal training to get up to speed.

- Experience in the cybersecurity consulting or managed security services industry, or similar experience in IT or logistics to understand contract management.

What We Offer

- Competitive salary commensurate with experience

- Opportunity to work in a high-impact role within a growing cybersecurity consultancy

- Exposure to the global cybersecurity landscape with a focus on emerging threats from the CIS/Eastern European region

- Professional development support including industry certifications

- Collaborative, multinational working environment

How to Apply

Interested candidates should submit their CV/resume along with a brief cover letter explaining their relevant experience in cyber threat intelligence, CIS/Eastern European operations, and language capabilities. Please indicate your proficiency level in Russian, Ukrainian, and English.

Behemoth Security Pte. Ltd. is committed to fair employment practices in accordance with the Tripartite Guidelines on Fair Employment Practices (TGFEP). All qualified applicants will receive consideration regardless of age, race, gender, religion, marital status, or disability.