Lead / Principal / Senior Cyber Threat Intelligence Analyst
Overview
The Cyber Threat Intelligence Analyst is responsible for identifying, tracking, and analysing emerging cyber threats, with a focus on protecting critical IT and OT environments.
This role goes beyond passive monitoring and emphasises proactive threat research-transforming global intelligence into localised, actionable insights, monitoring strategies, and detection logic.
Key Responsibilities
Threat Intelligence Programme Development
- Lead the development and continuous improvement of the Threat Intelligence function
- Establish and maintain Standard Operating Procedures (SOPs) for intelligence collection, analysis, and dissemination
- Implement and optimise Threat Intelligence platforms and workflows
Threat Research & Actor Tracking
- Conduct in-depth research on threat actors, including their tactics, techniques, and procedures (TTPs)
- Focus on regional and sector-relevant threats, including Industrial Control Systems (ICS)
- Maintain awareness of emerging global and regional threat trends
Monitoring & Intelligence Management
- Curate and maintain high-fidelity monitoring lists, including Indicators of Compromise (IOCs)
- Ensure intelligence is operationalised across SIEM, EDR, and network monitoring tools
Detection Engineering Support
- Translate intelligence findings into detection artefacts (e.g., YARA, Sigma, Snort rules)
- Support proactive threat hunting and detection engineering efforts
Incident Response Integration
- Act as a senior intelligence lead during major incidents
- Provide real-time threat context, attribution insights, and infrastructure analysis
- Support incident response and CERT teams with intelligence-driven decision making
Vulnerability Intelligence
- Monitor newly disclosed vulnerabilities (CVEs)
- Prioritise risks based on organisational exposure and technology stack
- Provide actionable recommendations to remediation and infrastructure teams
Framework Mapping & Analysis
- Map adversary behaviours to frameworks such as MITRE ATT&CK
- Identify detection gaps and recommend improvements to security controls
Reporting & Stakeholder Engagement
- Produce high-quality intelligence reports, including alerts for emerging threats
- Deliver regular strategic updates to stakeholders and leadership
- Communicate complex threat insights in a clear, actionable manner
Technical Skills & Competencies
- Threat Intelligence & OSINT: Strong capability in open-source intelligence across surface, deep, and dark web sources
- Automation & Scripting: Ability to build automation workflows, scrapers, and manage large intelligence datasets
- Log Analysis: Experience correlating threat intelligence with internal telemetry (e.g., firewall, proxy, EDR logs)
- Frameworks: Strong understanding of MITRE ATT&CK, Cyber Kill Chain, and Diamond Model
Requirements
- Degree in Computer Science, Information Technology, or a related field
- At least 8 years of cybersecurity experience, with 4+ years in threat intelligence, SOC operations, or incident response
- Strong experience in threat research, intelligence analysis, and operationalization
Certifications (Preferred)
- GIAC Cyber Threat Intelligence (GCTI) or CISSP
- Additional certifications such as GCIH, GCFA, or GREM are advantageous
If you believe you fit the requirements for the role,please submit yourapplication below or drop us an email directly quoting thejob title.
Due to an anticipated high volume of applicants, we regret that onlyshortlisted candidates will be notified. The information provided is forrecruitment purposes only.
Know someone who would be a great fit for this role Refer them to us and get rewarded.
Cornerstone Global Partners (EA License Number:19C9859) is an affirmative equal-opportunity employer and recruitment firm. Weevaluate qualified applicants without regard to race, colour, religion, creed,gender, sexual orientation, gender identity, marital status, national origin,age, veteran status, disability, or any other protected class.
Eugene Then
[Confidential Information]
EA Registration Number: R22104742.
Cornerstone Global Partners Pte Ltd (EA License:19C9859)
