Cyber Threat Intelligence Technical Writer & Production Lead - Aetna Hartford, CT, USA Bookmark Share Print 464 2 11

Listing Description

As a member of Global Security and Resiliency’s Operational Security Intelligence (OSI) team, responsible for independent collection, analysis, and production of finished cyber threat intelligence (CTI) in support of CVS Health enterprise-wide security efforts. The candidate will maintain awareness of the global threat landscape to ensure CVS Health maintains a strong and forward-thinking security posture. The role will review complex, technical threat data, and enrich it with contextual information that will result in finished intelligence products. The OSI team is responsible for all facets of the cyber threat intelligence cycle: planning / requirements determination, data collection and processing, intelligence production and product dissemination. The team is integrated within a converged security model, providing holistic analysis and assessments minimizing physical and cyber threat impacts to the company. The ideal candidate will have the ability to identify increasingly sophisticated cyber-attacks and monitor the tactics, techniques and procedures of threat actors and trigger recommendations/modifications and/or implement new security policies, resources, and tools to respond to the threat.

The OSI team is responsible for all facets of the cyber threat intelligence cycle: planning / requirements generation, data collection and processing, intelligence production and product dissemination / feedback. The team is integrated within a converged security model, providing holistic analysis and assessments to minimize impacts of both physical and cyber threats to the company.

Background/Experience Desired:

• Strong technical writing skills with exceptional attention to detail

• Excellent verbal and written communication skills, interpersonal and presentation skills and the proven ability to influence and communicate effectively

• Strong analytical reasoning skills with the ability to recognize and evaluate facts, objectively analyze events, blend and organize threat data from multiple sources

• Solid understanding of common and advanced threats, penetration/intrusion techniques and attack vectors

• Self-starter with ability to efficiently manage and complete multiple tasks simultaneously, research and solve problems independently but also able to collaborate in a dynamic team environment

• A passion for security, and investigating cyber security threats and threat actors

• Foreign language skills, particularly Chinese, Russian, Arabic or Portuguese, a plus

• BS, Computer & Information Systems, Information Technology or Computer Science

• MS, Cyber Security / Malware Analysis preferred

• Certified Information System Security Professional (CISSP) or CISM preferred

• Hands-on experience with various cyber security technologiesFacilitate intelligence cycle and execute OSI’s intelligence production program to include: production requirement tracking, priority intelligence requirement generation and product feedback/action item resolution.

Draft and convey complex information in simple, succinct explanations.

Research new and emerging threats and determine their potential impact to CVS Health and affiliates.

Coordinate comprehensive cyber security intelligence programs and process via collaborative and high-volume interfacing with all organizational tiers.

Engage security processes related to data collection, analysis, system/material production, and dissemination of materials to appropriate staff members.

Conduct threat analysis and reporting: research and disseminate new and ongoing cyber security threats through reporting, produce intelligence briefings, attribution reports and position papers.

Evaluate innovative technical & security products to assess security intelligence feasibility against company cyber defense posture.

Provide reports to leadership regarding the effectiveness of network and data security and making recommendations for the adoption of new procedures and technologies, as required.

Serve as a highly-trusted information security consultant to the organization and key leadership.

Properly handle and safeguard proprietary and sensitive information in accordance with non-disclosure agreements, company policies and traffic light protocol (TLP).