Cyber Threat Intelligence Analyst

Regeneron is founded on the belief that the right idea, combined with the right team, can lead to significant transformations. Our growing global network is dedicated to inventing, developing, and commercializing medicines that change lives for those with serious diseases. In doing so, we are pioneering innovative approaches to science, manufacturing, and commercialization, as well as redefining our understanding of health.

In this role typical day might include performing the following:

• Bolster Regeneron's digital defenses with sophisticated Cyber Threat Intelligence (CTI) and Data Loss Prevention (DLP) aligned detection strategies

• Produce timely intelligence reports for tactical, operational, and strategic audiences

• Validate threat actors, vectors, and active threat activity with industry vendors and peers

• Be responsible for the management of CTI tooling to actively guard against cyber threats to Regeneron's digital assets and branding

• Support the creation and refinement of Incident Response (IR) playbooks

• Engage partners on DLP and Insider Risk activities through exploratory analysis and discovery

• Implement strategies for identifying adversaries, focusing on threat recognition, examination, detection, and response

• Collaborate and coordinate with customers ensuring all parties are engaged and if advised CTI initiatives

• Align with business customers and engage on relevant security incidents and related Understand and develop stakeholder requirements across strategic, operational, and tactical domains with relevant prioritization and synchronization based on the requirement

• Build, handle, and maintain Priority Intelligence Requirements adhering to a stakeholder driven Cyber Threat Intelligence (CTI) and Data Loss Prevention (DLP) program

• Analyze indicators of compromise and integrate into Cyber Security Operations, DLP and other relevant tools/stakeholders

• Maintain a direct relationship with Data Loss Prevention teams by leveraging timely Threat Intelligence to guide action

• Administration and configuration of CTI and DLP tooling

• Supervise Regeneron brand assets and external infrastructure across the deep & dark web

• Identify, collect, and analyze technical and non-technical indicators within Regeneron per stakeholder requirements

• Build and maintain documentation related to CTI, DLP and relevant stakeholder items

• Accurately supervise against partner requirements and tooling to produce timely and relevant metrics

This job might be for you if you:

• 4+ years of experience in cyber security or information technology security role, with a preference in CTI, DLP or Insider Risk

• Experience in intelligence process management to include defining requirements, collection of data/information, data/information processing, analysis and production, dissemination, consumption, and feedback

• Proven analytical skills to resolve intelligence requirements can be captured and from what sources, what inferences or assumptions can be resolved and project threat scenarios that can be packaged into intelligence products

• An understanding of data security concepts, with a focus on Data Loss Prevention and Data Management/Classification

• Deep understanding of Threat Actor Tactics, Techniques & Procedures (TTPs)

• Knowledge of NIST Cybersecurity Framework (NIST CSF) and Center for Internet Security (CIS) guidelines

• Direct 3rd party service providers and vendors in engagements

• Recommend appropriate remediation actions to mitigate risks due to security flaws in operating systems, software, and/or configuration

• Engage with partners, to include IT professionals, management, and auditors, to facilitate vulnerability discovery and remediation

• Intellectual curiosity around the latest developments in cyber security, CTI and DLP

• Ability to assist Threat Detection teams with focused knowledge demonstrating CTI and/or DLP expertise

• Experience with intelligence management technologies (e.g., Qualys, Anomali, Splunk, Carbon Black, Digital Shadows, Nessus)

• Familiarity with Data Loss Prevention technologies (e.g., Microsoft, McAfee, Tessian, Zscaler, Proof point)

• Strong customer service and communications skills, both oral and written with the ability to establish relationships at all levels is meaningful for this role

• Ability to weigh security controls against technical and administrative standards

• An understanding of mapping data loss prevention controls within sophisticated environments

• Organized, diligent with ability to understand big picture and make risk appropriate tradeoffs

• API integration knowledge is important for this role

Connect with us, so we can learn more about you, and you can learn more about our medicines. And join us in crafting the future of healthcare.

Regeneron is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion or belief (or lack thereof), sex, nationality, national or ethnic origin, civil status, age, citizenship status, membership of the Traveler community, sexual orientation, disability, genetic information, familial status, marital or registered civil partnership status, pregnancy or parental status, gender identity, gender reassignment, military or veteran status, or any other protected characteristic in accordance with applicable laws and regulations. We will ensure that individuals with disabilities are provided reasonable accommodations to participate in the job application process. Please contact us to discuss any accommodations you think you may need.

Does this sound like you? Apply now to take your first step towards living the Regeneron Way! We have an inclusive and diverse culture that provides comprehensive benefits, which often include (depending on location) health and wellness programs, fitness centers, equity awards, annual bonuses, and paid time off for eligible employees at all levels!

Regeneron is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion or belief (or lack thereof), sex, nationality, national or ethnic origin, civil status, age, citizenship status, membership of the Traveler community, sexual orientation, disability, genetic information, familial status, marital or registered civil partnership status, pregnancy or parental status, gender identity, gender reassignment, military or veteran status, or any other protected characteristic in accordance with applicable laws and regulations. The Company will also provide reasonable accommodation to the known disabilities or chronic illnesses of an otherwise qualified applicant for employment, unless the accommodation would impose undue hardship on the operation of the Company's business.

For roles in which the hired candidate will be working in the U.S., the salary ranges provided are shown in accordance with U.S. law and apply to U.S.-based positions.  For roles which will be based in Japan and/or Canada, the salary ranges are shown in accordance with the applicable local law and currency. If you are outside the U.S, Japan or Canada, please speak with your recruiter about salaries and benefits in your location.

Please note that certain background checks will form part of the recruitment process.  Background checks will be conducted in accordance with the law of the country where the position is based, including the type of background checks conducted. The purpose of carrying out such checks is for Regeneron to verify certain information regarding a candidate prior to the commencement of employment such as identity, right to work, educational qualifications etc.