Senior Cyber Threat Intelligence Analyst

The Reserve Bank of Australia's Cyber Threat Intelligence Centre (RBA - CTIC) is hiring for a Senior Cyber Threat Intelligence Analyst to join a skilled team on a permanent basis. In this role you will contribute to the delivery of actionable, contextualised, relevant and timely threat intelligence to internal and external stakeholders to protect the RBA and reduce cyber risk. 

The RBA's unique position as Australia's central bank means you will gain exposure to an exciting and fast-paced environment with opportunities to apply your security expertise to new and diverse problems affecting the entire country. 

About the role

You will join a small, tight-knit team of cybersecurity and threat intelligence experts, part of a larger multi-disciplinary security services team, sitting across the full spectrum of cybersecurity roles. There is a strong culture for collaboration, innovation and celebrating personal successes. The team is constantly looking to improve and welcomes fresh perspectives and ideas. 

• You will apply your threat intelligence expertise to collect against, research, analyse and build a deep technical understanding of the nature of cyber threats relevant to the Australian Government, Central Bank, the Financial Sector and Critical Infrastructure. 
• You will produce and disseminate contextualised, relevant and timely strategic, operational and tactical (technical) cyber threat intelligence products and services to internal and external stakeholders, with the aim of reducing cyber risk, and enabling the effective prioritisation of security work. This may include intelligence briefings/presentations, short and long form written reports, technical analysis, dashboards, security alerts, curated threat feeds, or other products designed to meet stakeholder requirements. 
• You will contribute to, collaborate on and provide intelligence support to the investigation of suspected and actual threat activity, supporting the RBA Security Operations Centre, including (not limited to) its Detect, Hunt and Response functions; as well as providing critical intelligence which supports cyber risk management activities, insider threat, posture (vulnerability) management and the RBA's offensive security capability (red team). 
• You will represent the RBA at various domestic and international security and cyber threat intelligence forums, conferences and events, remotely or in person, and contribute to establishing the RBA as a key thought leader and contributor within the space. 
• You may be required to mentor and/or manage less experienced staff to develop their skills and achieve organisational outcomes. 

About you

We are looking for a candidate that is passionate about cyber security and technology and enjoys sharing that passion with others. Previous experience in a Cyber Threat Intelligence or another Intelligence role is highly desirable. Alternatively, experience in other IT Security functions such as Cyber Risk, DFIR, SOC, Red Team or Leadership will be highly regarded. 

To be successful in this critical role you will possess: 

• 1+ year experience in a dedicated cyber threat intelligence or another intelligence role, with a background in applying intelligence to support tactical, operational and strategic decision making. 
• Alternatively, a minimum of 2 years' experience in an adjacent (cyber security or information technology) discipline. Experience in a Cyber Risk, SOC, Red Team or Security Leadership position will be highly regarded
• Detailed knowledge and technical understanding of the threat landscape, threat actors, attack patterns, adversarial behaviours and tradecraft, including: Tactics, Techniques and Procedures (TTPs), especially those relevant to Government, the Financial Sector or Critical Infrastructure. 
• Familiarity with common Cyber Threat Intelligence concepts, taxonomies and analytical frameworks, including (not limited to): the intelligence lifecycle, Lockheed Martin Cyber Kill Chain, MITRE ATT&CK and D3FEND frameworks, Diamond Model of Intrusion Analysis, Structured Analytical Techniques, intelligence probability descriptors and assessment qualifiers, intelligence-led red teaming frameworks, such as CORIE. 
• A broad understanding of general cybersecurity and information technology topics and principles relevant to a modern enterprise environment. 
• Strong presentation, written and verbal communication skills, backed up by an ability to rationalise and articulate the conclusions you make from your analytical work. 
• Demonstrable experience managing key stakeholder relationships, and an ability to build, maintain and enhance intelligence sharing relationships. 
• Experience using one or more of the following technologies: Security Information and Event Management (SIEM), Security Orchestration, Automation and Response (SOAR), Vulnerability Scanners, Attack Surface Management (ASM) tools or Threat Intelligence Platforms (TIPs)
• A keen eye for opportunities to improve or automate existing workflows and processes. 

It is desirable that the ideal candidate will have undertaken, or be in the process of undertaking at least one of the following certifications or associated courses (or similar)

• Bachelor's degree in a relevant field, or equivalent practical experience
• CREST Registered Threat Intelligence Analyst (CRTIA)
• GIAC Cyber Threat Intelligence (GCTI)
• MITRE ATT&CK Defender Certifications
• Certified Information Systems Security Professional (CISSP) or Certified Information Systems Manager (CISM)

Working Arrangements

• Travel may be required
• Potential requirement to provide on-call or shift support outside of normal business hours
• Potential requirement to work irregular hours, including weekends, and public holidays with minimal notice
• Potential requirement to be contactable outside of business hours for problem resolution

Be More

Working for an organisation that truly makes a difference to the people of Australia, we can offer development and career opportunities in a collaborative environment that supports your growth, wellbeing and promotes flexibility. Your individual growth and success drives the RBA forward as an organisation. Be more means you can do more, for yourself and for Australia.

Why RBA?

The RBA makes an important contribution to the Australian economy through the pursuit of national economic policy objectives and associated activities in financial markets and banking. We also issue Australia's banknotes and operate infrastructure critical to the payments system, all of which contribute to the welfare of the Australian people. Made up of specialists across a wide range of fields, our people, values, and culture play a critical role in achieving our objectives. Striving to be Open & Dynamic, we consider and incorporate different perspectives, work across teams and are transparent with each other, whilst delivering quality together effectively and focusing on outcomes by prioritising, testing, learning, and refining as we go. Our people conduct themselves with a high degree of integrity, while striving for excellence in the work they perform and the outcomes they achieve. We encourage intelligent inquiry and we treat one another with respect while promoting the public interest through our efforts. We know it is the growth and success of our people that drives the RBA forward. Come and make a bigger contribution while you build and develop your own skills too, because being more means you can do more, for yourself and for Australia.

The Reserve Bank of Australia is committed to equity, diversity and inclusion through key initiatives. We welcome and encourage applicants from diverse backgrounds to apply, including Aboriginal and Torres Strait Islander peoples, culturally and linguistically diverse background, those living with a disability and from the LGBTQ+ community. We are committed to making the recruitment process fair and equitable for all our candidates.

Application Close :

.