Global Cyber Threat Intelligence Principal Specialist

The Role:

Provide support to Information Cyber Security from across the business by undertaking activities which include:

• Lead tactical cyber threat intelligence efforts by providing key insights into how a threat actor may attempt to attack our network by focusing on the latest tactics, techniques, and procedures used by threat actors. 
• Utilise threat intelligence tools and methodologies for investigating and analysing potential security incidents including ensuring a rapid response capability to cyber incidents to minimize risk exposure and downtime as part of your responsibilities.
• Proactively research and create and deliver both written and verbal intelligence products to internal stakeholders, providing timely actionable threat insights.
• Develop and create continuous improvement loops with stakeholders and consistently updating methods to meet the intelligence requirements of WTW related to emerging cyber threats. 
• Conduct open-source intelligence (OSINT) collection and analysis to identify imminent cyber threats, malicious codes, suspicious domains, and vulnerabilities.
• Offer tactical subject matter expertise on cyber threats to support operational and strategic initiatives.
• Engaging with our existing threat intelligence providers and vendors to continuously advance our collection, analytical capabilities and dissemination, including developing innovative methods.
• Line management responsibilities in a fast-paced team. 

The Requirements:

• Exceptional verbal and written communication skills, ability to form relationships and disseminate tailored intelligence to varied stakeholders in a clear concise format at speed.
• Comprehensive understanding tactical threat intelligence, and how it is produced and consumed in a large organisation. 
• Proven experience in developing, maintaining, and applying threat intelligence; skilled in information validation and reliability assessment.
• A proactive mindset with a strong interest in threat intelligence and wider cybersecurity practices. 
• In-depth understanding of the Cyber Kill Chain and MITRE ATT&CK frameworks.
• Solid knowledge of security controls, detection capabilities, firewall and proxy technologies, anti-virus, IDS/IPS, and other digital environment security solutions.
• Acute awareness of valuable organisational assets for threat actors and breach methodologies.
• Experience in analysing malware, threat actor tooling and threat actor tactics, techniques and procedures to characterise threat actors’ technical methods for accomplishing their missions.
• Familiarity with automation and integration technologies. 
• Experience with continuously improving threat intelligence platforms. 
• Security certifications such as GCTI, CPTIA or equivalent are preferred.  
• Fluent in English.

WTW is an equal opportunity employer