Cyber Threat Intelligence Analyst

At JTI we celebrate differences, and everyone truly belongs. 46,000 people from all over the world are continuously building their unique success story with us. 83% of employees feel happy working at JTI.

To make a difference with us, all you need to do is bring your human best.

What will your story be? Apply now!  

Learn more: jti.com

Reporting to: Cyber Threat Intelligence Manager

Duty Post: GBS Manila - Taguig

Application Duration: Apply until May 7, 2025

Cyber Threat Intelligence Analyst

This position exists to support and contribute to JTI's Cyber Threat Intelligence (CTI) team, ensuring proactive and effective protection against current and future cyber threats. The CTI Analyst will be responsible for collecting, analyzing, and disseminating cyber threat intelligence to relevant stakeholders while following established procedures and methodologies. The role involves working closely with the Security Operations Center (SOC) and other cybersecurity functions to enhance JTI's security posture by monitoring, assessing, and responding to Cyber Threats.

As a Cyber Threat Intelligence Analyst, you will be responsible for:

Threat Intelligence Monitoring & Analysis:

• Assess and prioritize CTI alerts generated by various Threat Intelligence tools, correlating data to determine potential risks to JTI. Escalate high-severity cases to higher-tier analysts or any other SOC team.
• Conduct in-depth research on Threat Actors, Emerging Threats, and evolving attack techniques, tactics, and procedures (TTPs). Provide timely intelligence reports to support decision-making.
• Monitor cybersecurity news, reports, and advisories to identify vulnerabilities or Emerging Threats that may impact JTI or its industry sector. Communicate findings promptly to relevant teams.
• Perform deep and dark web intelligence gathering to track and identify potential threats, leaked data, or cybercriminal activities that could pose a risk to JTI.
• Analyze Threat Campaigns, Threat Actors, Indicators of Compromise (IoCs) and Tactics, Techniques, and Procedures (TTPs) to create actionable Intelligence for defensive strategies and detection improvements.

Collaboration & Incident Response Support

• Work closely with the SOC teams which involves Incident Response, Vulnerability Management and Threat Hunting to provide Threat Intelligence insights on a timely manner that enhance detection and response capabilities.
• Support real-time analysis of security incidents by providing context on adversary motivations, attack vectors, and potential next steps.
• Assist in the development and refinement of Threat Intelligence processes, contributing to a more effective security framework.
• Participate in Threat Intelligence sharing initiatives, both internally and with industry peers, to enhance the collective defense posture.

Continuous Improvement & Documentation

• Maintain comprehensive Threat Intelligence documentation, reports, and dashboards to track trends, adversaries, and risks.
• Regularly update internal Threat Intelligence repositories, ensuring alignment with MITRE ATT&CK, Diamond Model, and other relevant frameworks.
• Contribute to the enhancement of automated Threat Intelligence processing by optimizing tool configurations, integrations, and enrichment workflows.

Requirements:

• Understanding of Cyber Threat Intelligence principles, including structured analytical techniques.
• Familiarity with cyber kill chain, MITRE ATT&CK, TTPs, IoCs, and intelligence frameworks.
• Experience with Threat Intelligence platforms (TIPs), SIEM, SOAR, and EDR solutions.
• Basic knowledge of malware analysis, network security, and digital forensics is a plus.
• Experience using OSINT, dark web monitoring tools, and Threat Intelligence feeds.
• Experience working within Information Security supporting/performing incident response, Red/Purple Teaming, threat hunting, threat intelligence, forensics, or similarly related experience.
• University degree in Computer Science, Computer Engineering, Cybersecurity, Electrical and Computer Engineering or relevant/equivalent experience working in Information Security
• Strong critical thinking and analytical skills to assess, correlate, and interpret intelligence data.
• Effective written and verbal communication skills to translate technical findings into actionable reports for different audiences.
• A proactive, collaborative approach with a willingness to learn and contribute to team efforts.
• Ability to work in high-pressure environments, prioritizing tasks effectively.
• Any cybersecurity certification is desirable, including but not limited to: Certified Threat Intelligence Analyst (CTIA), Certified Ethical Hacker (CEH), GIAC Cyber Threat Intelligence (GCTI), GIAC Certified Incident Handler (GCIH), CompTIA Security+ or CySA+

What To Expect:  

Expect wellbeing initiatives, flexible work arrangements, growth opportunities, and excellent benefits, including a unique family leave policy. For more details on local policies, speak with the Talent Advisor. 

Are you ready to join us? Build your success story at JTI. Apply now!

Next Steps:

After applying, if selected, please anticipate the following within 1-3 weeks of the job posting closure: Phone screening with Talent Advisor > Assessment tests > Interviews > Offer. Each step is eliminatory and may vary by role type.

At JTI, we strive to create a diverse and inclusive work environment. As an equal-opportunity employer, we welcome applicants from all backgrounds. If you need any specific support, alternative formats, or have other access requirements, please let us know.