CTI Analyst

CTI Analyst

 

Location: Wrocław
Hybrid model: 2 days office/3 days remote

 

Let us introduce you the job offer by EY GDS Poland – a member of the global integrated service delivery center network by EY.

 

EY Technology:

Technology has always been at the heart of what we do and deliver at EY. We need technology to keep an organization the size of ours working efficiently. We have 250,000 people in more than 140 countries, all of whom rely on secure technology to be able to do their job every single day.  Everything from the laptops we use, to the ability to work remotely on our mobile devices and connecting our people and our clients, to enabling hundreds of internal tools and external solutions delivered to our clients.  Technology solutions are integrated in the client services we deliver and is key to us being more innovative as an organization.

At the root of the security offered to EY Technology is Cyber Threat intelligence, the team responsible for identifying, researching, and reporting on the evolving emerging threats facing EY.  Cyber Threat Intelligence prides itself on providing the firm with early warning and predictive analysis to identify and mitigate threats which may otherwise hinder operations.

EY Technology supports our technology needs through three business units:

Client Technology (CT) - focuses on developing new technology services for our clients. It enables EY to identify new technology-based opportunities faster, and pursue those opportunities more rapidly.

Enterprise Workplace Technology (EWT) – EWT supports our Core Business Services functions and will deliver fit-for-purpose technology infrastructure at the cheapest possible cost for quality services. EWT will also support our internal technology needs by focusing on a better user experience.

Information Security (Info Sec) - Info Sec prevents, detects, responds and mitigates cyber-risk, protecting EY and client data, and our information management systems.  

 

The opportunity

 

As a senior member in the Cyber Threat Intelligence team in Cyber and Investigative Services (CIS), the candidate will identify, research, and report on emerging threats to EY to strategically shape and guide the approach EY takes to protect its people and assets.  The position offers a unique opportunity to inform and influence leadership with creative, thought provoking approaches to detect and defeat complex threats facing EY. This position requires advanced technical skills to allow for the candidate to have a deep understanding of potential threats that may impact EY and mentor junior analyst to achieve the greatest potential for success for the candidate and the team. 

 

Your key responsibilities

 

This role will be responsible for providing technical expertise and understanding of threats EY faces. The analyst will conduct independent collection, analysis, and production of threat intelligence in support of EY CIS, EY Technology, and additional lines of business.  The Senior CTI Analyst must maintain awareness of the global threat landscape to influence a strong EY security posture.  The Senior CTI Analyst will review open source, third-party, and proprietary threat information and enrich it with contextual analysis that will result in actionable intelligence.  Significant time will be spent conducting threat analysis around active and emerging threats and generating actionable intelligence for CIS staff, executives, management, and other stakeholders.

 

Skills and attributes for success

 

• Expert knowledge of malware analysis and reverse engineering techniques
• Proven experience in collaborating with cross-functional teams and providing guidance on threat intelligence-related matters
• Familiarity with analytical tradecraft
• Natural curiosity
• An interest in supporting common objectives
• Attention to detail

 

To qualify for the role you must have

 

• 10+ years of experience conducting incident response and triage OR
• 7+ years of experience directly related to threat analysis, digital forensics, malware analysis, or threat hunting
• Deep understanding of cyber threats, attack vectors, and common exploitation techniques
• Technical expertise to attribute threats and related tactics, techniques, and procedures (TTPs) to facilitate defensive actions within an organization. 
• Experience applying the MITRE ATT&CK and Diamond Treat Model to threat research and analysis
• Strong written and verbal communication skills; ability to convey technical concepts in simple, succinct explanations
• Ability to mentor and provide guidance to Junior analysts
• Thorough understanding of cybersecurity principles

 

Ideally, you’ll also have

 

• Experience in Cyber Threat Intelligence
• Experience writing intelligence reports for various levels of stakeholders

 

What we look for

 

We are looking for an experienced, self-driven analyst that can operate independently and improve the team as a whole.  The ideal candidate will have proven experience with improving others while continuously learning and recommending innovative ways to strengthen the team’s technical ability and keep stakeholders informed of threats that may impact EY.

 

What we offer

 

EY Global Delivery Services (GDS) is a dynamic and truly global delivery network. We work across ten locations –  Argentina, China, Hungary, India, the Philippines, Poland, Sri Lanka, Mexico, Spain and the United Kingdom – and with teams from all EY service lines, geographies and sectors, playing a vital role in the delivery of the EY growth strategy. From accountants to coders to advisory consultants, we offer a wide variety of fulfilling career opportunities that span all business disciplines. In GDS, you will collaborate with EY teams on exciting projects and work with well-known brands from across the globe. We’ll introduce you to an ever-expanding ecosystem of people, learning, skills and insights that will stay with you throughout your career.

 

• Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.

 

About EY

EY | Building a better working world

 

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.

Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

 

If you can demonstrate that you meet the criteria above, please contact us as soon as possible.

The exceptional EY experience. It’s yours to build.

 

In compliance with the requirements of the Whistleblower Protection Act, our company has established the Procedure for reporting breaches of law and undertaking appropriate follow-up actions. Any misconduct should be reported through the EY Ethics Hotline.