Security Operations Center Threat Intelligence - Student

Worker Sub-Type:

 Job Description: 

SUMMARY:

BlackBerry is looking for a Security Operations Center Threat Intelligence co-op to join the Information Security Operations team. In this role, you will join a collaborative group of Cyber Security specialists to assess threats, build intelligence, enrich our security tools and build into a threat intelligence program. The successful candidate will have passion for staying up to date on Cyber Security events and should have some understanding of investigation requirements such as log analysis, technical analysis of network traffic and endpoint security tool investigations.  Attention to detail will be a key component for success in building high quality threat intelligence reports and will help to support BlackBerry’s Information Security Operations program.

Responsibilities:

• Gather threat intelligence data from internal sources and external sources (e.g., threat feeds, dark web, open-source intelligence) to build out threat reports.
• Correlate threat data with organizational assets to assess relevance and risk to the company. 
• Build threat intelligence lists into SOC tooling to enrich SIEM rules with actionable intelligence for the security team to monitor and respond to.
• Analyze malware, phishing campaigns, and attack patterns.
• Be familiar with and use frameworks like MITRE ATT&CK to map adversary behaviour.
• Continually develop and improve operational processes for the threat intelligence program.
• Create and maintain technical documentation and operational documents.
• Conduct malware analysis or identification of IOCs to evaluate potential security incidents.
• Identify and contribute to content for SIEM and automation tools integrations.
• Other duties as assigned as part of Cyber Security monitoring and investigations

Qualifications:

• Enrolled in a Cyber Security College Diploma or related University degree course
• Familiarity with standard cyber security toolkits (SIEM, networking and endpoint security tools, UEBA, XDR, NDR)
• Understanding of cloud infrastructure, such as AWS, GCP, Azure
• Strong aptitude for innovation; can recognize opportunities for improvement in day-to-day              
• Strong interpersonal, collaborative, oral and written communication skills
• Excellent analytical, problem solving and decision-making skills with a strong attention to detail

Desired Qualities:

• Be outgoing, enthusiastic, and comfortable working with small and large teams
• Excellent verbal and written communication skills
• Use outside-of-the-box thinking to generate creative solutions to problems
• Resourcefulness, creativity, and a high level of motivation are the key skill sets for success in this position

#LI-NR1

Scheduled Weekly Hours: