Cyber Threat Intelligence Consultant

Position description

Are you passionate about conducting cyber threat intelligence in the private sector, including collecting data from open, deep and dark web sources, researching underground marketplaces, analyzing threat actor forums, and monitoring TOR sites? Do you enjoy supporting diverse client matters by providing finished intelligence products? If so, apply for the Cyber Threat Intelligence Consultant or Senior Consultant role at Aon’s Cyber Solutions.

Location is flexible for this U.S. based Intelligence team, where you will provide consulting services to clients across industries globally. The option to work in one of our cyber labs, in a hybrid role or virtually is available.

Aon is in the business of better decisions

At Aon, we shape decisions for the better to protect and enrich the lives of people around the world. As an organization, we are united through trust as one inclusive, diverse team, and passionate about helping our colleagues and clients succeed.

How this opportunity is different

Aon’s Cyber Solutions is the only team in the market that has the scope and breadth of services to offer clients in any area of the cyber life cycle. If you want to work on some of the highest profile and sophisticated cases out there, we are that first responder. The team works closely together to ensure learning, growth and career development. And we invest in you, in the form of mentorship and hefty training budgets to attend security training and conferences.

What the day will look like

Every single day, you will contribute to a wide range of consulting matters with a focus on cyber threat intelligence, open source analysis, cyber-fraud investigations, and mitigating risks to clients. You will be given the opportunity to demonstrate your solid understanding of ransomware incidents, business email compromise cases, phishing campaigns, data breaches, and other types of cyber security and fraud related investigations. You will interact with clients and colleagues across intelligence, digital forensics, incident response, and security advisory to deliver verbal briefings, written reports, and other types of finished intelligence products.

Successful colleagues will have the following experience:

• Demonstrate expertise in the collection of information across deep and dark web sources (i.e. .onion sites, underground marketplaces, threat actor chatrooms, and other resources) to identify targeting activities, indicators of compromise (IOCs), and tactics, techniques and procedures (TTPs) in support of cyber-fraud investigations.
• Possess subject matter expertise in data collection and monitoring of open sources, public records, and social media to identify vulnerabilities and gather evidence to support cyber-fraud matters.
• Able to collect data directly from sources, as well as leverage a variety of tools, data-sources, platforms, and applications commonly used in intelligence collection and analysis.
• Produce finished intelligence products and deliver verbal briefings using analytic tradecraft and methodologies.
• Demonstrate agility and flexibility in meeting client requirements and tight deadlines.

Skills and experience that will lead to success

• 2+years of Intelligence and investigations experience in the private sector or in consulting with detailed knowledge of analytic tradecraft and methodologies, operational security protocols, cyber threat intelligence, and cyber-fraud investigations.
• Experience supporting client matters while meeting tight deadlines and customer requirements.
• Proven capacity to work collaboratively with technical and non-technical team members on a wide range of threat intelligence projects, including the ability to identify, collect, and analyze multiple data sources to produce finished analytic products for a diverse group of clients.
• Strong verbal and written communications skills. Ability to analyze, summarize, and communicate large volumes of information in a clear and succinct manner with careful attention to detail.

Preferred Experience and Education:

• BA/BSc or higher degree in computer science, cyber security, data analytics, political science or international relations preferred. Exceptions made for candidates exhibiting comparable professional experience and ability.
• Candidates with GIAC, SANS or CREST certifications focused on cyber threat intelligence are strongly urged to apply.
• Candidates with professional proficiency in coding languages (i.e. Python, Java, etc.) or foreign languages (i.e. Russian, Ukrainian, Spanish, French, Italian, German or East Asian languages) are welcome to apply.

Application instructions

Please be sure to indicate you saw this position on tendersglobal.net