Keep a close watch on the constantly evolving cyber threat landscape and understand what's happening in the security world.
Use OSINT research to spot emerging threats that could impact specific industries like Finance, Healthcare, or Education.
Stay current with the latest cybersecurity trends, new vulnerabilities, and attack methods as they develop.
Continuously build your expertise by diving into research papers, technical reports, and relevant online resources.
Work alongside different teams to evaluate potential security risks and their implications.
Deep-dive into threat actor campaigns to understand their tactics, techniques, and procedures (TTPs).
Put together clear, detailed technical reports that give stakeholders practical insights they can act on.
Review and assess alerts generated by our intelligence tools to separate signal from noise.
Use OSINT methods to verify alerts and prioritize them based on how serious the threat could be.
Quickly escalate critical alerts to the right teams for immediate investigation.
Work with SIEM tools to monitor security events and analyze patterns.
Run Indicators of Compromise (IOCs) through SIEM platforms to detect and investigate potential threats.
Integrate data and automate processes using APIs.
Use your hands-on experience with Python, Docker containers, and cron jobs to streamline workflows.
Leverage your solid understanding of cyber threats and OSINT techniques in daily work.
Apply frameworks like MITRE ATT&CK, Diamond Model, and Cyber Kill Chain to structure your analysis.
Analyze internal risk and security controls to identify existing weaknesses.
Consolidate cyber threat intelligence feeds and sources.
Provide threat intelligence support to cybersecurity teams during security incidents.
Maintain, develop, and continuously evaluate cyber threat intelligence sources to increase effectiveness and timeliness of creating actionable threat assessments.
Interact with (verbal and written) with executives and stakeholders in non-technical terms while accurately encompassing risk, impact, likelihood, containment remediation activities, and threat actor techniques, tactics, and procedures.
Related Skills
Company Overview
Working closely with our U.S. colleagues and other partners, our goal is to reduce risk, improve the efficiency of our technology and processes and develop innovative ideas to increase throughput and productivity.
We are an Equal Opportunity Employer. TIAA does not discriminate against any candidate or employee on the basis of age, race, color, national origin, sex, religion, veteran
Benefits
Health insurance
Additional Information
Associate - Digital Forensics - IN
Professionals in this group specialize in investigating computer and information security incidents to determine extent of compromise to information and automated information systems.
Key Responsibilities and Duties They support forensic and intrusion investigations including computer analysis, data recovery, and network assessments.
They configure and validate products/systems to detect information security weakness.
Educational Requirements University (Degree) Preferred
Work Experience 2+ Years Required; 3+ Years Preferred
Physical Requirements Physical Requirements: Sedentary Work
Career Level
6IC
TIAA has an opportunity for a Sr. Cyber Threat Intelligence Associate. The associate who will be hired into this role will manage the cyber threats specific to financial services such as banking, capital markets, and insurance and would need to have considerable experience in at least one of these industries.
We are seeking a candidate who will utilize their knowledge, skills, and abilities to identify, assess, and mitigate cyber threats that impact TIAA. This role will conduct research, analyze, and report on cyber defense, technology, cyber threat actors and groups, and related political and economic conditions. In addition, this role will collaborate with both industry specialists and peer analysts, develop, and maintain both short- and long-term research projects, create completed intelligence for tactical and executive audiences, and present the findings through briefings and external engagements.
Tiaa · Pune, India