American Express Careers

Information Security Analyst - Cyber Threat Intelligence Analyst

Phoenix, Arizona; Salt Lake City, Utah; New York, New York
Digital Commerce Technology

Apply Get Referred

Job Description


 

The Cyber Threat Intelligence Analyst is responsible for providing intelligence analysis of threats, vulnerabilities, campaigns, and incidents as part of developing timely and actionable alerts, briefs, and analytical assessments. Focusing on threats originating in information technology environments, the Cyber Threat Intelligence Analyst will produce actionable information in a clear and concise manner. This role’s responsibilities include reporting on technical topics and publicly reported incidents as part of increasing the situational awareness of leadership and the cyber awareness of wider staff within American Express Financial Technologies. 

 

Multiple American Express operational information security teams make up the Fusion Center which protects American Express’ brand, global business operations, technology infrastructure, and client trust against cyber threats worldwide. This position will support the Cyber Threat Intelligence team in identifying threats for subject matter experts to focus on and by managing information sharing.  As such, this position offers an excellent opportunity for anyone looking to start a career in information security, threat intelligence, or threat analysis.

 

American Express is a supportive employer. The Cyber Threat Intelligence Analyst will be mentored by a highly experienced senior analyst and will receive adequate training and instruction to excel as an intelligence analyst in this highly interesting and challenging field.

Qualifications

REQUIRED KNOWLEDGE/SKILLS/EXPERIENCE

  • Must have good verbal and written communication skills, interpersonal collaborative skills, and the ability to communicate security and risk-related concepts to technical and non-technical audiences.
  • Ability to review information to determine its significance, validate its accuracy and assess its reliability.
  • Good knowledge of common security controls, detection capabilities, and other practices and solutions for securing digital environments.
    • This knowledge should, preferably, include an understanding of packet flows, TCP and UDP traffic, firewall and proxy technologies, anti-virus, intrusion detection and prevention systems, as well as other host-based monitoring, email monitoring, and anti-spam technologies.
  • Understanding of what information or assets are of value to threat actors and how organizations are breached.
  • Working knowledge of one or more of the following areas: 
    • Nation State Threat Actors
    • Cyber Crime
    • Extremist Groups and Cyber Terrorists
    • Hacktivism
    • Distributed Denial of Service Attacks
    • Fraud
    • Malware
    • Emerging Threats
    • Social Engineering

DESIRABLE KNOWLEDGE/SKILLS/EXPERIENCE

  • Experience in analyzing malware, hacking tools, and threat actor tactics, techniques and procedures to characterize threat actors’ technical methods for accomplishing their missions.
  • Experience in analyzing malware, hacking tools, and threat actor tactics, techniques and procedures to characterize threat actors’ technical methods for accomplishing their missions.
  • Understanding of modern technical security controls (i.e. firewalls, SIEMs, IPS, HIPS, web proxies).
  • Can apply a variety of structured analytic techniques to generate and test a hypothesis, assess cause and effect, challenge analysis, and support decision making.
  • Basic understanding of forensic analysis on and data captures from networks (packet capture), hosts (volatile/live memory), electronic media, log data, and network devices in support of intrusion analysis or enterprise level information security operations.
  • Previous experience as a Military Threat Operations team member, Security Researcher, Cyber Threat Researcher, or Cyber Crime Investigator.
  • Bachelor's degree or equivalent combination of education and experience preferred.
  • 1+ years’ working in one or more of threat intelligence, security operations, or forensics.

Employment eligibility to work with American Express in the U.S. is required as the company will not pursue visa sponsorship for these positions.

 

Why American Express?

There’s a difference between having a job and making a difference.

American Express has been making a difference in people’s lives for over 160 years,

backing them in moments big and small, granting access, tools, and resources to take

on their biggest challenges and reap the greatest rewards.

We’ve also made a difference in the lives of our people, providing a culture of learning

and collaboration, and helping them with what they need to succeed and thrive. We

have their backs as they grow their skills, conquer new challenges, or even take time to

spend with their family or community. And when they’re ready to take on a new career

path, we’re right there with them, giving them the guidance and momentum into the

best future they envision.

Because we believe that the best way to back our customers is to back our people.

The powerful backing of American Express.

Don’t make a difference without it.

Don’t live life without it.

 


ReqID: 18016140
Schedule (Full-Time/Part-Time): Full-time
Date Posted: Oct 12, 2018, 2:28:15 PM
Apply Get Referred