American Express Careers

Information Security Analyst - Cyber Threat Intelligence

Bangalore, India
Digital Commerce Technology

Apply Get Referred

Job Description

Information Security Analyst – Third Party Risk – Cyber Threat Intelligence Analyst

Reporting to the Director of Third Party Security Monitoring, the Cyber Threat Intelligence Analyst is responsible for providing intelligence analysis in order to identify threats and to quantify vulnerabilities leveraged by those threats, developing timely and actionable alerts, briefs, and analytical assessments. Focusing on threats originating from third parties, the Cyber Threat Intelligence Analyst will produce actionable information in a clear and concise manner. The individual will report top threats by providing awareness, indications, warnings, and operational readiness briefings; the Cyber Threat Intelligence Analyst will then ensure validated threat intelligence is actioned by third parties.
In this position the Cyber Threat Intelligence Analyst is expected to:
  • Analyze, process, and compare data to produce intelligence products.
  • Identify credible, new intelligence, and subject matter resources relative to current and emerging threats.
  • Author assessments on cyber threats, attacks, and incidents of interest to American Express.
  • Provide subject matter expertise on cyber threats to support current analytic operations and initiatives.
  • Work with third parties developing shared intelligence.
  • Ensure risk reduction is carried out by third party service providers and business partners.
  • Perform open source threat collection and analysis activities identifying indications of cyber threats, malicious code, malicious websites, and vulnerabilities through automated and manual analysis using existing and purpose-built tools. 
  • Identify credible, new intelligence, and subject matter resources relative to current and emerging threats.
  • Provide subject matter expertise on cyber threats to support current analytic operations and initiatives.
  • Create written and verbal intelligence products for internal American Express customers to assist in proactively addressing threats.  
  • Develop and present key findings to senior leadership.
  • Demonstrate professionalism and excellent communication skills when representing American Express in third-party relationships.


  • Knowledge of common security controls, detection capabilities, and other practices and solutions for securing digital environments. This knowledge should include an understanding of packet flows, TCP and UDP traffic, firewall and proxy technologies, cloud security best practices, anti-virus, intrusion detection and prevention systems, as well as other host-based monitoring, email monitoring, and anti-spam technologies.
  • Experience in analyzing malware, hacking tools, and threat actor tactics, techniques and procedures to characterize threat actors’ technical methods for accomplishing their missions.
  • Understanding of what information or assets are of value to threat actors and how organizations are breached.
  • Understanding of modern technical security controls (i.e. firewalls, SIEMs, IPS, HIPS, web proxies).
  • Must have strong verbal and written communication skills, interpersonal collaborative skills, and the ability to communicate security and risk-related concepts to technical and non-technical audiences.
  • Can apply a variety of structured analytic techniques to generate and test a hypothesis, assess cause and effect, challenge analysis, and support decision making.
  • Basic understanding of forensic analysis on and data captures from networks (packet capture), hosts (volatile/live memory), electronic media, log data, and network devices in support of intrusion analysis or enterprise level information security operations.
  • Should have working knowledge in one or more of the following areas:
    • Nation State Threat Actors
    • Cyber Crime
    • Extremist Groups and Cyber Terrorists
    • Hacktivism
    • Distributed Denial of Service Attacks
    • Fraud
    • Malware
    • Emerging Threats
    • Social Engineering
    • Cloud Technologies and Security Relevant Issues
  • Previous experience as a Military Threat Operations team member, Security Researcher, Cyber Threat Researcher, or Cyber Crime Investigator preferred.
  • Experience in one or more of threat intelligence, security operations, forensics.
  • Possesses the ability to review information to determine its significance, validate its accuracy and assess its reliability.
Bachelor's degree or equivalent combination of education and experience preferred.

ReqID: 19008061
Schedule (Full-Time/Part-Time): Full-time
Date Posted: May 29, 2019, 7:52:10 AM
Apply Get Referred