We are seeking a skilled and proactive Cyber Threat Intelligence Analyst to join the Global Cyber Intelligence Center at ABN AMRO. This role involves leveraging advanced cyber threat intelligence knowledge and a data-driven approach to enhance the team's analytical capabilities, elevate the skills of colleagues, and transform internal processes into data-driven methodologies.

The Role

As a Senior Cyber Threat Intelligence Analyst, your primary focus will be to defend against cyber threats by collecting and producing intelligence that drives active cyber defense initiatives. You will utilize data analysis, cyber intelligence, and information sharing networks to gain insights into trends within the threat landscape. Your expertise in data science methodologies will be instrumental in automating and streamlining the threat intelligence cycle, improving efficiency. You will also support the CISO organization by applying analytical and technical skills to identify malicious activities and various threat groups, as well as assist with incident response tasks.

Responsibilities

• Review all-source intelligence, including internal, open source, and closed source, to identify emerging threat trends, TTPs, and IOCs.
• Transform identified trends and TTPs into actionable intelligence products to enhance ABN AMRO’s defensive posture through prevention, detection, and Red Team activities.
• Conduct intelligence investigations into malicious cyber activity to provide attribution, identify adversary TTPs, and offer additional context to network threats.
• Produce high-quality written reports, presentations, and briefings for diverse audiences, from technical teams to executive management.
• Support time-sensitive cyber incident response activities by providing intelligence, including TTPs and IOCs, to expedite the incident response cycle and protect the network.
• Establish and maintain productive relationships with critical internal teams, including the Security Operations Center, Supply Chain Security, Red Team, and Brand Protection partners.
• Enhance the efficiency and effectiveness of the threat intelligence function by applying data science methodologies and techniques.
• Contribute to the broader cyber threat intelligence community by fostering relationships with industry and government organizations.
• Stay informed on relevant cyber threat trends, defensive practices, tooling, and processes to apply industry standards to GCIC operations.

Working Environment

You will be part of the Global Cyber Intelligence Center (GCIC) team within the ABN AMRO CISO Cyber Defence Grid, comprising highly motivated analysts with a diverse range of cyber skills, including intelligence analysis, malware analysis, incident response, and Red Team operations. ABN AMRO operates in an English-language environment and supports hybrid working arrangements based on operational requirements.

Requirements

• Strong initiative and interpersonal skills with the ability to establish relationships with key stakeholders.
• Understanding of how threat intelligence contributes to cyber defense processes, with proven experience in designing and implementing these processes.
• Ability to operate under pressure during incident response activities and independently support investigations.
• Excellent research, analytical, and problem-solving skills, with experience mentoring junior staff.
• Familiarity with the cyber threat intelligence cycle, including collection, production, and writing.
• Experience implementing threat analysis models such as the Diamond Model, Cyber Kill Chain, and MITRE ATT&CK framework.
• Foundational knowledge of tactics, techniques, and procedures used by threat actors.
• Experience designing data-driven processes and utilizing LLMs to enhance the threat intelligence cycle.
• Understanding of incident response processes and how threat intelligence analysis supports these activities.
• Proven ability to conduct technical investigations into malicious activity, including attribution and TTP analysis.
• Ability to create tailored briefings for various audiences, including staff, management, and vendors.
• Capacity to track industry developments, threat trends, and relevant technologies.

What We Offer

• Competitive gross monthly salary based on a 36-hour work week, including holiday allowance and a flexible benefits budget.
• Comprehensive pension scheme for future security.
• Flexible working arrangements, including the option to work from home, supported by an ergonomic home office setup.
• Generous vacation policy with five weeks of vacation per year, plus two mandatory days off and the option to purchase up to four additional weeks.
• Five “Banking for better days” off days for personal development or volunteer work.
• Annual development budget of €1,000, accumulating up to €3,000.
• Annual public transport pass for free travel throughout the Netherlands for both business and personal use.

If you are interested in this opportunity, please submit your application as soon as possible. We look forward to meeting you.