TDI – Threat Intelligence Analyst - AVP

Deutsche Bank

Discover Deutsche Bank, one of the world’s leading financial services providers.

As a Threat Intelligence AVP in the Threat Intelligence and Assessment function, you will play a critical role in safeguarding the organization from cyber threats. In this role, you will be responsible for identifying, assessing, and mitigating threats, and you will provide mitigation recommendations in response to evolving threats. You will be required to analyze complex technical issues and develop bank-specific solutions while collaborating with diverse teams and stakeholders.

This role will also consist of delivering against projects and strategic initiatives to continuously enhance the bank’s capabilities in responding to threats.

Your key responsibilities:

1. Pro-actively identify threats and track threat actors, TTPs, and ongoing campaigns to produce timely actionable intelligence.
2. Monitor, track and manage developing threats, providing recommendations on mitigations.
3. Produce strategic and tactical threat assessments to support threat mitigation activities.
4. Analyze multiple data/intelligence sources and sets in order to identify patterns of activity that could be attributed to threats and develop informed recommendations.
5. Conduct analysis on files/binaries, packet captures, and supporting materials to extract relevant artifacts, observables, and IOC.
6. Proactively drive improvements of internal processes, procedures, and workflows.
7. Participate in the testing and integration of new security monitoring tools.
8. Meet strict deadlines to deliver high-quality reports on threats, findings, and broader technical analysis.
9. Take ownership for personal career development and management, seeking opportunities to develop personal capability and improve performance contribution.
10. Develop and maintain relationships with internal stakeholders and external intelligence sharing communities.

Your skills and experience:

1. Min 5 years of experience in cybersecurity, with a focus on threat intelligence, analysis, and mitigation.
2. Proven background in Threat intelligence and experience in Open-Source Intelligence (OSINT) techniques.
3. Operational understanding of computing/networking (e.g., OSI Model & TCP/IP) with working knowledge on the functions of security technologies such as IPS/IDS, Firewalls, EDR, etc.
4. Bachelor’s degree in computer science, networking, engineering, or other field associated with cyber, intelligence or analysis.
5. Working knowledge of virtual environments and cloud (e.g., vSphere, Hypervisor, AWS, Azure, GCP).
6. Working knowledge and keen interest in tracking prominent cyber threat actor groups, campaigns and TTPs in line with industry standards.
7. Experience of working with intelligence lifecycle, intelligence requirements, and Mitre ATT&CK Framework.
8. Certifications such as CISSP, CISM, GIAC, GCTI, GCIH, GCFE, GCFA, GREM, GNFA, Security+, CEH.
9. Capability of explaining the characteristics and impact of threats to both technical and potentially non-technical parties.
10. Self-motivated, strong team player, and interested in learning new things.

Role is required to be performed on-site at One Raffles Quay office. Relevant vaccination requirements may apply.

How we’ll support you:

1. Flexible working to assist you balance your personal priorities.
2. Coaching and support from experts in your team.
3. A culture of continuous learning to aid progression.
4. A range of flexible benefits that you can tailor to suit your needs.
5. Training and development to help you excel in your career.

About us and our teams:

Deutsche Bank is the leading German bank with strong European roots and a global network. We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative, and working collaboratively.

We welcome applications from all people and promote a positive, fair, and inclusive work environment.