Cyber Threat Analyst

**ABOUT ASTRAZENECA**

AstraZeneca is a global, innovation-driven pharmaceutical business that focuses on the discovery, development, and commercialization of prescription medicines for some of the world’s most serious disease.

But we’re more than one of the world’s leading pharmaceutical companies.

At AstraZeneca, we 're dedicated to being a Great Place to Work. Where you are empowered to push the boundaries of science and unleash your ambitious spirit. There’s no better place to make a difference to securing medicine, patients, and society. An inclusive culture that champions diversity and collaboration, AstraZeneca is always committed to lifelong learning, growth and development.

**ABOUT THE ENTERPRISE TECHNOLOGY SERVICES TEAM**

The Enterprise Technology Services (ETS) team is accountable for all Security, IT Operations, Infrastructure, and End User Services and Technologies. This group will ensure that our IT Services are seamless and secure, and that technology is delivered in an efficient, effective, and agile way, with a strong focus on experience. It’s a dynamic and challenging environment to work in - but that’s why we like it. There are countless opportunities to learn and grow, whether that’s exploring new technologies in hackathons, or transforming the roles and work of colleagues, forever. This is your chance to be part of a team that has the backing to innovate, disrupt an industry and change lives.

**ABOUT THE ROLE**

Cybersecurity Defense Operations (CSDO), which sits within ETS, is fundamental to enterprise information security and responsible for detecting, analyzing, and responding to real or potential security incidents. The Cyber Threat Intelligence (CTI) Analyst is the expert in the collection and analysis of threat data to proactively identify and prioritize threats to AstraZeneca. CTI, as a function, allows operational decision makers to a) more effectively respond to threats through informed decision making and b) mitigate or close gaps in defenses to prevent an incident from occurring to begin with.

**WHAT YOU’LL DO**
- Leverage the Intelligence Lifecycle to analyze threat data from multiple sources to produce actionable threat intelligence including quick turn alerts, in-depth trends assessments, or briefs
- Maintain awareness of the threat landscape to advise stakeholders (SOC, Vulnerability Management, Business Owners, Governance, Risk, Privacy etc.) on recommended actions
- Analyze external technical and non-technical data from various sources to build threat actor profiles and track threat actor activities
- Research new and emerging vulnerabilities and threat actor tactics, techniques, and procedures (TTP) to create an attack surface based on the AstraZeneca threat environment

**ESSENTIAL FOR THE ROLE**
- At least 3 years’ experience in intelligence-driven security operations
- Degree in Information Security, Cyber Security, Intelligence Studies, or relevant experience
- +1Yoe in SOC
- Excellent written and verbal communication skills in English
- Experience conducting threat research to deliver intelligence alerts or trends assessments
- Demonstrative understanding of emerging threat actor TTP
- Experience translating technical cyber events into a narrative for non-technical audiences
- Familiarity with Security Technologies (Endpoint Detection, SIEMS, IDS/IPS, etc.)
- Experience integrating open and closed sources into all-source analysis
- Knowledge of analytic tradecraft such as managing bias and confidence statements
- Proven ability to manage ambiguity and willingness to learn new skills

**DESIRABLE FOR THE ROLE**
- A background in Geopolitics or International Relations
- Familiarity with intelligence tools such as MISP, Recorded Future, CrowdStrike, etc.
- Experience with Deep/Dark Web Monitoring
- Experience with Vendor and Supplier Engagement
- Strong understanding of MITRE ATT&CK and Vulnerability Management principles
- Experience developing and managing relationships at the operational security level

**WHY JOIN US?**

At AstraZeneca when we see an opportunity for change, we seize it and make it happen, because any opportunity no matter how small, can be the start of something big. Protecting the people, processes, and technologies required to develop and deliver life-changing medicines is about being entrepreneurial - finding those moments and recognizing their potential. Join us on our journey of building a new kind of organization to reset expectations of what cybersecurity can look like. This means we’re opening new ways to work, pioneering cutting edge methods and bringing unexpected teams together.

Interested? Come and join our journey.

**SO, WHAT’S NEXT?**

Are you already imagining yourself joining our team? Good, because we can’t wait to hear from you.

**WHERE CAN I FIND OUT MORE?**

Follow AstraZeneca on LinkedIn

Follow AstraZeneca on Facebook

Follow AstraZeneca on Instagram