At a glance

We are looking for an experienced, self-driven Cyber Threat Intelligence Analyst who can operate independently and as part of a high-performing team in the Global Cyber Intelligence Center at ABN AMRO. The ideal candidate will hold advanced cyber threat intelligence and IT security knowledge, seek to improve the analytic capacity of the team, uplift the skills of others, and contribute to the improvement of internal processes.  

The focus of the Senior Cyber Threat Intelligence Analyst is to defend against cyber threat activity by collecting and producing intelligence to drive active cyber defence efforts. The analyst will use data analysis, cyber intelligence, and information sharing networks to gain an improved information position on trends in the threat landscape. The analyst will also directly support the CISO organisation by applying analytic and technical skills to identify malicious activity, varied threat groups, and in some cases support incident response tasks. 

A typical workday in the GCIC team is varied, dynamic and fast-paced. It may involve threat intelligence support to incident analysis, report or brief writing, operational analysis of external threat campaigns, process design to integrate threat intelligence into cyber defensive activities or improving internal intelligence processes to uplift the GCIC capability.

Your job

Your job consists of the following tasks and responsibilities:

• Review all-source intelligence including internal, open source and closed source intelligence to identify emerging threat trends, TTP’s and IOCs; 
• Transform these trends and TTP’s into timely, actionable intelligence products to contribute to ABN AMRO’s defensive posture through prevention, detection and Red Team activities; 
• Conduct intelligence investigations into malicious cyber activity to provide attribution, identify adversary TTP’s, and provide additional context to threats to the network; 
• Produce high-quality written reports, presentations and briefings, both in internal and external forums, to a wide variety of audiences, ranging from highly technical teams to executive management; 
• Support time-sensitive and critical cyber incident response activities by providing intelligence including TTP’s and IOCs to shorten the incident response cycle and protect the ABN AMRO network; 
• Establish and maintain productive internal working relationships with other critical teams including our Security Operations Center, Supply Chain Security, Red Team and Brand Protection partners; 
• Contribute to the wider cyber threat intelligence community by establishing critical sharing and interpersonal relationships with industry and government organisations; 
• Stay up-to-date on relevant cyber threat trends, defensive cyber practices, tooling and processes to apply industry standard practices to GCIC operations. 

Working environment

You will be working within the Global Cyber Intelligence Center (GCIC) team within the ABN AMRO CISO Cyber Defence Grid. The team consists of highly motivated and passionate analysts, and contains a broad range of cyber skills including intelligence analysis, malware analysis and reverse engineering, SOC analysis and forensics, incident response, and Red Team operations. ABN AMRO is an English-language working environment, and supports hybrid working arrangements subject to operational requirements. 

Your profile

You are a self-starter with strong initiative and interpersonal skills. You can identify, establish relationships with, and align with key stakeholders. You have a strong understanding of how threat intelligence contributes to cyber defensive processes, and have proven experience in designing and implementing these processes. You can operate under pressure during incident response activities and can independently support incident investigations. You collaborate well with others, and actively seek opportunities to share threat intelligence to internal and external customers. 

Our ideal candidate can demonstrate the following hard skills: 

• A good understanding of and at least 5+ years of experience with the cyber threat intelligence cycle, and experience in cyber threat intelligence collection, production, and writing.
• 5+ years of experience with threat analysis models such as the Diamond Model, Cyber Kill Chain, and MITRE ATT&CK TTP framework; 
• Experience conducting technical threat intelligence investigations into malicious activity, including conducting attribution and TTP analysis.

It would be nice if you could recognize yourself in the following skills as well: 

• Familiarity with technical engineering requirements associated with the production of intelligence;
• Experience with and understanding of incident response processes.

And it would be great if you recognize yourself in the following soft skills too: 

• Strong research, analytical, and problem-solving skills; 
• Excellent verbal, written and interpersonal communication skills; 
• Proven ability to design and tailor briefings to present findings and conclusions clearly and concisely to all levels of staff, management and/or vendors; 
• Experience mentoring junior threat intelligence staff; 
• Ability to track industry developments, threat trends and relevant technologies; 
• Ability to work independently and as part of a team.

We are offering

We offer a challenging but rewarding opportunity to develop industry-leading skills and experience in a supportive work environment. ABN AMRO employees given the keys to their own success and are actively encouraged to seek training and development opportunities including formal technical and soft skills training, conferences, professional networking and personal growth projects. On top we offer:

• The gross monthly salary displayed above is based on a 36-hour work week, including vacation pay and benefit budget.
• The Benefit Budget is 11% of your salary. The Benefit Budget allows you to acquire additional employment benefits. If you make no purchases or reservations in the Benefit Shop in a given month, you are paid one twelfth of your Benefit Budget that month.
• Five weeks of vacation per year. You have the option to purchase an additional four weeks per year.
• Personal development Budget of € 1,000 per year, which you can accumulate up to € 3,000.
• Possibility to work from home (in consultation with your team and depending on your position).
• An annual public transport pass with free public transportation throughout the Netherlands.
• An excellent pension scheme. 

Interested?

Does this opportunity sound like something you’d be interested in? Please send us your application as soon as possible. We look forward to meeting you. 

Your Future: Inclusive, Innovative, Sustainable

At ABN AMRO, we believe in "Banking for better, for generations to come." Equal opportunities for everyone are a crucial foundation, as we strive for an inclusive culture where all employees feel seen, heard, and valued. Our vision of being a personal bank in the digital age aligns perfectly with the demand for surprising insights and innovative solutions, born from a diverse interplay of cultures and experiences. We focus on customer experience, sustainability, and building a future-proof bank, conducting annual reviews to ensure equal pay for equal work. Join a bank that embraces ingenuity and ambition, and make an impact with us for a better future.

If you want to apply for the B-Able or Reboot program, make sure to mention it both in the title and the content of your resume.

Disclaimer external recruitment agencies

External recruitment agencies need to have a signed agreement with ABN AMRO BANK N.V., executed by a Talent Acquisition Specialist, when submitting a resume to a vacancy. No unsolicited services or offers, please.