Security Analyst Incident Response & Threat Intelligence

We are seeking a Security Analyst, Incident Response & Threat Intelligence to support threat hunting, threat intelligence, incident response, and exposure-focused analysis within the GTS – Security & Compliance team. This role works closely with Senior Analysts and security leadership, contributing to investigations, security operations, and proactive analysis across a global enterprise environment. Key Responsibilities • Support proactive threat hunting, threat intelligence, and incident response activities in collaboration with Senior Analysts • Execute hypothesis-driven threat hunts and investigative analysis across endpoint, identity, cloud, and network telemetry • Assist in assessing, investigating, and responding to high-priority security events under the guidance of senior analysts and management • Analyze adversary behavior using MITRE ATT&CK and current realworld threat activity • Partner with Vulnerability Management to apply threat intelligence to vulnerability prioritization, risk assessment, and remediation efforts • Contribute to exposure management by identifying misconfigurations, attack paths, and chained weaknesses across the environment • Help translate intelligence findings, hunt results, and exposure insights into actionable detection and response recommendations • Collaborate with SOC, Privacy, Legal, Compliance, IT, Vulnerability Management, and business stakeholders during investigations • Produce clear, well-structured documentation and investigation summaries for leadership and incident records Skills: • 3 years+ of experience in Threat Intelligence, Threat Hunting, or Incident Response roles • Demonstrated experience supporting investigations and proactive security analysis within enterprise environments • Strong hands-on experience with EDR platforms and SIEM / log analytics tools • Solid understanding of vulnerability exploitation, exposure management, and attack path analysis • Strong knowledge of adversary tradecraft, attacker behavior, and modern intrusion techniques • Ability to operate independently, think critically, and make sound decisions under pressure while collaborating with senior analysts • Strong written and verbal communication skills, with the ability to clearly document findings and explain technical issues to varied audiences • No direct people management responsibilities • May provide technical guidance and informal mentorship to peers during investigations, as appropriate Education: • Bachelor’s degree in Cybersecurity, Computer Science, or a related field, or equivalent practical experience • 3+ years of hands-on experience in Threat Intelligence, Threat Hunting, or Incident Response may substitute for formal education • Industry certifications are preferred but not required, including: o GIAC (GCIA, GCIH, GCED, GCIR, GNFA, GCFA) o Offensive Security (OSCP, OSCE) o Red Team / Adversary Emulation (CRTO, CRTP, CRTA) o Digital Forensics & Incident Response (GCFA, GNFA, CFCE, EnCE)