Principal Analyst - US

In this role, Technical Intelligence Analysts are responsible for interfacing directly with customers to field a variety of threat intelligence questions, providing the customer a first-class experience by delivering timely, actionable, clear, and concise intelligence. 

The ideal candidate will possess a background in Information Security and the intelligence process, ideally gained in a global corporation.  He/she will apply analytical rigor to all work while remaining open to non-traditional information or conclusions.  The analyst will have excellent writing and presentation skills and be able to defend his/her analytical conclusions in logical and persuasive terms. The analyst will have the ability to gather technical information and concepts, informed by enterprise security concepts and best practices, and incorporate them into traditional threat intelligence writing to address customer concerns. The analyst will also help to provide analytical oversight for the rest of the team, reviewing reports and other client communications to ensure that all expectations of analytic rigor and technical accuracy are met. The analyst will also be able to work independently to meet tight deadlines. 

Responsibilities

• Provide cogent cyber threat intelligence analysis to enterprise clients and various internal teams in written and oral form
• Ensure customer satisfaction through timely dialogue, both written and spoken
• Create custom analytic products based on conclusions and judgments derived from large quantities of Mandiant Threat Intelligence data sources and independent research
• Provide timely support for clients’ incident response, hunting, threat intelligence teams by collecting relevant intelligence and/or performing unique research and providing analysis
• Gather technical information and concepts, incorporating them into traditional threat intelligence writing
• Work closely with the other Mandiant Threat Intelligence teams to update and improve intelligence products and collection processes
• Track customer requests from start to finish and engage with customers directly as required
• Provide some level of off-hours support for customer requests on a rotating basis
• Provide targeting analysis in support of all source collection activities
• Use knowledge, creativity, critical thinking, and analytic tradecraft best practices to obtain solutions to complex problems where analysis of situations or data requires an evaluation of intangible variables under conditions of uncertainty
• Participate in trend / correlation analysis and scenario forecasting at both the tactical and strategic level
• Ensure timely response to all suspense deadlines and administrative actions
• Maintain confidentiality and ethics within the framework of the engagement

• Strong communication skills with clear and concise writing; able to build a compelling and effective narrative.
• Ability to work in fast-paced environment, to triage and to work within a small, highly-technical group while providing explanations to non-technical people
• Ability to work as part of a distributed virtual analysis team with limited supervision
• 5 + years’ experience in Information Security, gained in a hands-on technical or intelligence role
• Understanding of how operating systems work and the ways malware interacts with them
• Understanding of common network traffic protocols and familiarity with common network traffic analysis techniques
• Past exposure to a variety of malware families used by Espionage or Criminal campaigns
• Significant experience with the following concepts and related tool sets:
  • • Network sniffers
    • Process analysis tools
    • Registry analysis tools
    • File analysis tools
    • Memory analysis tools

Preferred:

• Experience working in a large enterprise environment
• Practical experience as an intelligence analyst
• Strong working knowledge of Linux or Unix operating systems
• Experience with vulnerability management, penetration testing, scripting, programming, reverse engineering and similar job experience
• Experience with scripting or programming languages, notably VB, C++, Perl or Python
• Preferred certifying bodies: SANS, ISC2

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

Minimum Salary: $95,000. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations. 

Incentive Compensation: Eligibility for annual bonus subject to individual and company performance; eligibility for award of Restricted Stock Units subject to eligibility requirements, approval from Mandiant’s Compensation Committee, and vesting terms  

Benefits: Employer subsidized benefits include Medical, Dental, Vision, Life, and Disability Insurance. Subject to eligibility requirements, Mandiant also offers the ability to participate in 401(k), Flexible Spending Accounts, Health Savings Accounts, Dependent Care Spending Accounts, and Employee Stock Purchase Program. Mandiant also provides Paid Time Off, Flexible Paid Sick Time, and Paid Holidays.  

*Disclosure as required by sb19-085 (8-5-20)