Senior Cyber Threat Intelligence (CTI) Analyst

TL;DR

Senior Cyber Threat Intelligence Analyst: Conduct threat actor identification, tracking, and documentation with an accent on analyzing C2 infrastructures, TTPs, and IOCs. Focus on mapping threat activity to frameworks like MITRE ATT&CK, supporting DFIR and SOC teams, and managing threat intelligence tools.

Location: Manila, Philippines (onsite)

Company

NCC Group is a global cybersecurity and risk mitigation company.

What you will do

• Identify, track, and document threat actors, their TTPs, IOCs, and infrastructure.
• Monitor and analyze C2 infrastructures and malicious domains.
• Map threat activity to frameworks such as MITRE ATT&CK and produce structured intelligence using STIX/TAXII.
• Support DFIR and SOC teams with threat intelligence research and contextual analysis.
• Collaborate with internal teams and external partners to enhance threat awareness.
• Manage and optimize threat intelligence platforms and recommend new tools.

Requirements

• Location: Must be based in Manila, Philippines.
• Experience in threat intelligence analysis, including APT research and C2 tracking.
• Strong understanding of networking protocols such as TCP/IP and DNS.
• Familiarity with Cyber Threat Intelligence lifecycle and frameworks like MITRE ATT&CK, STIX, and TAXII.
• Experience supporting DFIR, IR, and SOC teams.
• English proficiency at least B2 level.