Apply now »

Cyber Threat Intelligence Agent

Location: 

Houston, TX, US, 77010

Req ID:  79719
Facility:  One Houston Center-130
Department:  Offensive Security
Division:  Global Business Services

LyondellBasell

Basic Function


The Cyber Threat Intelligence Analyst will be responsible for tracking the tactics, techniques, and procedures (TTPs) used by threat actors in their malicious campaigns and distribution of malware. The individual will provide intelligence analysis in the form of timely alerts, briefings, and analytical assessments. Focusing on threats related to information technology environments and OT, this position will produce actionable intelligence in a clear and concise manner. The individual will report on top security threats by providing situational awareness, alerts, indicators of compromise, technical information, and operational readiness briefings.


Travel: 10%

Roles & Responsibilities

  • Collect, analyze, and interpret qualitative and quantitative, technical, and non-technical data in all-source intelligence analysis.
  • Conduct security research – identify and navigate relevant online sources, including cyber security websites, forums, social media, and traditional sources to support research processes.
  • Perform open-source intelligence (OSINT) collection and analysis, identifying the most relevant and immediate cyber threats, malicious code, suspicious domains, and security vulnerabilities.
  • Conduct Threat Intelligence activities, including the use of advanced analytical techniques in supporting incident response at LyondellBasell.
  • Provide timely, comprehensive, and accurate deliverables to key stakeholders in both written and verbal communications.
  • Identify credible, new intelligence, and subject matter resources relative to current and emerging threats.
  • Produce assessments on cyber threats, attacks, and external incidents
  • Create written and verbal intelligence products for internal stakeholders to assist in proactively addressing cyber threats and mitigating risk.
  • Provide subject matter expertise on cyber threats to support current analytical operations and initiatives.
  • Work with third parties developing shared intelligence including government, law enforcement agencies, and peer institutions operating in industry sectors relevant to LyondellBasell.
  • Ensure timely response to any cyber incident to minimize risk exposure and production down time by collaborating closely with incident response colleagues.
  • Add threat intelligence enrichment and support to the investigation of suspected security incidents, including operating with malware and indicators of compromise (IoCs).
  • Analyze and correlate incident data to develop a preliminary root cause and corresponding remediation strategy.

Min. Qualifications

  • BS or equivalent experience
  • 3+ years related experience in one or more of the following: cyber operations, red teaming, exploit development, incident response/hunt, cybersecurity research and development, security engineering/architecture
  • Strong written and verbal communication skills

Preferred Qualifications

  • Knowledge of advanced cyber threats, adversary methodologies, and cyber threat intelligence
  • Experience in developing and maintaining Threat Intelligence, ability to review information to determine its significance, validate its accuracy, and assess its reliability.
  • Ability to compile data from both open and closed sources, drawing analytical conclusions to shape recommendations for key internal decision-makers.
  • Excellent knowledge of common security controls, detection capabilities, and other practices and solutions for securing digital environments, preferably including an understanding of packet flows, TCP and UDP traffic, firewall and proxy technologies, anti-virus, intrusion detection and prevention systems, Endpoint Detection and Response (EDR), as well as other host-based monitoring, email monitoring, and anti-spam technologies.
  • Knowledge of Cloud security and incident response activities in a Cloud environment.
  • Excellent understanding of Lockheed Martin’s Cyber Kill Chain, the Diamond Model of Intrusion Analysis, and the MITRE ATT&CK framework. Ability to implement threat modelling in support of Threat Intelligence activities.
  • Understanding of assets and data of value to threat actors and how organizations are compromised.
  • Experience working in one or more of Threat Intelligence, Cyber Security Operations, or Digital Forensics.
  • Experienced in analyzing malware, hacking tools, and threat actor tactics, techniques, and procedures (TTPs) to characterize threat actors’ technical methods for accomplishing their goals.
  • Experience of tracking threat actors and building up a repository of threat knowledge.
  • Strong working knowledge of security relevant data, including network protocols, ports and common services, and application layer protocols (e.g., HTTP/S, DNS, FTP, SMTP, etc.).
  • Knowledge of privilege escalation, persistence, and lateral movement techniques deployed by threat actors.
  • Experience of working and communicating within a global team environment.

#LI-SS1

#LI-Hybrid

Competencies

Builds effective teams
Collaborates
Cultivates innovation
Customer focus
Demonstrates courage
Drives results
Ensures accountability
Instills trust and exemplifies integrity

LyondellBasell (NYSE: LYB) is one of the largest plastics, chemicals and refining companies in the world. Driven by its employees around the globe, LyondellBasell produces materials and products that are key to advancing solutions to modern challenges like enhancing food safety through lightweight and flexible packaging, protecting the purity of water supplies through stronger and more versatile pipes, improving the safety, comfort and fuel efficiency of many of the cars and trucks on the road, and ensuring the safe and effective functionality in electronics and appliances. LyondellBasell sells products into more than 100 countries and is the world's largest producer of polypropylene compounds and the largest licensor of polyolefin technologies. In 2022, LyondellBasell was named to Fortune Magazine's list of the "World's Most Admired Companies" for the fifth consecutive year.

 

We have the potential — and responsibility — to use this scale and reach to make a positive impact across our value chains. That’s why we are working to make meaningful progress to address some of the world’s most pressing challenges such as reducing plastic waste in the environment, helping to mitigate climate change and contributing to a thriving society for our employees, the communities where we operate and the people who depend on our products. To learn more, click here.

 

Must be at least 18 years of age and must be legally authorized to work in the United States (US) on a permanent basis without visa sponsorship.

 

LyondellBasell does not accept or retain unsolicited résumés or phone calls and/or respond to them or to any third party representing job seekers.

 

LyondellBasell is an equal opportunity employer.  We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, veteran status, and other protected characteristics.  The US EEO is the Law poster is available here.


Nearest Major Market: Houston

Apply now »