What are the responsibilities and job description for the Junior Cyber Threat Intelligence Analyst position at Retail & Hospitality Information Sharing &...?
Junior Cyber Threat Intelligence Analyst
Job Description
Overview
The Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) is a trusted community for sharing cybersecurity intelligence across retail and hospitality sectors. We connect security teams at all levels to collaborate, exchange best practices, and strengthen industry defenses. Our members include retailers, restaurants, hotels, casinos, travel, and other consumer-facing organizations.
We value trust, learning, and commitment—offering flexibility, accountability, and opportunities for continuous growth.
The cyber threat intelligence analyst will report to the executive director of intel operations and is responsible for supporting the administration and maintenance of the ISAC’s technical threat intelligence sharing environment (MISP), intelligence vetting, categorization, tagging, enrichment, and analysis of member-shared cyber threat intelligence (CTI) and other threat intel source data. The analyst in this position is required to be an active participant in CTI collaboration and relationship engagement with RH-ISAC member analysts and their teams and will also support tool and capabilities development, analytical production, and other ISAC activities designed to enhance the security and risk posture of RH-ISAC member companies and the effectiveness of their cyber security and risk management teams. This role is well-suited for a CTI analyst looking to build hands-on experience operating a threat intelligence platform in collaborative ISAC environment.
Main Duties
Malware Information Sharing Platform (MISP):
- Support the configuration, day-to-day operation, and ongoing improvements of the RH-ISAC Malware Information Sharing Platform(MISP)under established standards and guidance. This includes monitoring all levels and types of member activities on the platform, applying established data quality standards, taxonomy guidance, and sharing controls
- Ensure appropriate handling, classification, and sharing of member-submitted intelligence in accordance with RH-ISAC trust principles and information sharing poll
- Enrich Member Data and Intelligence Gathering: Enrich,vet,and maintain technical data, including indicators of compromise, shared from members and key stakeholders
Engage with RH-ISAC Member Analysts
- Work with member analysts to support intelligence sharing and assist with questions related to RH-ISAC intelligence and tooling
- Assist members in consuming RH-ISAC-generated data and intelligence, developing use cases to share with broader membership
- Use analyst tools and OSINT to provide members with more visibility of corroborated RH-ISAC intelligence
- Provide support for member analysts’ requests for assistance in threat hunt and investigations intimely manner, as needed
- Participate in calls for committees, working groups and special interest groups, as necessary, to gain information and member input on relevant topics
- Participate in RH-ISAC workshops and member visits to build relationships and become more acquainted with member needs and requirements
Cross-Functional Collaboration
- Work collaboratively with RH-ISAC team members to achieve strategic and tactical objectives
- Encourage active, ongoing collaboration among peers to promote shared goals and initiatives
Additional assigned duties
The Ideal Candidate Will:
- Have experience performing "deep dive" analysis and correlation of log data from multiple sources including PCAP and forensic artifacts (some experience with cyber threat analysis associated with retail and hospitality sector threats preferred)
- Have previous experience as a cyber threat intel analyst (strong skills in tactical cyber threat intelligence preferred)
- Have a solid understanding of advanced cyber threats targeting enterprises, along with the tools, tactics, and procedures involved in those threats
- Have some experience with vulnerability research, exploit and/or malware investigation
- Have a solid understanding of behavioral based threat models, including ATT&CK, Cyber Kill Chain, Diamond Model, etc.
- Have experience working with threat intel platforms and SIEM-type platforms(prior experience with MISP a plus)
- Have competence in communicating actionable threat intelligence to technical and operational-level audiences
- Experience writing Python(or PowerShell) scripts to parse datasets, automate routine intelligence tasks, and support existing system integrations
- SOC experience and or security certifications a plus
- Have excellent communication skills including oral briefing, training and written analysis
- Be detail-oriented, deadline-driven, adaptable and dependable
- Be personable, professional and driven by a can-do spirit
- Embrace new challenges and thrive in a matrixed environment
- Be genuine in the desire and willingness to support teammates
Location and Work Environment:
- Location: Remote
- Work Environment: The employee is expected to maintain a dedicated, distraction-free home workspace with reliable internet connectivity. Regular collaboration will occur via video conferencing, chat, and other digital communication tools. The role requires virtual meetings across multiple time zones. While the position offers flexibility, standard core working hours—based on you and your supervisor’s time zones—will be established and are expected for availability and team coordination
- Occasional travel is required
-
Physical Requirements:
- Prolonged periods of sitting at a desk and working on a computer
- Ability to use a keyboard, mouse, and monitor for extended periods
- Must be able to communicate clearly via video, phone, and written correspondence
- Occasional lifting of light objects (up to 10lbs), such as laptops or office supplies
- Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions
Employment Type:
- Full-Time, Exempt
Compensation and Benefits:
- Salary Range: $70,000 - $90,000
- Benefits: The RH-ISAC offers full-time employees medical, dental, and vision insurance, a flexible savings account (FSA), a health saving account (HSA), and short-term disability plans. The RH-ISAC also offers a 401k plan with a matching contribution if you make a “matched employee contribution” during the plan year.
The RH-ISAC is an Equal Opportunity Employer. We are committed to creating a diverse and inclusive workplace and consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, veteran status, or any other legally protected status.
Salary : $70,000 - $90,000