Senior Cybersecurity Analyst - Cyber Threat Intel (Remote)

Req145952

Position Purpose

The Home Depot’s Cyber Threat Intelligence team seeks a seasoned cyber defender with the experience and skills to think like an attacker. The role involves identifying threats that could impact one of the largest retailers in North America, utilizing threat modeling and understanding how security and privacy controls influence the organization. Experience with the MITRE ATT&CK framework and supporting Actor Emulation and Threat Modeling activities are highly desirable.

Role Description: Security Operations – Senior Cybersecurity Analyst

• Ability to produce well-written reports and documentation for distribution across the organization and to senior leadership.
• Technical expertise in the MITRE ATT&CK Framework.
• Experience with project planning and process design.
• Hands-on experience with MITRE ATT&CK Threat Modeling.
• Knowledge in threat hunting related to IoCs and IoAs.
• Willingness to learn defensive tools and processes like Sigma and Yara rules.
• Experience in intelligence writing and analytic techniques such as analysis of competing hypotheses and Devil's Advocate.
• Ability to research and convert technical data into actionable reports.
• Strong understanding of the attack chain and collaboration with Purple Teams.
• Familiarity with cyber Threat Intelligence sources and tools like VirusTotal, Shodan, DomainTools.
• Knowledge of industry frameworks such as MITRE ATT&CK, Cyber Kill Chain, NIST SP-800-53, D3FEND.

Must Haves

• OSINT research experience on Threat Actors, Emerging Threats, APTs.
• Previous cybersecurity experience.
• Proficiency with industry frameworks like Cyber Kill Chain, NIST SP-800-53, D3FEND, MITRE ATT&CK.
• Technical reporting experience.
• Experience working with Security Operations Teams.
• Collaborative, curious, and open-minded attitude.
• Understanding of cyber adversary TTPs.

Nice to Have’s

• Bachelor’s or Master’s Degree in Cybersecurity or related field.
• Retail industry knowledge.
• Certifications such as CISSP, CISA, CISM, GCTI, GOSI.
• Familiarity with CREST, NIST, ISO standards.
• Experience with Threat Intelligence tools like RecordedFuture, Greynoise, Shodan, Netcraft.
• Experience in creating attack paths using OSINT.

Our goal is to protect what matters most by securing sensitive data and assets from current and emerging threats. The Cybersecurity department encompasses Architecture, Governance, IAM, Threat Operations, Compliance, Risk, Security Consulting, Operations, and Strategic Planning.

Senior Analysts gather data, analyze, synthesize, and develop solutions to support cybersecurity practices.

Key Responsibilities

• 50% Data analysis and solution development, including reporting and presentations.
• 20% Cross-functional collaboration to identify trends and resolve issues.
• 20% Implementation of solutions to meet customer expectations and project goals.
• 10% Mentoring junior analysts.

Management and Travel

• Typically reports to a Manager or Senior Manager.
• No direct reports.
• Overnight travel less than 10%.

Physical and Working Conditions

• Primarily sitting with occasional movement; light lifting if needed.
• Indoor, comfortable environment with infrequent unpleasant conditions.

Minimum Qualifications

• Age 18 or older.
• Legal right to work in the US.

Education and Experience

• Bachelor’s degree or equivalent in a related field.
• Minimum 5 years of relevant work experience.

Core Competencies

• Action Oriented, Collaborates, Communicates Effectively, Customer Focus, Drives Results.