CrawlJobs Logo
Nicoll Curtin Logo Nicoll Curtin · IT - Administration

Threat & Identity Analyst

Malaysia · Job Posted March 19, 2026
Apply Position
Job Link Share

Job Description

A leading global bank is seeking an Identity Threat Intelligence Analyst to support the Identity Threat Detection and Response (ITDR) program. This role provides identity-focused threat intelligence, analysis, and detection insights to strengthen identity security capabilities. The analyst will assess identity threat coverage across existing security tools, support proof-of-value (PoV) initiatives, and translate threat intelligence into actionable detection scenarios and pilot-ready use cases across enterprise platforms.

Job Responsibility

  • Analyse identity-focused threat intelligence and attacker techniques relevant to enterprise environments
  • Assess identity threat detection coverage across existing security platforms (e.g., identity monitoring and cloud security tools)
  • Map identity threat scenarios across Active Directory, Entra ID, cloud platforms (Azure/AWS), UNIX, and hybrid infrastructure
  • Support proof-of-value (PoV) activities by validating threat scenarios against available detections and telemetry
  • Align identity threat scenarios with MITRE ATT&CK tactics and techniques
  • Translate threat intelligence into prioritized ITDR detection use cases and scenarios
  • Collaborate with ITDR engineers, IAM teams, and security operations to refine detection logic and response strategies
  • Support development and rollout of ITDR pilot capabilities for prioritized identity threats
  • Maintain documentation of identity threat scenarios, adversary techniques, and detection use cases
  • Produce threat intelligence reports, PoV findings, and program artefacts for governance and planning
  • Track emerging identity threats, attacker techniques, and industry trends

Requirements

  • 5+ years of experience in threat intelligence, cybersecurity analysis, or cyber defense
  • Strong understanding of identity and access management (IAM) technologies including Active Directory, Entra ID, privileged access, and non-human identities
  • Familiarity with cloud and hybrid environments including Azure, AWS, and enterprise infrastructure platforms
  • Knowledge of identity-based attack techniques and frameworks such as MITRE ATT&CK
  • Experience translating threat intelligence into detection use cases or security controls
  • Familiarity with security monitoring, detection engineering, or security operations
  • Strong analytical, research, documentation, and stakeholder communication skills
  • Bachelor’s or Master’s degree in Cybersecurity, Computer Science, or a related field
  • 7–9 years of overall cybersecurity experience preferred, with exposure to identity threat intelligence or ITDR programs
Nicoll Curtin - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Threat & Identity Analyst

8 matching positions

Identity Intelligence Analyst (Mid-Level)

Our industry-leading program advances the use of tactical and strategic Identity...
Location
Location
United States , Charlottesville
Salary
Salary:
Not provided
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience conducting research within applicable databases
  • ability to compile, analyze and synthesize necessary data to provide an assessment within the scope of the assigned mission and government approved format
  • Knowledge of the intelligence cycle, F3EAD and other analytical methodologies to support the research, discovery, and analysis of key individuals and networks as well as an understanding of the targeting process, enterprise, and analytical tradecraft
  • Experience applying intelligence structured analytic techniques
  • strong research and writing skills, and experience with basic computer applications, search engines, and data processing systems
  • Demonstrates a deep understanding of Identity Intelligence tradecraft
  • Experience successfully producing intelligence analysis with moderate oversight
  • Experience with I2 analytical tools and databases, including BI2R/I2AR, SOFEX, Palantir, AIDP/Maven, Query Tree, Chrome, Analyst Notebook, Open-Source research, Biometric Automated Toolset (BAT), TIDE, Pulse, QLIX
  • Demonstrates the ability to participate in analytical debate and be receptive to constructive criticism
  • Demonstrates the ability to brief mission and production related topics to internal and external government clients, military personnel, and contract audiences
Job Responsibility
Job Responsibility
  • Producing all-source Identity Intelligence (I2) analysis and intelligence products in support of global missions and customers
  • Applying an understanding of I2 tradecraft to produce analysis focused on the full range of unique identifying human characteristics and modalities
  • Fusing identity attributes to identify and assess threats of individuals and networks
  • Developing target packages and network analysis to identify targets and target systems for joint lethal and/or non-lethal engagements
  • Using operational traffic and all source intelligence databases to support target strategy development and provides joint target intelligence support to deliberate and dynamic target engagements
  • Providing decision makers the appropriate information for target prioritization to achieve their objectives for plans and operations
  • Fulltime
Read More
Arrow Right

Identity Intelligence Analyst (Junior-Level)

Amentum is seeking an Identity Intelligence Analyst (Junior-Level) to join our t...
Location
Location
United States , Charlottesville
Salary
Salary:
Not provided
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Possesses a working knowledge of applicable databases
  • ability to compile, analyze and synthesize necessary data to provide an assessment within the scope of the assigned mission and government approved format
  • Knowledgeable of and demonstrates ability to apply IC and DoD classification guidelines and procedures
  • Experience with research and intelligence analytic techniques, strong research and writing skills, and experience with basic computer applications, search engines, and data processing systems
  • Possesses a basic understanding of Identity Intelligence tradecraft
  • Capable of producing intelligence analysis with oversight and direction
  • Familiarity with I2 analytical tools and databases, including BI2R/I2AR, SOFEX, Palantir, AIDP/Maven, Query Tree, Chrome, Analyst Notebook, Open-Source research, Biometric Automated Toolset (BAT), TIDE, Pulse, QLIX
  • Demonstrates the ability to participate in analytical debate and be receptive to constructive criticism
  • Demonstrates the ability to brief mission and production related topics to internal and external government clients, military personnel, and contract audiences
  • Ability to operate as a member of a team
Job Responsibility
Job Responsibility
  • Producing all-source Identity Intelligence (I2) analysis and intelligence products in support of global missions and customers
  • Applying an understanding of I2 tradecraft to produce analysis focused on the full range of unique identifying human characteristics and modalities to include, but not limited to, fingerprints, deoxyribonucleic acid (DNA), iris scans, voiceprints, facial recognition features, and behavior for the purposes of identifying and tracking persons and networks
  • Fusing identity attributes, such as biographical, biological, behavioral, contextual, and reputational information related to individuals and intelligence associated with those attributes, to identify and assess threats of individuals and networks, their capabilities and capacity, centers of gravity, objectives, intent, and potential courses of action
  • Fulltime
Read More
Arrow Right

Identity Intelligence TECHINT Analyst (Mid-Level)

Our industry-leading program advances the use of tactical and strategic Identity...
Location
Location
United States , Charlottesville
Salary
Salary:
Not provided
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Possesses a working knowledge of applicable databases
  • ability to compile, analyze and synthesize necessary data to provide an assessment within the scope of the assigned mission and government approved format
  • Knowledgeable of and demonstrates ability to apply IC and DoD classification guidelines and procedures
  • Experience with research and intelligence analytic techniques, strong research and writing skills, and experience with basic computer applications, search engines, and data processing systems
  • Possesses a basic understanding of Identity Intelligence tradecraft
  • Capable of producing intelligence analysis with oversight and direction
  • Familiarity with I2 analytical tools and databases, including BI2R/I2AR, SOFEX, Palantir, AIDP/Maven, Query Tree, Chrome, Analyst Notebook, ACLED, Open-Source research, Biometric Automated Toolset (BAT), TIDE, Pulse, QLIX
  • Demonstrates the ability to participate in analytical debate and be receptive to constructive criticism
  • Demonstrates the ability to brief mission and production related topics to internal and external government clients, military personnel, and contract audiences
  • Ability to operate as a member of a team
Job Responsibility
Job Responsibility
  • Producing all-source Identity Intelligence (I2) analysis and intelligence products in support of global missions and customers
  • Develop, process, and evaluate TECHINT/Weapon Intelligence data to produce all source intelligence exploitation and device attribution reports, products, and databases
  • Analyze device data and events to identify technical profiles and signatures
  • Apply an understanding of I2 tradecraft to produce analysis focused on the full range of unique identifying human characteristics and modalities to include, but not limited to, fingerprints, deoxyribonucleic acid (DNA), iris scans, voiceprints, facial recognition features, and behavior for the purposes of identifying and tracking persons and networks
  • Fusing identity attributes, such as biographical, biological, behavioral, contextual, and reputational information related to individuals and intelligence associated with those attributes, to identify and assess threats of individuals and networks, their capabilities and capacity, centers of gravity, objectives, intent, and potential courses of action
  • Fulltime
Read More
Arrow Right
New

Cyber / Tech 2nd LOD Senior Lead Analyst, Senior Vice President

The Technology and Cyber Compliance and Operational Risk Office (TCCORO) at Citi...
Location
Location
Poland , Warsaw
Salary
Salary:
340990.00 - 580610.00 PLN / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in technology and cyber risk assessments, metrics, enterprise technology services, risks, and controls within globally complex, dispersed, and diverse organizations
  • Advanced knowledge and experience leading control design and operating effectiveness evaluation, testing, and reporting with a track record of influencing effective risk mitigation strategies
  • Excellent presentation skills as well as the ability to effectively communicate complex topics to a broad audience
  • Advanced proficiency in creating written executive materials and mastery in verbal presentation to Executive audiences
  • Outstanding communication and influencing skills, with the ability connect with individuals throughout all levels of the organization and with external partners and vendors
  • Exceptional relationship management skills, including demonstrable experience managing through conflict and issue resolution with senior stakeholders
  • Proven ability to work within teams, manage cross-functional projects, influence executive-level strategic decision-making, and effectively translate technology / cyber risk insights to value-add risk mitigation solutions
  • Subject matter expert in one or more industry standard risk management frameworks (including ISO27001, COBIT, TOGAF and CRI for example), and an in-depth understanding of technology and cyber risk mitigation strategies
  • Deep knowledge of products within the coverage area (e.g, Markets, Banking), including a technical understanding of current and emerging trends as well as the ability to apply in-depth understanding of the business impacts of technical contributions
  • In-depth knowledge of technology and cyber risks and controls across various information system architecture and engineering domains including data protection, identity and access management, vulnerability management, network security, endpoint security, logging and monitoring, incident management, and third-party management
Job Responsibility
Job Responsibility
  • Manages internal projects on threat issues that support a variety of participants and stakeholders measuring the effectiveness and comprehensiveness of Citi’s first line defenses
  • Establishes and oversees the application of compliance and technology and cyber policies and procedures, technology and tools, and governance processes to provide credible challenge for minimizing losses from technology and cyber risks
  • Independently assesses technology and cyber risks and drive actions to address the root causes that persistently lead to operational risk losses by challenging both historical and proposed practices
  • Leads independent assurance activities to assess areas of concern including substantive and controls testing
  • Monitors, evaluates, and challenges Key Risks and associated Key Risk Indicators triggers and thresholds
  • Identifies potential risks associated with program/project delivery on a technical and detailed level
  • Leads various second line of defense technology and cyber assessments including risk assessments, control assessments, maturity assessments etc
  • Assesses technology and cyber risks associated with new initiatives and programs being proposed for implementation
  • Challenges the design, adequacy and strength of the control environment associated to technology and cyber and recommends actions to ensure the operational risk profile is in line with the technology and cyber risk appetite
  • Executes ad-hoc activities for the TCCORO organization, including but not limited to: researching and producing materials for presentations of deep dives into selected topics, coordinating deliverables related to audits and examinations, and maintaining associated data for executive reporting
What we offer
What we offer
  • Employer paid Defined Contribution Pension Plan contribution of 6% of employee’s pensionable earnings (PPE Program)
  • Employer paid Private Medical Care Package for employees and Private Medical Care Packages for certain family members available at preferential rates
  • Employer paid Life Insurance Program for employees and Life Insurance for certain family members available at preferential rates
  • Employee Assistance Program financed by Employer
  • Paid Parental Leave Program (maternity and paternity leave
  • statutory and 2 weeks additional paid paternity leave)
  • Sport Card for employees subsidised via Social Benefits Fund and Sport Cards for certain family members available at preferential rates
  • Additional benefits from Company’s Social Benefit Fund, in particular: Holidays Allowance, support for sport and cultural activities, team building events
  • Additional day off for volunteering
  • Cafeteria/ flex benefit
  • Fulltime
Read More
Arrow Right

SOC Analyst Senior Cyber Security Engineer

Experience: 4 to 6 yrs. Location: Chennai. Engineering Graduate - preferably B.E...
Location
Location
India , Chennai
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 3 years experience working in security operations environment or 3 years’ experience in IT operations Data Centre, SOC/NOC
  • Very good English verbal & written communication skills
  • Good understanding of networking concepts and operating systems
  • Good understanding of key customer infrastructure components - Proxy, Firewall, Antivirus
  • Technical capability and maturity to assist and guide the team of Analysts
  • Should have worked and have good understanding of the following security tools: MITRE, NIST framework, SIEM tools (SENTINEL, SPLUNK, QRADAR)
  • Ability to learn new skills and adopting new technologies and work collaboratively in an international context
  • Ability to understand and work in a complex environment and concern for quality and detail
  • Ability to synthesize and analyze a variety of contexts and manage customer confidentiality
  • Knowledge on ITIL basic practice
Job Responsibility
Job Responsibility
  • Ensure all threats at customer environment are detected and notified in timely manner
  • Continuous review of Incidents to ensure compliance with standard operating procedures
  • Provide training and feedback to Security Analysts to ensure quality deliverables
  • Identify and execute continuous improvements in monitoring, including threat scenarios and operating procedures
  • Interact with customers on queries and improvements related to service deliverables
  • Should know and able to contribute to MSSP services (Managed Security Services Provider)
  • Perform root cause analysis for any errors /deficiencies pointed out in the monitoring service
  • Review the alert to determine relevancy and urgency, create new trouble tickets for incident
  • Fulltime
Read More
Arrow Right

Cyber Security Analyst

We are looking for a Cyber Security Analyst to support ongoing security operatio...
Location
Location
United States , Chatsworth
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of hands-on experience in cybersecurity, compliance, or a closely related security function
  • Strong working knowledge of cybersecurity frameworks, security controls, and compliance standards
  • Experience preparing for audits, gathering evidence, and maintaining organized compliance documentation
  • Hands-on familiarity with Active Directory monitoring, firewall technologies, and security event analysis
  • Background using endpoint protection, detection and response, and managed monitoring solutions in enterprise settings
Job Responsibility
Job Responsibility
  • Oversee endpoint and managed detection platforms to identify, investigate, and escalate suspicious activity across the environment
  • Review security logs and monitoring alerts regularly to detect threats, assess impact, and support timely incident response
  • Track Active Directory events and user access patterns to uncover unusual behavior and strengthen identity security
  • Monitor network activity through enterprise security tools and coordinate follow-up actions when anomalies are detected
  • Evaluate authentication attempts and login trends to help prevent unauthorized access and improve account protection
  • Support firewall administration tasks, including reviewing rules, assisting with configuration updates, and validating security controls
  • Maintain compliance-related records and organize supporting evidence for audits, assessments, and internal reviews
  • Partner with technical and compliance stakeholders to improve cybersecurity processes, reporting, and control documentation
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • company 401(k) plan
Read More
Arrow Right

Cybersecurity Analyst

Robert Half is seeking a skilled Cybersecurity Analyst to join our client’s IT s...
Location
Location
United States , Nashville
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience as a Cybersecurity Analyst or in a related security role
  • Hands-on experience with SIEM platforms (Splunk, Sentinel, QRadar, etc.)
  • Experience with endpoint protection tools (CrowdStrike, Defender, Carbon Black, etc.)
  • Knowledge of network security concepts (TCP/IP, DNS, firewalls, VPNs)
  • Familiarity with vulnerability scanning tools (Nessus, Qualys, Rapid7)
  • Understanding of compliance frameworks (NIST, ISO 27001, HIPAA, PCI)
  • Strong analytical and incident response skills
  • Excellent written and verbal communication skills
Job Responsibility
Job Responsibility
  • Security Monitoring: Monitor security systems including SIEM tools, firewalls, IDS/IPS, and endpoint detection platforms to identify potential threats
  • Incident Response: Investigate and respond to security incidents, perform root cause analysis, and document findings
  • Vulnerability Management: Conduct vulnerability scans, risk assessments, and coordinate remediation efforts
  • Threat Analysis: Analyze emerging threats and recommend proactive security measures
  • Access & Identity Management: Review and manage user access controls in accordance with security policies
  • Policy & Compliance: Assist in maintaining security policies and ensuring compliance with industry standards (e.g., HIPAA, PCI-DSS, SOC 2, NIST)
  • Security Audits: Support internal and external security audits
  • Security Awareness: Provide guidance and training to end-users on security best practices
  • Documentation: Maintain accurate incident reports, risk assessments, and remediation documentation
What we offer
What we offer
  • medical, vision, dental, and life and disability insurance
  • enrollment in company 401(k) plan
Read More
Arrow Right

Senior Security Analyst

You will work as part of a 24/7 Global Security Operations Centre. The Senior SO...
Location
Location
United Kingdom
Salary
Salary:
Not provided
admiralgroup.co.uk Logo
Admiral Group Plc
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years’ experience as a Senior SOC Analyst within an internal SOC environment
  • Strong experience in a SOC environment, including handling high‑severity incidents
  • Deep understanding of attacker tradecraft across endpoint, identity, cloud, and email attack surfaces
  • Hands‑on experience with SIEM, EDR, and security investigation platforms
  • Proven threat hunting experience using dashboards, structured queries, and behavioural analytics
  • Experience tuning detections and implementing well‑governed exclusions without increasing risk
  • Ability to clearly document investigations, decisions, and outcomes
  • Experience using AI or machine‑learning features within security products
  • Familiarity with SOAR workflows and automation concepts
  • Knowledge of detection engineering concepts and use‑case lifecycle management
Job Responsibility
Job Responsibility
  • Act as senior escalation point for complex/high-severity alerts across SIEM, EDR, cloud and identity platforms
  • Lead end-to-end incident response (investigation, containment, eradication, and post-incident review)
  • Correlate alerts with threat intelligence and business context to assess risk and impact
  • Produce clear investigation summaries for technical and non-technical stakeholders
  • Collaborate closely with Incident Response during escalations
  • Use AI-enabled features across SOC tooling to accelerate analysis and investigations
  • Apply strong judgement to validate AI outputs and avoid automation bias
  • Provide feedback to improve tooling, workflows, and AI effectiveness
  • Support development of safe and consistent AI usage standards within the SOC
  • Conduct proactive threat hunting using queries, dashboards and behavioural analytics
What we offer
What we offer
  • Up to £3,600 of free shares each year after one year of service
  • 33 days holiday (including bank holidays) increasing to up to 38 days
  • Option to buy or sell up to an additional five days of annual leave
  • Financial & Mortgage Advice
  • 24-Hour Ecare
  • Cycle to Work Scheme
  • Flexible Working
  • Simply Health
  • Private Health Cover
  • Critical Illness Cover
  • Fulltime
Read More
Arrow Right