Lead Cyber Threat Analyst
Caesars EntertainmentAs a critical member of our team, you will be entrusted with the following responsibilities:
Collection, Documentation, and Analysis: Gather, document, and assess raw cyber threat intelligence using leading-edge tools, technologies, and industry standards, including threat intelligence platforms and intelligence collection platforms.
Strategic and Tactical Analysis: Conduct comprehensive assessments of our systems and networks, providing insightful tactical analyses and impactful recommendations to optimize network operations.
Threat Detection and Prioritization: Play a pivotal role in identifying and correlating timely threat intelligence, effectively discerning genuine risks from potential false positives.
Information Sharing and Leadership: Actively participate in informing policymakers, cyber operators, and mission area leadership with actionable cyber threat intelligence.
The Impact:
Your expertise will be instrumental in minimizing Caesars' risk potential and safeguarding our vital digital infrastructure. We are looking for a highly motivated and detail-oriented individual with:
Proven experience in cyber threat intelligence collection, analysis, and reporting
Strong understanding of threat intelligence platforms and intelligence collection methodologies
Excellent analytical and problem-solving skills
Ability to translate complex technical information into actionable insights for diverse audiences
Superior communication and collaboration skills
Caesars Entertainment is the world’s most geographically diversified casino-entertainment company. Our core mission is to inspire grown-ups to play. Focusing on building loyalty and value with its guests through a unique combination of great service, excellent products and technological leadership.
This key position requires “out-of-the-box” thinking, a collaborative nature, and the ability to challenge the status quo while achieving the goal.
Responsibilities
Cyber Threat Intelligence (CTI):
Team Lead: Be a team lead for the Cyber Threat Intelligence team, setting building a roadmap out to grow the functions of the team and execute upon them. Coordinate day-to-day operations and processes to ensure team continues to run smoothly.
Collaboration: Build relationships with partner teams to understand requirements, current security architecture and assist in developing strategies to mitigate identified risks.
Continuous Improvement: Stay current with the latest security trends, techniques, and vulnerabilities, and apply this knowledge to continuously improve the security posture of the casino.
Threat Briefings: Deliver threat briefings digitally and virtually to members of the company to understand current, relevant and emerging threats.
Training and Awareness: Provide guidance and training to internal teams on best practices for security and how to address identified vulnerabilities.
Leverage proven experience in all aspects of CTI, encompassing collection, analysis, and reporting.
Threat Intelligence Collaboration:
Possess extensive experience in collaborating with internal and external stakeholders to:
Gather data and threat intelligence.
Analyze, validate, and enrich threat intelligence.
Develop joint reports.
Disseminate intelligence to relevant entities.
Technical Expertise:
Familiarity with Threat Intelligence Platforms (TIPs) and Security Operations Centers (SOCs).
Possess in-depth knowledge of vulnerabilities, attacks, cyber threats, open-source rese, and nation-state actors.
Communication and Reporting:
Effectively communicate complex security information through concise briefings, presentations, and reports covering:
Analysis findings.
Threat trends.
Threat actor profiles.
Indicator bulletins.
Vulnerability details.
Defensive strategies.
Cybersecurity Awareness:
Maintain continuous awareness of evolving Cybersecurity tactics, techniques, and procedures (TTPs).
Regularly engage with the Director of Cybersecurity and the Security Operations Team to discuss:
Threat activity.
Adversary tactics.
Targeted vulnerabilities.
Exposure risks.
Qualifications
Education:
Bachelor's degree in Computer Science, Business Management, MIS, or a related field.
Certifications:
Preferred certifications in security management, risk, and compliance (CISSP, CISA, CISM, GSEC, CRISC, or equivalent).
Industry Experience:
Prior experience supporting Gaming and Hospitality environments or similar 24/7 operations is a requirement.
Analytical Skills:
Possess exceptional analytical skills with the ability to identify and prioritize security requirements.
Threat and Vulnerability Management (TVM):
7+ years of experience in cybersecurity or information technology resiliency with focuses on cyber threat intelligence, cyber threat hunting, vulnerability management, network security, or other security controls
Possess 3+ years of experience working with threat intelligence feeds and Indicators of Compromise (IOCs).
Familiarity in day to day operations of running an efficient cyber threat intelligence program
Vulnerability and Threat Intelligence Expertise:
Possess in-depth knowledge of system vulnerabilities, threat intelligence feeds, and contextualization of vulnerabilities.
Risk Management Skills:
Demonstrate independent risk assessment skills with the ability to devise mitigation strategies and implement compensating controls.
Security Frameworks and Standards:
Possess demonstrable knowledge of common infrastructure and web application vulnerability categorizations (CVE, CVSS, CWE).
Cloud Security Expertise:
Knowledge and experience in cloud security posture and vulnerability management.
Incident Response Experience:
Experience and participation (as needed) with security incident response and investigations.
Project Management and Communication:
Proven ability to bring projects to successful completion within established timelines.
Ability to respond to emergencies 24/7 as required.
Additional Skills:
Strong analytical and problem-solving skills.
Excellent written and oral communication skills.
Detail-oriented approach to investigations and communications.
Ability to handle confidential investigations with discretion.