Associate Principal - Cyber Threat Intelligence Analyst

Our Cyber Security team

It’s no secret that our intellectual property is critical to our success. To secure our ideas and designs, our customer and employee personal data, and to protect operations from cyber-crime, Dyson’s global Cyber Security and IT Risk group works effectively to keep our secrets secret and secure our crown jewels, using advanced technologies to stay one step ahead of the game.  

We have a continuous focus on transforming and managing all aspects of security - including architecture, engineering, technology risk management, cyber operations, end-user security, and project delivery. We invest heavily in new security capabilities (technology, processes, and people) and leverage our strong cyber ecosystems to tackle future threats. 

Product Design, Manufacturing, Supply Chain, eCommerce and Enterprise IT Systems are at the beating heart of Dyson's cyber defense priorities. We play a key role in ensuring the successful design and delivery of exciting new business and security projects, and that our controls and security platforms remain effective and compliant. Furthermore, our cyber operations capabilities are delivered on a global 24x7 basis from our strategic locations across the US, UK / Europe, India, Singapore and China. 

About the Role 

As a member of our Cyber Fusion Center (CFC), you will become an integral part of a dynamic, around-the-clock team that operates globally, with a presence in the USA, the UK, Poland, India, and Singapore. The primary role of a Threat Intelligence Analyst is to contribute to the strategic planning of the roadmap, capabilities, and services within the Cyber Fusion Center. This position carries the responsibility of  building, transitioning , operating and governing cyber threat intelligence services to various stakeholders across the business value chain.  Additionally, you will actively participate in advancing Cyber Defense Center investigations related to cyber threats and engage in collaborative efforts to identify and hunt down highly sophisticated cyber adversaries 

This role will be very exciting in providing continuous learning opportunities (i.e. convergence of IT, OT and IoT) in latest technology platforms and equally challenging to capture “indication and warning” threat signals. Our Global Cyber Security programme is anchored around Cyber Threat Intelligence led Cyber Security; you will make great impact to the business.  

You are the defenders of the Dyson network, the guardians of our secrets. 

This position promises to be exhilarating as it offers unending opportunities for learning and growth. You will be at the forefront of the convergence of IT, OT, and IoT, utilizing cutting-edge technology platforms. Equally, it is a demanding role that requires acute discernment to discern early signals and warnings of cyber threats. Our Global Cyber Security program is grounded in intelligence-led cyber security, and you will be a linchpin in ensuring its efficacy, thereby having a profound impact on the business. 

As defenders of Dyson’s network, you are more than just protectors – you are custodians of our most prized assets and secrets. Your role is that of a sentinel, standing vigilant and unyielding in safeguarding the integrity of our cyber landscape. 

Experience and Accountabilities 

Our Cyber Threat Intelligence team is tasked to support and enhance Dyson's security posture by providing situational awareness by understanding our cyber threat landscape. This is achieved through the delivery of timely and actionable threat intelligence that is relevant to Dyson. By combining technical expertise with a thorough understanding of the cyber threat landscape, and playing a supporting role in Threat Hunting, the team ensures depth and breadth of coverage of cyber threats and events and contextualizes them to drive planning for the leadership teams in Global Cyber Security. 

We would like candidates to demonstrate experience in:  

• Work with the senior manager to develop the roadmap, special focus on automating the traditional intelligence processes, keeping an eye on the breakthrough technology in the market in AI/ML, on-boarding the next phase on intelligence capabilities, and uplifting for the next 2-3 years, to align with the ever-changing threat landscape and ensuring Dyson assets are protected for advanced threats. 

• Provide oversight governance in ensuring our partners are providing quality delivery and develop, maintain and periodically validate the cyber threat intelligence services 

• Collecting information and analyzing to develop intelligence to continuously mature “indication and warning” capability. 

• Research and perform in-depth analysis of cyber threats to understand their nature, capabilities, and potential impact, going beyond the immediate incident to understand the broader context and implications. Enrich with contextual information and produce finished intelligence   

• Actively participate in incident response efforts.  

• Produce intelligence reports and deliver insights to stakeholders.  

• Create concise and actionable reports that outline the nature of threats, potential impact, recommended countermeasures, and proactive measures to enhance the organization's security posture 

• Help in identifying the extent of the compromise, analyzing the attack vectors, and providing technical support to contain and mitigate the incident. 

• Generate detailed reports documenting the findings of their investigations, including incident timelines, impact assessments, and recommended remediation steps. 

• A key member of the Threat Hunting sprint team 

• Collaborate with various teams within the organization, such as incident response teams, security operations centers (SOCs), threat hunting teams, and other stakeholders.  

• Share information, contribute to cross-functional investigations, and provide subject matter expertise to support the overall security efforts 

Skills 

We are looking for team members with an exceptional track record of delivering security to a range of business types and sizes. You’ll bring the following:  

• Minimum 6 years of experience within operational cyber threat intelligence function. 

• Minimum 2 years of team lead experience in cyber security teams(preferred). 

• Working together with the manager, be willing to coach and/or mentor analysts joining the team. 

• Excellent writing and presentation skills to communicate findings and recommendations to various stakeholders and senior leaders. 

• Experience conducting intelligence investigations and familiarity with investigative tools. 

• Experience in establishing and maintaining intelligence lifecycle. 

• Proven track record of MITRE ATT&CK, Cyber Kill Chain, Diamond Model and able to develop threat models based on the frameworks.  

• Experience in the use of cyber security products such as threat intelligence platforms, cloud security, endpoint security, and open source products such as Shodan, Virus total, etc. 

Dyson is an equal opportunity employer. We know that great minds don’t think alike, and it takes all kinds of minds to make our technology so unique. We welcome applications from all backgrounds and employment decisions are made without regard to race, colour, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other any other dimension of diversity.