Threat Researcher I

Core Responsibilities:

• Collaborate with the Threat Research team to perform daily analysis, enrichment, and contextualization of Threat Events.
• Ingest enriched Threat Events into the Threat Intelligence Exchange platform for operational and strategic use.
• Monitor and analyse threat actor campaigns to identify targeted industries, initial access techniques, and observed impact or outcomes.
• Map threat actor tactics, techniques, and procedures (TTPs) to the MITRE ATT&CK framework and correlate with FAIR CAM (Controls Analytics Model) for control effectiveness evaluation.
• Using the ATT&CK framework and the SAFE controls library, research both historical and emerging security breaches to identify attacker behaviours and associated mitigations.
• Conduct continuous research on evolving cyber threat trends, novel attack vectors, and vulnerabilities using open-source threat feeds, advisories, and commercial intelligence platforms.
• Collaborate closely with internal stakeholders, including Threat Research and Program Management.

Essential Skills/ Qualifications/ Experience:

• Bachelor's or Master’s degree in Computer Science, Information Technology, Cybersecurity, or a related field (B.Tech / M.Tech / BCA).
• Hands-on experience with threat intelligence platforms (TIPs) and threat hunting methodologies.
• Proven experience in tracking and profiling threat actors, including monitoring dark web forums, leak sites, and underground marketplaces.
• Familiarity with source code repositories is a plus.
• Proficient in scripting languages such as Python, Shell scripting, or JavaScript for automating intelligence gathering and enrichment tasks.
• Ability to work independently with minimal supervision in a fast-paced, research-driven environment.
• Excellent analytical, written, and verbal communication skills for documenting and presenting findings to technical and non-technical stakeholders.