Job description

The Threat Intelligence Analyst at ENOC is responsible for monitoring the organization’s IT and OT environment on a 24/7 basis to identify, assess, and counter cyber threats posed by threat actors against critical infrastructure and enterprise assets. The role involves gathering, analyzing, and interpreting raw cyber intelligence to identify indicators of compromise, emerging threats, vulnerabilities, tactics, techniques, and procedures used by adversaries. The analyst performs advanced threat modelling, produces intelligence reports, and provides actionable insights to security leadership and the Cyber Intelligence Center Manager in accordance with established policies, procedures, and SOPs. Responsibilities include monitoring external threat environments, tracking developments in cyber security technologies, analyzing vulnerability disclosures, and maintaining a taxonomy of indicators of compromise shared across security operations teams. The role also involves developing and enhancing SIEM correlation rules, use cases, and detection capabilities, integrating monitoring tools, and supporting SOC operations with advanced analytics and scripting knowledge. The analyst identifies intelligence gaps, submits requests for information, and collaborates with security analysts to investigate suspicious behavior. The position requires continuous monitoring of cyber threats, incident escalation, compliance with cybersecurity policies, and participation in 24/7 on-call support to ensure protection of ENOC’s IT/OT infrastructure in the energy sector.