ISAC CAREERS

Auto-ISAC Cyber Intelligence Analyst

Organizational Environment

The Automotive Information Sharing and Analysis Center (Auto-ISAC) is the focal for relevant cyber security information sharing for the automotive industry. The Auto-ISAC enhances the ability of the automotive private sector to prepare for and respond to cyber security threats, vulnerabilities, and incidents in order to reduce the risks and costs associated with operational disruptions due to nefarious cybersecurity events. The ability to effectively provide threat intelligence to protect the automotive sector has become an operational requirement for its global automotive members. In August of 2015, the Auto-ISAC was incorporated in the State of Delaware as a 501(c) (6) not-for-profit organization. For more information on Auto-ISAC, visit www.automotiveisac.com.

 

Summary of Position
The Auto-ISAC Cyber Intelligence Analyst (IA) supports the Auto-ISAC Senior Intelligence Coordinator (IC) on all matters related to the mission of sharing timely and actionable intelligence. The IA produces timely, comprehensive, and customized intelligence products to enable member’s decision-makers to mitigate risks from actual or emerging threats to their products and services. The IA works closely with other Auto-ISAC Member intelligence analysts and ensures proper handling of information.


The IA performs the following functions:

  • Supports day-to-day operational aspects of the Auto-ISAC Analyst Working Group (AWG) as directed by the IC.

  • Cultivates intelligence from various sources, analyzes information, and develops timely, comprehensive, and customized intelligence products to enable members to mitigate risks from actual or emerging threats to automotive products and services.

  • Contributes to and helps maintain the Auto-ISAC collaboration platform, which serves as the central repository of member-shared information, and the hub for member discussion.

  • Conducts in-depth research, documentation, and intelligence analysis of cyber threats against the automotive industry.

  • Develops and maintains a comprehensive picture of the automotive global threat environment to include but not limited to threats that could affect brand, reputation, fraud, mobile, social media, internal lines of business and members.

  • Maintains a working knowledge of the broad cyber threat and geopolitical landscape.

  • Collaborates with member companies to analyze threats, vulnerabilities, and supports mitigation design and development.

  • Ensures learning, collaboration and information sharing meets the needs of Auto-ISAC members and follows the information sharing guidelines in the Auto-ISAC Membership Agreement and Operating Rules.

Responsibilities, Expectations, and General Areas of Evaluation
The intelligence operations are the heartbeat of the Auto-ISAC’s mission and a critical function for supporting Auto-ISAC members in intelligence reporting, mitigation and other relevant operational aspects. The Auto-ISAC Cyber Intelligence Analyst reports to the Senior Intelligence Coordinator and supports the Program Operations Manager (POM) and the Executive Director (ED) in product cybersecurity intelligence operations. This is an exempt level position.


The IA supports the IC in ensuring that meetings and events are conducted professionally, within the mission, direction, policy, and values of the organization and to the benefit of its member's interests and aligned to the Board’s directions. The IA is responsible for building trusted relations with member analysts and ensuring the understanding of proper handling of data and the importance of sharing threat intelligence. The IA is accountable for supporting and accomplishing all aspects of intelligence operations, to include performing the following functions:

  • Supports day-to-day operational aspects of the Auto-ISAC Analyst Working Group (AWG) as directed by the Senior IC.

  • Cultivates intelligence from various sources, analyzes information, and develops timely, comprehensive, and customized intelligence products to enable members to mitigate risks from actual or emerging threats to product, and services.

  • Contributes to and helps maintain the Auto-ISAC collaboration platform, which serves as the central repository of member-shared information, and the hub for member discussion.

  • Conducts in-depth research, documentation, and intelligence analysis of cyber threats against the automotive industry.

  • Develops and maintains a comprehensive picture of the automotive global threat environment to include but not limited to threats that could affect brand, reputation, fraud, mobile, social media, internal lines of business and members.

  • Maintains working knowledge of the broad cyber threat and geopolitical landscape.

  • Collaborates with member companies to analyze threats, vulnerabilities, and support mitigation.

  • The IA conducts all other duties as tasked and assigned, as deemed necessary by the Auto-ISAC management, to further the interests of the organization and its members.

  • Desired Skills and Experience:

  • Industry relevant knowledge and expertise in automotive, cybersecurity, engineering, and/or intelligence handling.

  • Excellent organizational and analytical skills.

  • Excellent written and verbal communication and presentation skills.

  • Supports and promotes an environment amongst members that enables learning, collaboration and information sharing.

  • Familiarity with cyber threat landscape, geopolitical issues that could have cyber impacts, security vulnerabilities, exploits, malware, digital forensics, network security

  • Experience with threat intelligence / collaboration platforms.

  • Understanding of the Intelligence Lifecycle

  • Experience working in a security / intelligence operations or fusion center a plus

  • Experience with table top exercises and other learning environments, such as hackathons a plus.

  • Ability to think critically to identify potential threats to the sector, to research the nature of the threats and effectively communicate information concerning the threats to a large and diverse audience.

  • Ability to communicate with executives and stakeholders in non-technical terms while accurately encompassing risk, impact, likelihood, containment, remediation activities, and threat actor tactics, techniques, and procedures (TTPs)

  • Ensures all processes and data is handled as outlined in Auto-ISAC Operating Rules

  • Able to prioritize effectively, handle multiple tasks simultaneously and consistently turn in high-quality work without close supervision.

  • Start-up mentality and understanding of small-team performance and dynamics.

  • Ability to maintain professionalism in challenging situations

  • Ability to work in a fast-paced environment independently and meet aggressive deadlines

  • Strong commitment to excellent membership service.

Key Competencies

  • Cybersecurity, engineering, network security or automotive a plus

  • Written and Oral Communication

  • Critical thinking and problem-solving skills

  • Planning and organizing

  • Decision-making

  • Team work

  • Self-Motivation

  • Conflict management

  • Adaptability / Flexibility

  • Stress tolerance

  • Customer Service


Education Requirements
An undergraduate (Bachelor’s) degree is preferred with 3+ years’ work experience in threat intelligence and information sharing.


Qualifications:

  • At least 3+ years of relevant professional experience.

  • Strong organizational and time management skills.

  • Demonstrated experience in written and presented analysis.

  • Demonstrated experience with Microsoft Office suite, SharePoint or other files server administration and collaboration platforms.

  • Demonstrated experience working and achieving assigned outcomes with minimal oversight and supervision in organizations with diverse, virtual teams.

  • Strong commitment to excellent membership service.

  • Flexibility, agility and sense of humor a must!

 

The Auto-ISAC organization is an equal opportunity employer committed to selecting personnel of impeccable qualifications based on demonstrated ability and potential for excellence without regard to race, color, religion, sexual, national origin, disability, marital status or sexual preference/orientation per all applicable federal and state employment laws.

 

Salary Range

Commensurate with experience.


Location

This position is located at 20 F Street, NW, Suite 700, Washington, D.C. 20001.

 

Compensation and Benefits:
This is a full-time employee position with a yearly compensation commensurate with level of experience. The position is salary plus benefits and compensation includes –

  • Salary reflective of experience, skillset, education, and value brought to the organization

  • Paid holidays and personal time off (PTO)

  • Medical, dental and vision plans

  • IRA plan with company contribution match

  • Potential annual bonus plan

 

The employee is an at will employee and shall be subject to a probationary period and review no later than 180 days from initial employment and with semi-annual period of performance thereafter. Benefits shall be as set at the time of employment but may be subject to annual adjustment based upon policies established or approved by the Board of Directors and changes in the employee’s status.


Counselling on performance and guidance on any changes made to the position description and/or expectations of performance shall be provided by the Executive Director. Consideration of wage adjustments and awards for sustained, superior performance shall be made once annually based largely upon the performance review.

Please reload

© 2019 National Council of ISACs

  • NCI LinkedIn
  • NCI Twitter