Cyber Threat Intel Engineer

At Genworth, we empower families to navigate the aging journey with confidence. We are compassionate, experienced allies for those navigating care with guidance, products, and services that meet families where they are. Further, we are the spouses, children, siblings, friends, and neighbors of those that need care—and we bring those experiences with us to work in serving our millions of policyholders each day. 

We apply that same compassion and empathy as we work with each other and our local communities. Genworth values all perspectives, characteristics, and experiences so that employees can bring their full, authentic selves to work to help each other and our company succeed. We celebrate our diversity and understand that being intentional about inclusion is the only way to create a sense of belonging for all associates. We also invest in the vitality of our local communities through grants from the Genworth Foundation, event sponsorships, and employee volunteerism.

Our four values guide our strategy, our decisions, and our interactions:

• Make it human. We care about the people that make up our customers, colleagues, and communities.
• Make it about others. We do what's best for our customers and collaborate to drive progress. 
• Make it happen. We work with intention toward a common purpose and forge ways forward together. 
• Make it better. We create fulfilling purpose-driven careers by learning from the world and each other.

POSITION TITLE

Cyber Threat Intel Engineer

POSITION LOCATION

Richmond, VA

Lynchburg, VA

YOUR ROLE

Your role as a Cyberthreat Intelligence Engineer will be to enhance the organization’s cybersecurity structure by designing, overseeing, and implementing a robust cyberthreat intelligence program that aims to proactively identify, assess, and mitigate cyberthreats and vulnerabilities. In your role you will work closely with key IT stakeholders as well as third parties as needed.

What you will be doing

• Develop and maintain a strategic cyber threat intelligence framework, aligning it with the organization's security goals and risk tolerance
• Oversee the collection of cyber threat data from various sources, including open-source feeds, internal logs and industry-specific resources
• Integrate threat intelligence into the organization's security tools, processes and incident response procedures
• Develop and manage the technical infrastructure for threat data storage, analysis and dissemination
• Collaborate with internal teams to share threat intelligence and best practices
• Stay updated on emerging cyber threats, techniques and tools, and adapt the intelligence program accordingly
• Provide training and awareness programs to ensure CSIRT understand the importance of threat intelligence and how to respond to it
• Develop threat models for integration with vulnerability management practices
• Utilize industry-standard strategies and methodologies to conduct threat hunting exercises
• Participate as a security advisor for various ad-hoc security-related projects dictated by business and Information Technology developments
• Mentor and train CSIRT analysts in areas of detection engineering, automation, and threat hunting
• Develop high-fidelity detection rules
• Assist with incident investigations

What you bring

• Bachelor's degree in Information Technology, Computer Science, or related degree or equivalent years of experience
• 3+ years of experience in threat intelligence, cybersecurity or related roles
• Strong understanding of cyber threats, vulnerabilities and attack methodologies
• Experience with security information and event monitoring (SIEM) tools
• Proficiency in computer network defense (CND) tools to enhance an optimal level of security
• Understanding of network security protocols and architectures
• Excellent analytical and problem-solving skills
• Strong communication and interpersonal skills
• The ability to design and utilize security applications to understand and mitigate risk.

Nice to have

• Proficiency with threat intelligence platforms (TIPs) and tools like MISP, Anomali, or Recorded Future
• GIAC Cyber Threat Intelligence (GCTI), Certified Information Systems Security Professional (CISSP) or similar

Employee Benefits & Well-Being

Genworth employees make a difference in people’s lives every day. We’re committed to making a difference in our employees’ lives.

• Competitive Compensation & Total Rewards Incentives
• Comprehensive Healthcare Coverage
• Multiple 401(k) Savings Plan Options
• Auto Enrollment in Employer-Directed Retirement Account Feature (100% employer-funded!)
• Generous Paid Time Off – Including 12 Paid Holidays, Volunteer Time Off and Paid Family Leave
• Disability, Life, and Long Term Care Insurance
• Tuition Reimbursement, Student Loan Repayment and Training & Certification Support
• Wellness support including gym membership reimbursement and Employee Assistance Program resources (work/life support, financial & legal management)
• Caregiver and Mental Health Support Services

ADDITIONAL

• At this time, Genworth will not sponsor a new applicant for employment authorization for this position