Cyber Threat Intelligence Analyst

Kroll Cyber Threat Intelligence (CTI) is seeking a skilled and motivated Cyber Threat Intelligence Analyst based in Bangalore, India who is passionate about identifying, analyzing, and translating cyber threat intelligence into actionable insights for global business clients. This role supports international engagements and requires strong analytical skills, collaboration across regions, and a client‑focused mindset.

Day-to-day responsibilities

• Identify, collect, and analyze cyber threat intelligence from open web, deep web, and dark web sources.
• Conduct exploratory and targeted investigations related to cyber threats, data leaks, fraud, brand abuse, and threat actor activity.
• Provide direct support to incident response efforts through threat research, indicator enrichment, and rapid investigative analysis.
• Assist with incident detection, vulnerability assessments, and digital footprint monitoring to identify emerging risks and exposures.
• Produce clear, concise, and actionable intelligence reports and briefings for both technical and non‑technical stakeholders.
• Participate in client communications, including status updates, investigative briefings, and clarification of findings under guidance from engagement leads.
• Support project and task management responsibilities by tracking assigned workstreams, meeting delivery timelines, and ensuring alignment with engagement expectations.
• Manage multiple concurrent tasks while meeting quality, responsiveness, and utilization expectations in a consulting model.
• Collaborate closely with CTI peers, incident responders, and engagement leads to ensure successful client outcomes.

Essential Traits:

• Willingness to support global clients, which may occasionally require flexible working hours overlapping with US or EMEA time zones.
• Strong sense of ownership, professionalism, and commitment to client satisfaction.
• Continuous learning mindset in a fast‑evolving threat landscape.
• Demonstrated experience analyzing threats across the open web, deep web, and dark web.
• Prior exposure to incident response support, security operations, or threat detection activities.
• Working knowledge of vulnerability assessments, exposure management, and digital footprint monitoring.
• Strong analytical, investigative, and critical‑thinking skills.
• Excellent written and verbal English communication skills.
• Ability to work independently and as part of a distributed, global team.

Prerequisites:

• 1–3+ years of experience in cyber threat intelligence, security research, SOC, or cyber investigations.
• Experience working in consulting, intelligence, MDR, or managed security services environment.
• Familiarity with OSINT, CTI, and investigative tools (e.g., dark web forums, marketplaces, breach data sources).
• Understanding of cybercrime ecosystems, threat actor TTPs, ransomware, fraud, or data‑theft operations.
• Relevant certifications (e.g., CEH, Security+, GCIA, GCTI, OSCP) are a plus.

#LI-SP1

#LI-Hybrid