Threat Intelligence Analyst

About the role

IMDA is hiring a Threat Intelligence Analyst to strengthen cyber situational awareness across the Infocomm and Media sectors. This role focuses on monitoring emerging threats, turning research into actionable intelligence, and supporting security decision-making for stakeholders.

Key responsibilities

• Partner with a team of threat intelligence specialists to keep track of the threat landscape for the Infocomm and Media sectors.
• Monitor adversary tactics and techniques and turn findings into timely, accurate, and relevant intelligence for stakeholders.
• Define, review, and refine intelligence requirements and collection sources that support analysis and production.
• Investigate cyber risks targeting telecommunications, media infrastructure, and related systems, and suggest mitigations and detection use cases/signatures.
• Create intelligence outputs such as ad-hoc threat reports, monthly trend updates, annual threat landscape reports, and briefing materials.
• Contribute research and analysis to cyber incident investigations, threat and cyber risk assessments, malware analysis, and cyber exercises.
• Maintain clear documentation and keep operational processes current.

Requirements

• Applicants should have a background in information security, or a bachelor’s degree in engineering, computer science, information security, or an equivalent field.
• At least 5 years of experience in threat intelligence, including 1 year or more in a team leadership capacity.
• Proven ability to prepare and deliver threat briefings to senior management, technical teams, operations groups, and customers.
• Experience producing cyber threat or vulnerability research and writing incident or threat assessment reports using MITRE ATT&CK, indicators of compromise/attack, and recommended mitigations.
• Hands-on familiarity with threat intelligence platforms and integrations with security tools.
• Working knowledge of telecommunications, broadcast, media equipment and technologies, as well as enterprise environments.
• Experience with network traffic or log analysis, computer or mobile forensics, or malware analysis.
• Experience building and refining threat detection queries in EDR tools is an advantage.
• Understanding of network and operating system security, including Windows and Linux, plus exposure to cloud architecture or application security.
• Professional certifications such as CREST CCTIM, CRTIA, CPTIA, GIAC GCFA, GREM, GCFE, or GCIH are relevant.
• Strong analytical thinking, a proactive mindset, and the ability to handle complex challenges.
• Good communication and interpersonal skills.

Additional information

This is a full-time onsite role based in Singapore. No salary, stipend, number of openings, application deadline, or start date was provided in the source.