Threat Intelligence Global Manager (m/f/d)

Job Description

Hiring location: this opportunity is open to be hired in Madrid or Lisbon. Please, submit your CV in English.

Contract Type: is offered in either full-time or part-time employment.

Looking for a chance to create a positive impact on our society?

Siemens CYS Defense is a team of dedicated Security professionals with the mission to secure Siemens’s IT, OT and Products worldwide. Siemens CYS Defense includes the Threat Intelligence team, which monitors the current Cyber Threat Landscape for Siemens and assesses its potential impact to the enterprise, conducts forensic investigations and assesses the security of (mobile) applications. Based on that know-how and the latest technological trends.

As a Manager for Threat Intelligence (f/m/d) you will:

  • Provide intelligence to support decision making process concerning emergent and current threats targeting Siemens by developing processes and procedures to gather, identify, analyze, and distribute tailored intelligence products.
  • Coordinate the threat intelligence team’s efforts in translating raw sensor data, reports, and other intelligence feeds into actionable intelligence to drive proactive measures and appropriately prioritize response activities.
  • Define the formats (content, cadence, target audiences) to optimally inform our stakeholders about their relevant threat landscape
  • Define deliverables and service levels to document and maintain a structured service delivery
  • Define pricing and delivery models for MSSP scenarios
  • Define and implement strategies for working with external threat intelligence vendors
  • Support our connecting to the cyber threat intelligence community internally and externally
  • Collect, organize, analyze, and refine information about known and emerging cyber security threats, including novel tactics, techniques, and procedures (TTPs) used by attackers to potentially target Siemens’ business or customers.
  • Leverage internal and external resources to enrich relevant information to deliver contextualized intel to acting teams in a timely manner.
  • Help improving Siemens CYS internal playbooks and toolset by contributing with improvement ideas about processes, functionalities, and new features.

To make a difference, you must have:

  • Working knowledge of technical and organizational aspects of information security, e.g. regarding detection of and reaction to intrusion attempts / attacks in IT applications, systems, and networks.
  • Expert knowledge of fundamental Threat Intelligence concepts (terminology, tools, processes, etc.). Experience with formal aspects of Threat Intelligence (e.g. ACH, analytical biases, etc.) is a plus.
  • Experience with common threat intelligence models, tools, sources, and feeds.
  • Strong analytical skills with the ability to collect, organize, analyze, and disseminate significant amounts of information with attention to detail and accuracy.
  • Knowledge of cyber threats and vulnerabilities: how to properly identify, triage, and remediate threats based on threat intelligence as well as on analysis of security events, log data and network traffic.
  • Understanding of technical and human aspects of cyber threats and security.
  • Knowledge of models describing cyber-attacks (e.g., reconnaissance, scanning, enumeration, persistency, lateral movement, exfiltration) such as Cyber Kill Chain, Diamond model or MITRE ATT&CK.
  • At least 5 years of relevant work experience in at least one of the following areas: Cyber security operations, Incident Response, IT Forensics, Penetration testing.
  • Working experience in the area of Cyber Threat Intelligence.
  • Relevant Industry Certifications such as SANS/GIAC (for example, GCIA, GCIH, GCTI, GNFA, GCFA), CompTIA Security+ CISSP, CISA, CISM are desirable.
  • Negotiation skills and ability to set and track priorities and deadlines.
  • Able to work on a very tight schedule, while keeping track of tasks progress and deadlines.
  • Able to structure complex problems and find practicable solutions to those.
  • Advanced English and Communication skills: clear and concise communication; able to address stakeholders of different backgrounds and technical expertise.
  • Ability to interact with both technical experts and non-technical staff in exceptional situations to ensure correct actions are taken and communication partners collaborate
  • Ability to present and explain complex technical topics to executives, management and technical experts
  • Ability to work in a self-guided and result-oriented fashion with the clear desire to become an acknowledged technical expert in your own area of expertise
  • Fluent in spoken and written English, including security terminology; proficiency in German is a plus

Diversity at Siemens is our source of creativity and innovation. Having different types of talent and experience makes us more competitive and better able to respond successfully to society's demands. That's why we value candidates who reflect the diversity we enjoy in our company.Siemens is committed to equal opportunities for women and men, as well as diversity as a source of creativity and innovation.  Having different types of talent and experience makes us more competitive and better able to respond successfully to the society's demands. That's why we value candidates who reflect the diversity we enjoy in our company.


Organization: Cybersecurity

Company: Siemens S.A.

Experience Level: Experienced Professional

Full / Part time: Full-time

Can't find what you are looking for?

Let's stay connected

Can't find what you are looking for?