Job Title
Cyber Threat Analyst Associate (SIEM, EDR or threat intel platforms.)
Summary Of The Role
You will collaborate with experienced cybersecurity specialists across multiple regions to analyze and respond to
emerging or unvalidated threats, alerts, and signals generated from threat intelligence, vulnerability intelligence, continuous threat exposure management, and Darknet monitoring.
This role is wellsuited for candidates interested in growing their cybersecurity expertise and developing effective investigative skills. It offers opportunities to build on your Security Operations Center (SOC) experience and expand into Threat and Vulnerability Intelligence, Threat Hunting, and Exposure Monitoring.
In This Role You Will / Your Main Responsibilities
- Threat Analysis: Review alerts from threat intelligence, vulnerability sources, and exposure monitoring tools to assess potential risks.
- Initial Investigation: Transition from an alert to an investigation to understand the scope and validity of possible threats.
- Phishing Analysis: Support detection and analysis of phishing and spearphishing activity, including identifying exposed data or compromised credentials.
- Vulnerability Assessment: Conduct initial reviews of vulnerability scanner outputs, validate exposure, and escalate confirmed vulnerabilities based on severity, exploitability, and potential impact on the organization's attack surface (the systems and assets exposed to threats).
- Framework Application: Map observed behaviors to cybersecurity models such as MITRE ATT&CK (Adversarial Tactics, Techniques, and Common Knowledge) and the Cyber Kill Chain.
About The Ideal Candidate
- 12 years of experience in cybersecurity, threat analysis, SOC work, or related fields.
- Familiarity with SIEM (Security Information and Event Management), EDR (Endpoint Detection and Response), or threat intelligence platforms.
- Basic understanding of Darknet and Deep Web Monitoring (reviewing online sources for leaked or exposed data), including recognition of possible activity involving Initial Access Brokers (IABs) and attempts to misuse an organization's identity online.
- Foundational knowledge of commonly used Threat Intelligence and Adversary Profiling concepts such as MITRE ATT&CK, the Diamond Model, the Cyber Kill Chain, and the Pyramid of Pain.
What We Can Offer You
- A critical mission and purpose - At Amadeus, you'll power the future of travel with a critical mission and extraordinary purpose.
- A truly global DNA - Everything at Amadeus is global, from our people to our business, which translates into our footprint, processes, and culture.
- Great opportunities to learn - Learning happens all the time and in many ways at Amadeus, from on-the-job training to formal activities, and daily interactions.
- A caring environment Amadeus fosters a caring environment that supports both professional growth and personal well-being.
- A complete rewards offer - Amadeus provides attractive compensation packages, including salary, bonus, caregiving and health benefits.
- A flexible working model - Embrace our flexible working model, enabling you to excel wherever and however you work best.
- A diverse, equitable, and inclusive community We are committed to enabling each employee to reach their full potential by fostering a culture of belonging and fair treatment.
- A Reliable Company - Trust and reliability are fundamental to shaping our relationships with customers, partners, and employees.
Diversity & Inclusion
Amadeus aspires to be a leader in Diversity and Inclusion in the tech industry, enabling every employee to reach their full potential by fostering a culture of belonging and fair treatment, attracting the best talent from all backgrounds, and as a role model for an inclusive employee experience.
Amadeus is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to gender, race, ethnicity, sexual orientation,age, beliefs, disability or any other characteristics protected by law.
