5+ years of experience as a threat intelligence analyst, network forensics analyst, or IT security analyst.
Deep working knowledge of IP networking and services; including standard Internet protocols such as DNS, HTTP/HTTPS, and VPNs, as well as routing protocols.
Experience developing indicators of compromise (IOCs) and an understanding of how they can be used/deployed in various detection architectures at host or network level.
Subject Matter Expert (SME) for regional or cyber threat actors TTPs
Experience with basic malware analysis and network analysis (YARA, Sigma, Suricata, Sandbox reporting)