Cyber Defense – Threat Intelligence Lead (Manager) Job in Dubai | KPMG



The candidate should have deep experience both on organizational aspects of setting up threat intelligence (governance, operating model, interactions map, communications, threat briefings), as well as technical sub-domains of threat intelligence with proven expertise (as applicable) along with out-of-the-box thinking ability across: Cyber Threat Detection, Digital Risk Protection, Brand Protection, Deep and Dark Web analysis, with some elements of digital forensics and incident response.

Job Responsibilities:

  • Define a detailed plan to set up threat intelligence services
  • Work on and deliver project deliverables including threat intelligence program development and regular reporting
  • Manage multiple activities on threat intelligence such as governance set up, technical set up and service delivery of day-to-day threat intelligence activities in parallel
  • Manage a threat intelligence team and their respective roles and responsibilities
  • Document technical analysis and articulate outcomes to non-technical audiences
  • Work in a collaborative team alongside clients to provide valuable insights
  • Take on Project management responsibilities over time
  • Participate in business development activities adhering to the firm’s risk management guidelines
  • The role requires full time presence at the client site in Abu Dhabi.

Job Requirements:

  • Strategic and tactical thought process for analyzing threat intelligence feeds from curated content
  • Excellent team player and leader
  • Excellent communication and presentation skills
  • Excellent report writing skills
  • Previous experience in setting up a world class threat intelligence service
  • Previous experience running threat intelligence as a service for a client or operating an internal threat intelligence team within an organization
  • Experience around core threat intelligence capability and subject matter expertise
  • Intimate understanding and familiarity with the intelligence cycle
  • Ability to research data across surface, dark, and deep web content
  • Analyze content from threat intelligence platforms to eliminate false positives Experience reviewing and assessing logs for anomalous activity indicating the presence of a threat
  • Ability to identify threat actor attack methods and track their developments
  • Experience using the Diamond Threat Model or Cyber Kill Chain
  • Familiarity with STIX, TAXII, and other industry standards
  • Scripting (such as Python) and Regular Expressions skill to process feeds and extract relevant information
  • Ability to process, organize, analyze, and assist in contextualization of incident indicators
  • Knowledge of and experience with standard network logging formats, network management systems and network security monitoring systems, security information and event management, network packet analysis tools and forensic analysis tools
  • Knowledge of and experience with different components and tools around open source and proprietary controls and tools to perform threat intelligence
  • Extensive experience conveying complex information in simple, succinct explanations and presentations
  • Strong project planning and management skills
  • Strong communication and stakeholder management skills
  • Excellent written and verbal communication skills in English
  • Ability to create a threat intelligence project plan covering set of governance, policies, procedures, operating model, framework
  • Ability to create a threat intelligence service framework


To apply for this job please visit

Job Overview
Job Location