Cyber Threat Intelligence Analyst

Description:

American International Group, Inc. (AIG), a leading global insurance organization, is seeking an experienced and skilled Cyber Threat Intelligence Analyst to join its Information Technology team in Charlotte, NC. AIG operates in around 70 countries, offering a wide range of property casualty insurance products and services.

In this role, you will be a critical member of the Cyber Threat Intelligence (CTI) team, responsible for collecting, analyzing, and operationalizing intelligence on cyber adversaries. The position requires a deep understanding of malicious cyber activities, emerging threats, and geopolitical factors influencing cyber risks. You will contribute to developing advanced analytical frameworks, tools, and research methodologies to detect, assess, and mitigate cyber threats effectively.

The role involves conducting in-depth investigations of threat actors, tactics, techniques, and procedures (TTPs), malware, phishing campaigns, and indicators of compromise (IOCs) using a variety of intelligence sources including OSINT, dark web monitoring, commercial feeds, and internal telemetry. You will be responsible for producing actionable intelligence reports, visual presentations, and strategic assessments to support stakeholders across the organization.

Key Responsibilities

• Collect, process, catalog, and document cyber threat intelligence using available tools and sources.

• Conduct deep-dive investigations into cyber adversaries and campaigns.

• Produce regular intelligence reports, briefings, and ad-hoc research for various stakeholders.

• Map adversary behavior to MITRE ATT&CK framework and develop intelligence-driven detection strategies.

• Mentor junior analysts to enhance tradecraft standards and foster a culture of curiosity and critical thinking.

• Collaborate with other teams to ensure timely, relevant, and actionable intelligence delivery.

• Triage and analyze malicious content using virtual machines, sandboxes, and safe browsing techniques.

Requirements

• Bachelor’s degree in cybersecurity, computer science, intelligence studies, or related discipline.

• 5+ years of experience in cybersecurity, with at least 4 years in cyber threat intelligence.

• Strong knowledge of cyber adversary tools, infrastructure, and malware families.

• Experience with threat intelligence platforms such as ThreatConnect, CrowdStrike, Mandiant, Anomali, Recorded Future, Silobreaker, or Maltego.

• Proficiency with SIEMs (e.g., Splunk, Sentinel, Falcon LogScale), EDR/XDR, and threat detection pipelines.

• Understanding of enterprise-level mitigation strategies and reverse engineering/malware analysis (a plus).

• Strong written and oral communication skills suitable for both technical and executive audiences.

• Familiarity with operating systems, VPN technologies, networking technologies, and enterprise network security.

• Experience working in regulated industries (finance, insurance, healthcare, or critical infrastructure) is preferred.

• Knowledge of foreign languages is a plus.

Benefits

• Competitive benefits package including health, wellbeing, financial security, and professional development programs.

• Bonus eligibility based on company incentive plan.

• Inclusive and collaborative work culture with opportunities for continuous learning and career growth.