Threat Intelligence Analyst

Who we are?

We are AB-InBev, a Global leading brewer and one of the largest consumer goods company in the world. We are proud owners of brands like Budweiser, Corona, Stella Artois, and other 500 local and regional brands. With 180,000 employees passionate about beer and operating in over 50 markets, our brands are sold in more than 150 countries worldwide.

AbInBev is expanding its technological footprint in Israel and opening an Innovation Technology Hub - The Beer Tech. After acquiring Weissbeerger with their cutting-edge Big Data product and technology, AB-InBev is now growing its Technology capabilities in our Tel Aviv brand new offices to develop Cybersecurity, Food Tech, and Agro-Tech.

Join our team to provide Cyber Security solutions to AB-InBev. We are looking for a Threat Intelligence Analyst.

Who are we looking for?

We are seeking a highly skilled and experienced Threat Intelligence Analyst to join our cybersecurity team. The Threat Intelligence Analyst will be responsible for leading efforts to identify, analyze, and mitigate cybersecurity threats targeting the organization. This role involves gathering, analyzing, and disseminating actionable intelligence from various sources to proactively reduce risks. The ideal candidate will have a deep understanding of cyber threats, attack techniques, threat actor behavior, scripting capabilities, intelligence methodologies, and will play a critical role in the organization’s security operations.

Responsibilities:

• Collect, analyze, and correlate threat intelligence from open-source, commercial, and internal sources.
• Identify and assess emerging threats, vulnerabilities, malware campaigns, and attack techniques.
• Investigate and analyze indicators of compromise (IOCs), tactics, techniques, and procedures (TTPs), and threat actor behavior.
• Create and deliver detailed threat intelligence reports, briefings, and intelligence summaries for technical and non-technical stakeholders.
• Share actionable intelligence with internal teams (SOC, Incident Response, Threat Hunting) to aid in detection, investigation, and response activities.
• Assist in developing detection rules and signatures (e.g., YARA, Snort) based on threat intelligence findings to strengthen the organization’s detection capabilities.
• Provide guidance on threat landscape trends to inform security architecture and defensive posture.
• Collaborate with Security Operations, Incident Response, and Threat Hunting teams to implement intelligence-driven detection and mitigation strategies.
• Leverage threat intelligence platforms to ingest, store, and correlate intelligence data.
• Work closely with cross-functional teams to understand evolving business risks and provide timely, relevant threat intelligence.
• Assist in the development of threat intelligence playbooks and procedures.

Experience:

• 3+ years of experience in threat intelligence.
• Experience working with threat intelligence platforms, such as MISP or similar.
• Experience with IOCs, TTPs, and threat actor profiling.
• Experience with YARA rules and detection signatures.
• Familiarity with threat intelligence formats (e.g., STIX, TAXII, IODEF) and data sharing standards.
• In-depth knowledge of current and emerging cyber threats (e.g., APTs, malware, ransomware, insider threats).
• Understanding of various attack vectors, including phishing, exploitation, social engineering, and web application vulnerabilities.
• Strong analytical skills with the ability to think critically and independently.
• Excellent written and verbal communication skills, with the ability to explain complex technical information to both technical and non-technical audiences.
• Ability to work effectively in a collaborative, team-oriented environment.
• Proactive attitude with a passion for cybersecurity and threat intelligence.

Advantages:

• GIAC Cyber Threat Intelligence (GCTI), Certified Threat Intelligence Analyst (CTIA), or similar certifications.
• Other relevant certifications such as CompTIA Security+, CISSP, or CISM are a plus.
• Strong understanding of network protocols, intrusion detection, and malware analysis.
• Proficiency in security tools such as SIEM (Splunk, ELK, etc.), IDS/IPS (Snort, Suricata), endpoint protection tools.