Director of Cyber Threat Intelligence

Employee Applicant Privacy Notice Who we are: Shape a brighter financial future with us. Together with our members, we’re changing the way people think about and interact with personal finance. We’re a next-generation financial services company and national bank using innovative, mobile-first technology to help our millions of members reach their goals. The industry is going through an unprecedented transformation, and we’re at the forefront. We’re proud to come to work every day knowing that what we do has a direct impact on people’s lives, with our core values guiding us every step of the way. Join us to invest in yourself, your career, and the financial world. Role Overview The Director of Cyber Threat Intelligence is responsible for leading the development and execution of a financial institution's cyber threat intelligence program. This role involves acting as the key point of contact for cyber intelligence issues, anticipating future security needs, and managing multi-disciplinary teams of technical and contextual analysts to protect the organization, its employees, and its members from cyber threats. This position serves as a cross functional glue that enables security to integrate closely with stakeholders across the business through threat informed decision making based off of intelligence and data driven analyses.This role acts as a crucial, cross-functional link, enabling the security team to seamlessly integrate with business stakeholders. This is achieved through data-driven analyses and intelligence that allow decision making to be threat informed. Key Responsibilities Program Leadership Strategy Develop the CTI Program: Lead the creation and maturation of a comprehensive threat intelligence program tailored specifically to the financial services industry, ensuring it aligns with business requirements and regulatory environments. Team Management: Oversee, train, and mentor a team of threat intelligence engineers and analysts, fostering a culture of continuous learning. This includes managing personnel actions, budgets, and operational projects. Strategic Direction: Clearly define program roadmap through gap analysis, provide thought leadership to improve awareness across the organization, and act as a strategic advisor to management and steering committees. Intelligence Collection Analysis Threat Intelligence Platform: Deploy and maintain a threat intelligence platform responsible for the intake, structuring, and distribution of threat intelligence to relevant teams. Data Ingestion Aggregation: Manage the engineering processes for ingesting threat intelligence data from commercial, open-source, and internal resources. Threat Monitoring Research: Continuously monitor the threat landscape to identify emerging threats, vulnerabilities, and the macroeconomic interests of attackers. Requirements Management: Lead collection strategies focusing on Priority Intelligence Requirements (PIR) and Strategic Intelligence Requirements (SIR), identifying intelligence gaps and developing plans to mitigate risks. Data Analysis: Conduct qualitative and quantitative analysis of large datasets and multiple data sources to assess potential risks to the organization's international operations and assets. Reporting Dissemination Product Review: Draft, review, and edit intelligence products and briefings from multiple sources. Stakeholder Communication: Present complex technical data and risk assessments in clear, non-technical terms to diverse audiences, including senior executives and incident response teams. Documentation: Write and revise policies, standards, guidelines, and procedures related to cyber risk and intelligence. Cross-Functional External Collaboration Internal Partnership: Work closely with security operations, IT, Legal, Fraud Risk, and other stakeholders to integrate intelligence into enterprise workflows and address control gaps. External Networking: Collaborate with external part ... (truncated, view full listing at source)