Descrição
Join our team at AMGEN Capability Centre Portugal, number 1 company in Best Workplaces - https://www.greatplacetowork.pt/ - ranking in Portugal (category 201-500 employees) by the Great Place to Work Institute. We have a team of over 300 talented people and more than 35 different nationalities, diverse areas of expertise and professional experience that are shaping the future of healthcare. This is your chance to explore a world of opportunities in different areas such as Cybersecurity, Data & Analytics, Digital, Technology and Innovation, Finance, General & Admin, Human Resources, Regulatory Affairs and many more. In Lisbon's city center, our AMGEN office fosters innovation, excellence, and inspiration. Come thrive with us at AMGEN, supporting our mission To Serve Patients. What we do at AMGEN matters in people’s lives.
About The Role
Role Description:
Our Cyber Threat Intelligence (CTI) analysts play a vital role in enhancing Amgen’s cyber defense posture by identifying, analyzing, and disseminating intelligence related to cyber threats.
This role is responsible for gathering and correlating information from various internal and external sources to provide actionable insights that help prevent, detect, and mitigate cybersecurity risks.
As a CTI analyst, you'll partner with SOC, incident response, and threat hunting teams to proactively identify indicators of compromise (IOCs), tactics, techniques, and procedures (TTPs), and emerging threat actors targeting the healthcare and biotech sectors. You'll also contribute to the development of threat models, intelligence reports, and executive briefings.
LIVE
- What You Will Do
- Collect, analyze, and assess cyber threat intelligence from open-source intelligence (OSINT), commercial feeds, government sources, and internal telemetry.
- Develop and maintain profiles of threat actors, their capabilities, infrastructure, and campaigns relevant to Amgen’s industry.
- Produce actionable intelligence reports, threat advisories, and strategic briefings for technical teams and senior stakeholders.
- Correlate threat intelligence with internal events to support investigations and improve detection capabilities.
- Assist in the enrichment of threat hunting and incident response efforts by providing contextual intelligence and TTP mapping.
- Track geopolitical and sector-specific threats to anticipate risks that could affect business operations.
- Collaborate with SOC and engineering teams to improve detection rules and defense mechanisms based on threat intelligence findings.
- Maintain situational awareness of the cyber threat landscape and emerging risks to healthcare, life sciences, and biotechnology sectors.
- Support the configuration and maintenance of threat intelligence platforms (TIPs) and threat feed integrations.
- Contribute to purple team and threat emulation exercises to validate defensive controls and response capabilities.
WIN
What We Expect Of You
- We are all different, yet we all use our unique contributions to serve patients. The committed professional we seek is passionate about cyber security and a strong cross-functional collaborator with these qualifications:
- Bachelor’s degree with practical experience in Cyber Threat Intelligence, Threat Hunting, or a similar security role
- Strong understanding of the cyber threat landscape, adversary tactics (MITRE ATT&CK), and threat actor methodologies.
- Experience conducting intelligence analysis using OSINT, dark web monitoring, threat reports, and threat intelligence platforms.
- Ability to write concise, impactful threat intelligence reports tailored to various audiences.
- Familiarity with cyber kill chain, diamond model, and intelligence lifecycle.
- Basic scripting knowledge (Python, PowerShell) to support enrichment and automation of threat intelligence.
- A recognized cyber security professional qualification
- Analytical mindset and curiosity to track complex threats and trends.
- Excellent communication and collaboration skills, especially in a cross-functional, global environment.
- Ability to handle ambiguity and prioritize in a dynamic threat landscape.
- Commitment to ongoing learning and development in the CTI field.
THRIVE
What You Can Expect Of Us