Job Description

Job Title: Cyber Threat Intelligence Specialist

Primary responsibilities:

Creates operational and strategic reports with technical analysis on threats, actors and Advanced Persistent Threat groups relevant to our company.Publishes tactical reporting on open-source reports relevant to the healthcare, pharmaceutical, manufacturing services sectors.Collects raw data from intelligence feeds, open-source resources, partner groups, and internally-aligned cybersecurity elements as part of an all-source intelligence effort.Builds, updates, and maintains cyber actor threat profiles.Monitors and actions daily intelligence operations feeds.Works closely with other functions of the Cyber Fusion Center and stakeholders to improve existing processes, detection and response capabilities, and overall security posture.Responds to high-priority requests for information and intelligence from senior management.

Required Experience and Skills:

A Bachelor's degree in Computer Science, Information Security, or a STEM (Science Technology, Engineering, and Mathematics) degree.3+ years of experience in cybersecurity defence operations, preferably in an intelligence-driven environment.Intimate knowledge of the MITRE ATT&CK Framework, Cyber Kill Chain, Diamond Model of Intrusion Analysis, Pyramid of Pain as well as common attack vectors, including advanced adversaries (nation state/financial motivation).Ability to demonstrate analytical expertise, close attention to detail, excellent critical thinking, logic, curiosity, and solution orientation and to learn and adapt quickly in a dynamic environment.Excellent written and oral communication skills.Bash/Shell scripting or Python programming skills.

Nice to have: 

SANS/GIAC (GCIH, GCFA, GREM, GDAT, GCTI) or CREST certifications.Experience with exploitation techniques, static malware analysis and reverse engineering.Previous experience in regulated industry.Ability to display foreign language proficiency in Japanese, Mandarin, Korean.

Current Employees apply HERE

Current Contingent Workers apply HERE

Search Firm Representatives Please Read Carefully 
Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company.  No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. 

Employee Status:

Regular

Relocation:

VISA Sponsorship:

Travel Requirements:

Flexible Work Arrangements:

Hybrid

Shift:

Valid Driving License:

Hazardous Material(s):

Required Skills:

Adaptability, Computer Science, Cyber Kill Chain, Cyber Operations, Cybersecurity, Cyber Threat Intelligence, Digital Forensics, Language Assessments, Malware Reverse Engineering, Mathematics, Oral Communications, Penetration Testing, Reverse Engineering, Second Language, Security Compliance, Security Operations, SLA Management, Vulnerability Scanning

 Preferred Skills:

Job Posting End Date:

06/20/2025

*A job posting is effective until 11:59:59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date.

Requisition ID:R350099