Role Description We are seeking a highly skilled Cyber Threat Intelligence (CTI) Analyst based in Greece to join our Threat Intelligence team. The ideal candidate is technically strong, analytically rigorous, and deeply familiar with adversary tradecraft. This role goes beyond monitoring feeds. You will analyze adversary behavior, correlate multi-source intelligence, map activity to MITRE ATT&CK, and produce actionable intelligence that drives detection engineering, incident response, and strategic security decisions. You will operate at the intersection of intelligence analysis, detection engineering, and adversary emulation. Responsibilities - Strategic & Tactical Intelligence - Analyze threat actor activity, campaigns, malware families, and TTP evolution. - Produce actionable intelligence reports for SOC, IR, and leadership. - Conduct threat landscape assessments and sector-specific risk analysis. - Track and profile APT groups, financially motivated actors, and emerging threats. - Technical Analysis - Extract and correlate IOCs (domains, IPs, hashes, infrastructure patterns). - Map adversary techniques to MITRE ATT&CK. - Analyze malware behavior reports and sandbox outputs. - Review PCAPs, logs, and telemetry to identify patterns and anomalies. - Support detection rule development (Sigma, YARA, Splunk, EDR queries). - Intelligence Engineering & Automation - Work with STIX/TAXII feeds and threat intelligence platforms. - Assist in automation of ingestion, normalization, and correlation pipelines. - Contribute to intelligence scoring models (risk scoring, actor confidence, exploit maturity). - Validate intelligence through internal telemetry and honeypot data (if applicable). - Cross-Team Collaboration - Support SOC during active investigations. - Provide adversary insights during incident response. - Contribute to purple-team exercises and threat emulation scenarios. - Present findings to technical and executive stakeholders. Qualifications - Strong understanding of: - Adversary TTPs - Kill Chain & MITRE ATT&CK framework - IOC lifecycle & enrichment techniques - Experience with: - Threat Intelligence Platforms (TIPs) - Malware analysis reports - Log analysis (Splunk, ELK, etc.) - OSINT collection techniques - Knowledge of: - STIX/TAXII - YARA / Sigma rule creation - Network protocols & traffic analysis - Windows & Linux security telemetry - Scripting capability (Python preferred) for data processing and automation. Preferred / Advanced Qualifications - Experience tracking specific threat actors (APT28, Lazarus, FIN7, etc.) - Familiarity with exploit development trends and CVE weaponization timelines - Experience with honeypots and telemetry-driven intelligence - Understanding of ransomware ecosystems & initial access brokers - Knowledge of ML-assisted threat detection (bonus) Analytical & Soft Skills - Strong hypothesis-driven analytical thinking - Ability to differentiate noise from signal - Clear technical writing skills - Ability to brief senior leadership concisely - Operational security awareness Nice to Have Certifications - GIAC (GCTI, GCIA, GCED) - OSCP / OSCE - CISSP - SANS CTI-related certifications Benefits - Highly competitive salary reviewed upwards on a regular basis. - Working from home: Hit your goals from the comfort of your home because we value performance, not the place. - Participation in state-of-the-art project and tech challenges and participation in large-scale projects. - Personal and professional development, amongst industry experts and talented people. - Continuous learning, having access to board resources. - Onboarding plan and training so that you have a smooth induction and feel confident and ready to take over your new role. - Equipment support so you have all the tools to do effectively and efficiently your work. - No dress code as we want you to be as comfortable as possible. Company Description At AI2CYBER, we are a cybersecurity firm dedicated to providing cutting-edge solutions to protect businesses and individuals from evolving cyber threats. Our mission is to empower organisations to navigate the complex cybersecurity landscape with confidence. We believe that by combining robust security solutions, continuous improvement, and a proactive mindset, we can help our clients stay one step ahead of cyber attackers. We are committed to building a safer digital world and are passionate about making a positive impact in the industry. This is a full-time position with competitive salary and benefits. If you have a passion for cyber threat intelligence and are looking for an exciting opportunity to work with cutting-edge technology, we would love to hear from you! Note: All applications will be treated with strict confidentiality. To apply, please send us your CV at careers@ai2cyber.com This position is available only for Greek residents.

• Collect, clean, and structure datasets from clinic systems, marketing platforms, and internal reporting tools. • Build and maintain structured datasets used for commercial analysis. • Ensure consistency and accuracy of key performance metrics across clinics. • Analyze patient behavior, visit frequency, treatment adoption, and revenue trends. • Support analyses related to patient retention, lifetime value, and treatment pathways. • Identify drivers of clinic performance and opportunities for revenue growth. • Analyze marketing and sales funnel metrics, including leads, consultations booked, consultation close rates, and new patient conversion. • Evaluate marketing channel performance and identify opportunities to improve new patient acquisition. • Partner with marketing and clinic teams to identify operational or marketing drivers of funnel performance. • Develop and maintain dashboards in Power BI to track key performance metrics across clinics. • Build Excel-based analytical tools and models used to evaluate clinic performance. • Translate complex data into clear visualizations and summaries for leadership for ad hoc reporting as well as monthly operating reports and quarterly board meetings. • Manage multiple analytical projects simultaneously, ensuring analyses are delivered accurately and on schedule. • Partner closely with the VP of Growth to scope analytical questions, define project timelines, and track progress. • Translate broad business questions into structured analytical plans and milestones. • Proactively manage priorities and follow up on data requests or dependencies across teams. • Ensure analytical work is documented and organized so analyses can be repeated or updated efficiently. • Partner with marketing, finance, and operations teams to support analytical initiatives. • Partner with finance, operations, and IT to access new sources of data. • Work closely with leadership to investigate trends and test growth hypotheses.

• Drives long-term intelligence campaigns and acts as a technical lead for critical research efforts • Lead and coordinate analysis of sophisticated adversary operations • Drive analytical rigor, tradecraft, and threat validation • Interface with policy, product, and customer-facing teams on threat matters • Develop subject matter expertise in nation-state or cybercrime ecosystems • Deliver presentations at international CTI conferences (e.g., FIRST, SANS CTI Summit)

Role Description cFocus Software seeks a Threat Intelligence/Threat Hunting Analyst to join our program supporting the Federal Communications Commission (FCC). This position is remote and requires the ability to obtain a Public Trust clearance. Qualifications - Bachelor’s degree in Cybersecurity, Information Technology, or related field (or equivalent experience). - Experience in threat intelligence, threat hunting, or cybersecurity operations. - Experience analyzing logs, network traffic, and endpoint data. - Knowledge of MITRE ATT&CK framework and cyber threat lifecycle. - Familiarity with NIST frameworks and RMF processes. - Strong analytical and investigative skills. - Experience with SIEM platforms (e.g., Splunk, QRadar). - Experience with EDR/XDR tools. - Scripting skills (Python, PowerShell) for automation and analysis. - Knowledge of cloud security monitoring. - Strong written and verbal communication skills. Requirements - Role-appropriate cybersecurity certifications (e.g., Security+, CySA+, CEH, GCIH, or equivalent). - Additional certifications in threat intelligence or incident response are preferred. Duties - Conduct proactive threat hunting across enterprise networks, endpoints, and cloud environments. - Analyze threat intelligence feeds, indicators of compromise (IOCs), and tactics, techniques, and procedures (TTPs). - Correlate data from SIEM, EDR, and other security tools to detect malicious activity. - Develop and refine detection rules, use cases, and hunting methodologies. - Investigate security incidents and support incident response activities. - Produce threat intelligence reports and briefings for stakeholders. - Track emerging threats and assess potential impact to the organization. - Support continuous monitoring, RMF processes, and compliance reporting. - Collaborate with SOC, vulnerability management, and engineering teams.