Handling and triaging incoming intelligence from various sources on a daily basis.
Performing and adding structured intelligence analysis to the Threat Intelligence Platform (TIP).
Technical analysis of Tactics, Techniques and Procedures (TTPs) used in incidents and campaigns: Analysing attack vectors, finding adversary infrastructure, establishing intrusion chain, structured documentation of findings on the Threat Intelligence Platform (TIP).
Setting up detection and alerting rules on various platforms as necessary.
Providing Intelligence support to internal Incident Response team.
Writing reports on incidents, campaigns, emerging threats etc. for relevant audiences.