Senior Cyber Threat Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

Brown Brothers Harriman · 8 hours ago

Senior Cyber Threat Analyst

positionPhiladelphia, PA
timeFull-time
remoteOnsite
seniorityMid, Senior Level
money$110K/yr - $155K/yr
date5+ years exp

Brown Brothers Harriman (BBH) is a premier global financial services firm, known for premium service and partnership approach to client management. As a Senior Cyber Threat Analyst, you will enhance the organization's ability to detect, analyze, and respond to cyber threats while leading efforts in Cyber Threat Intelligence and Threat Hunting, collaborating with cross-functional teams to protect networks and systems.

BankingFinancial ServicesSecurity
check
H1B Sponsor Likelynote

Responsibilities

Perform strategic and operational CTI functions, including producing and disseminating weekly, monthly, and quarterly emails, products, reports, and briefings on the evolving threat landscape to internal stakeholders and senior leaders
Monitor open-source, closed-source, and vendor-provided threat intelligence and current events to stay abreast of emerging cyber risks, threats, vulnerabilities, trends, and best practices, and make recommendations for proactive defense strategies and continuous process improvements
Enhance threat detection and response capabilities by supporting the development and enhancement of SOC and incident response (IR) procedures, escalation playbooks, and analyst decision trees
Analyze and identify the likely threats targeting the organization through analysis of alert and IOC trends and use this information to build threat intelligence reporting and develop threat hunting strategies
Develop and maintain threat profiles of relevant threat actors likely to target or actively targeting the organization, including a catalog of their tactics, techniques, and procedures (TTPs) aligned with the MITRE ATT&CK framework
Assist in SOC and IR escalations and investigations, providing expert guidance and context to ensure IR-related actions are threat-informed, effective, and timely
Conduct threat, risk, and vulnerability assessments to provide actionable and prioritized remediation and control enhancement guidance to relevant control and system owners
Work with Vulnerability Management to assist with developing and implementing threat-informed patch prioritization efforts, including through direct engagement with systems owners
Collaborate with the Red Team and Cyber Incident Management to develop relevant red team assessments, penetration tests, incident response trainings, social engineering tests, and tabletop exercises
Using a threat-informed approach, plan and perform threat hunting activities by proactively searching across various logs within the Security Incident and Event Management (SIEM) solution and other security tools to identify previously undetected and unknown anomalous and malicious activity and indicators
Conduct proactive analysis of alert trends to support intelligence reporting and to identify and prioritize missing or ineffective detection capabilities
Perform privileged and general user access reviews across various platforms (Windows, Unix/Linux, RHEL, databases, network components, applications, cloud infrastructure) to identify anomalies and escalate appropriately
Collaborate with DLP and other security teams on insider risk initiatives, collaborating and coordinating efforts to identify and mitigate potential threats from within
Develop, enhance, and maintain procedures, standards, and policies for CTI and threat hunting processes
Collaborate with relevant stakeholders on security awareness messaging and training

Qualification

Cyber Threat IntelligenceThreat HuntingIncident ResponseSecurity OperationsMITRE ATT&CK FrameworkVulnerability ManagementThreat AnalysisDetection EngineeringAnalytical SkillsProgramming/ScriptingSecurity AwarenessRisk AssessmentCollaboration SkillsCommunication Skills

Required

Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field
5+ years of experience in Cyber Threat Intelligence, Security Operations, Incident Response, Threat Hunting, and/or related roles
Significant relevant experience (e.g., military) in one or more of the above roles may be considered in lieu of a degree
Familiarity with the Intelligence Cycle, Threat Intelligence Platforms, and the MITRE ATT&CK Framework
Excellent collaboration and communication skills, particularly in high-stress situations
Ability to produce products at the tactical, operational, and strategic level and to articulate findings and assessments effectively
A desire to understand and maintain awareness of changes to the cyber threat and risk landscape, including related geopolitical risks that may impact our overall security posture
Strong analytical skills and priority management

Preferred

Master's degree in Cybersecurity, Computer Science, Information Technology, or related field
Hands-on experience in two or more of the following areas: Security Operations, Incident Response, Cyber Threat Intelligence, Threat Hunting, Detection Engineering, Security Engineering, Insider Threat Analysis, Digital Forensics, All-Source Intelligence, Penetration Testing, Red Teaming, Network Security Management, Cyber Risk Management, Cloud Security, Vulnerability Management, Malware Analysis
Experience in the financial services sector and familiarity with security best practices, regulatory requirements, and industry frameworks (e.g., NYDFS, FFIEC, NIST CSF, ISO 27001, SWIFT CSF, OWASP)
Experience with threat hunting and developing custom detection rules using query languages (e.g., Splunk SPL, Microsoft KQL)
Experience with perimeter, host, and identity defense and monitoring technologies such as EDR/AV, IDS/IPS, Firewalls, WAF, DLP, UEBA, email gateway, sandboxing, and other security tools and terminology
Familiarity with risk scoring, threat analysis, threat hunting, and threat modeling techniques
Experience with Microsoft Defender (MDE, MDI, Defender for Cloud Apps) and Purview Insider Risk Management
Relevant certifications such as CISSP, GCIH, GSEC, GCTI, CTIA, CEH, Security+
Experience with programming or scripting (Python, SQL, Powershell)

Benefits

Discretionary bonuses
Profit-sharing
Long-term savings
Healthcare
Income protection
Professional development opportunities
Time off

Company

Brown Brothers Harriman

twittertwitter
Glassdoor3.7
company-logo
Brown Brothers Harriman is an American partnership bank that offers a range of international investment and banking services.
dateFounded in 1995
location
New York, New York, USA
people-size5001-10000 employees
web-link
http://www.bbh.com

H1B Sponsorship

Brown Brothers Harriman has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (22)
2024 (16)
2023 (18)
2022 (23)
2021 (15)
2020 (10)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Dana Pasricha
Managing Director/ Head of Reference Data, Shared and Tax services at Brown Brothers Harriman
linkedin
leader-logo
Douglas Maine
Senior Advisor
linkedin

Recent News

capital-riesgo.es
Bridgepoint Group launches its first private wealth offering
2025-12-21
Affiliated Managers Group, Inc.
AMG Reports Financial and Operating Results for the Third Quarter and Nine Months Ended 2025
2025-11-03
Business Wire
Succession Uncertainty and Growth Demands Define 2025 for Private Business Owners
2025-10-31
Company data provided by crunchbase