Lead Threat Intelligence Analyst

Who We Are:

Headquartered in New York City, Take-Two Interactive Software, Inc. is a leading developer, publisher, and marketer of interactive entertainment for consumers around the globe. We develop and publish products principally through Rockstar Games, 2K, and Zynga. Our strategy is to create hit entertainment experiences, delivered on every platform relevant to our audience through a variety of sound business models. Our pillars - creativity, innovation, and efficiency - guide us as we strive to create the highest quality, most captivating experiences for our consumers. The Company’s common stock is publicly traded on NASDAQ under the symbol TTWO. For more corporate and product information please visit our website at http://www.take2games.com.

While our offices (physical and virtual) are casual and inviting, we are deeply committed to our core tenets of creativity, innovation and efficiency, and individual and team development opportunities. Our industry and business are continually evolving and fast-paced, providing numerous opportunities to learn and hone your skills. We work hard, but we also like to have fun, and believe that we provide a great place to come to work each day to pursue your passions.

The Challenge:

We are looking for a Lead Threat Intelligence Analyst. In this role, you'll be at the forefront of our defense, leading efforts to identify, analyze, and counter emerging security threats. You'll work closely with various security & technology teams to strengthen our defenses and provide actionable intelligence to protect our organization. Your expertise will directly contribute to safeguarding Take-Two and its labels systems, networks, and data.

You will work with Take-Two's Information Security teams, reporting to the Director of Security Operations Engineering. 

What You’ll Take On:

• Lead Threat Intelligence Operations: Lead the design, development, and continuous improvement of the organization’s cyber threat intelligence (CTI) program, ensuring alignment with business objectives and risk tolerance.
• Conduct In-Depth Analysis: Perform deep-dives into cyber threats, including analyzing malware, understanding adversary tactics, techniques, and procedures (TTPs), and tracking threat actor groups.
• Develop and Maintain Threat Models: Create and refine threat models and frameworks to predict and prepare for potential attacks, focusing on threats relevant to our industry and infrastructure.
• Enhance Our Security Posture: Work with our Global Security Operations Center (GSOC), Detection Engineering, Automation Engineers and Incident Response teams to integrate threat intelligence into our detection and prevention systems, improving our ability to identify and respond to threats.
• Produce Actionable Reporting: Generate timely and high-quality intelligence/Threat Landscape reports, risk forecasts and alerts for technical and executive audiences, translating complex threat information into clear, actionable insights.
• Automation: Promote automation of indicator ingestion, correlation, and dissemination across GSOC, Automation and IR platforms.
• KPI’s: Define and track key performance indicators (KPIs) for the threat intelligence program (e.g., intelligence-to-action rate, time to disseminate).
• Maturity Assessment: Conduct periodic maturity assessments of the threat intelligence function, recommending improvements in processes, skills, and tools.
• Mentor and Guide: Provide guidance and mentorship to junior analysts, helping them grow their skills and contribute effectively to the team's mission.

What You Bring:

• Experience: At least 5-7 years of experience in cybersecurity, with a minimum of 3 years in a dedicated threat intelligence role.
• Technical Expertise: A strong understanding of the cyber threat landscape, including knowledge of threat actor groups, common attack vectors, and malware families. Insider threat knowledge is a plus.
• Analytical Skills: Proven ability to analyze complex data from various sources (e.g., open-source intelligence, dark web forums, technical reports) to form a cohesive threat picture.
• Intelligence Framework Knowledge: Familiarity with common threat intelligence frameworks like MITRE ATT&CK, the Cyber Kill Chain, and Diamond Model.
• Communication Skills: Excellent written and verbal communication skills, with the ability to present technical information clearly to both technical and non-technical audiences.
• Tool Proficiency: Experience with threat intelligence platforms (TIPs), security information and event management (SIEM) systems, and forensic tools.

Great to Have:

• Certifications: Relevant industry certifications such as GIAC GCTI, GREM, or other certifications from organizations like ISC2 or CompTIA.
• Scripting Skills: Proficiency in scripting languages (e.g., Python, PowerShell) to automate data collection and analysis tasks.
• Vulnerability Research: Experience with vulnerability analysis, exploit development, or reverse engineering.
• Leadership Experience: Prior experience leading a small team or a project.

What We Offer You

• Great Company Culture. Ranked as one of the most creative and innovative places to work, creativity, innovation, efficiency, diversity and philanthropy are among the core tenets of our organization and are integral drivers of our continued success.
• Growth. As a global entertainment company, we pride ourselves on creating environments where employees are encouraged to be themselves, inquisitive, collaborative and to grow within and around the company.
• Work Hard, Play Hard. Our employees bond, blow-off steam, and flex some creative muscles – through corporate boot camp classes, company parties, game release events, monthly socials, and team challenges.
• Benefits. Medical (HSA & FSA), dental, vision, 401(k) with company match, employee stock purchase plan, commuter benefits, in-house wellness program, broad learning & development opportunities, a charitable giving platform with company match and more!
• Perks. Fitness allowance, employee discount programs, free games & events and stocked pantries.

Please be aware that Take-Two does not conduct job interviews or make job offers over third-party messaging apps such as Telegram, WhatsApp, or others. Take-Two also does not engage in any financial exchanges during the recruitment or onboarding process, and the Company will never ask a candidate for their personal or financial information over an app or other unofficial chat channel. Any attempt to do so may be the result of a scam or phishing exercise. Take-Two’s in-house recruitment team will only contact individuals through their official Company email addresses (i.e., via a take2games.com email domain). If you need to report an issue or otherwise have questions, please contact Careers@take2games.com 

As an equal opportunity employer, Take-Two Interactive Software, Inc. (“Take-Two”) is committed to fostering and celebrating the diverse thoughts, cultures, and backgrounds of its talent, partners, and communities throughout its organization. Consistent with this commitment, Take-Two does not discriminate or retaliate against any employee or job applicant because of their race, color, religion, sex (including pregnancy, sexual orientation, and gender identity), national origin, age, disability, and genetic information (including family medical history), or on the basis of any other trait protected by applicable law. If you need to report a concern or have questions regarding Take-Two’s equal opportunity commitment, please contact Careers@take2games.com