Position Summary...

What you'll do...

This position is located in Bentonville, AR or Reston, VA. Walmart's Cyber Intelligence Team supports the teams located within Information Security and other business partners internal and external to Walmart.

An applicant is expected to demonstrate up-to-date expertise in the cyber intelligence field and apply this to the development, execution, and improvement of action plans by providing expert advice and guidance to others in the application of information and best practices. Ideally the person applying to this position will have a technical background and experience reporting information gleaned during the successful implementation of the intelligence cycle.

Members on this team are also be expected support the implementation of business solutions by building relationships and partnerships with key stakeholders. This is accomplished by attending business meetings, traveling for conferences, and participating in industry working groups. Strong communication skills are a necessity for this position and the person applying would need to be able to provide briefings, share cyber intelligence information at meetings, and attend question and answer sessions concerning cyber intelligence findings.

About Team:
At Walmart, we prioritize innovation and data security. Our team is dedicated to maintaining a secure operating environment and preserving the trust of our customers, associates, and stakeholders. We combine a range of services and expertise to prevent fraud, detect threats, and manage digital risk and access. Our focus is on mitigating attack risks, securing cloud transformation, and fostering a culture of security and reliability within our team

What you'll do:

• Conducts in-depth research around and maintain a comprehensive understanding of the tactics, techniques, and procedures (TTPs) used by threat actors
• Independently reviews multiple sources of intelligence to identify potential threats
• Summarizes intelligence for key stakeholders
• Provides recommendations regarding intelligence based on business requirements and needs
• Provides all-source intelligence analysis of cyber activities to identify entities of interest, methods, motives, and capabilities and informs appropriate supervisors
• Analyzes, assesses, and reports threat intelligence based on network defense methodologies, industry standards, and organizationally accepted analysis principles and methods
• Independently uses dynamic analysis to identify intrusions, confirm what is known about intrusions, and discover new information
• Monitors external data sources to maintain current network defense threat conditions and determine which security issues may impact the network
• Assists in the coordination, validation, and management of collection requirements, plans, and/or activities
• Collaborate with partners in the value chain to achieve desired outcomes across international markets
• Lead cross-functional strategic technology focused initiatives and encourage team to cultivate relationships across the businesses and markets
• Establishes best practices in the relevant functional area for team members to collaborate with people having different perspectives
• Facilitate cross functional team thinking and brainstorming activities to collectively create and share ideas
• Establish shared goals and information sharing platform to foster collaboration
• Resolve technical and business issues related to collaborative efforts in varying business conditions
• Seek out individuals with different perspectives to help foster creativity and personal growth
• Explore relevant products/solutions from an existing repertoire, that can address business/technical needs
• Assess gaps/ updates/ modifications between the customer/business expectations and the existing product/solutions (in case of agile methodology, for the iteration)
• Classify the requirements into applicable types (For example - Functional/Non-Functional, Derived/Imposed/Emergent etc.)
• Anticipate the solution risks / issues during requirements gathering phase, inform relevant stakeholders and recommend corrective steps
• Contribute to the creation of user stories for component/application/complex (For agile methodology)
• Reviews, prioritizes, and escalates cyber incidents
• Escalates alerts to relevant stakeholder groups following cyber incidents
• Performs first responder troubleshooting on cyber-related, data-related, or security incidents according to pre-determined procedures
• Analyzes incident reports, log files, and affected systems to identify threats and the root causes of cyber incidents
• Performs cyber incident triage to assess the severity of cyber incidents and security implications
• Implements approved processes or technologies to mitigate future cyber incidents
• Monitor network performance and highlight areas for further review to optimize network performance
• Suggest metrics to monitor network performance effectively
• Monitors current performance data to ensure adherence to defined SLOs for multiple network applications/systems
• Determine thresholds for the monitoring metrics and trigger alerts based on those thresholds
• Guides the development of cyber risk assessment and/or management techniques
• Pre-empt risks, vulnerabilities and threats across organization policies, processes and defenses
• Evaluates effectiveness of current cyber risk assessment techniques
• Directs improvements or modifications to vulnerability assessment techniques in view of emerging security risks and threats
• Leads the implementation of cyber risk assessment activities throughout organization, ensuring alignment with organization's policies and principles
• Analyzes cybersecurity gaps identified and project business risk and impact to the organization
• Evaluates options and decide on suitable treatment of cyber risks, threats and vulnerabilities
• Pre-empt risks, vulnerabilities and threats across organization policies, processes and defenses
• Evaluates effectiveness of current cyber risk assessment techniques
• Contributes to short- and long-term business plans and monitors progress of work as required to meet business objectives
• Identifies critical success factors and related key performance indicators for successful strategy planning and implementation
• Identifies, assesses, and considers necessary trade-offs and limited resources when recommending business decisions
• Escalates concerns over competing or conflicting priorities

• Experience with emerging computer or online technologies, online social behaviors, and computer or internet terminology
• Familiarity with analytic tradecraft and research models such as MITRE ATT&CK and the Diamond Model
• Proficiency in threat hunting techniques and the ability to pivot from one set of indicators to uncover related threats
• Experience researching current hacking techniques, vulnerability disclosures, data breach incidents, and performing security analysis techniques
• Experience researching and analyzing cyber threat actor tactics, techniques, and procedures
• Experience producing intelligence reports for a variety of consumers
• (Optional, but useful) Foreign language proficiency