Threat Intelligence Analyst

Rush Street Interactive is seeking a Threat Intelligence Analyst to gather and examine data from diverse sources, identify emerging cyber threats, and provide actionable insights. This role involves configuring a Threat Intelligence Platform, understanding threat actor TTPs, generating intelligence reports, and collaborating with SOC and other teams to enhance the organization's security posture. The analyst will also contribute to improving threat intelligence capabilities and supporting incident response efforts.

Must Have

• Collect, process and analyze information from various sources (OSINT, dark web forums, threat intelligence feeds)
• Configure and maintain the Threat Intelligence Platform
• Develop and maintain a comprehensive understanding of threat actors, their tactics, techniques and procedures (TTPs)
• Generate actionable threat intelligence products for diverse audiences
• Use structured analytic techniques to identify trends and assess risks
• Participate in activities to improve the security posture of RSI
• Collaborate closely with SOC and other RSI teams and business representatives
• Work with vendors to address product development requirements
• Assist with the creation and maintenance of documentation, including playbooks, policies and procedures
• Contribute to the enhancement of threat intelligence capabilities by researching and evaluating new tools, techniques and data sources
• Handle technical issues/risks
• Support information security incident response and threat mitigation efforts
• Bachelor’s degree in computer engineering or a related field
• 3+ years of experience threat intelligence operations and incident response work
• Proficiency with security monitoring tools, large dataset analysis, analytic and visualization tools, and regular expressions (regex)
• Experience with threat intelligence solutions (e.g., MISP)
• Familiarity with industrial taxonomies like Cyber Kill Chain, MITRE’s ATT&CK, STIX 2.0, and the Diamond Model
• Development necessary to implement automation

Good to Have

• Certified Threat Intelligence Analyst (CTIA) or equivalent
• Certified Cybersecurity Analyst (CySA+) or equivalent
• Certified Information Systems Analyst (CISA) or equivalent
• GIAC Certified Incident Handler (GCIH) or equivalent
• Certified Information Privacy Professional (CIPP) or equivalent
• Online igaming/casino work experience

Perks & Benefits

• Comprehensive compensation
• Work-life balance initiatives
• Autonomy – we embrace personal freedom and responsibility
• Creativity – we are open to new ideas of how we can be better
• Growth – we want you to develop personally as well as professionally
• Top-notch professionals who are passionate about what they do
• People-oriented environment and supportive atmosphere

Rush Street Interactive (NYSE: RSI) is a market leader in online casino and sports betting, currently operating real-money gaming with our brands: BetRivers.com, PlaySugarHouse.com, and RushBet.co. We’re building bridges between online, social and land-based gaming businesses to create amazing, integrated experiences that keep players in the game.

A cyber threat intelligence analyst gathers and examines data from diverse sources to identify emerging cyber threats and vulnerabilities. They evaluate threat actor tactics and provide actionable insights that drive proactive security measures. Their work is essential for enhancing incident response and proactively strengthening the overall security posture of the organization.

What You'll Do

• Collect, process and analyze information from various sources, (including open-source intelligence (OSINT), dark web forums and threat intelligence feeds) and translate threats to RSI requirements
• Configure and maintain the Threat Intelligence Platform
• Develop and maintain a comprehensive understanding of threat actors, their tactics, techniques and procedures (TTPs) and their potential impact on our organization
• Generate actionable threat intelligence products for diverse audiences (such as threat intelligence reports and recommendations for defensive measures)
• Use structured analytic techniques to identify trends and assess risks
• Participate in activities to improve the security posture of RSI
• Collaborate closely with SOC (Security Operation Centre), other RSI teams and business representatives, to identify areas where threat intelligence will give most benefit
• Work with the vendors to address product development requirements
• Assist with the creation and maintenance of the documentation, including playbooks, policies and procedures
• Contribute to the enhancement of our threat intelligence capabilities by researching and evaluating new tools, techniques and data sources
• Handle technical issues/risks
• Support the information security incident response and threat mitigation efforts

What You'll Bring:

• Bachelor’s degree in computer engineering or a related field
• 3+ years of experience threat intelligence operations and incident response work
• Proficiency with security monitoring tools, large dataset analysis, analytic and visualization tools, and regular expressions (regex)
• Experience with threat intelligence solutions (e.g., MISP) and familiarity with industrial taxonomies like Cyber Kill Chain, MITRE’s ATT&CK, STIX 2.0, and the Diamond Model
• A proactive, agile mindset with excellent interpersonal skills and the ability to work effectively with little supervision
• Development necessary to implement automation

Preferred

• Certified Threat Intelligence Analyst (CTIA), Certified Cybersecurity Analyst (CySA+), Certified Information Systems Analyst (CISA), GIAC Certified Incident Handler (GCIH), Certified Information Privacy Professional (CIPP) or equivalent
• Online igaming/casino work experience

What Makes Us Great:

• Comprehensive compensation
• Work-life balance initiatives
• Autonomy – we embrace personal freedom and responsibility
• Creativity – we are open to new ideas of how we can be better
• Growth – we want you to develop personally as well as professionally
• Top-notch professionals who are passionate about what they do
• People-oriented environment and supportive atmosphere

As a rapidly growing company in an emerging industry, you’ll have a huge impact on our product and our company. We like proactive team members and strive to have a company of self-disciplined professionals who enjoy collaboration, having fun, and of course, achieving together what others believe to be improbable. We are dedicated to treating everyone with respect and to support your professional and personal growth.

Rush Street Interactive is an equal opportunity employer and committed to a diverse and inclusive workplace. All qualified applicants will be considered for employment without regard to race, national origin, ancestry, sex, sexual orientation, sexual identity and expression, marital status, family status, lifestyle, age, culture, religion, military and veteran status, citizenship, or disability.

Be at the forefront of this ground-breaking industry! Apply now!