Cyber ​​Threat Analyst M/F

Description of the organization

Joining the National Agency for the Security of Information Systems (ANSSI) means putting your skills to work for the general interest by participating in a crucial, topical mission that carries great responsibility! Within the Operations Sub-Directorate (SDO) and the Knowledge and Anticipation Division (DCA), the Targeted Threat Analysis Office (AMC) is responsible for analyzing, capitalizing on and sharing knowledge about the actors and attack methods likely to target, in particular for espionage or destabilization purposes, IS of interest to the Nation. In this capacity, the AMC office studies the geopolitical context, victimology, tools, infrastructure and tactics, techniques and procedures implemented by attackers.  

Description of missions

Overall mission of the position:
The main mission of the position holder is to collect, analyze and synthesize a large amount of information in order to build up knowledge – operational and strategic – of the threats and computer attacks targeting French interests. Your main activities :

• Organize operational monitoring on the subjects the analyst will be responsible for (identification and management of sources, capitalization of information);

• Use information collected through analysis work on computer attacks, current topics or trends observed in cyberspace;
• Write reports, summaries and analysis notes for national authorities and ANSSI partners;
• Popularize the analyses carried out for threat awareness purposes;
• Present your analyses to peers, national or international partners, and authorities, in French or English;
• Interact with code analysis, infrastructure and audit teams to consolidate analysis work;
• Conduct open source investigations (OSINT) to characterize the objectives, capabilities and opportunities of offensive actors targeting France;
• Be able to carry out cross-functional coordination missions on its subjects.

‍Constraints and difficulties of the position‍

• Regular travel between the Paris and Rennes sites;
• Trips lasting several days in France and occasionally abroad;
• Some missions are exceptionally carried out outside working hours;
• On-call duties may be provided by the holder;
• Occasional teleworking possible;
• A high level of autonomy is expected in this position.

Profile sought

The incumbent must have a minimum university degree of BAC+5 level in the field of international relations, political science or security/defense issues.Required skills:‍

• Good knowledge of the structure of the Internet and the field of cybersecurity, ideally a first experience in CTI;
• Good knowledge of the geopolitical situation and the cyber context of the Middle East, ideally mastery of a language of the region;
• Mastery of methodology and advanced monitoring techniques;
• Skills and interest in OSINT investigations;
• Ability to synthesize and popularize technical knowledge related to cyberattacks;
• Excellent writing skills, ideally administrative experience;
• Proficiency in English.

‍Soft skills‍

• Great curiosity;
• Autonomy;
• Ability to take initiatives;
• Intellectual rigor;
• Sense of human contact and service;
• Team spirit;
• Discretion.

Recruitment process

• If your application is shortlisted, you will be contacted to assess your expectations and motivations during a telephone or physical interview.
• Technical tests may be offered to you.
• You will be subject to an authorization procedure.

‍