Truist Jobs


Job Information

Truist Cybersecurity Threat Principal Analyst in Charlotte, North Carolina

The position is described below. If you want to apply, click the Apply button at the top or bottom of this page. You'll be required to create an account or sign in to an existing one.

Need Help? (

If you have a disability and need assistance with the application, you can request a reasonable accommodation. Send an email to Accessibility (

(accommodation requests only; other inquiries won't receive a response).

Regular or Temporary:


Language Fluency: English (Required)

Work Shift:

1st shift (United States of America)

Please review the following job description:

Cybersecurity Threat Principal Analyst process, analyze, and report intelligence to preempt or reduce threat exposure. Strategic intelligence focuses on emerging threats or “over the horizon” threats. Specific attention is paid to threat actors’ tactics, techniques, and procedures (TTPs), their motivation, intent, capability, and how threats or threat actors may target the organization (either directly or indirectly). They are responsible for providing context and prioritization information to both Operational Intelligence Analysts and Tactical Intelligence Analysts through the organizations Threat Management System, such as a Threat Intelligence Platform (TIP) or threat alert/reporting protocol. They must maintain a solid understanding of business operations and environment to determine the relevance of threat intelligence consumed, as well as the vectors of attack that may be exploited (whether technical or non-technical in nature).

Essential Duties and Responsibilities:

Following is a summary of the essential functions for this job. Other duties may be performed, both major and minor, which are not mentioned below. Specific activities may change from time to time.

Responsible for the collection, processing, analysis, and dissemination of strategic intelligence throughout the organization Develop, maintain, and execute threat and risk communication processes that advise key stakeholders and/or area decision makers Demonstrate and apply subject matter expertise in a variety of information security disciplines, both technical and non-technical (I.e. Challenge analysis and other analytical methods) Employ predictive analytic methods to determine changes in adversary’s capabilities, motivations, and intent-while providing recommendations to reduce risk before exposure to threats occur Provide direct analytic support to business operations teams and risk analysts, providing context to active risks and threats to lines of business using intelligence Support Risk team daily operations and existing processes by aligning cyber threats to organizational impact Support strategic decision-making processes to direct and/or re-direct cybersecurity efforts and investments to align with business priorities Create and present custom threat briefing materials for executive audiences to provide strategic situational awareness

Required Skills and Competencies: (Qualifications Required Qualifications)

The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

  1. Bachelor’s degree in Computer Science or related field or equivalent education and related training

  2. Broad knowledge of general IT with mastery of one or more of the following areas: operating systems, networking, computer programing, web development or database administration

  3. Demonstrated advanced knowledge of cyber security operations with mastery of one or more of the following: Security Operations Center (SOC Operations), Intrusion Detection/Intrusion Prevention Systems (IDS/IPS), Security Information and Event Management (SIEM) systems, Cyber Threats (e.g. Nation-States, Advanced Persistent Threats (APT’s), Insider Threats), Vulnerabilities and Exploits, Cyber Incident Response investigations and remediation

  4. Experience with systems for automated threat intelligence

  5. Advanced knowledge of processes, procedures, and methods to research, analyze and disseminate threat intelligence information

  6. Ongoing passion for learning about information security through self-education

  7. Ability to lead and persuade individuals and large teams on ideas, concepts and opportunities

  8. Consistent history of delivering on commitments

  9. Critical thinking and problem-solving skills

  10. Knowledge of the incident handling procedures and intrusion analysis models

  11. Ability to work independently with limited supervision

  12. Proven communication skills, both written and verbal, to both business and technology audiences

  13. Demonstrated proficiency in basic computer applications, such as Microsoft Office software products

  14. Ability to travel, occasionally overnight

Desired Skills: (Preferred Qualifications)

  1. Five or more years of experience in strategic intelligence analysis/using threat intelligence to reduce risk and threat exposure. A strong foundation in cybersecurity principles. Proficiency in assessing the potential impact and likelihood of cyber threats, vulnerabilities, and risks to the organization. Understanding risk management frameworks and methodologies.

  2. Strong understanding of the intelligence lifecycle, its component parts and how it can be applied across the organization to enable threat modeling, threat management. Proficiency in collecting, analyzing, and interpreting large volumes of data from various sources to identify potential threats, vulnerabilities, and risks. This includes open-source intelligence (OSINT) and proprietary intelligence sources.

  3. In-depth knowledge of the cyber threat landscape, and how attacker motivation, capability, and intent apply to an organization. Ability to develop threat models and scenarios based on gathered intelligence, considering potential attack vectors, motivations of threat actors, and targeted assets.

  4. Experience working in the Financial Services, Regulated, or Critical infrastructure entities.

  5. Ability to interface with executive level management and give senior level presentations.

  6. Ability to author content and products at all audience levels, and peer review products. Strong analytical and critical thinking skills to identify patterns, trends, and connections within the intelligence content.

  7. Industry and/or vendor certifications in cyber threat intelligence or cyber threat defense specialization (e.g. SANS GCTI).

  8. A passion for continuous learning and process improvement; staying updated with the latest developments in the field of cybersecurity and threat intelligence.

Other Job Requirements / Working Conditions


Constantly (More than 50% of the time)

Visual / Audio / Speaking

Able to access and interpret client information received from the computer and able to hear and speak with individuals in person and on the phone.

Manual Dexterity / Keyboarding

Able to work standard office equipment, including PC keyboard and mouse, copy/fax machines, and printers.


Able to work all hours scheduled, including overtime as directed by manager/supervisor and required by business need.


Minimal and up to 10%

Truist supports a diverse workforce and is an Equal Opportunity Employer who does not discriminate against individuals based on race, gender, color, religion, national origin, age, sexual orientation, gender identity, disability, veteran status or other classification protected by law. Drug Free Workplace.

General Description of Available Benefits for Eligible Employees of Truist Financial Corporation: All regular teammates (not temporary or contingent workers) working 20 hours or more per week are eligible for benefits, though eligibility for specific benefits may be determined by the division of Truist offering the position. Truist offers medical, dental, vision, life insurance, disability, accidental death and dismemberment, tax-preferred savings accounts, and a 401k plan to teammates. Teammates also receive no less than 10 days of vacation (prorated based on date of hire and by full-time or part-time status) during their first year of employment, along with 10 sick days (also prorated), and paid holidays. For more details on Truist’s generous benefit plans, please visit our Benefits site (

. Depending on the position and division, this job may also be eligible for Truist’s defined benefit pension plan, restricted stock units, and/or a deferred compensation plan. As you advance through the hiring process, you will also learn more about the specific benefits available for any non-temporary position for which you apply, based on full-time or part-time status, position, and division of work.

Truist supports a diverse workforce and is an Equal Opportunity Employer that does not discriminate against individuals on the basis of race, gender, color, religion, citizenship or national origin, age, sexual orientation, gender identity, disability, veteran status or other classification protected by law. Truist is a Drug Free Workplace.

EEO is the Law (

Pay Transparency Nondiscrimination Provision (

E-Verify (