Discovery is at the heart of everything we do. Wherever you find us around the world, if you can think of a product, you can probably find it in our stores, which include TJ Maxx, Marshalls, HomeGoods, Sierra, Winners, Homesense, and TK Maxx. With variety comes plenty of happy surprises-our environment is ever-changing, and that's just how we like it. Every day is an opportunity to discover something new about our business, our partnerships and even something exciting about yourself. Ready to Discover Different?

Who we are

The Cybersecurity Threat Intelligence (CTI) team at TJX fulfills one of the most critical roles for IT Security - monitoring the Cybersecurity landscape and threat adversaries to provide decision-makers timely, relevant, contextual, and actionable information in the interest of Cybersecurity Defense, and leading threat hunting activities within the TJX environment based upon this information. The function partners with a wide variety of teams in Cybersecurity and Loss Prevention to evaluate threats and threat actors in the Cybersecurity landscape, research tactics and techniques associated with threat actors, exchange threat information, lead threat hunting activities based on intelligence information, and ultimately ensure that TJX Cybersecurity Defense is best positioned to defend TJX against threats. We are looking for a motivated and experienced professional to join a team of analysts providing critical IT security operational services in Threat Intelligence and Threat Hunting.

• 5+ years of cybersecurity threat intelligence experience in an enterprise setting
• Bachelor's degree or equivalent experience in Cyber Security, Information Technology, Information Assurance, or a related field
• Broad knowledge of concepts, technologies, and practices across multiple security domains, with emphasis in cybersecurity threat intelligence
• Experience in analyzing, gathering intelligence on, and documenting threat group activities; demonstrated understanding of remediation and countermeasures for cybersecurity threats; knowledge of current adversary tactics and techniques, security analysis techniques, common vulnerability disclosures, and common types of data breach incidents
• Familiarity with common sources (closed and open), threat information platforms and integration, and threat hunting packages used to develop threat intelligence
• Familiarity with the NIST Cyber Security Framework (CSF), common security controls and their purposes, and technologies that supply those controls
• Ability to collaborate, influence and coach a geographically distributed work group; and strong relationship management skills to include stakeholders, and holding team members across multiple levels accountable for commitments
• Highly developed verbal and written communication skills (including an excellent ability to brief) at multiple levels, from analysts to executives; Ability to work up and down the organization; and the ability to influence others to achieve results through building & maintaining partnerships
• Ability to work effectively in a fast paced, demanding and fluid environment, remaining calm under pressure, and demonstrating excellent conflict management skills

• Master's degree or equivalent experience in Cyber Security, Information Technology, Information Assurance, or a related field
• Significant experience with security detection and response technologies (SOAR, SIEM, and sources of security data)
• Experience in participating in intelligence sharing within industry sharing frameworks and centers, such as ISACA
• Security certifications, especially those with a focus on threat intelligence and hunting (GCTI, GREM, GOSI, MAD ATT&CK, etc.)
• Direct experience in other operational cybersecurity fields (e.g., leading a Security Operations Center, incident response, and/or other cybersecurity operations practices)