Threat actor TTP profiling, STAR, TIBER-EU, CBEST, iCAST threat intelligence leadership
Paul David Hood
Senior Threat Intelligence (CCTIM)
Professional History
Sep 2021Present
Senior Threat Intelligence Consultant
SecAlliance
- Broad delivery of CBEST, TIBER, iCAST and CTRA CTI services
- Threat actor TTP research & red team scenario integration
- Geopolitical threat analysis & threat landscape projection
Mar 2018Aug 2021
Senior Threat Intelligence Analyst
Nettitude, Advisory Services Team
- Lead development of new, successful CTI service products
- Developed active & enhanced CTI recon analysis packages
- Integrated 'Red Team' techniques into CTI workflow
- Evaluated & integrated commercial CTI sources
- xBEST/TIBER Threat Intelligence scoping & delivery
- Automated CTI data analytics & enrichment
- Senior stakeholder CTI SME, scoping & debriefing
- Industry publication & CTI research
July 2016June 2017
Head of Security Operations (Acting)
University of Oxford, OxCERT
- Primary Critical Incident Handler for Oxford University
- Line management of University of Oxford CERT
- Oversight of security operations business function
- Senior Supplier for six-figure deliverables
- SME to law enforcement and senior stakeholders
- Threat actor profiling & briefing to C-level
- Tender elicitation, specification and delivery
Feb 2014July 2016
Security Operations Lead
University of Oxford, OxCERT
- Frontline SOC & IR technical leadership
- Network vulnerability assessment & digital forensics
- Bespoke SIEM & NSM engineering in Elastic Stack
CIO Recognition Award for SIEM development
Sep 2011Jan 2014
Jun 2007Sep 2011
Certifications
July 2021July 2024
Crest Certified Threat Intelligence Manager (CCTIM)
CREST
Threat intelligence team leadership, engagement management, knowledge in all areas of threat intelligence and proven experience in operational security, data collection / analysis and intelligence production.
Mar 2015
Digital Forensics, Security Management
JISC
EnCase ▪ FTK Imager ▪ SANS DFF ▪ Volatility
SOC Leadership ▪ Incident Management
Nov 2014
TRANSITS I
TERENA / GÉANT Association
Incident Response ▪ SOC Operations ▪ ISO-27K
20022006
Physics BSc (Hons)
University of Kent
Faculty Excellence Award 3rd year