Threat Intelligence Specialist – Ict – Level 8 (2 Posts)
Ict & Computer Jobs
Job Description
Applications are invited from suitably qualified persons to fill the following posts within the Zimbabwe Revenue Authority (ZIMRA) – an equal opportunity employer.
Duties and Responsibilities
Key Responsibilities
▪ Collect, validate and analyse cyber threat intelligence from internal telemetry, external feeds, Open Source Intelligent (OSINT) and information sharing communities; profile adversary TTPs and disseminate actionable intelligence to the SOC team
▪ Classify intelligence-driven alerts, prioritise threat escalations and enrich Tier 2/Tier 3 incident investigations with contextual intelligence; coordinate with SOC Engineers on response actions
▪ Produce intelligence reports, evidence trails and compliance artefacts that meet regulatory and audit standards; maintain documentation accuracy and ensure forensic readiness
Identify emerging threats, geopolitical risk indicators and systemic vulnerabilities; escalate actionable risks to the SOC Manager and enterprise risk committees with recommended mitigation measures
▪ Document threat intelligence findings, update SOC detection playbooks with new IOCs and TTPs and contribute to post-incident reviews and lessons learned processes
▪ Integrate intelligence outputs into monitoring controls; identify gaps in threat detection coverage and recommend corrective actions to the SOC Manager
▪ Monitor threat landscape for risks targeting ZIMRA's critical enterprise System.
▪ Participate in red team/blue team exercises, cybersecurity drills and disaster recovery simulations
▪ Contribute to intelligence-enriched monitoring by correlating threat feeds and indicators of compromise (IOCs) against real-time alerts in the SIEM platform.
▪ Any other duties as may be assigned by the Security Operations Manager.
Qualifications and Experience
Job Skills and Competencies
▪ Demonstrate exposure to intelligence collection, adversary profiling, malware campaign analysis and dissemination of actionable intelligence.
▪ Experience working in multi-disciplinary teams (IT, Risk, Audit, Compliance, Legal, CERTs) to ensure coordinated intelligence sharing and incident response.
▪ Proficiency in threat intelligence platforms (TIPs) and SIEM integration, strong knowledge of network protocols, log correlation and adversary TTP analysis.
▪ Experience with endpoint detection and response (EDR) tools, malware sandboxing, open-source intelligence (OSINT) and source validation techniques.
▪ Familiarity with threat intelligence frameworks including MITRE ATT&CK, Diamond Model and Kill Chain; competence in malware analysis and IOC management.
▪ Experience with endpoint detection and response (EDR) tools; familiarity with threat intelligence feeds, correlation rules and basic forensic analysis.
▪ Self-starter with ability to work under pressure, including in 24/7 monitoring environments
Qualifications and Experience
▪ Bachelor’s Degree in ICT, Computer Science, Information Systems, Cybersecurity, or equivalent discipline.
Must have at least one of the following Certification: CISA; CISM; CISSP; CEH; CHFI; CompTIA Security+; GIAC Security Essentials (GSEC); Certified Threat Intelligence Analyst (CTIA); GIAC Cyber Threat Intelligence (GCTI) COBIT; ISO 27001, ITIL or a comparable security certification.
▪ Minimum of three (3) year experience in ICT of which One (1) year should be in ICT security, or equivalent experience in areas such as ICT Risk Management or ICT Audit.
▪ Understanding of common security standards and regulations relating to information systems (e.g., PCI DSS, ISO27001, COBIT, NIST)
How to Apply
Interested candidates should submit applications, accompanied by a detailed Curriculum Vitae by 19 May 2026. All applications should be emailed to ZimraRecruitment@zimra.co.zw with the position title clearly stated in the email subject line, e.g. Head ICT Operations & Service Delivery – ICT Level 5. The applications should be
addressed to:
Director Human Capital
Zimbabwe Revenue Authority
6th Floor ZB Centre
Corner First Street / Kwame Nkrumah Avenue
P. O. Box 4360
HARARE
Please note that only shortlisted applicants will be responded to and females are encouraged to apply.