Director, Rapid Response

About The Position

Requirements

• Highly organized with the ability to manage complex multi-tasking, prioritize effectively, and triage competing demands in a fast-paced environment.
• Ability to advance objectives across matrixed teams and influence without direct reporting authority.
• Strong public speaking and presentation skills, with the ability to effectively communicate complex threat intelligence information to diverse audiences, including executives, conferences, and internal stakeholders.
• Demonstrated ability to coordinate with cross-organizational threat analysts, facilitating collaboration, and aligning efforts to achieve common goals.
• Proven experience leading threat intelligence projects, integrating intelligence systems, and implementing new processes for multiple stakeholders.
• Demonstrated experience speaking at conferences and with customers on research performed.
• Proven experience throughout the cyber threat intelligence lifecycle, from data collection to production of intelligence outputs, such as blogs and whitepapers.
• Experience writing and editing threat intelligence reporting.

Nice To Haves

• Experience with graph databases (e.g. Synapse) is a plus.

Responsibilities

• Collaborate with threat analysts, detection engineers, and security consultants from various teams and departments within the organization.
• Foster strong relationships, gain buy-in across teams, share threat intelligence, and coordinate joint efforts to address complex threats that span multiple areas of expertise while driving towards a unified approach to threat research.
• Coordinate and balance priorities across diverse teams, including Communications, Legal, Policy, Marketing, to align external and internal messaging around global cyber events.
• Triage and prioritize threat intelligence research requests during Rapid Response engagements.
• Coordinate the development of actionable cross-team intelligence products relevant to both internal and external defenders, security engineers, and threat hunters.
• Work closely with the external engagement team to manage the flow of Rapid Response content, including blogs, social media content, and updates on major cyber events that align with Palo Alto Networks role as a global cybersecurity leader.
• Contribute to thought leadership initiatives by sharing insights and expertise on Unit 42 Threat Vector podcasts, at security conferences, and through internal and external executive briefings.
• Establish and execute internal projects to mature and scale our Rapid Response capabilities.
• Harness the full weight of the company's unique data holdings, including security product telemetry, front line Incident Response (IR) and Managed Detection and Response (MDR) data, and Intel Holdings.
• Utilize these resources to collect threat data and produce valuable insights that enhance the effectiveness and differentiation of our threat intelligence capabilities.