Head of Information Security Threat Intelligence

About The Position

Requirements

• B.S. (computer science, intelligence studies, or relevant field), equivalent degree, or relevant work experience.
• 10+ years of experience in information security, with at least 5 years in threat intelligence leadership roles, including experience managing global teams.
• Proven track record of building and leading high-performing threat intelligence teams, delivering measurable results, and driving strategic change.
• Deep understanding of the global threat landscape, advanced persistent threats (APTs), and sophisticated attack techniques.
• Expertise in various intelligence techniques, including collection, analysis, malware analysis, network traffic analysis, and threat hunting.
• Strong analytical and problem-solving skills, with the ability to synthesize complex information and communicate it clearly and concisely.
• Experience working with public and private sector partners, handling confidential material securely while leading to security impact.
• Exceptional communication, presentation, and interpersonal skills, with the ability to deliver value at all levels of the organization.

Nice To Haves

• 15+ years of experience in information security, with at least 10 years in threat intelligence leadership roles, including experience managing global teams.
• Experience managing complex budgets and resources on which partner teams rely.
• Experience delivering security services to public or private sector customers with their own missions and priorities.
• Experience briefing directly, and supporting a team briefing, executive leadership on threats and their potential impacts to an organization.
• Deep understanding of security frameworks, regulations, and compliance requirements (e.g., PCI DSS, NIST, ISO 27001, GDPR, PIPL).

Responsibilities

• Strategic Vision & Leadership: Define and deliver on a long-term vision for our information security threat intelligence service, aligning it with overall business objectives and organization direction. This includes setting strategic direction, budgeting, resource allocation, as well as setting team and individual goals.
• Team Development & Management: Build, mentor, and lead a globally distributed team of highly skilled threat intelligence analysts. Foster a culture of collaboration, innovation, and continuous learning, while maintaining an operational cadence that matches that of the information security team and our partners.
• Threat Landscape Monitoring & Analysis: Oversee the comprehensive monitoring and analysis of the global threat landscape, identifying emerging threats, vulnerabilities, and attack campaigns relevant to our industries, suppliers, geographies, and business operations. Collaborate in this space with partners focused on government affairs and policy engagement to develop comprehensive analyses to inform decision making.
• Advance Threat Hunting & Proactive Efforts: Collaborate to develop and implement threat hunting strategies to proactively identify and stop attacks before they impact the organization.
• Risk Assessment & Mitigation: Conduct regular risk assessments, translating threat intelligence into actionable risk mitigation strategies for various business units and technical teams. Communicate risk effectively to stakeholders across the organization.
• Response Integration: Integrate threat intelligence seamlessly into the incident and vulnerability response process, accelerating investigations and improving remediation efforts. Continually evaluate this service for health and improvement opportunities.
• Collaboration & Communication: Establish and maintain strong relationships with internal stakeholders (e.g., intelligence, security , legal, and compliance teams) and external partners (e.g., public agencies, industry consortia, threat intelligence sharing groups). Effectively communicate complex security information to both technical and non-technical audiences, including executive leadership.
• Building Capabilities & Partnership: Guide the team to decide when it is best to build new tooling and when to rely on others to build to your requirements, with a focus on reliable, performant tooling that can be used by partners across Apple. The team is responsible for maintaining critical tooling, but should seek to minimize those efforts and focus the team in areas they are uniquely skilled.
• Budget Management & Resource Allocation: Manage the budget and resources for the threat intelligence program, ensuring efficient and effective use of funds while managing risk.