Lead Threat Intelligence Analyst

About The Position

Requirements

• At least 5-7 years of experience in cybersecurity, with a minimum of 3 years in a dedicated threat intelligence role.
• A strong understanding of the cyber threat landscape, including knowledge of threat actor groups, common attack vectors, and malware families.
• Proven ability to analyze complex data from various sources to form a cohesive threat picture.
• Familiarity with common threat intelligence frameworks like MITRE ATT&CK, the Cyber Kill Chain, and Diamond Model.
• Excellent written and verbal communication skills, with the ability to present technical information clearly to both technical and non-technical audiences.
• Experience with threat intelligence platforms (TIPs), security information and event management (SIEM) systems, and forensic tools.

Nice To Haves

• Relevant industry certifications such as GIAC GCTI, GREM, or other certifications from organizations like ISC2 or CompTIA.
• Proficiency in scripting languages (e.g., Python, PowerShell) to automate data collection and analysis tasks.
• Experience with vulnerability analysis, exploit development, or reverse engineering.
• Prior experience leading a small team or a project.

Responsibilities

• Lead the design, development, and continuous improvement of the organization’s cyber threat intelligence (CTI) program, ensuring alignment with business objectives and risk tolerance.
• Perform deep-dives into cyber threats, including analyzing malware, understanding adversary tactics, techniques, and procedures (TTPs), and tracking threat actor groups.
• Create and refine threat models and frameworks to predict and prepare for potential attacks, focusing on threats relevant to our industry and infrastructure.
• Work with our Global Security Operations Center (GSOC), Detection Engineering, Automation Engineers and Incident Response teams to integrate threat intelligence into our detection and prevention systems.
• Generate timely and high-quality intelligence/Threat Landscape reports, risk forecasts and alerts for technical and executive audiences.
• Promote automation of indicator ingestion, correlation, and dissemination across GSOC, Automation and IR platforms.
• Define and track key performance indicators (KPIs) for the threat intelligence program.
• Conduct periodic maturity assessments of the threat intelligence function, recommending improvements in processes, skills, and tools.
• Provide guidance and mentorship to junior analysts.

Benefits

• Medical (HSA & FSA), dental, vision, 401(k) with company match, employee stock purchase plan, commuter benefits, in-house wellness program, broad learning & development opportunities, a charitable giving platform with company match and more!
• Fitness allowance, employee discount programs, free games & events and stocked pantries.