Senior Threat Intel Analyst

About The Position

Requirements

• Minimum 8 years of experience in a technical cyber security role.
• Minimum 4 years of experience in a Threat Intelligence or Threat Hunting role.
• Understanding of the cyber threat landscape, including relevant business risks, threats, and adversary tactics, techniques, and procedures (TTPs).
• Understanding of the Intelligence cycle.
• Familiarity with a variety of defensive methodologies and frameworks.
• The successful applicant may be required to work with US-only data or on US Government environments and therefore must be a U.S. Person (i.e. U.S. citizen, U.S. national, lawful permanent resident, asylee, or refugee). This position may also perform work that the U.S. government has specified can only be performed by a U.S. Citizen on U.S. soil.

Nice To Haves

• 4+ years of experience analyzing threats, collating indicators, and incorporating intelligence into organizational security posture.
• Experience tracking and clustering cyber threats and campaigns.
• Experience with Threat Intelligence Platforms (TIPs) to manage indicators and organize, cluster, and enrich intelligence.
• Proven ability to develop and maintain stakeholder and/or customer relationships.
• Experience developing and briefing reports or delivering products to stakeholders and/or customers.
• Experience driving complex security initiatives and collaborating across teams to improve visibility, intelligence sharing, and operational effectiveness.
• Demonstrated leadership and mentorship skills, including guiding junior analysts, fostering professional development, and promoting best practices within the threat intelligence team.

Responsibilities

• Drive Advanced Intelligence Collection and Analysis: Orchestrate and assure the day-to-day collection, processing, and synthesis of data from a broad range of sources, ensuring the production of impactful, actionable intelligence products that meet the strategic needs of Cisco leadership.
• Support Response: provide actionable intelligence support to internal defensive operations by fusing and exploiting information collected during investigations, building a common understanding of threat activities and attribution.
• Develop Strategic Partnerships: Establish and nurture cross-organizational partnerships with security teams and key stakeholders across Cisco to deliver comprehensive, data-driven insights into both existing and emerging threats.
• Generate Threat Intelligence Reporting: Produce and oversee the creation of threat intelligence reports and products that guide defensive operations and decision-making to enhance Cisco’s overall security posture.
• Maintain Expert Threat Landscape Awareness: Continuously monitor and interpret the evolving threat landscape, focusing on relevant adversaries likely to disrupt Cisco’s operations.
• Provide Incident Intelligence Support: Serve as a catalyst in incident intelligence support by offering expert analysis throughout challenging internal investigations, ensuring a clear and shared perspective on threat actor behaviors, attribution, and response strategies.
• Provide Guidance and Mentorship: Guide and mentor junior analysts by sharing expertise, fostering professional development, and promoting best practices in threat intelligence collection, analysis, and reporting to build a high-performing team.
• Champion Team Growth and Knowledge Sharing: Play a pivotal role in advancing initiatives that foster a collaborative learning environment, promoting continuous skill development, knowledge sharing, and career growth within the threat intelligence team.
• Drive Complex Security Initiatives: Play a pivotal role in coordinating multifaceted initiatives with business partners to enhance threat visibility, intelligence sharing, and security operations effectiveness across the organization.
• Executive-Level Metrics and Briefings: Oversee the capture, analysis, and presentation of key threat intelligence metrics to support operational efficacy and to ensure clarity and strategic relevance.
• Govern Documentation and Process Integrity: Ensure all threat intelligence documentation, workflows, and processes are rigorously maintained, accurate, and continuously improved to support operational excellence and compliance.

Benefits

• medical, dental and vision insurance
• a 401(k) plan with a Cisco matching contribution
• paid parental leave
• short and long-term disability coverage
• basic life insurance
• 10 paid holidays per full calendar year, plus 1 floating holiday for non-exempt employees
• 1 paid day off for employee’s birthday, paid year-end holiday shutdown, and 4 paid days off for personal wellness determined by Cisco
• 16 days of paid vacation time per full calendar year, accrued at rate of 4.92 hours per pay period for full-time employees (non-exempt)
• flexible vacation time off program (exempt)
• 80 hours of sick time off provided on hire date and each January 1st thereafter, and up to 80 hours of unused sick time carried forward from one calendar year to the next
• Additional paid time away may be requested to deal with critical or emergency issues for family members
• Optional 10 paid days per full calendar year to volunteer
• annual bonuses subject to Cisco’s policies (for non-sales roles)
• performance-based incentive pay on top of their base salary (for sales roles)
• grants of Cisco restricted stock units