Senior Threat Intelligence Engineer

RADICL

40d•Hybrid

About The Position

We’re looking for a Senior Threat Intelligence Engineer to join our growing team. This role is critical to building and maintaining advanced detection capabilities and intelligence workflows that protect our customers from evolving threats. You’ll work closely with threat hunters, detection engineers, and product teams to design, implement, and optimize detection logic and intelligence pipelines. About You You enjoy fast-paced environments, bring a positive attitude, and excel at getting things done. You enjoy being part of a high performing team and are also able to self-direct and self-start. You consider yourself to be top tier talent and are eager to help others raise their game. You enjoy working with customers, are an excellent communicator, and able to engage and interact with people of various backgrounds and skill levels. You want your work to have meaning, to be important. You want to be part of creating something great. About the Workplace At RADICL, we prioritize our culture and believe the strongest teams are built through daily, side-by-side collaboration and experiential sharing. We also value individual freedom and flexibility. For this reason, we have a hybrid work model. As a team, we are in office M/W/Th with work-from-home on Tuesdays and Fridays. For remote positions, periodic travel to Boulder will be expected to participate in company events and meaningful side-by-side collaboration opportunities. RADICL offices are in downtown Boulder, Colorado with easy-to-access employee parking provided by the company. We offer comprehensive, competitive benefits including health, dental, and vision as well as 401K and a responsible PTO plan. We encourage motivated, talented, mission-oriented, and fun people to apply. Let’s do this!

Requirements

5+ years of experience in threat detection engineering, threat intelligence engineering, or related security engineering roles.
Strong understanding of attacker tactics, techniques, and procedures (TTPs) and frameworks like MITRE ATT&CK.
Proficiency in detection languages (e.g., Sigma, KQL, ES|QL)
Proficiency in one or more programming languages (Python, Golang, etc)
Experience with SIEM platforms (e.g., Splunk, Elastic), EDR solutions, and cloud security tooling.
Experience with automation frameworks (SOAR) and API integrations.
Hands-on experience with AWS services and cloud-native security practices.
Familiarity with threat intelligence platforms and enrichment workflows.
Excellent problem-solving skills and ability to work in a fast-paced, collaborative environment.

Responsibilities

Build and maintain a detection-as-code pipeline to streamline development, testing, and deployment of detection content.
Develop and maintain detection content for SIEM, EDR, and cloud security platforms.
Research emerging threats and translate findings into actionable detection strategies.
Build automation and enrichment workflows to improve threat intelligence ingestion and operationalization.
Collaborate with engineering teams to integrate detection and intelligence capabilities into RADICL’s platform.
Conduct performance tuning and validation of detection logic to minimize false positives and maximize coverage.