Threat Intelligence Manager

Microsoft•Redmond, WA

4d•$165,600 - $331,200•Onsite

About The Position

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Security is a core priority for Microsoft, and threat intelligence is fundamental to how we protect customers at global scale. We are seeking a Manager / Leader of Threat Intelligence Security Analysts to lead a U.S.-based team focused on tracking criminal threat actors and transforming intelligence into insights, recommendations, and protective outcomes that help defend customers, platforms, and services. In this role, you will lead a high-performing team of analysts responsible for understanding adversary behavior, identifying emerging threats, and delivering actionable intelligence that informs security operations, product strategy, and engineering investments. You will bring an engineering-minded approach to intelligence leadership, using data, tooling, automation, and AI to improve how the team operates and how intelligence is produced, scaled, and operationalized. A key part of this role is building a hybrid human + agentic operating model. You will define how analysts and AI-powered systems work together to accelerate research, surface insights, improve analytic quality, and increase the impact of the team. You will partner closely with engineering, product, research, and security organizations to convert intelligence into durable customer value.This role is ideal for a leader with deep threat intelligence expertise, a track record of organizational leadership, strong industry relationships, and the ability to represent Microsoft credibly across the security community.

Requirements

Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 5+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.
OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 6+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.
OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 8+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.
OR equivalent experience.
3+ years people management experience.
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter.

Nice To Haves

Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 8+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.
OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 12+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.
OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 15+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.
OR equivalent experience.
5+ years people management experience.
7+ years of experience in security and threat intelligence.
3+ years of experience managing large teams in security, intelligence, or related domains.
Experience tracking criminal threat actors and producing intelligence used to inform protection, detection, disruption, or response outcomes.
Experience leading through cross-functional influence and partnering effectively with engineering and product organizations.
Experience applying AI, automation, or advanced tooling to improve analyst workflows and team effectiveness.
Proven ability to communicate clearly with both technical and executive audiences.
Demonstrated engineering mindset, with a ability to solve problems using tools, systems, automation, and AI.
Experience building or leading hybrid human + agentic teams or equivalent AI-augmented operating models.
Proven track record of presenting at recognized security conferences and representing an organization externally.
Network across intelligence partners, industry peers, and agencies involved in tracking threat actors.
Experience scaling intelligence programs in complex, global, or product-driven environments.

Responsibilities

Lead, coach, and grow a U.S.-based team of Threat Intelligence Security Analysts focused on tracking criminal threat actors, campaigns, infrastructure, and emerging trends.
Define the vision, strategy, and priorities for the team to deliver high-quality intelligence that drives customer protection and business impact.
Build and operationalize a hybrid human + agentic intelligence team, applying AI technologies, automation, and workflow innovation to improve scale, speed, and insight generation.
Foster an engineering-oriented culture that values technical depth, experimentation, continuous improvement, and measurable outcomes.
Partner across engineering, product, security research, detections, data science, and incident response teams to translate intelligence into protections, investigations, product improvements, and strategic decisions.
Drive production of clear, actionable intelligence outputs for technical teams, leadership, and external stakeholders, including actor assessments, campaign analysis, strategic reporting, and executive briefings.
Establish and maintain analytic standards, tradecraft, quality controls, and operating mechanisms for the team.
Develop trusted relationships across the intelligence community, including industry partners, external organizations, and agencies engaged in tracking criminal threat actors.
Represent Microsoft through customer engagements, industry forums, and presentations at security conferences and other external events.
Hire and develop diverse talent, build an inclusive and high-performing team culture, and create an environment where analysts can do their best work.

Benefits

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume