Threat Intelligence Researcher

Job Description:

• Identify, track, and analyze advanced persistent threats (APTs), their TTPs, and their live infrastructure to gain insights into attack vectors, victimology, and attack scale.
• Produce timely and actionable intelligence reports for customers, press, and partners. Participate in customer briefings, incident mitigation, and coordinated threat actor (TA) takedowns.
• Develop and maintain high-fidelity detection signatures (YARA, Snort, Sigma) to protect customers.
• Query massive datasets (using SQL, Python, or Splunk) to identify anomalies and map out adversary infrastructure. Build workbooks, dashboards, and develop methodologies to improve detections.
• Design and leverage AI and LLM automations to support your analysis workload.

Requirements:

• Bachelor's or Master's in Computer Science, Cybersecurity, or a highly technical equivalent.
• 3–5 years in a hands-on threat intelligence research role within a prominent industry organization, military, law enforcement, or government.
• Familiarity with prominent threat actors, APTs, emerging threat vectors, and the wider threat landscape.
• Proficiency with large dataset querying and dashboard design using Splunk, SQL, or similar platforms.
• A hacker's curiosity — the ability to look at a data point and see the hidden pattern.
• Bonus: Experience with open source and commercial attack surface, malware analysis, and network intelligence tools and platforms.
• Additional Bonus: Native-level reading and writing proficiency in Russian, Mandarin, Korean, or Farsi.

Benefits:

• Competitive salary
• Stock options
• Health benefits
• Unlimited PTO
• Parental leave
• Tuition reimbursements

Apply tot his job Apply To this Job