Threat Intelligence Researcher

This is a fully remote position, open to applicants in United States.

📋 Description

• Identify, monitor, and evaluate advanced persistent threats (APTs), including their tactics, techniques, and procedures (TTPs), as well as their active infrastructure, to extract insights into attack vectors, victimology, and the scale of attacks.

• Generate timely and actionable intelligence reports for clients, media, and partners. Engage in customer briefings, incident response, and coordinated takedowns of threat actors (TAs).

• Create and sustain high-fidelity detection signatures (YARA, Snort, Sigma) to safeguard clients.

• Analyze extensive datasets (using SQL, Python, or Splunk) to pinpoint anomalies and chart adversary infrastructure. Develop workbooks, dashboards, and methodologies to enhance detection capabilities.

• Design and utilize AI and LLM automations to facilitate your analytical workload.

⛳️ Requirements

• Bachelor's or Master's degree in Computer Science, Cybersecurity, or a closely related technical field.

• 3–5 years of experience in a practical threat intelligence research role within a leading industry organization, military, law enforcement, or government.

• Familiarity with key threat actors, APTs, emerging threat vectors, and the broader threat landscape.

• Expertise in querying large datasets and designing dashboards using Splunk, SQL, or similar tools.

• A hacker's curiosity — the ability to analyze a data point and uncover the underlying pattern.

• Bonus: Experience with open-source and commercial attack surface, malware analysis, and network intelligence tools and platforms.

• Additional Bonus: Proficiency in reading and writing at a native level in Russian, Mandarin, Korean, or Farsi.

🏝️ Benefits

• Competitive salary

• Stock options

• Health benefits

• Unlimited PTO

• Parental leave

• Tuition reimbursements