Staff Threat Intelligence Analyst

Responsibilities

• Conduct research on emerging adversary tradecraft in the identity space (Microsoft 365, Google) to scope and conduct hunt missions
• Aggregate threat data to build reports for customers showing Huntress’ value and inform them of threats
• Create reports for marketing to demonstrate Huntress’ value to the larger community
• Promote Huntress’ reputation through media interaction, public speaking, and blogs
• Work with the Sr. Director of Adversary Tactics, Security Operations Center, Product, and others to develop the product and threat operations roadmap
• Provide technical leadership for some members of the Security teams
• Support professional development of researchers and others through coaching and mentorship
• Enhance Huntress visibility by ingesting and utilizing IOCs from external threat intel sources
• Write blog posts and other marketing materials regarding threat trends
• Utilize AI in workflows

Requirements

• Minimum of 5 years of experience in Threat Intelligence
• Experience with SIEM tools for scaled log analysis
• Familiarity with detection engineering and detection logic (e.g., Sigma Rules)
• Experience researching and scoping threat hunt missions
• Understanding of cybersecurity, threat actors, and end-to-end threat life cycle (including digital forensics, malware research, incident response, vulnerabilities, and exploits)
• Experience with 3rd-party intelligence tools, feeds, and reputation services
• Experience conducting OSINT gathering and analysis
• Excellent written and verbal communication skills

Nice-to-Haves

• Foundational development experience across multiple platforms (Windows and/or macOS), C/C++, GoLang, and Python
• Proficient knowledge of Windows and/or macOS subsystems and how they interact at the user and kernel level