Lead Threat Intelligence Analyst

We are seeking an experienced Lead Threat Intelligence Analyst to play a critical role in collecting, analyzing, and disseminating cyber threat intelligence that strengthens security awareness, detection, and response capabilities. This position involves processing large volumes of threat data, conducting in-depth analysis, and delivering actionable intelligence reports for internal and external stakeholders.

Key Responsibilities:

Monitor and evaluate open-source and closed intelligence feeds, identifying relevant and actionable cyber threat information.

Correlate and synthesize intelligence from multiple sources to create a comprehensive threat landscape.

Produce concise, high-impact summaries and detailed reports covering technical details, threat actor profiles, attack chains, and TTPs.

Recommend mitigation strategies based on technical analysis and threat assessments.

Map intelligence data to STIX/TAXII frameworks and manage ingestion into Threat Intelligence Platforms.

Track and analyze dark web activity and data leak sites, maintaining a database to identify trends and inform reporting.

Create visualizations (charts, graphs, tables) to illustrate threat actor activity and trends.

Respond to internal and client RFIs and support incident escalations with intelligence-driven insights.

Collaborate with SOC, Threat Hunting, Incident Response, and Vulnerability Management teams.

Brief internal teams and clients on emerging threats and mitigation strategies.

Mentor junior analysts and contribute to the development of threat intelligence processes.

Qualifications:

Proficiency with Threat Intelligence Platforms (e.g., OpenCTI) and STIX/TAXII mapping.

Strong analytical skills for synthesizing intelligence into actionable insights.

Experience with SIEM tools or equivalent.

Excellent technical writing and communication skills for diverse audiences.

Deep understanding of threat actors, motivations, and TTPs (aligned to MITRE ATT&CK).

Scripting experience preferred.

Industry certifications such as GCTI, CTIA, CREST, or MITRE ATT&CK Cyber Threat Intelligence Certification are a plus.

Experience with malware analysis, digital forensics, or incident response is desirable.

Fluency in English; additional languages are advantageous.

Compliance Requirement:

This role involves access to sensitive data and requires compliance with applicable regulations. Candidates must meet eligibility criteria as defined by relevant export control laws.