Cyber Intelligence Analyst

Threat Intelligence SpecialistSecurity AnalystFull TimeRemoteSeniorTeam 10,001+Since 1907H1B SponsorCompany SiteLinkedIn

Location

Kentucky

Posted

17 hours ago

Salary

$86.6K - $160.5K / year

Seniority

Senior

Job Description

Cyber Intelligence Analyst

UPS

• The Cyber Intelligence Analyst participates in the identification, tracking, monitoring, containment and mitigation of information security threats. • He/She performs analysis of endpoint and network data utilizing established processes and tools to perform threat identification, analysis, containment and remediation. • This position is responsible for the documentation of security events and their resolution. • The Cyber Intelligence Analyst communicates with and educates clients and asset owners to ensure understanding of processes and procedures, complex security topics and protocols, and risk resolution methodologies. • The Cyber Intelligence Analyst will be required to provide support on a rotating basis.

Job Requirements

  • Experience as Security Operations Center (SOC) Analyst or relevant Cyber Security focused incident response and handling roles
  • Experience in Malware Reverse Engineering and Sandboxing
  • Experience with SIEM Technology
  • Significant experience with Linux, TCP/IP, UNIX, MS-Windows, IP Routing, Firewalls and IPS
  • Understanding of behavioral based threat models, including ATT&CK, Cyber Kill Chain, Diamond Model, etc.
  • Deep understanding of advanced cyber threats targeting enterprises, along with the tools, tactics, and procedures used by those threats
  • Demonstrated experience using Open Source (OllyDbg, Radare, GDB, etc.) malware analysis tools
  • Ability to analyze shellcode, and packed and obfuscated code, and their associated algorithms
  • Ability to develop network and host-based signatures to identify specific malware. Recommend heuristic or anomaly-based detection methods
  • Subject matter expertise in the detection, analysis and mitigation of malware
  • Experience with Information Security Research, Malware Reverse Engineering, Cyber Threat Analysis, Windows Operating System and Data Analysis
  • Knowledge of Research skills, Technical Writing, Information Security Research, Security Incident Response, Security Risk Assessment/Analysis
  • Bachelors degree or other college equivalent is preferred.
  • Incident response focused certifications such as GIAC GSEC (401), GCIH (504), GMON (511) or equivalent knowledge level preferred.
  • Public cloud (AWS, Azure, GCP) certifications are preferred.

Benefits

  • Medical/prescription drug coverage
  • Dental coverage
  • Vision coverage
  • Flexible Spending Account
  • Health Savings Account
  • Dependent Care Flexible Spending Account
  • Basic and Supplemental Life Insurance & Accidental Death and Dismemberment
  • Disability Income Protection Plan
  • Employee Assistance Program
  • 401(k) retirement program
  • Vacation
  • Paid Holidays and Personal time
  • Paid Sick and Family and Medical Leave time as required by law
  • Discounted Employee Stock Purchase Program

Related Job Pages

More Threat Intelligence Specialist Jobs

GM Financial logo

Fraud Intelligence Analyst II

GM Financial

Teamwork | Excellence | Integrity | Diversity, Equity and Inclusion | Community Investment

Full TimeRemoteTeam 5,001-10,000Since 1992H1B No Sponsor

• Identify, analyze, and mitigate emerging auto insurance fraud trends • Leverage advanced analytics, predictive modeling, AI tools, and investigative techniques • Partner with cross-functional teams to develop monitoring systems and optimize fraud detection models • Support investigations and deliver actionable insights to improve operational effectiveness

Texas
$61K - $116K / year
SentinelOne logo

Senior Threat Intelligence Researcher

SentinelOne

Secure your enterprise with the autonomous cybersecurity platform. Endpoint. Cloud. Identity. XDR. Now.

Full TimeRemoteTeam 1,001-5,000Since 2013H1B Sponsor

Role Description As a Senior Threat Intelligence Researcher, you'll lead deep-dive investigations into both emerging & known threats, while maintaining a vigilant watch over malware developments to ensure defenses remain a step ahead of evolving attack methods. You'll put into use your ability to synthesize complex data into actionable intelligence and provide senior management with the clear briefings necessary to understand and mitigate potential risks. Furthermore, you'll be expected to develop refined hunting strategies to adapt to and anticipate shifts in threat actor tactics & techniques, and to track adversary infrastructure, effectively counteracting shifts in threat actor tactics through detail-oriented investigation. What Will You Do? - Drive External Threat Research: - Triage and evaluate findings from OSINT and lead in-depth investigations into emerging threats. - Systematically evaluate signals from the global OSINT community and dark web forums to determine their fidelity, relevance, and impact. - Synthesize Actionable Intelligence: - Transform raw data from dark web forums, leak sites, and research repositories into high-level threat briefings and risk assessments for senior stakeholders. - Adversary Knowledge Management: - Curate and expand our internal Knowledge Base and IOCs collections. - Track Actor Tradecraft (TTPs): - Monitor adversary behaviors across the open and deep web to identify shifts in recruitment, target selection and shifting of operations. - Pivot Across Infrastructure: - Identify and map threat actor footprints by pivoting through domain registrations, SSL certificates, passive DNS. - Bridge Intelligence Gaps: - Collaborate closely with Detection Engineering to translate validated OSINT findings into durable hunting logic. - Develop OSINT Tooling: - Build and automate scrapers, monitors, and data-visualization tools to identify anomalies and track threats in external telemetry. Qualifications - A Threat Intelligence / Threat hunting background. - Knowledge of the cyber threat landscape, including actors and TTPs. - Strong analytical skills, with the ability to identify patterns and trends in large datasets. - Programming skills in Python and knowledge of databases (SQL, noSQL). - Strong knowledge of YARA to track new malware families and knowledge on validation best practices. - Knowledge of MITRE ATT&CK, CISA KEV, EPSS, AMITT, MISP Galaxy. Requirements - Strongly preferred: - Knowledge of malware analysis tools and techniques, including static and dynamic analysis, sandboxing, and debugging. - Technical writing & content development skills. - Nice to have: - Understanding software vulnerabilities, and ability to implement hunting strategies to track and discover them. - Knowledge about internal working of EDR products. - Relevant certifications, such as Certified Malware Analyst (CMA), Certified Reverse Engineering Analyst (CREA), or GIAC Certified Malware Reverse Engineer (GREM). Benefits - Salary starting from 4500 EUR/month. - Annual bonus based on company performance, paid in two installments. - Equity & Rewards: - Restricted Stock Units (RSUs). - Employee Stock Purchase Plan (ESPP). - Time Off & Wellbeing: - Competitive leave benefits. - Gender-neutral parental leave. - Insurance & Financial Security: - Medical and insurance benefits. - Pension. - Employee Assistance Program (EAP). - Work Perks & Flexibility: - Global home office allowance. - Wellness & Lifestyle: - Meal allowance.

Slovakia
€4.5K / month
Sibylline Ltd logo

Embedded Junior Intelligence Analyst

Sibylline Ltd

Sibylline is a leading strategic risk consultancy, delivering timely, accurate, relevant and actionable intelligence.

Full TimeRemoteTeam 201-500Since 2010H1B No Sponsor

Role Description We are seeking a motivated Intelligence Analyst to join our team in an embedded role supporting a global technology company. Working remotely (eligible states) from within the United States and reporting to the Embedded Intelligence Team Lead, the successful candidate will join a small team responsible for delivering timely, actionable intelligence across the Americas and Europe. This role offers an excellent opportunity for an early-career intelligence professional to develop their analytical skills while supporting stakeholders in understanding emerging risks and developments that may impact people, assets, operations, and reputation. The Intelligence Analyst will: - Conduct all-source research, monitoring, and analysis to identify emerging threats, incidents, risks, and trends relevant to the client’s operating environment. - Support the production of intelligence assessments, briefings, and situational awareness updates. - Respond to stakeholder requests for information and contribute to incident response and crisis support activities. - Help deliver accurate, timely, and actionable intelligence that supports operational and strategic decision-making. This position requires strong research and analytical skills, attention to detail, and the ability to manage competing priorities in a fast-paced environment. Candidates should be comfortable working with open-source information, monitoring emerging developments, and communicating findings clearly to a variety of audiences. Familiarity with threat monitoring platforms, AI-assisted analytical tools, and collaborative technology environments is highly desirable. This is a full-time remote position based in the United States, working standard business hours Monday through Friday. The successful candidate will work closely with fellow analysts, client stakeholders, and Sibylline support teams while benefiting from ongoing mentorship, training, and professional development opportunities within a collaborative and high-performing team environment. Qualifications - Bachelor’s degree in International Relations, Security Studies, Criminal Justice, Journalism, or a relevant field from an accredited college or university; or equivalent professional experience. - 1–3 years of relevant experience in corporate intelligence, security intelligence, geopolitical risk, investigations, journalism/research, or adjacent roles supporting operational decision-making. - Foreign language proficiency a plus. Requirements - Demonstrated interest in geopolitical analysis, threat monitoring, activism-related issues, or operational security topics preferred. - Ability to translate complex threat and risk information into concise, actionable intelligence for security and operational stakeholders. - Foundational understanding of all-source research methodologies, OSINT collection techniques, and analytical tradecraft. - Working knowledge of the intelligence cycle and briefing standards; able to produce clear, well-structured written products and verbal updates. - Experience (or demonstrated interest in) monitoring threats that can impact private-sector people, facilities/assets, operations, and reputation. - Sound judgment, attention to detail, and the ability to stay composed in demanding environments with competing priorities. - Comfortable working within defined SOPs and workflows while contributing ideas for continuous improvement. - Collaborative, stakeholder-focused approach; able to work effectively in a matrixed environment across client and Sibylline structures. - Experience leveraging intelligence, monitoring, and productivity technologies to support program delivery and continuous improvement. - Excellent written and verbal English communication skills. Benefits - Salary Range: $80,000 to $85,000 - 401(k) up to 5% matching - Medical/Dental/Vision - Basic Life and AD&D Insurance - Long Term/Short Term Disability - PTO: 160 hours (20 days) accrued per year - Sick: dependent on state - Holidays - Employee Assistance Program and Employee Discount Program

United States
$80K - $85K / year
Sibylline Ltd logo

Embedded Intelligence Analyst – Team Lead

Sibylline Ltd

Sibylline is a leading strategic risk consultancy, delivering timely, accurate, relevant and actionable intelligence.

Full TimeRemoteTeam 201-500Since 2010H1B No Sponsor

• Lead and mentor a small, embedded intelligence team, setting daily/weekly priorities, delegating tasks, and ensuring consistent, high-quality delivery. • Partner with security stakeholders to define key intelligence requirements and maintain a clear tasking and escalation framework for routine reporting, RFIs, and incident-driven support. • Oversee all-source monitoring and analysis to identify emerging threats, security incidents, reputational risks, and trends. • Produce and quality-assure concise, actionable intelligence products and verbal briefings designed to inform operational and leadership decision-making. • Maintain and continuously improve SOPs, definitions, and analyst workflows for monitoring, incident response support, and reporting; identify gaps and redundancies and propose improvements. • Personally contribute to complex intelligence assessments and high-visibility stakeholder requests as required.

United States
$120K - $130K / year