Head of Threat Research
About the role
This is a newly created role within the expanding Product Strategy and Emerging Threats team. You will conduct hands-on research, lead a small team of threat analysts, own the publication pipeline, and help represent Netcraft through conferences, webinars, media engagements, and written publications.
Remote Work Information
This is a remote position based in the United States, with occasional travel for conferences, team meetings, and customer engagements.
What the Job Involves
- Content Leadership & Public Presentation
- Set editorial direction and quality standards across whitepapers, customer reports, blog posts, and briefing materials
- Speak at industry conferences and webinars, including keynotes, panels, and expert commentary
- Present complex findings to security analysts, senior executives, board members, and government officials
- Serve as a media spokesperson on Netcraft’s threat research, including interviews and commentary with media outlets
- Research & Analysis
- Research phishing, malware, malicious JavaScript, and cybercrime campaigns using Netcraft’s threat intelligence platforms
- Produce threat assessments ranging from short reactive write-ups on active campaigns to in-depth briefings on threat actors and emerging trends using internal telemetry and open-source intelligence
- Track how threat actors exploit current events, emerging technologies, and changes in the threat landscape
- Attribute infrastructure and campaigns to named threat actor groups and criminal ecosystems over time
- Review the team’s research output for quality, accuracy, and technical depth prior to publication
- Team Leadership & Collaboration
- Mentor and develop a team of threat analysts
- Partner with engineering and operations teams to turn research findings into detection rules, IOC feeds, takedown signals, and platform improvements
- Support complex customer engagements by mapping threats to frameworks such as MITRE ATT&CK, the Diamond Model, and the Cyber Kill Chain, while briefing customers directly
- Brief product, marketing, and sales teams on research findings to support roadmap planning, positioning, and customer conversations
Who You Are
- Required Skills & Experience
- Published research in threat intelligence or cybersecurity (blog posts, whitepapers, conference talks, etc.)
- Experience presenting original research to audiences ranging from technical analysts to C-suite executives
- Several years of threat intelligence experience, including experience leading or managing a team
- Strong editorial judgment with experience reviewing and improving research writing for clarity, quality, and accuracy
- Experience managing or contributing to a publication pipeline
- Deep understanding of phishing, malware, online fraud, social engineering, and threat actor TTPs
- Current working knowledge of web technologies, internet infrastructure, and data analysis
- You’ll Thrive Here If You
- Enjoy balancing hands-on research, team leadership, and public speaking
- Can communicate complex technical concepts clearly to both technical and non-technical audiences
- Prefer working with first-party intelligence and care about translating research into meaningful disruption, detection, and takedown outcomes
The Rewards Package
- 33 days vacation, including national holidays (which can be worked if preferred)
- Generous enhanced family leave and pay
- Enhanced sick pay increasing with length of service
- Equity Tracking Units allowing you to share in Netcraft’s long-term success (eligibility criteria apply)
- Hybrid and flexible working options
- 401(k) Safe Harbor Plan with employer match
- Comprehensive private health coverage, including medical, dental, vision, and life insurance
- Meals, snacks, and drinks provided in the office
- Two paid Learning & Development days per year plus access to learning platforms such as Udemy and Coursera
- Two paid Volunteering Days per year to support community and charitable involvement
- Spot reward bonus scheme recognizing outstanding contributions
- Employee Referral Bonus scheme
Diversity, Equity & Inclusion
This is deeply important to us. Through our ally network, we support under-represented groups and maintain a working environment free from bias, harassment, or discrimination. We encourage candidates from all backgrounds to apply.
Please note: Netcraft does not accept unsolicited approaches from external recruiters.