Jobs · Information Technology · Maryland

Lead Cyber Threat Intelligence Analyst

Revolutional · Suitland, MD · Today
Information TechnologyFull-time

About the role

Lead the Cyber Threat Intelligence function for a federal enterprise cybersecurity program operating within government-controlled secure facilities. The CTI function is the program’s strategic intelligence capability — identifying real and potential threats to computing infrastructure, reviewing and responding to Prioritized Intelligence Requirements (PIRs), and disseminating classified threat briefings and reports that drive both operational response and long-range risk management decisions.

Responsibilities

  • Lead the Cyber Threat Intelligence function; set analytical standards, manage team workload, and serve as the senior intelligence authority for all CTI products and assessments
  • Identify potential and real threats to enterprise computing infrastructure, across classified and unclassified source streams; assess threat actor intent, capability, and opportunity
  • Develop and communicate risk mitigation strategies based on current threat intelligence; translate analytical findings into actionable defensive recommendations for security operations and program leadership
  • Review, manage, and respond to Prioritized Intelligence Requirements (PIRs); ensure the CTI team’s collection and production efforts are aligned with the most critical information needs
  • Produce and disseminate classified cyber threat briefings and reports; deliver finished intelligence to government leadership and operational teams at both strategic and tactical levels
  • Integrate all-source intelligence — classified, open-source, and technical — into comprehensive threat assessments that reflect the full intelligence picture
  • Apply Threat/Warning Analysis tradecraft to deliver early indications and warnings of emerging cyber threats, adversary campaigns, and shifts in threat actor behavior
  • Cook up with SOC, incident response, and threat hunting teams to ensure CTI products are operationally relevant and drive detection and response improvements
  • Maintain classified access and handle all intelligence products in accordance with applicable security protocols within government-controlled secure facilities
  • Ensure CTI team compliance with NICE Cybersecurity Workforce Framework role-based training requirements
  • Develop and maintain intelligence production standards, product templates, and analytical procedures that ensure consistency and quality across the CTI function

Requirements

  • Bachelor’s degree in Intelligence Studies, Political Science, Computer Science, Information Security, or related field (or equivalent experience)
  • 7 to 10 years of intelligence-related experience with a focus on cyber threat analysis and finished intelligence production
  • Demonstrated experience in Threat/Warning Analysis (NICE: AN-TWA-001) and All-Source Analysis (NICE: AN-ASA-001) competency areas
  • Experience leading or managing a CTI team or intelligence production function
  • Active Top Secret/SCI clearance (Final) required
  • Must work onsite within a government-controlled secure facility
  • Deep experience identifying and assessing real and potential cyber threats to enterprise computing infrastructure using structured analytic tradecraft
  • Proficiency producing finished all-source intelligence products: threat assessments, warning products, PIR responses, and classified briefings at both strategic and tactical levels
  • Experience reviewing and managing Prioritized Intelligence Requirements (PIRs) and aligning production efforts to collection priorities
  • Demonstrated experience disseminating classified cyber threat briefings and reports to senior government and operational audiences
  • Hands-on experience applying Threat/Warning Analysis tradecraft including Early Indications and Warnings methodologies
  • Experience integrating classified, open-source, and technical intelligence streams into comprehensive finished products
  • Familiarity with MITRE ATT&CK and D3FEND frameworks applied to threat actor profiling and analytical product development
  • Familiarity with FISMA and NIST SP 800 series as they apply to intelligence-informed risk management
  • Experience building or maturing a CTI function from early capability to full production maturity

Qualifications

  • One or more of the following is required or strongly preferred: GCTI (GIAC Cyber Threat Intelligence), CISM (Certified Information Security Manager), CISSP, CySA+, or equivalent senior intelligence or security credential
  • Role-based training required per NICE Cybersecurity Workforce Framework AN-TWA-001 and AN-ASA-001 — must be current or completed within required timeframes

Skills

  • Analytically authoritative: your assessments are grounded in evidence, structured in tradecraft, and defensible under peer and leadership review
  • Audience-calibrated communicator — your classified briefings land with senior government leadership and your tactical products are equally actionable for SOC operators
  • Operationally connected: you build CTI products that drive decisions and detection improvements, not just analytical archives

Benefits

Here At Revolutional We Are Pleased To Have Been Repeatedly Recognized For Our Outstanding Work Culture, The Innovative Work We Do, And The Employees On Our Team Who Make a Difference Each Day. Some Of These Recognitions Include Recognized as a Top 20 "Best Place to Work in Virginia"Recipient of Department of Labor's HireVets Gold MedallionGreat Place to Work Certification for five years runningA Virginia Chamber of Commerce Fantastic 50 companyA Northern Virginia Technology Council Tech 100 company Inc. 5000 list of fastest growing companies for eleven yearsTwo-time SBA SBIR Tibbett's Award winnerVirginia Values Veterans (V3) Certification

Pay

Competitive compensation

Schedule

Full-time

Similar jobs

Cyber Threat Analyst

Parsons CorporationAnnapolis Junction, MD· 2 mo ago
Information Technology$134k–$241k/yrapply on parsons.wd5.myworkdayjobs.com