Senior Threat Intelligence Analyst
TENEX.AI · Sarasota, FL · 3 wk ago
HybridInformation TechnologyFull-time
Core Responsibilities
- Execute all phases of the intelligence lifecycle: planning, collection, analysis, production, and dissemination.
- Track specific threat actors and groups using the MITRE ATT&CK framework to identify gaps in our current defenses.
- Monitor geopolitical events, industry trends, and the dark web to provide "big picture" briefings on how the threat landscape is evolving.
- Extract and validate technical Indicators of Compromise (IOCs) from malware reports and OSINT to ensure our blocklists are high-fidelity and low-noise.
- Assist in the proactive research, identification, and collection of threat intelligence from various sources, including open-source intelligence (OSINT), commercial feeds, and internal security data.
- Produce high-quality written reports, ranging from "Flash Alerts" for urgent threats to monthly blogs or executive summaries for leadership.
- Monitor and analyze vulnerability disclosures and exploit trends to provide initial insights into potential risks.
- Act as a bridge between technical teams (Incident Response) and non-technical stakeholders, translating complex exploits into business risk.
Required Qualifications
- Experience: 6+ years of experience in cybersecurity, with at least 4+ years specifically focused on threat intelligence or a closely related field (e.g., Security Operations Center (SOC) analysis).
- Knowledge: Familiarity with the Intelligence Cycle, Threat frameworks and methodologies (e.g. MITRE ATT&CK, Diamond Model, Cyber Kill chain, Pyramid of Pain, STIX/TAXII).
- Research Skills: Proficiency in OSINT and Commercial tools and techniques (e.g., Shodan, VirusTotal, INTEL471, WHOIS, Maltego).
- Communication: Exceptional writing skills; you must be able to explain why a threat matters to the business, not just what the threat is.
- Analytical Mindset: Ability to apply structured analytic techniques to avoid cognitive biases in your assessments.
- Technical Skills & Tools: Experience using Threat Intelligence Platforms (e.g., ThreatConnect, OPEN CTI). Knowledge of STIX/TAXII protocols for sharing threat intelligence. Malware Literacy: Ability to understand a sandbox report or basic static analysis to extract command-and-control (C2) infrastructure.
Culture
The ideal candidate will be able to work onsite at our HQ based in Sarasota, FL (Tampa Metro Area) or Overland Park, KS (KC Metro Area). If you’re looking at this position and you are not located in either of our physical locations, we strongly recommend you consider accepting one of our lucrative relocation packages to our epic hubs in Sarasota, Florida (outside Tampa), or Overland Park in the Kansas City metro—where trailblazers redefine cybersecurity with 10x impact!