Key skills
CloudPythonGoAIMLRemote Work
About this role
Role Overview
- Track and analyze threat actors, campaigns, and techniques targeting identity and cloud environments
- Translate intelligence into actionable detections, hunting hypotheses, and adversary simulations
- Partner with Detection Engineering, Incident Response, and other security teams to drive security decisions
- Produce clear technical assessments and executive-ready insights to inform risk prioritization
- Build and maintain automated pipelines to ingest, enrich, and distribute threat intelligence
- Map adversary behaviors to internal telemetry and control coverage to identify gaps
- Apply AI and intelligent tooling to accelerate analysis and correlation while maintaining rigor
- Strengthen intelligence-led security practices through hypothesis-driven hunting and continuous learning
Requirements
- 5+ years of experience in cyber threat intelligence, with 3+ years focused on security engineering and automation.
- Strong understanding of modern attacker techniques, particularly in identity, credential abuse, cloud exploitation, and AI-assisted attack scenarios.
- Experience integrating threat intelligence platforms and building automation around intelligence ingestion and enrichment.
- Proficiency in scripting or programming (e.g., Python, Go) and working with APIs and data pipelines.
- Experience applying AI/ML-assisted tools to enhance intelligence analysis or signal prioritization.
- Willingness to participate in an on-call rotation and support security incidents during high-severity or off-hours events.
Tech Stack
- Cloud
- Python
- Go
Benefits
- Accommodation is available upon request at any point during our recruitment process.
- Remote work is a part of our DNA.
- Successful applicants will be required to complete a background check.