Full-Time

Principal Threat Intelligence Analyst

Posted on 8/23/2024

Recorded Future

Recorded Future

1,001-5,000 employees

Provides machine-readable threat intelligence solutions

Cybersecurity

Senior

Boston, MA, USA + 1 more

More locations: Arlington, VA, USA

Category
Cybersecurity
IT & Security
Required Skills
TCP/IP
Python
Data Science
Java
Go
C/C++
Requirements
  • BA/BS or equivalent experience in Computer Science, Computer Engineering, Information Security, Security Studies, Intelligence, or a related field
  • 6+ years of experience in Information Security and/or Threat Intelligence
  • Demonstrable experience conducting technical threat analysis and research
  • Demonstrable experience with structured analytical techniques, the intelligence cycle, and intelligence writing techniques and methodologies
  • Proven expertise in clustering and tracking multiple state-sponsored activity groups using techniques such as the Diamond Model of Intrusion Analysis
  • Scripting capabilities in Python (preferred), Go, C, C++, or Java
  • Familiarity with platforms & software such as Maltego, Jupyter Notebook, the ELK Stack, and Excel, among other common cyber threat intelligence research platforms
  • In-depth knowledge of TCP/IP and other networking protocols and datasets relevant to intrusion and network infrastructure analysis
  • Experience developing intelligence requirements
  • Experience working directly with clients
  • Experience with open-source intelligence-gathering tools and techniques
  • Excellent written and verbal communication; ability to convey complex technical and non-technical concepts
  • Excellent interpersonal and teamwork skills; ability to work with globally distributed team members
Responsibilities
  • Synthesize multiple technical datasets to derive novel insights and reporting related to state-sponsored APT activity tied to China
  • Establish methods of tracking APT campaigns using a combination of network, intrusion, and malware analysis skills
  • Support the fulfillment of client priority intelligence requirements via Recorded Future’s Analyst on Demand service
  • Mentor your colleagues on intrusion analysis and threat intelligence best practices
  • Identify new datasets to ingest and propose new analytics that can be developed to improve and/or automate portions of the intelligence cycle
  • Serve as a subject matter expert on Chinese state-sponsored threat activity
  • Work with the Advanced Reversing, Malware, Operations, and Reconnaissance team to identify, prioritize, and deploy various detection mechanisms for command & control infrastructure, malware families, and threat actor groups of interest
  • Stay on top of developments within the APT threat landscape and track key developments by following publications, blogs, and mailing lists
  • Represent the SPT team’s research (emphasis on China state-sponsored research) externally to journalists and media (anonymously or otherwise) in collaboration with Recorded Future’s public relations team
  • Work with engineering and data science teams to ensure relevant data and analytics are correctly designed, developed, and deployed in the Recorded Future platform

Recorded Future provides threat intelligence in the cybersecurity sector, helping organizations identify and mitigate potential security threats. Their intelligence is delivered in a machine-readable format, making it easy for clients to integrate with existing security systems. Unlike competitors, Recorded Future focuses on partnerships with Value Added Resellers (VARs), offering extensive support and training to enhance their sales capabilities. The company's goal is to lower the risk of cyber attacks for organizations by delivering actionable intelligence and fostering strong partnerships.

Company Stage

Acquired

Total Funding

$57.1M

Headquarters

Somerville, Massachusetts

Founded

2009

Growth & Insights
Headcount

6 month growth

32%

1 year growth

32%

2 year growth

32%
Simplify Jobs

Simplify's Take

What believers are saying

  • The launch of generative AI tools and Enterprise AI for intelligence positions Recorded Future at the forefront of innovation in threat intelligence.
  • Strategic investments, such as in Hunt.io, demonstrate Recorded Future's commitment to staying ahead in advanced adversary hunting and threat detection.
  • The company's comprehensive support and training for VARs ensure successful implementation and growth, benefiting both partners and clients.

What critics are saying

  • The rapid evolution of cyber threats requires continuous innovation, posing a challenge to maintain a competitive edge.
  • Dependence on VARs for market reach could limit direct customer relationships and feedback, potentially impacting product development.

What makes Recorded Future unique

  • Recorded Future's machine-readable threat intelligence format allows seamless integration with existing security systems, setting it apart from competitors who may offer less compatible solutions.
  • Their partnership model with Value Added Resellers (VARs) ensures a broader market reach and enhanced support, unlike companies that rely solely on direct sales.
  • The company's focus on generative AI and behavioral analytics provides advanced, real-time threat analysis, distinguishing it from traditional threat intelligence providers.

Help us improve and share your feedback! Did you find this helpful?

Benefits

Professional development and career advancement

Flexible work environment, be yourself

Generous vacation policy

Wellness programs

Company outings

Competitive compensation and benefits

Free snacks, drinks, and coffee in the office

Parental leave program

Environmentally conscious

INACTIVE