CrawlJobs Logo
Amgen Logo Amgen · IT - Administration

Cyber Threat Intelligence Analyst

Portugal, Lisbon · Job Posted June 16, 2026
Apply Position
Job Link Share

Job Description

The Cyber Threat Intelligence Analyst (CTI) plays a vital role in enhancing Amgen’s cyber defense posture by identifying, analyzing, and disseminating intelligence related to cyber threats. This role is responsible for gathering and correlating information from various internal and external sources to provide actionable insights that help prevent, detect, and mitigate cybersecurity risks. The CTI analyst partners with SOC, incident response, and threat hunting teams to proactively identify indicators of compromise (IOCs), tactics, techniques, and procedures (TTPs), and emerging threat actors targeting the healthcare and biotech sectors. This role also contributes to the development of threat models, intelligence reports, and executive briefings.

Job Responsibility

  • Collect, analyze, and assess cyber threat intelligence from open-source intelligence (OSINT), commercial feeds, government sources, and internal telemetry
  • Develop and maintain profiles of threat actors, their capabilities, infrastructure, and campaigns relevant to Amgen’s industry
  • Produce actionable intelligence reports, threat advisories, and strategic briefings for technical teams and senior stakeholders
  • Correlate threat intelligence with internal events to support investigations and improve detection capabilities
  • Assist in the enrichment of threat hunting and incident response efforts by providing contextual intelligence and TTP mapping
  • Track geopolitical and sector-specific threats to anticipate risks that could affect business operations
  • Collaborate with SOC and engineering teams to improve detection rules and defense mechanisms based on threat intelligence findings
  • Maintain situational awareness of the cyber threat landscape and emerging risks to healthcare, life sciences, and biotechnology sectors
  • Support the configuration and maintenance of threat intelligence platforms (TIPs) and threat feed integrations
  • Contribute to purple team and threat emulation exercises to validate defensive controls and response capabilities

Requirements

  • Master’s degree in Cybersecurity, Information Technology, Intelligence Studies, or related field OR Bachelor’s degree with 1 year of experience in Cyber Threat Intelligence, Threat Hunting, or a similar security role OR Diploma with 2 years of relevant experience in threat intelligence or related cybersecurity functions
  • Strong understanding of the cyber threat landscape, adversary tactics (MITRE ATT&CK), and threat actor methodologies
  • Experience conducting intelligence analysis using OSINT, dark web monitoring, threat reports, and threat intelligence platforms
  • Ability to write concise, impactful threat intelligence reports tailored to various audiences
  • Familiarity with cyber kill chain, diamond model, and intelligence lifecycle
  • Basic scripting knowledge (Python, PowerShell) to support enrichment and automation of threat intelligence

Nice to have

  • Experience in healthcare, pharmaceutical, or biotech threat landscape
  • Knowledge of threat intelligence standards (STIX/TAXII)
  • Understanding of malware families and APT group behaviors
  • Experience with TIPs (e.g., MISP, Anomali, ThreatConnect)
  • Ability to brief senior leadership on strategic and operational threats

What we offer

  • Work That Matters – Build tech that accelerates scientific breakthroughs and helps patients worldwide
  • Modern Tech Stack – Cloud-first, automation-focused, AI-powered
  • Global Scale, Agile Mindset – Collaborate across continents while working in nimble, high-impact teams
  • Continuous Learning – Access to certifications, trainings, mentorship, and career mobility
  • AMGEN Total Rewards Plan – Comprehensive benefits in healthcare, finance, and well-being
  • Flexibility – Hybrid work model with time split between our Lisbon office and remote work
Amgen - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Cyber Threat Intelligence Analyst

8 matching positions

Cyber Threat Intelligence Analyst

The Intelligence Lead Analyst is a senior level professional responsible for dri...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6-10 years of relevant experience
  • Working knowledge in one or more of the following areas: Advanced Persistent Threat, Third Party Risks/Threats, Cybercrime, Extremist Groups and Cyber Terrorists, Hacktivism, Distributed Denial of Service attacks, Fraud, Malware, Mobile Threats
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
  • Bachelor’s degree/University degree or equivalent experience
  • Master’s degree preferred
Job Responsibility
Job Responsibility
  • Analyze regional threat data and determine a correlation if any, to existing intelligence requirements
  • Monitor and research cyber threats with a direct or indirect impact to the Citi brand
  • Research and identify malicious activity by performing post-mortem analysis on logs, traffic flows, and other activities
  • Conduct intrusion analyses to ascertain the impact of an attack, and develop mitigation techniques for future attacks
  • Evaluate networks and programs to assess potential weaknesses and points of entry
  • Analyze and present to senior leadership discovered patterns to forecast future cyber-attacks and their potential impact
  • Liaise with intelligence communities, law enforcement, industry partners, peer financial institutions, and information sharing communities
  • Triage, process, analyze, and disseminate intelligence alerts, reports, and briefings
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.
  • Fulltime
Read More
Arrow Right

Senior Cyber Threat Intelligence Analyst

BAE Systems is seeking a skilled Cyber Threat Intelligence Practitioner to suppo...
Location
Location
United Kingdom , Preston
Salary
Salary:
27.03 - 36.30 GBP / Hour
outsource-uk.co.uk Logo
Outsource UK
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong experience within a Cyber Threat Intelligence (CTI) discipline
  • A solid understanding of cyber threat actors, geopolitics, and global threat activity
  • Awareness of intelligence disciplines such as OSINT, SIGINT, HUMINT, and their application
  • Knowledge of structured analytical techniques and intelligence best practice
  • Experience applying MITRE ATT&CK / D3FEND / ENGAGE frameworks in an operational context
  • Clearance: BPSS + SC + UK EYES
Job Responsibility
Job Responsibility
  • Produce operational and tactical cyber threat intelligence reports tailored to technical and senior audiences
  • Monitor the cyber threat landscape, including OSINT, dark web sources, internal telemetry, and external intelligence feeds
  • Investigate threat actors, campaigns, and tactics, techniques, and procedures (TTPs) to identify indicators of compromise
  • Provide timely intelligence support during security incidents, aiding containment and remediation efforts
  • Deliver threat briefings to internal stakeholders and trusted external partners
  • Support Requests for Information (RFIs) and Intelligence Requirements (IRs) in collaboration with CTI collections teams
  • Advise on organisational Cyber Threat Levels based on intelligence assessments
  • Act as a trusted advisor, translating complex intelligence into clear, actionable insight
  • Fulltime
Read More
Arrow Right
New

Cyber Threat Analyst Level 3

Altamira Technologies has a long and successful history providing innovative sol...
Location
Location
United States , Annapolis Junction
Salary
Salary:
Not provided
altamiracorp.com Logo
Altamira Technologies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Ten (10) years of experience with security operations, network forensics, insider threat
  • Bachelor’s degree in computer science, information systems, international relations, or other related field
  • Experience with XKS creating general queries, fingerprinting, and identifying atypical events
  • Experience with Elastic/Splunk/ or other Security Information and Event Management (SIEM) experience creating visualizations and dashboards
  • Understanding of TCP/IP communication protocols and packet flows based on IP traffic
  • analysis of Packet Capture (PCAP) traffic in Wireshark
  • Familiarity writing signatures in Zeek and/or Snort
  • Must have a bachelor’s degree in computer science, information systems, network forensics or other data analysis roles
  • Ten (10+) years’ experience working in the areas of intelligence, information security, network forensics, insider threat or security operations
  • Specific understanding of key global areas of interest that pose threats to U.S. critical systems as well as an understanding of Advanced Persistent Threats (APTs), cyber actor motives and actions in depth
Job Responsibility
Job Responsibility
  • Analyzing, correlating, and operationalizing threat intelligence to support proactive defensive cyber activities
  • Working in close collaboration with a team of cyber analysts to pinpoint the highest levels of cyber threats with the goal to prevent and eradicate threats to critical U.S. systems
  • Fulltime
Read More
Arrow Right
New

Cyber Threat Analyst Level 2

Altamira Technologies has a long and successful history providing innovative sol...
Location
Location
United States , Annapolis Junction
Salary
Salary:
Not provided
altamiracorp.com Logo
Altamira Technologies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Seven (7) years of experience with security operations, network forensics, insider threat
  • Bachelor's degree in computer science, information systems, international relations, or other related field
  • Experience with XKS creating general queries, fingerprinting, and identifying atypical events
  • Experience with Elastic/Splunk/ or other Security Information and Event Management (SIEM) experience creating visualizations and dashboards
  • Understanding of TCP/IP communication protocols and packet flows based on IP traffic
  • analysis of Packet Capture (PCAP) traffic in Wireshark
  • Familiarity writing signatures in Zeek and/or Snort
  • Must have a bachelor’s degree in computer science, information systems, network forensics or other data analysis roles
  • Three (3+) years’ experience working in the areas of intelligence, information security, network forensics, insider threat or security operations
  • Research OSINT and current world event trends
Job Responsibility
Job Responsibility
  • Conduct research to maintain an in-depth understanding of emerging cyber threats
  • contribute to detection strategies
  • support a team of threat analysts with the goal to eradicate vulnerabilities to critical U.S. systems
Read More
Arrow Right

Staff Security Analyst, Threat Intelligence

We are building an elite team, applying frontier technologies to the world’s big...
Location
Location
United States , Menlo Park
Salary
Salary:
191000.00 - 225000.00 USD / Year
robinhood.com Logo
Robinhood
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8–12+ years of total experience, including 3–5+ years operating at a senior or staff-level scope in threat intelligence, brand protection, or cyber investigations
  • Hands-on experience tracking criminal ecosystems tied to phishing, scams, impersonation, fraud, and infrastructure abuse, and the ability to move from isolated indicators to campaign- and actor-level analysis
  • Deep familiarity with domain registration patterns, DNS and certificate transparency analysis, cloud and hosting abuse across providers (e.g., AWS, GCP, Azure, VPS), and attacker monetization methods
  • Experience using OSINT tooling, SQL, Python, notebooks, SIEM or SOAR platforms, OpenCTI, and case management systems to analyze data and automate workflows
  • Ability to translate complex technical threats into clear business risk for technical teams and executive audiences through strong written and verbal communication
  • Experience mentoring others or leading initiatives across teams, with a high level of accountability and sound risk judgment in ambiguous situations
Job Responsibility
Job Responsibility
  • Proactively hunt and map criminal ecosystems targeting Robinhood and its customers, then translate intelligence into scalable systems and coordinated defenses that disrupt adversaries before they cause harm
  • Build and operationalize a comprehensive "Universe of Threats" by identifying, tracking, and prioritizing adversaries across phishing, scams, impersonation, fraud, and infrastructure abuse
  • Establish and mature a proactive threat intelligence lifecycle by developing industry partnerships, collaborating with trusted peers and federal authorities, and cultivating online personas to generate early warning capabilities that protect Robinhood’s business operations
  • Investigate attacker infrastructure across domains, DNS, certificate transparency logs, cloud providers, and telecom platforms, and convert findings into concrete detections, controls, and customer protections
  • Coordinate threat actor infrastructure takedowns with hosting providers, domain registrars, cloud platforms, and other infrastructure partners to disrupt adversary operations at scale
  • Design and automate intelligence workflows using OSINT tooling, enrichment pipelines, data analysis tools, and case management systems to scale analysis and reporting
  • Partner directly with Detection & Response, Automation, Customer Trust & Safety (Fraud and Financial Crimes), Security Engineering, Corporate Security, Risk, and executive leaders to prioritize threats based on measurable business risk
What we offer
What we offer
  • Challenging, high-impact work to grow your career
  • Performance-driven compensation with multipliers for outsized impact, bonus programs, equity ownership, and 401(k) matching
  • Best-in-class benefits to fuel your work, including 100% paid health insurance for employees with 90% coverage for dependents
  • Lifestyle wallet — a highly flexible benefits spending account for wellness, learning, and more
  • Employer-paid life & disability insurance, fertility benefits, and mental health benefits
  • Time off to recharge including company holidays, paid time off, sick time, parental leave, and more
  • Exceptional office experience with catered meals, events, and comfortable workspaces
  • Fulltime
Read More
Arrow Right

Senior Applied Threat Intelligence Analyst

Security represents the most critical priorities for our customers in a world aw...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field. OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection. OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection. OR equivalent experience.
  • Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter.
Job Responsibility
Job Responsibility
  • Author and publish high-impact threat intelligence reports (actor profiles, campaign analyses, trend reports, TTP deep-dives, vulnerability profiles) for both customer-facing and internal audiences.
  • Build and refine the pipelines, tooling, and workflows that allow Microsoft to stream insightful cyber threat intelligence to customers machine speed.
  • Represent Microsoft Threat Intelligence in customer briefings, industry conferences, and cross-industry working groups.
  • Translate technical findings into clear, actionable insights for security operations teams and technical stakeholders.
  • Partner with product, engineering, and research teams to operationalize intelligence into Microsoft security platforms (e.g., Defender XDR, Sentinel, customer briefings).
  • Contribute to scalable workflows and pipelines that improve how threat intelligence is generated, refined, and delivered to customers.
  • Support customer engagements (briefings, responses, and discussions) with accurate and timely intelligence insights.
  • Collaborate within the team to improve analytic tradecraft, knowledge sharing, and intelligence quality.
  • Fulltime
Read More
Arrow Right

Principal Applied Threat Intelligence Analyst

Security represents the most critical priorities for our customers in a world aw...
Location
Location
United States , Redmond
Salary
Salary:
142800.00 - 304200.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 6+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter
Job Responsibility
Job Responsibility
  • Author and publish high-impact threat intelligence reports (actor profiles, campaign analyses, trend reports, TTP deep-dives, vulnerability profiles) for both customer-facing and internal audiences
  • Translate complex technical findings into clear, prescriptive guidance for security operations teams, executives, and the broader defender community
  • Partner with product, research, marketing, and communications teams to land intelligence through Microsoft's customer-facing surfaces (Agentic Security, Defender XDR, Sentinel, blogs, briefings)
  • Build and refine the pipelines, tooling, and workflows that allow Microsoft to stream insightful cyber threat intelligence to customers machine speed
  • Represent Microsoft Threat Intelligence in customer briefings, industry conferences, and cross-industry working groups
  • Mentor analysts and contribute to tradecraft, analytic standards, and team-wide knowledge sharing
  • Fulltime
Read More
Arrow Right

Principal Applied Threat Intelligence Analyst

Security represents the most critical priorities for our customers in a world aw...
Location
Location
United States , Redmond
Salary
Salary:
142800.00 - 274800.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 6+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements are required for this role
  • This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter
  • This position requires verification of U.S. citizenship due to citizenship‑based legal restrictions
Job Responsibility
Job Responsibility
  • Lead with AI to understand the threat landscape and the latest attacker tradecraft
  • Track threat actors, including financially motivated threat actors
  • their infrastructure, their targets, and their shifting techniques, tactics, and procedures
  • Translate complex technical findings into clear, prescriptive guidance for security operations teams, executives, and the broader defender community
  • Partner with product, research, marketing, and communications teams to ensure high-quality intelligence experiences through Microsoft's customer-facing surfaces and managed services (Agentic Security, Defender XDR, Defender Experts, Sentinel, blogs, briefings)
  • Build and refine the pipelines, tooling, and workflows that allow Microsoft to stream insightful cyber threat intelligence to customers machine speed
  • Represent Microsoft Threat Intelligence in customer briefings, industry conferences, and cross-industry working groups
  • Mentor analysts and contribute to tradecraft, analytic standards, and team-wide knowledge sharing
  • Fulltime
Read More
Arrow Right