CrawlJobs Logo
Microsoft Corporation Logo Microsoft Corporation · IT - Software Development

Senior Applied Threat Intelligence Analyst

United States, Redmond 119800.00 - 234700.00 USD / Year · Job Posted May 26, 2026
Apply Position
Job Link Share

Job Description

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft's mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers' heterogeneous environments, as well as ensuring the security of our own internal estate. Microsoft Security Research, is at the front line of defending Microsoft customers and the broader ecosystem against the world's most sophisticated threat actors. Our Applied Threat Intelligence Production team transforms raw signal from Microsoft's scale of telemetry into actionable, customer-facing intelligence that empowers defenders, informs product decisions, and shapes the public narrative on the threat landscape. We partner deeply across Microsoft Threat Intelligence, product engineering, research, marketing, and communications to ship intel that moves markets and protects organizations everywhere.

Job Responsibility

  • Author and publish high-impact threat intelligence reports (actor profiles, campaign analyses, trend reports, TTP deep-dives, vulnerability profiles) for both customer-facing and internal audiences.
  • Build and refine the pipelines, tooling, and workflows that allow Microsoft to stream insightful cyber threat intelligence to customers machine speed.
  • Represent Microsoft Threat Intelligence in customer briefings, industry conferences, and cross-industry working groups.
  • Translate technical findings into clear, actionable insights for security operations teams and technical stakeholders.
  • Partner with product, engineering, and research teams to operationalize intelligence into Microsoft security platforms (e.g., Defender XDR, Sentinel, customer briefings).
  • Contribute to scalable workflows and pipelines that improve how threat intelligence is generated, refined, and delivered to customers.
  • Support customer engagements (briefings, responses, and discussions) with accurate and timely intelligence insights.
  • Collaborate within the team to improve analytic tradecraft, knowledge sharing, and intelligence quality.

Requirements

  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field. OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection. OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection. OR equivalent experience.
  • Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter.

Nice to have

  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection. OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 6+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection. OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 8+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection. OR equivalent experience.
  • 5+ years of experience in cyber threat intelligence, threat hunting, incident response, or a closely related security discipline.
  • Demonstrated experience producing finished threat intelligence reporting for technical audiences.
  • Attribution experience creating threat groups, assessing connections between established threat groups, and communicating attribution assessments to internal stakeholders and customers in a timely manner.
  • Working experience with Microsoft Sentinel and Microsoft Defender XDR (or directly comparable SIEM/XDR platforms).
  • Understanding of adversary tradecraft, the cyber kill chain, and frameworks such as MITRE ATT&CK, the Diamond Model, and structured analytic techniques.
  • Written and verbal communication skills, with a portfolio of public or customer-facing intelligence writing.
  • Experience analyzing endpoint, cloud, identity, and network telemetry.
  • Familiarity with scripting or data analysis tools (Python, KQL, SQL, PowerShell).
  • Understanding of OS internals, network protocols, and common attack techniques.
  • Exposure to reverse engineering or malware analysis.
  • Functional understanding of common threat analysis models such as the Diamond Model, Cyber Kill Chain, and MITRE ATT&CK.
  • Programming or scripting background (Python, PowerShell, C#, C++, etc.).
Microsoft Corporation - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior Applied Threat Intelligence Analyst

8 matching positions

Senior Cyber Threat Intelligence Analyst

BAE Systems is seeking a skilled Cyber Threat Intelligence Practitioner to suppo...
Location
Location
United Kingdom , Preston
Salary
Salary:
27.03 - 36.30 GBP / Hour
outsource-uk.co.uk Logo
Outsource UK
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong experience within a Cyber Threat Intelligence (CTI) discipline
  • A solid understanding of cyber threat actors, geopolitics, and global threat activity
  • Awareness of intelligence disciplines such as OSINT, SIGINT, HUMINT, and their application
  • Knowledge of structured analytical techniques and intelligence best practice
  • Experience applying MITRE ATT&CK / D3FEND / ENGAGE frameworks in an operational context
  • Clearance: BPSS + SC + UK EYES
Job Responsibility
Job Responsibility
  • Produce operational and tactical cyber threat intelligence reports tailored to technical and senior audiences
  • Monitor the cyber threat landscape, including OSINT, dark web sources, internal telemetry, and external intelligence feeds
  • Investigate threat actors, campaigns, and tactics, techniques, and procedures (TTPs) to identify indicators of compromise
  • Provide timely intelligence support during security incidents, aiding containment and remediation efforts
  • Deliver threat briefings to internal stakeholders and trusted external partners
  • Support Requests for Information (RFIs) and Intelligence Requirements (IRs) in collaboration with CTI collections teams
  • Advise on organisational Cyber Threat Levels based on intelligence assessments
  • Act as a trusted advisor, translating complex intelligence into clear, actionable insight
  • Fulltime
Read More
Arrow Right

Cyber Threat Intelligence Analyst

The Intelligence Lead Analyst is a senior level professional responsible for dri...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6-10 years of relevant experience
  • Working knowledge in one or more of the following areas: Advanced Persistent Threat, Third Party Risks/Threats, Cybercrime, Extremist Groups and Cyber Terrorists, Hacktivism, Distributed Denial of Service attacks, Fraud, Malware, Mobile Threats
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
  • Bachelor’s degree/University degree or equivalent experience
  • Master’s degree preferred
Job Responsibility
Job Responsibility
  • Analyze regional threat data and determine a correlation if any, to existing intelligence requirements
  • Monitor and research cyber threats with a direct or indirect impact to the Citi brand
  • Research and identify malicious activity by performing post-mortem analysis on logs, traffic flows, and other activities
  • Conduct intrusion analyses to ascertain the impact of an attack, and develop mitigation techniques for future attacks
  • Evaluate networks and programs to assess potential weaknesses and points of entry
  • Analyze and present to senior leadership discovered patterns to forecast future cyber-attacks and their potential impact
  • Liaise with intelligence communities, law enforcement, industry partners, peer financial institutions, and information sharing communities
  • Triage, process, analyze, and disseminate intelligence alerts, reports, and briefings
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.
  • Fulltime
Read More
Arrow Right

Senior Intelligence Analyst

Barbaricum is seeking a Senior Intelligence Analyst to support The U.S. Army Tra...
Location
Location
United States , Fort Eustis, Virginia
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD Secret Clearance
  • 8-12 years of experience
  • Military Intelligence Experience – Extensive background in intelligence operations, analysis, and strategic decision-making within a military environment
  • Artificial Intelligence & Machine Learning – Expertise in applying AI/ML technologies in defense, intelligence, and operational contexts
  • Instruction & Training – Experience in designing and delivering instructional programs for military or defense professionals
  • Capability Development – Strong background in developing, testing, and implementing new military capabilities to enhance operational effectiveness
  • Exercises & Experimentation – Proven experience in planning, conducting, and assessing military exercises, wargaming, and strategic experimentation
  • Future Operational Environment (OE) & Threat Concepts/Assessment – Knowledge in analyzing and forecasting future battlefield environments and potential threats
  • Science & Technology (S&T) Acquisition Process (ARL) – Familiarity with the Army Research Laboratory (ARL) acquisition process and defense technology procurement
  • Educational Background – PhD preferred
Job Responsibility
Job Responsibility
  • Perform detailed mission analyses to scope and define the parameters of each requested critical review
  • Edit and provide recommendations for products with proposed changes and comments based on documented sources
  • Identify and address DOTMLPF (Doctrine, Organization, Training, Materiel, Leadership and Education, Personnel, and Facilities) weaknesses, gaps, and disconnects
  • Conduct timely reviews of small products such as implementing directives, regulations, white papers, or briefings
  • Deliver evaluations that challenge the assumptions, solutions, and content within five (5) workdays
  • Deliver unbiased and comprehensive reviews of significant projects such as experiment constructs or war-game designs
  • Analyze assumptions, solutions, structure, and content within the requested timeframe
  • Provide insights, observations, and actionable recommendations to TRADOC leadership
  • Present findings through clear briefings and/or edited products
Read More
Arrow Right

Senior Intelligence Analyst

Barbaricum is seeking a Senior Intelligence Analyst to support The U.S. Army Tra...
Location
Location
United States , Fort Eustis
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD Secret Clearance
  • 12-16 years of experience
  • Extensive background in intelligence analysis, operations, and strategic decision-making
  • Knowledge and experience applying AI/ML concepts in military and defense contexts
  • Experience in delivering instruction and training programs to military and defense personnel
  • Expertise in developing and implementing new capabilities to enhance military readiness and effectiveness
  • Hands-on experience in military exercises, wargaming, and strategic experimentation
  • Proficiency in analyzing and forecasting future threats and operational landscapes
  • Familiarity with the Army Research Laboratory (ARL) acquisition process and defense technology development
  • Doctorate (PhD) – Advanced academic credentials with strong research, analytical, and theoretical expertise
Job Responsibility
Job Responsibility
  • Perform detailed mission analyses to scope and define the parameters of each requested critical review
  • Edit and provide recommendations for products with proposed changes and comments based on documented sources
  • Identify and address DOTMLPF (Doctrine, Organization, Training, Materiel, Leadership and Education, Personnel, and Facilities) weaknesses, gaps, and disconnects
  • Conduct timely reviews of small products such as implementing directives, regulations, white papers, or briefings
  • Deliver evaluations that challenge the assumptions, solutions, and content within five (5) workdays
  • Deliver unbiased and comprehensive reviews of significant projects such as experiment constructs or war-game designs
  • Analyze assumptions, solutions, structure, and content within the requested timeframe
  • Provide insights, observations, and actionable recommendations to TRADOC leadership
  • Present findings through clear briefings and/or edited products
Read More
Arrow Right

Intelligence Senior Analyst

The Open Source Intelligence Senior Analyst position is an intermediate-level po...
Location
Location
Hungary , Budapest
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum bachelor’s degree / University degree
  • Minimum of 5 years’ experience relating to open source intelligence analysis for investigations, threat monitoring, or intelligence targeting
  • Demonstrable ability to collect, evaluate, interpret, and analyze data, with a strong knowledge of analytical techniques
  • Excellent communication (oral and written) skills with attention to detail
  • Established project management skills – ability to coordinate and prioritize several projects simultaneously while working with a globally dispersed team
  • Self-motivation, ability and maturity to make decisions in the absence of detailed instructions
  • Ability to act as a mentor to less-tenured staff
  • Experience in utilizing analytical and visualization software applications – specifically link analysis tools (e.g., Palantir, Semantica Pro, Maltego, i2 Analyst’s Notebook, ESRI)
  • Expertise in Microsoft Office products
  • Fluent English language skills (written and oral) required
Job Responsibility
Job Responsibility
  • Lead open source analysis for CSIS investigations involving fraud, cyber, insider, and other security threats
  • Use advanced techniques to monitor threats and collect data from multiple open sources, including social media, the deep and the dark web
  • Apply advanced qualitative and quantitative analytical methodologies to turn information and data into actionable intelligence
  • Anticipate, identify and develop innovative solutions to intelligence gaps
  • Deliver analysis and findings in the form of high quality, succinct, and straightforward written products and oral briefings
  • Manage multiple projects simultaneously with a proactive, self-motivated approach, ensuring timely delivery of high-quality results while collaborating effectively with global teams
What we offer
What we offer
  • Cafeteria Program
  • Home Office Allowance
  • Paid Parental Leave Program (maternity and paternity leave)
  • Private Medical Care Program and onsite medical rooms
  • Pension Plan Contribution to voluntary pension fund
  • Group Life Insurance
  • Employee Assistance Program
  • Access to a wide variety of learning and development programs, online course libraries and upskilling platforms
  • Flexible work arrangements
  • Career progression opportunities across geographies and business lines
  • Fulltime
Read More
Arrow Right

Senior Cybersecurity Analyst, Threat Hunter

Our cybersecurity and information security teams at IDEXX contribute to a more r...
Location
Location
United States , Westbrook, Maine
Salary
Salary:
120000.00 - 140000.00 USD / Year
idexx.com Logo
IDEXX
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6–10 years of experience in cybersecurity roles
  • Minimum of 3 years dedicated specifically to threat hunting or advanced incident response
  • Bachelor’s degree in computer science, Cybersecurity, Information Technology, or a related field
  • Preferred certifications GCIH (GIAC Certified Incident Handler) and CompTIA CySA+ (Cybersecurity Analyst+) certification
  • Proven, hands-on experience using platform for EDR (Endpoint Detection and Response) and threat hunting
  • Expert-level knowledge of PowerShell Scripting, Python and EDR and SIEM query language is preferred
  • Deep understanding of incident response lifecycles, methodologies, and forensic techniques
  • Strong knowledge of networking protocols, operating systems (Windows, Linux, macOS), and common attack vectors
  • Familiarity with scripting languages (e.g., Python, PowerShell) for automation of hunting tasks is a plus
  • Exceptional analytical and problem-solving skills with keen attention to detail
Job Responsibility
Job Responsibility
  • Proactively hunt for indicators of compromise (IOCs) and advanced persistent threats (APTs) across the network, endpoints, and cloud environments using threat intelligence and a hypothesis-driven methodology
  • Conduct in-depth analysis of security events, network traffic, and endpoint data to identify malicious activity and potential breaches
  • Utilize the SIEM and EDR platform extensively, applying expert knowledge of the scripting, SIEM and EDR query language to perform complex searches and data analysis
  • Lead and participate in incident response activities, including containment, eradication, and recovery efforts, serving as a primary escalation point for critical security incidents
  • Develop and refine threat hunting playbooks, procedures, and detection rules to improve the security team’s efficiency and effectiveness
  • Collaborate with the security engineering and security operations center (SOC) teams to integrate new threat intelligence and enhance existing security tools and controls
  • Mentor junior analysts and contribute to the ongoing improvement of the organization's overall security posture
What we offer
What we offer
  • Opportunity for annual cash bonus
  • Health / Dental / Vision Benefits Day-One
  • 5% matching 401k
  • Additional benefits including but not limited to financial support, pet insurance, mental health resources, volunteer paid days off, employee stock program, foundation donation matching
  • Fulltime
Read More
Arrow Right

Security Threat Intelligence and Hunting Analyst

The Security Threat Intelligence and Hunting Analyst role at NTT DATA involves a...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent in computer science, information technology or security or related field
  • Relevant security certification(s) such as GIAC Certified Forensic Analyst (GCFA), GIAC Certified Forensic Examiner (GCFE), and GIAC Certified Forensic Analyst (GCFACTIA, CompTIA Cybersecurity Analyst (CySA+), GCTI, FOR508 preferred
  • Seasoned demonstrated experience in a similar role
  • Seasoned demonstrated experience gained within a global technology organization
  • Ability to apply critical thinking skills to a situation and make a decision based on the information to hand
  • Good understanding of computer systems, software and technology in general
  • Excellent written and verbal communication
  • Ability to research topics and find information relevant to their work
  • Ability to interpret large amounts of data and identify important details to identify potential threats and vulnerabilities
  • Seasoned proficiency in threat hunting methodologies, including familiarity with tools and techniques for proactive detection of threats
Job Responsibility
Job Responsibility
  • Reads reports, makes risk assessments, works to detect the source of attacks and tests current defenses against threats
  • Advises on analysis enabling organization to make decisions on how to improve security measures and respond to attacks
  • Monitors security alerts and maintains awareness of new threats and vulnerabilities in order to identify potential risks
  • Analyses data from various sources, including network traffic, email logs, malware files, web server logs, DNS records, etc. to identify cybersecurity risks
  • Develops and maintains threat intelligence databases containing information about cybercrime tactics, techniques, and procedures (TTPs) used by hackers or other actors targeting the organization’s assets
  • Participates in Incident Response activities as necessary to identify and contain new threats
  • Conducts investigations into potential threats by collecting data from multiple sources and analyzing it to identify patterns or other significant pieces of information that indicate a specific threat may be occurring or has occurred previously
  • Communicates with senior leaders and also executives and other stakeholders on security matters to raise awareness of potential risks and recommend solutions
  • Conducts regular audits of security measures to identify vulnerabilities that could be exploited by unauthorized users
  • Reviews security policies to ensure compliance with industry regulations and best practices
  • Fulltime
Read More
Arrow Right

Senior Information Security Business Intelligence Data Analyst

The Senior Information Security Business Intelligence Analyst is an intermediate...
Location
Location
India , Chennai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Business Intelligence experience of minimum 10 years. This includes Cognos, Tableau, Power BI etc.
  • Building Data Pipelines: Creating systems for collecting, storing, and transforming data from various sources.
  • Data Collection and Management: Data engineers are responsible for gathering data from various sources, ensuring its quality, and making it accessible for analysis.
  • Data Transformation: They convert raw data into usable formats, often using ETL (Extract, Transform, Load) processes, to big data platform of Hadoop, Cloud technologies like DataBricks and Snowflake to make it suitable for analysis and reporting.
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
  • Bachelor’s degree/University degree or equivalent experience
Job Responsibility
Job Responsibility
  • Assist Security Incident Response Teams with incident investigations and aid in technical risk assessments
  • Coordinate with system development and infrastructure units to identify Information Security (IS) risks and the appropriate controls for development, day-to-day operation, and emerging technologies
  • Perform regular assessments based on changes in the threat landscape
  • Monitor vulnerability assessments and ethical hacks, ensuring that issues are addressed for the applications that they support
  • Provide information security support with related activities during systems development (e.g. authentication, encryption)
  • Identify and develop new and improved technical procedures and process control manuals
  • Identify significant IS threats and vulnerabilities
  • Assume informal/formal mentorship role within teams and assist with the coaching and training of new team members
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.
  • Fulltime
Read More
Arrow Right