CrawlJobs Logo
Microsoft Corporation Logo Microsoft Corporation · IT - Software Development

Senior Threat Intelligence Analyst

United States, Multiple Locations 119800.00 - 234700.00 USD / Year · Job Posted March 22, 2026
Apply Position
Job Link Share

Job Description

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Microsoft’s STInG (Supplier Threat Intelligence Group) is a multidisciplinary team dedicated to protecting Microsoft’s, its customers, and critical services by delivering authoritative supply‑chain ownership, fused with predictive adversarial threat analysis, enabling leaders to act quickly, confidently, and decisively at enterprise scale during active incidents and emerging threat campaigns.

Job Responsibility

  • Use your knowledge of adversary intentions and capabilities to identify critical supplier services likely to be targeted by threat actors and secure these portions of Microsoft’s supply chain
  • Use your knowledge of the various threat actor sets to ensure Microsoft’s supply chain is protected from intentionally compromised products and services
  • Define, develop, and implement techniques to discover and track current and future threat actor targeting of suppliers
  • Discover threat actor trends and map these findings to Microsoft’s vast supplier network to mitigate risk to Microsoft’s supply chain
  • Discover adversarial front companies with links to adversaries and evaluate compromises to Microsoft’s supply chain
  • Collaborate across Microsoft teams and partner groups and integrate intelligence into products
  • Produce actionable intelligence and develop process to share this actionable intelligence with various parts of Microsoft
  • Collaborate with these, and other, stakeholders from Microsoft to protect both Microsoft assets and Microsoft’s customer base through improved product and services offerings
  • Strengthen existing partnerships and build new ones with key organizations to deliver benefits to Microsoft and its customers

Requirements

  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • Microsoft Cloud Background Check
  • This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter
  • This role will require access to information that is controlled for export under export control regulations
  • As a condition of employment, the successful candidate will be required to provide either proof of their country of citizenship or proof of their U.S. permanent residency or other protected status
  • To meet this legal requirement, and as a condition of employment, the successful candidate’s citizenship will be verified with a valid passport

Nice to have

  • 5+ years technical knowledge of adversary capabilities and techniques that can be applied to define, develop, and implement techniques both to discover the adversaries of today and identify the attacks of tomorrow
  • 5+ years experience tracking APT adversaries leveraging to identify and characterize various TTPs, capabilities, and operational campaigns
  • In depth experience producing actionable threat intelligence on targeted and advanced persistent adversaries and domain/supply chain assessments
  • Applied knowledge across all critical elements and common data types used in threat intelligence analysis, including malware used in targeted adversary campaigns
  • host and log forensics, including methods of data collection and analytic techniques
  • and network forensics, including common protocols and how those are used in adversary operations
  • Applied knowledge of a variety of adversary command and control methods and protocols
  • 5+ years experience supporting incident response and being deeply familiar with common incident response procedures, processes, and tools
  • 5+ years experience working across crossfunctional teams including threat hunters, incident responders, and customer delivery representatives
  • 4+ years experience Proven track record of working across cross-functional teams including threat hunters, incident responders, and customer delivery representatives
  • Cloud Hunting experience
  • 4+ years experience in China, Russia, or Iran threat actors
Microsoft Corporation - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior Threat Intelligence Analyst

8 matching positions

Senior Threat Intelligence Analyst

With more than 45,000 employees and partners worldwide, the Customer Experience ...
Location
Location
United States , Multiple Locations
Salary
Salary:
142800.00 - 274800.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 6+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR equivalent experience
  • 5+ years producing finished intelligence content on threat actors and attacker techniques including written reports, presentations, and visuals covering attribution, threat detection and hunting guidance, and remediation recommendations
  • 5+ years leading multi-disciplinary team of threat intelligence analysts leveraging incident response data
  • Proven ability to develop new threat intelligence content types, standards, and processes
  • Expertise in managing customer escalations and complex work streams with quick turnaround deliverables
  • Knowledge of customer requirements across a variety of industries and geos
  • Experience working with engineering resources to develop automated intelligence solutions
Job Responsibility
Job Responsibility
  • Create and track threat intelligence reports to support customers and internal stakeholders
  • Engage with internal stakeholders to ensure threat intelligence content integrates with various product and service groups within Microsoft
  • Ensure threat intelligence deliverables cover critical and time-sensitive threats, as well as creating new reports that close any identified gaps
  • Fulltime
Read More
Arrow Right

Senior Threat Intelligence Analyst

Microsoft Customer Success Security is looking for a Senior Threat Intelligence ...
Location
Location
United States , Multiple Locations
Salary
Salary:
139900.00 - 274800.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 6+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR equivalent experience
  • 5+ years producing finished intelligence content on threat actors and attacker techniques including written reports, presentations, and visuals covering attribution, threat detection and hunting guidance, and remediation recommendations
  • 5+ years leading multi-disciplinary team of threat intelligence analysts leveraging incident response data
  • Proven ability to develop new threat intelligence content types, standards, and processes
  • Expertise in managing customer escalations and complex work streams with quick turnaround deliverables
  • Knowledge of customer requirements across a variety of industries and geos
  • Experience working with engineering resources to develop automated intelligence solutions
Job Responsibility
Job Responsibility
  • Create and track threat intelligence reports to support customers and internal stakeholders
  • Engage with internal stakeholders to ensure threat intelligence content integrates with various product and service groups within Microsoft
  • Ensure threat intelligence deliverables cover critical and time-sensitive threats, as well as creating new reports that close any identified gaps
  • Fulltime
Read More
Arrow Right

Senior Threat Intelligence Analyst

To deliver timely, actionable threat intelligence that enables the organization ...
Location
Location
Finland , Espoo
Salary
Salary:
5600.00 - 6500.00 EUR / Month
iceye.com Logo
ICEYE
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience (5+ years) in information security, threat intelligence, national CERT/CSIRT, intelligence, or law enforcement environments
  • Extensive hands-on experience (minimum 4 years) using threat intelligence platforms (e.g. MISP) and analysis frameworks such as MITRE ATT&CK in a customer-facing or operational role
  • Strong capability in analyzing infrastructure-related threats and conducting open-source, deep web, and dark web research
  • Demonstrated expertise in utilizing STIX/TAXII feeds and automated intelligence sharing solutions
  • Solid understanding of the Finnish Cyber Security Act (NIS2), GDPR, and applicable local regulations
  • Industry-recognized certifications such as GIAC Cyber Threat Intelligence (GCTI) or equivalent
  • Excellent English communication skills, with the ability to translate complex threat intelligence into actionable insights for diverse audiences
Job Responsibility
Job Responsibility
  • Integrating actionable threat intelligence into SOC, incident response, and vulnerability management workflows to improve detection and response effectiveness
  • Analyzing malicious infrastructure, malware, and adversary artifacts to extract high-fidelity IOCs and map TTPs using frameworks such as MITRE ATT&CK
  • Enabling threat detection, attribution, and information sharing through the effective use of threat intelligence platforms, STIX/TAXII feeds, and automated intelligence sharing mechanisms
  • Producing and disseminating clear, timely operational and tactical intelligence products, including threat briefings, reports, and summaries tailored to technical teams and senior leadership
  • Providing expert intelligence support during major security incidents by correlating external threat data with internal telemetry
  • Enhancing threat hunting activities by supplying contextual intelligence that identifies emerging threats and suspicious behaviors within the environment
  • Delivering actionable cyber resilience recommendations based on threat intelligence and OSINT analysis, aligned with regulatory and legal requirements
What we offer
What we offer
  • Occupational healthcare, occupational, and accident insurance
  • A yearly benefit budget to spend as you wish (i.e. on sport, transport, bike benefit, wellness, lunch, etc.)
  • Phone subscription with iPhone of choice
  • Relocation support (i.e. flight tickets, accommodation, relocation agency support)
  • Time for self-development, research, training, conferences, or certification schemes
  • Inspiring and collaborating offices and silent workspaces enable you to focus
  • Fulltime
Read More
Arrow Right

Senior Applied Threat Intelligence Analyst

Security represents the most critical priorities for our customers in a world aw...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field. OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection. OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection. OR equivalent experience.
  • Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter.
Job Responsibility
Job Responsibility
  • Author and publish high-impact threat intelligence reports (actor profiles, campaign analyses, trend reports, TTP deep-dives, vulnerability profiles) for both customer-facing and internal audiences.
  • Build and refine the pipelines, tooling, and workflows that allow Microsoft to stream insightful cyber threat intelligence to customers machine speed.
  • Represent Microsoft Threat Intelligence in customer briefings, industry conferences, and cross-industry working groups.
  • Translate technical findings into clear, actionable insights for security operations teams and technical stakeholders.
  • Partner with product, engineering, and research teams to operationalize intelligence into Microsoft security platforms (e.g., Defender XDR, Sentinel, customer briefings).
  • Contribute to scalable workflows and pipelines that improve how threat intelligence is generated, refined, and delivered to customers.
  • Support customer engagements (briefings, responses, and discussions) with accurate and timely intelligence insights.
  • Collaborate within the team to improve analytic tradecraft, knowledge sharing, and intelligence quality.
  • Fulltime
Read More
Arrow Right

Senior Cyber Threat Intelligence Analyst

BAE Systems is seeking a skilled Cyber Threat Intelligence Practitioner to suppo...
Location
Location
United Kingdom , Preston
Salary
Salary:
27.03 - 36.30 GBP / Hour
outsource-uk.co.uk Logo
Outsource UK
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong experience within a Cyber Threat Intelligence (CTI) discipline
  • A solid understanding of cyber threat actors, geopolitics, and global threat activity
  • Awareness of intelligence disciplines such as OSINT, SIGINT, HUMINT, and their application
  • Knowledge of structured analytical techniques and intelligence best practice
  • Experience applying MITRE ATT&CK / D3FEND / ENGAGE frameworks in an operational context
  • Clearance: BPSS + SC + UK EYES
Job Responsibility
Job Responsibility
  • Produce operational and tactical cyber threat intelligence reports tailored to technical and senior audiences
  • Monitor the cyber threat landscape, including OSINT, dark web sources, internal telemetry, and external intelligence feeds
  • Investigate threat actors, campaigns, and tactics, techniques, and procedures (TTPs) to identify indicators of compromise
  • Provide timely intelligence support during security incidents, aiding containment and remediation efforts
  • Deliver threat briefings to internal stakeholders and trusted external partners
  • Support Requests for Information (RFIs) and Intelligence Requirements (IRs) in collaboration with CTI collections teams
  • Advise on organisational Cyber Threat Levels based on intelligence assessments
  • Act as a trusted advisor, translating complex intelligence into clear, actionable insight
  • Fulltime
Read More
Arrow Right
New

Cyber Threat Intelligence Analyst

The Cyber Threat Intelligence Analyst (CTI) plays a vital role in enhancing Amge...
Location
Location
Portugal , Lisbon
Salary
Salary:
Not provided
amgen.com Logo
Amgen
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master’s degree in Cybersecurity, Information Technology, Intelligence Studies, or related field OR Bachelor’s degree with 1 year of experience in Cyber Threat Intelligence, Threat Hunting, or a similar security role OR Diploma with 2 years of relevant experience in threat intelligence or related cybersecurity functions
  • Strong understanding of the cyber threat landscape, adversary tactics (MITRE ATT&CK), and threat actor methodologies
  • Experience conducting intelligence analysis using OSINT, dark web monitoring, threat reports, and threat intelligence platforms
  • Ability to write concise, impactful threat intelligence reports tailored to various audiences
  • Familiarity with cyber kill chain, diamond model, and intelligence lifecycle
  • Basic scripting knowledge (Python, PowerShell) to support enrichment and automation of threat intelligence
Job Responsibility
Job Responsibility
  • Collect, analyze, and assess cyber threat intelligence from open-source intelligence (OSINT), commercial feeds, government sources, and internal telemetry
  • Develop and maintain profiles of threat actors, their capabilities, infrastructure, and campaigns relevant to Amgen’s industry
  • Produce actionable intelligence reports, threat advisories, and strategic briefings for technical teams and senior stakeholders
  • Correlate threat intelligence with internal events to support investigations and improve detection capabilities
  • Assist in the enrichment of threat hunting and incident response efforts by providing contextual intelligence and TTP mapping
  • Track geopolitical and sector-specific threats to anticipate risks that could affect business operations
  • Collaborate with SOC and engineering teams to improve detection rules and defense mechanisms based on threat intelligence findings
  • Maintain situational awareness of the cyber threat landscape and emerging risks to healthcare, life sciences, and biotechnology sectors
  • Support the configuration and maintenance of threat intelligence platforms (TIPs) and threat feed integrations
  • Contribute to purple team and threat emulation exercises to validate defensive controls and response capabilities
What we offer
What we offer
  • Work That Matters – Build tech that accelerates scientific breakthroughs and helps patients worldwide
  • Modern Tech Stack – Cloud-first, automation-focused, AI-powered
  • Global Scale, Agile Mindset – Collaborate across continents while working in nimble, high-impact teams
  • Continuous Learning – Access to certifications, trainings, mentorship, and career mobility
  • AMGEN Total Rewards Plan – Comprehensive benefits in healthcare, finance, and well-being
  • Flexibility – Hybrid work model with time split between our Lisbon office and remote work
  • Fulltime
Read More
Arrow Right

Staff Security Analyst, Threat Intelligence

We are building an elite team, applying frontier technologies to the world’s big...
Location
Location
United States , Menlo Park
Salary
Salary:
191000.00 - 225000.00 USD / Year
robinhood.com Logo
Robinhood
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8–12+ years of total experience, including 3–5+ years operating at a senior or staff-level scope in threat intelligence, brand protection, or cyber investigations
  • Hands-on experience tracking criminal ecosystems tied to phishing, scams, impersonation, fraud, and infrastructure abuse, and the ability to move from isolated indicators to campaign- and actor-level analysis
  • Deep familiarity with domain registration patterns, DNS and certificate transparency analysis, cloud and hosting abuse across providers (e.g., AWS, GCP, Azure, VPS), and attacker monetization methods
  • Experience using OSINT tooling, SQL, Python, notebooks, SIEM or SOAR platforms, OpenCTI, and case management systems to analyze data and automate workflows
  • Ability to translate complex technical threats into clear business risk for technical teams and executive audiences through strong written and verbal communication
  • Experience mentoring others or leading initiatives across teams, with a high level of accountability and sound risk judgment in ambiguous situations
Job Responsibility
Job Responsibility
  • Proactively hunt and map criminal ecosystems targeting Robinhood and its customers, then translate intelligence into scalable systems and coordinated defenses that disrupt adversaries before they cause harm
  • Build and operationalize a comprehensive "Universe of Threats" by identifying, tracking, and prioritizing adversaries across phishing, scams, impersonation, fraud, and infrastructure abuse
  • Establish and mature a proactive threat intelligence lifecycle by developing industry partnerships, collaborating with trusted peers and federal authorities, and cultivating online personas to generate early warning capabilities that protect Robinhood’s business operations
  • Investigate attacker infrastructure across domains, DNS, certificate transparency logs, cloud providers, and telecom platforms, and convert findings into concrete detections, controls, and customer protections
  • Coordinate threat actor infrastructure takedowns with hosting providers, domain registrars, cloud platforms, and other infrastructure partners to disrupt adversary operations at scale
  • Design and automate intelligence workflows using OSINT tooling, enrichment pipelines, data analysis tools, and case management systems to scale analysis and reporting
  • Partner directly with Detection & Response, Automation, Customer Trust & Safety (Fraud and Financial Crimes), Security Engineering, Corporate Security, Risk, and executive leaders to prioritize threats based on measurable business risk
What we offer
What we offer
  • Challenging, high-impact work to grow your career
  • Performance-driven compensation with multipliers for outsized impact, bonus programs, equity ownership, and 401(k) matching
  • Best-in-class benefits to fuel your work, including 100% paid health insurance for employees with 90% coverage for dependents
  • Lifestyle wallet — a highly flexible benefits spending account for wellness, learning, and more
  • Employer-paid life & disability insurance, fertility benefits, and mental health benefits
  • Time off to recharge including company holidays, paid time off, sick time, parental leave, and more
  • Exceptional office experience with catered meals, events, and comfortable workspaces
  • Fulltime
Read More
Arrow Right

Senior Threat Intelligence Manager

Microsoft Customer Success Security is looking for a Senior Threat Intelligence ...
Location
Location
United States , Multiple Locations
Salary
Salary:
163000.00 - 296400.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 5+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 6+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 8+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection OR equivalent experience
  • 3+ years people management experience
Job Responsibility
Job Responsibility
  • Lead global team of threat intelligence analysts to: Create and track threat intelligence reports to support customers and internal stakeholders
  • Engage with internal stakeholders to ensure threat intelligence content integrates with various product and service groups within Microsoft
  • Ensure threat intelligence deliverables cover critical and time-sensitive threats, as well as creating new reports that close any identified gaps
  • Develop metrics to measure effective delivery and customer satisfaction
What we offer
What we offer
  • Certain roles may be eligible for benefits and other compensation
  • Fulltime
Read More
Arrow Right