CrawlJobs Logo

Threat Intelligence Manager

United States, Redmond 165600.00 - 296400.00 USD / Year · Job Posted May 27, 2026
Apply Position
Job Link Share

Job Description

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Security is a core priority for Microsoft, and threat intelligence is fundamental to how we protect customers at global scale. We are seeking a Manager / Leader of Threat Intelligence Security Analysts to lead a U.S.-based team focused on tracking criminal threat actors and transforming intelligence into insights, recommendations, and protective outcomes that help defend customers, platforms, and services. In this role, you will lead a high-performing team of analysts responsible for understanding adversary behavior, identifying emerging threats, and delivering actionable intelligence that informs security operations, product strategy, and engineering investments. You will bring an engineering-minded approach to intelligence leadership, using data, tooling, automation, and AI to improve how the team operates and how intelligence is produced, scaled, and operationalized. A key part of this role is building a hybrid human + agentic operating model. You will define how analysts and AI-powered systems work together to accelerate research, surface insights, improve analytic quality, and increase the impact of the team. You will partner closely with engineering, product, research, and security organizations to convert intelligence into durable customer value.This role is ideal for a leader with deep threat intelligence expertise, a track record of organizational leadership, strong industry relationships, and the ability to represent Microsoft credibly across the security community.

Job Responsibility

  • Lead, coach, and grow a U.S.-based team of Threat Intelligence Security Analysts focused on tracking criminal threat actors, campaigns, infrastructure, and emerging trends.
  • Define the vision, strategy, and priorities for the team to deliver high-quality intelligence that drives customer protection and business impact.
  • Build and operationalize a hybrid human + agentic intelligence team, applying AI technologies, automation, and workflow innovation to improve scale, speed, and insight generation.
  • Foster an engineering-oriented culture that values technical depth, experimentation, continuous improvement, and measurable outcomes.
  • Partner across engineering, product, security research, detections, data science, and incident response teams to translate intelligence into protections, investigations, product improvements, and strategic decisions.
  • Drive production of clear, actionable intelligence outputs for technical teams, leadership, and external stakeholders, including actor assessments, campaign analysis, strategic reporting, and executive briefings.
  • Establish and maintain analytic standards, tradecraft, quality controls, and operating mechanisms for the team.
  • Develop trusted relationships across the intelligence community, including industry partners, external organizations, and agencies engaged in tracking criminal threat actors.
  • Represent Microsoft through customer engagements, industry forums, and presentations at security conferences and other external events.
  • Hire and develop diverse talent, build an inclusive and high-performing team culture, and create an environment where analysts can do their best work.

Requirements

  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 5+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.
  • OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 6+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 8+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.
  • OR equivalent experience.
  • 3+ years people management experience.
  • Ability to meet Microsoft, customer and/or government security screening requirements are required for this role.
  • Microsoft Cloud Background Check: This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter.

Nice to have

  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 8+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.
  • OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 12+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 15+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.
  • OR equivalent experience.
  • 5+ years people management experience.
  • 7+ years of experience in security and threat intelligence.
  • 3+ years of experience managing large teams in security, intelligence, or related domains.
  • Experience tracking criminal threat actors and producing intelligence used to inform protection, detection, disruption, or response outcomes.
  • Experience leading through cross-functional influence and partnering effectively with engineering and product organizations.
  • Experience applying AI, automation, or advanced tooling to improve analyst workflows and team effectiveness.
  • Proven ability to communicate clearly with both technical and executive audiences.
  • Demonstrated engineering mindset, with a ability to solve problems using tools, systems, automation, and AI.
  • Experience building or leading hybrid human + agentic teams or equivalent AI-augmented operating models.
  • Proven track record of presenting at recognized security conferences and representing an organization externally.
  • Network across intelligence partners, industry peers, and agencies involved in tracking threat actors.
  • Experience scaling intelligence programs in complex, global, or product-driven environments.

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Threat Intelligence Manager

8 matching positions

Senior Threat Intelligence Manager

Microsoft Customer Success Security is looking for a Senior Threat Intelligence ...
Location
Location
United States , Multiple Locations
Salary
Salary:
163000.00 - 296400.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 5+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 6+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 8+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection OR equivalent experience
  • 3+ years people management experience
Job Responsibility
Job Responsibility
  • Lead global team of threat intelligence analysts to: Create and track threat intelligence reports to support customers and internal stakeholders
  • Engage with internal stakeholders to ensure threat intelligence content integrates with various product and service groups within Microsoft
  • Ensure threat intelligence deliverables cover critical and time-sensitive threats, as well as creating new reports that close any identified gaps
  • Develop metrics to measure effective delivery and customer satisfaction
What we offer
What we offer
  • Certain roles may be eligible for benefits and other compensation
  • Fulltime
Read More
Arrow Right

Principal Applied Threat Intelligence Manager

Security represents the most critical priorities for our customers in a world aw...
Location
Location
United States , Redmond
Salary
Salary:
142800.00 - 274800.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 6+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • OR equivalent experience
  • 1+ year(s) people management experience
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • Must pass Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter
  • Verification of U.S. citizenship via a valid passport
Job Responsibility
Job Responsibility
  • Manage a team of Applied Threat Intelligence analysts to lead with AI to understand the threat landscape and the latest attacker tradecraft
  • Track threat actors, including financially motivated threat actors
  • their infrastructure, their targets, and their shifting techniques, tactics, and procedures
  • Translate complex technical findings into clear, prescriptive guidance for security operations teams, executives, and the broader defender community
  • Partner with product, research, marketing, and communications teams to ensure high-quality intelligence experiences through Microsoft's customer-facing surfaces and managed services
  • Build and refine the pipelines, tooling, and workflows that allow Microsoft to stream insightful cyber threat intelligence to customers machine speed
  • Represent Microsoft Threat Intelligence in customer briefings, industry conferences, and cross-industry working groups
  • Mentor analysts and contribute to tradecraft, analytic standards, and team-wide knowledge sharing
  • Fulltime
Read More
Arrow Right

Principal Engineering Manager - Threat Intelligence

The Analyst Workbench engineering team builds the analyst workflows and underlyi...
Location
Location
Ireland , Dublin
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science or related field, or equivalent experience
  • 10+ years of professional software engineering experience
  • 5+ years leading engineering teams
  • Expertise in at least one general‑purpose programming language (C++, C#, Java, Python, Rust, TypeScript, etc.)
  • Deep experience architecting and delivering large‑scale distributed systems, AI‑enabled applications, or cloud services
  • Proven track record of leading engineering teams solving complex technical problems end‑to‑end
  • Strong analytical, problem‑solving, and debugging skills with emphasis on quality, performance, and operational excellence
  • Success working in fast‑moving environments where ambiguity is the norm and clarity must be created
Job Responsibility
Job Responsibility
  • Build and lead a diverse, high‑performing engineering team
  • Provide technical direction, define and drive the technical strategy to deliver enduring value
  • Lead execution to deliver customer value built to a high engineering bar
  • Partner with product management, intelligence analysts and engineering teams to ship a cohesive analyst experience
  • Foster a culture rooted in curiosity, experimentation, customer empathy, and learning
  • Model Microsoft leadership principles: create clarity, generate energy, deliver success
  • Partner with recruiting to hire outstanding talent and maintain a diverse, world‑class engineering team
  • Fulltime
Read More
Arrow Right

Senior Manager, Cyber Threat Researcher, Cyber Intelligence (Remote Eligible)

The mission of Capital One’s Cyber Intelligence service is to leverage cyber thr...
Location
Location
United States , McLean; Richmond; New York; Plano; Chicago
Salary
Salary:
209000.00 - 286200.00 USD / Year
capitalone.com Logo
Capital One
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma, GED or equivalent certification
  • At least 6 years of experience working in cybersecurity or information technology
  • At least 6 years of experience working in incident response, threat hunting, threat intelligence, forensics, or offensive security
  • At least 5 years of experience in conducting investigations or research into cyber-enabled fraud, cybercrime, or advanced persistent threats
  • At least 3 years of experience with cyber threat intelligence threat frameworks such as Lockheed Martin Cyber Kill Chain, Diamond Model, MITRE ATT&CK, ATLAS, Defense or Engage
  • At least 3 years of experience in programming or scripting with Python, Perl, PHP, PowerShell or SQL
Job Responsibility
Job Responsibility
  • Create mechanisms to "connects the dots" between different internal and external data sources in order to combine "signals" in data that automatically highlight cyber threats across advanced enterprise threat activities and fraud activity
  • Maintain industry-wide expertise of the current cyber threat landscape and attack vectors
  • Synthesize disparate sets of data from sources such as malware, cyber attack patterns, closed and open-source intelligence, and tokenized consumer flows to inform instrumentation, detections, and threat narratives such as storyboards
  • Build productive relationships with internal teams to contextualize, influence and inform Capital One's business units on emerging threats
  • Communicate investigative outcomes with technical architecture context and conclusions to a variety of audiences, including company senior leadership and business partners
What we offer
What we offer
  • Performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • comprehensive, competitive, and inclusive set of health, financial and other benefits
  • Fulltime
Read More
Arrow Right

Threat Intelligence & Incident Response Lead

The Threat Intelligence & Incident Response Lead shapes ANS’ proactive cyber def...
Location
Location
United Kingdom , Manchester
Salary
Salary:
Not provided
ans.co.uk Logo
ANS Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in one or more of: SOC, MDR or MSSP environments
  • Threat intelligence and adversary analysis
  • Incident response and cyber coordination
  • Threat hunting and proactive investigations
  • Detection engineering and alert tuning
  • SOAR / security automation
  • CTEM, vulnerability prioritisation or exposure management
  • Cloud and identity security (Microsoft / multi-cloud). Strong understanding of: SIEM/SOAR platforms (e.g. Chronicle, Sentinel)
  • Microsoft Defender ecosystem
  • MITRE ATT&CK framework
Job Responsibility
Job Responsibility
  • Lead and mature threat intelligence, embedding it across detection, investigation, hunting, and protection
  • Research emerging threats, adversary tactics, and vulnerabilities relevant to customers
  • Translate intelligence into actionable detections, automation, and security improvements
  • Produce customer and internal threat advisories
  • Identify emerging risks across sectors and technologies
  • Align with frameworks (e.g. MITRE ATT&CK)
  • Partner with Engineering and SOC to improve detection and response
  • Lead technical response for high-priority incidents (P1/P2)
  • Own and enhance incident readiness, playbooks, and processes
  • Drive post-incident reviews and continuous improvement
What we offer
What we offer
  • 25 days’ holiday, plus you can buy up to 5 more days
  • Birthday off
  • Extra celebration day
  • 5 days’ additional holiday in the year you get married
  • 5 volunteer days
  • Private health insurance
  • Pension contribution match
  • 4 x life assurance
  • Flexible working
  • Work from anywhere for up to 30 days per year
  • Fulltime
Read More
Arrow Right

Senior Researcher - Dark Web & Threat Intelligence

The Pursuits team produces dark web and threat intelligence on prospects, the co...
Location
Location
India , Bengaluru
Salary
Salary:
15000.00 - 35000.00 USD / Year
helpcare.ai Logo
Helpcare AI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years in threat intelligence, dark web research, OSINT, or intelligence operations, including senior or lead-level work
  • Deep hands-on familiarity with dark web forums, marketplaces, and Telegram-based trading of compromised data
  • Strong TA engagement / HUMINT experience, with sound operational security and source-handling discipline
  • Solid OSINT tradecraft: people and entity research, social media and search-operator (dork) techniques, and corroboration
  • Comfort with raw breach data: structure, validation, and victim mapping
  • A track record of impactful findings
  • Experience guiding or mentoring other researchers and owning a quality bar
  • Driven to keep learning and stay current on the latest research techniques and tools
  • Able to use AI tools effectively to speed up research, analysis, and writing
  • Strong communication, within the team, across other teams, and in writing
Job Responsibility
Job Responsibility
  • Monitor dark web forums, Telegram channels, and ransomware/extortion group sites daily for intelligence on prospects and notable events
  • Engage threat actors (TA engagement / HUMINT) to gather intel on private data leaks
  • Validate data leaks and TA claims to determine whether they're legitimate
  • Deanonymize threat actors: link aliases, accounts, and personas to real-world identities
  • Produce advisories and flash alerts for significant leads, and contribute blogs and quarterly reports
  • Map a prospect's real attack surface (subsidiaries, parent companies, subdomains, and vulnerable login portals)
  • Analyze raw breach datasets and corroborate findings before anything is published
  • Own the request queue: triage incoming requests, confirm scope, route them, and track deliverables against due dates
  • Review and quality-check the team's findings and reports before they reach stakeholders
  • Mentor junior researchers and raise the bar on tradecraft and writing
Read More
Arrow Right

Senior Applied Threat Intelligence Analysts

Security represents the most critical priorities for our customers in a world aw...
Location
Location
United States , Redmond
Salary
Salary:
102100.00 - 202200.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.
  • Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.
  • Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 6+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.
  • equivalent experience.
  • Ability to meet Microsoft, customer and/or government security screening requirements are required for this role.
  • Microsoft Cloud Background Check: This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter.
Job Responsibility
Job Responsibility
  • Lead with AI to understand the threat landscape and the latest attacker tradecraft.
  • Track threat actors, including financially motivated threat actors
  • their infrastructure, their targets, and their shifting techniques, tactics, and procedures.
  • Translate complex technical findings into clear, prescriptive guidance for security operations teams, executives, and the broader defender community.
  • Partner with product, research, marketing, and communications teams to ensure high-quality intelligence experiences through Microsoft's customer-facing surfaces and managed services (Agentic Security, Defender XDR, Defender Experts, Sentinel, blogs, briefings).
  • Build and refine the pipelines, tooling, and workflows that allow Microsoft to stream insightful cyber threat intelligence to customers machine speed.
  • Represent Microsoft Threat Intelligence in customer briefings, industry conferences, and cross-industry working groups.
  • Fulltime
Read More
Arrow Right

Insider Threat Intelligence Analyst

Join Barclays as an Insider Threat Intelligence Analyst and be at the forefront ...
Location
Location
United Kingdom , Knutsford, London, Northampton
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong intelligence analysis skills, with the ability to assess complex data, identify risk, and produce defensible intelligence judgements, combined with proficiency in modern technologies, data platforms, and AI-enabled tools to develop clear and concise insights for both technical and non-technical audiences
  • Ability to work both independently and collaboratively within intelligence, security, or fusion-centre environments
  • Experience operating within government, law enforcement, corporate intelligence, or espionage-focused organisations.
Job Responsibility
Job Responsibility
  • Produce actionable intelligence assessments on insider threats, trends, and emerging patterns, translating complex data into clear, decision‑ready insight for operational and strategic stakeholders
  • Analyse and contextualise external intelligence (e.g. nation‑state activity, fraud trends, coercion risk, criminal facilitation) alongside internal indicators to understand the threat posed to the organisation and its operating environment
  • Develop and maintain insider threat pathways, indicators, and warning frameworks to support detection, prevention, and control mapping
  • Support the ITFC with structured intelligence analysis in response to investigations and emerging risks, while also driving proactive, hypothesis‑led intelligence collection aligned to priority threat areas
  • Engage with external partners including intelligence vendors, industry forums, and trusted networks to enhance situational awareness, validate assessments, and strengthen the quality of insider threat intelligence
  • Collaborate with cross‑functional internal partners including HR, Legal, Compliance, Operational Risk, Technology, and Data Protection to enable effective risk identification, escalation, and mitigation
  • Contribute to the development of innovative intelligence products, methodologies, and analytic standards within the CSO Threat Intelligence function.
What we offer
What we offer
  • Competitive holiday allowance
  • Life assurance
  • Private medical care
  • Pension contribution
  • Fulltime
Read More
Arrow Right