CrawlJobs Logo
ThreatLocker Logo ThreatLocker · IT - Software Development

Threat Intelligence Research Engineer

United States, Orlando · Job Posted December 13, 2025
Apply Position
Job Link Share

Job Description

We’re looking for a Threat Intelligence Research Engineer who can bridge two worlds: deep cybersecurity expertise and clear, authoritative communication. In this role, you will analyze real-world threats, uncover emerging attacker behaviors, and translate complex technical findings into high-impact reports, briefs, and articles that educate and empower cybersecurity professionals. You will work at the intersection of engineering, research, and brand thought leadership, turning raw intelligence into content that drives awareness, supports our product narrative, and strengthens our authority within the cybersecurity community.

Job Responsibility

  • Monitor, analyze, and report on emerging threats, indicators of compromise (IOCs), tactics, techniques, and procedures (TTPs), and global threat trends
  • Investigate vulnerabilities, misconfigurations, malware behavior, ransomware campaigns, and exploit chains
  • Conduct independent research on threat actors, intrusion patterns, and security gaps relevant to our customer base
  • Collaborate with internal engineering, SOC, and threat teams to access proprietary intelligence and validate findings
  • Produce clear, defensible, and high-accuracy analysis based on data and technical evidence
  • Transform threat research into high-quality reports, whitepapers, blogs, briefs, advisories, and thought-leadership content
  • Write in a way that resonates with cybersecurity professionals, executives, and IT leaders
  • Contribute to articles under the names of internal subject matter experts (SMEs) to elevate their voices and strengthen company authority
  • Develop clear visuals, diagrams, and technical explanations to support complex research
  • Ensure all content is technically rigorous, original, and aligned with our Zero Trust security philosophy
  • Work with the SVP of Brand Marketing to shape the company’s editorial direction on threat intelligence topics
  • Support media, PR, and analyst engagements with accurate intelligence and expert insights
  • Participate in webinars, research discussions, and cross-team reviews to maintain accuracy and consistency
  • Help position the company as a trusted voice in cybersecurity through data-driven storytelling

Requirements

  • 5+ years in cybersecurity research, threat intelligence, security engineering, SOC analysis, or malware analysis
  • Strong knowledge of attacker TTPs, MITRE ATT&CK, malware behavior, incident response, and threat hunting workflows
  • Hands-on familiarity with tools such as SIEMs, sandboxes, EDR platforms, packet analyzers, and OSINT frameworks
  • Ability to read logs, investigate incidents, and interpret technical artifacts
  • Proven experience writing technical reports, threat advisories, security research, or cybersecurity analysis
  • Ability to translate complex material into clear, concise content without losing technical accuracy
  • Strong editorial judgment and an understanding of narrative clarity and structure
  • Deep curiosity and a research-driven mindset
  • Commitment to accuracy, integrity, and evidence-backed analysis
  • Ability to juggle multiple research topics while meeting publishing deadlines
  • A collaborative mindset and willingness to work across engineering, security, and marketing teams
ThreatLocker - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Threat Intelligence Research Engineer

8 matching positions

Senior Backend Engineer - Threat Intelligence

As a Senior Backend Engineer in the Threat Intelligence team, you will own the f...
Location
Location
Czechia , Prague
Salary
Salary:
Not provided
rapid7.com Logo
Rapid7
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A minimum of 5 years of software development experience in a production environment with deep proficiency in Backend technologies (Python), including API design, Databases, and Microservices, alongside solid experience with modern Frontend frameworks
  • Experience with Cloud computing (e.g., GCP, AWS, or similar)
  • Experience with DevOps practices (CI/CD pipelines, etc.)
  • Problem Solving: Strong creative problem-solving skills with a focus on system design and performance optimization
  • Attention to Detail: Excellent attention to detail and a commitment to high-quality technical execution
  • AI Proficiency: Hands-on approach to AI Research and the ability to integrate AI into production environments
  • Passionate and responsible team player with strong communication skills
  • You aren't afraid to challenge the status quo, bringing innovative thinking and a fresh perspective to complex problems
  • Understanding of the full lifecycle development process, including business and functional requirements, developing technical designs, implementation of scalable solutions, and object-oriented design
  • You are an active driver of change. You thrive in high-growth environments and are eager to lead the team through technical shifts
Job Responsibility
Job Responsibility
  • Build, maintain, and release well-architected services by writing clean Python code and following best practices
  • Own a feature from database design to the UI, making well-reasoned design tradeoffs
  • Lead AI Research & POCs to find innovative solutions for threat intelligence
  • Take an active role in high-level architectural thinking, working with both legacy code and greenfield projects
  • Partner with internal teams to ensure we are understanding and delighting our customers
  • Fulltime
Read More
Arrow Right

Senior Full-stack Engineer - Threat Intelligence

As a Senior Full stack Engineer in the Threat Intelligence team, we are looking ...
Location
Location
Czechia , Prague
Salary
Salary:
Not provided
rapid7.com Logo
Rapid7
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A minimum of 5 years of software development experience in a production environment with deep proficiency in Backend technologies (Python), including API design, Databases, and Microservices, alongside solid experience with modern Frontend frameworks.
  • Experience with Cloud computing (e.g., GCP, AWS, or similar).
  • Experience with DevOps practices (CI/CD pipelines, etc.).
  • Problem Solving: Strong creative problem-solving skills with a focus on system design and performance optimization.
  • Attention to Detail: Excellent attention to detail and a commitment to high-quality technical execution.
  • AI Proficiency: Hands-on approach to AI Research and the ability to integrate AI into production environments.
  • Passionate and responsible team player with strong communication skills.
  • Understanding of the full lifecycle development process, including business and functional requirements, developing technical designs, implementation of scalable solutions, and object-oriented design.
Job Responsibility
Job Responsibility
  • Build, maintain, and release well-architected services by writing clean Python code and following best practices.
  • Own a feature from database design to the UI, making well-reasoned design tradeoffs.
  • Lead AI Research & POCs to find innovative solutions for threat intelligence.
  • Take an active role in high-level architectural thinking, working with both legacy code and greenfield projects.
  • Partner with internal teams to ensure we are understanding and delighting our customers.
  • Fulltime
Read More
Arrow Right

Senior Security Engineer, Threat Intelligence

As a Senior Security Engineer specializing in Threat Intelligence on the Detecti...
Location
Location
United States; Canada
Salary
Salary:
156000.00 - 210000.00 USD; CAD / Year
https://www.1password.com Logo
1Password
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in technical security engineering roles
  • 3+ years focused on threat intelligence
  • Strong understanding of modern attacker TTPs, including cloud-native, SaaS, identity-focused, and insider-adjacent threat patterns
  • Experience developing intelligence requirements, prioritization frameworks, analysis workflows, and emulation scenarios
  • Hands-on experience with scripting or automation (e.g., Python, APIs, SOAR workflows) to improve operational efficiency and cross-team execution
  • Ability to produce concise, high-quality written intelligence, including executive-level summaries
  • Familiarity with security telemetry, logs, and investigative workflows used by detection and response teams
  • Willingness to participate in an on-call rotation and support security incidents during high-severity or off-hours events
Job Responsibility
Job Responsibility
  • Research, track, and assess the threat landscape by analyzing relevant threat actors, campaigns, and behaviors affecting 1Password’s attack surface, identity systems, brand, third-party ecosystem, and insider risk scenarios
  • Analyze and prioritize information to develop actionable intelligence that informs detection coverage, hunting activities, and response readiness
  • Partner with Detection Engineering to design and validate threat-based detections, including through adversary emulation, simulation, or controlled testing
  • Use automation and scripting to improve how threat intelligence is collected, enriched, distributed, and actioned across Security workflows
  • Curate and deliver threat intelligence reporting for both technical teams and executive stakeholders
  • Build and maintain repeatable threat intelligence processes, workflows, and documentation that scale with the Detection & Response program
  • Participate directly in security operations by triaging alerts, supporting investigations, managing incidents, and contributing to post-incident learning
What we offer
What we offer
  • Health benefits
  • Dental benefits
  • 401k/RRSP
  • Generous paid time off
  • Equity grant
  • Participation in incentive programs
  • Maternity and parental leave top-up programs
  • RSU program for most employees
  • Retirement matching program
  • Free 1Password account
  • Fulltime
Read More
Arrow Right

Senior Security Research - MSTIC Threat Intelligence

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions t...
Location
Location
Israel , Multiple Locations
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • You have at least 6 years of experience producing actionable threat intelligence on targeted and advanced persistent threats, with demonstrable impact on network and host defenses
  • Proven expertise tracking and investigating APT adversaries, across all stages of the attack chain
  • Strong ability to analyze and hunt adversary behaviour end-to-end, map attack chains, and communicate clear, evidence-based intelligence to technical and executive audiences
  • Ability to quickly adapt to a rapidly evolving telemetry landscape
Job Responsibility
Job Responsibility
  • As a threat intelligence analyst, you will be responsible for tracking sophisticated adversaries and use your technical knowledge of adversary capabilities, infrastructure, and techniques
  • You will define, develop, and implement techniques to discover and track current adversaries and identify the attacks of tomorrow
  • You will produce actionable intelligence, proactively drive hunting and detection capabilities, and contribute to the disruption of adversary activity to protect Microsoft and its customers
  • In this role, you will collaborate closely with MSTIC and partner with security, engineering, and product teams across Microsoft to protect Microsoft assets, products, and customer environments
  • You will strengthen existing partnerships and build new ones with key organizations to enhance collective defense and improve product and service security
  • Fulltime
Read More
Arrow Right

Senior Backend Engineer - Python / Threat Intelligence

Are you ready to join a team that's building the future of threat intelligence? ...
Location
Location
Czechia , Prague
Salary
Salary:
Not provided
rapid7.com Logo
Rapid7
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A minimum of 5 years of software development experience in a production environment with deep proficiency in Backend technologies (Python), including Python libraries (eg. SQLAlchemy, Pydantic, Playwright, Pytest), API design, Databases, and Microservices
  • Experience with Cloud computing (e.g., GCP, AWS, or similar)
  • Experience with DevOps practices (CI/CD pipelines, etc.)
  • Experience with Databases (eg. ElasticSearch, Firestore, PostgreSQL, MongoDB)
  • Problem Solving: Strong creative problem-solving skills with a focus on system design and performance optimization
  • Attention to Detail: Excellent attention to detail and a commitment to high-quality technical execution
  • AI Proficiency: Hands-on approach to AI Research and the ability to integrate AI into production environments
  • Passionate and responsible team player with strong communication skills
  • You aren't afraid to challenge the status quo, bringing innovative thinking and a fresh perspective to complex problems
  • Understanding of the full lifecycle development process, including business and functional requirements, developing technical designs, implementation of scalable solutions, and object-oriented design
Job Responsibility
Job Responsibility
  • Take an active role in the design and planning of upcoming features and make well-reasoned decisions and tradeoffs in your areas of expertise
  • Develop, test, and deploy high-quality, efficient code across the full stack, adhering to best practices and coding standards
  • Lead AI Research & POCs to find innovative solutions for threat intelligence
  • Take an active role in high-level architectural thinking, working with both legacy code and greenfield projects
  • Investigate and resolve the most complex system defects and production issues, performing root cause analysis to implement permanent technical solutions
  • Partner with internal teams to ensure we are understanding and delighting our customers
  • Fulltime
Read More
Arrow Right

Security Research II - MSTIC Threat Intelligence

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions t...
Location
Location
Israel , Multiple Locations
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years producing actionable threat intelligence on targeted and advanced persistent threats
  • proven expertise tracking and investigating APT adversaries
  • strong ability to analyze and hunt adversary behavior end-to-end, map attack chains, and communicate clear, evidence-based intelligence
  • ability to quickly adapt to a rapidly evolving telemetry landscape
Job Responsibility
Job Responsibility
  • Tracking sophisticated adversaries and using technical knowledge of adversary capabilities, infrastructure, and techniques
  • defining, developing, and implementing techniques to discover and track current adversaries and identify the attacks of tomorrow
  • producing actionable intelligence, proactively driving hunting and detection capabilities, and contributing to the disruption of adversary activity
  • collaborating closely with MSTIC and partnering with security, engineering, and product teams across Microsoft
  • strengthening existing partnerships and building new ones with key organizations
  • Fulltime
Read More
Arrow Right

Senior Applied Threat Intelligence Analyst

Security represents the most critical priorities for our customers in a world aw...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field. OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection. OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection. OR equivalent experience.
  • Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter.
Job Responsibility
Job Responsibility
  • Author and publish high-impact threat intelligence reports (actor profiles, campaign analyses, trend reports, TTP deep-dives, vulnerability profiles) for both customer-facing and internal audiences.
  • Build and refine the pipelines, tooling, and workflows that allow Microsoft to stream insightful cyber threat intelligence to customers machine speed.
  • Represent Microsoft Threat Intelligence in customer briefings, industry conferences, and cross-industry working groups.
  • Translate technical findings into clear, actionable insights for security operations teams and technical stakeholders.
  • Partner with product, engineering, and research teams to operationalize intelligence into Microsoft security platforms (e.g., Defender XDR, Sentinel, customer briefings).
  • Contribute to scalable workflows and pipelines that improve how threat intelligence is generated, refined, and delivered to customers.
  • Support customer engagements (briefings, responses, and discussions) with accurate and timely intelligence insights.
  • Collaborate within the team to improve analytic tradecraft, knowledge sharing, and intelligence quality.
  • Fulltime
Read More
Arrow Right

Threat Intelligence Manager

Security represents the most critical priorities for our customers in a world aw...
Location
Location
United States , Redmond
Salary
Salary:
165600.00 - 296400.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 5+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.
  • OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 6+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 8+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.
  • OR equivalent experience.
  • 3+ years people management experience.
  • Ability to meet Microsoft, customer and/or government security screening requirements are required for this role.
  • Microsoft Cloud Background Check: This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter.
Job Responsibility
Job Responsibility
  • Lead, coach, and grow a U.S.-based team of Threat Intelligence Security Analysts focused on tracking criminal threat actors, campaigns, infrastructure, and emerging trends.
  • Define the vision, strategy, and priorities for the team to deliver high-quality intelligence that drives customer protection and business impact.
  • Build and operationalize a hybrid human + agentic intelligence team, applying AI technologies, automation, and workflow innovation to improve scale, speed, and insight generation.
  • Foster an engineering-oriented culture that values technical depth, experimentation, continuous improvement, and measurable outcomes.
  • Partner across engineering, product, security research, detections, data science, and incident response teams to translate intelligence into protections, investigations, product improvements, and strategic decisions.
  • Drive production of clear, actionable intelligence outputs for technical teams, leadership, and external stakeholders, including actor assessments, campaign analysis, strategic reporting, and executive briefings.
  • Establish and maintain analytic standards, tradecraft, quality controls, and operating mechanisms for the team.
  • Develop trusted relationships across the intelligence community, including industry partners, external organizations, and agencies engaged in tracking criminal threat actors.
  • Represent Microsoft through customer engagements, industry forums, and presentations at security conferences and other external events.
  • Hire and develop diverse talent, build an inclusive and high-performing team culture, and create an environment where analysts can do their best work.
  • Fulltime
Read More
Arrow Right