CrawlJobs Logo

Threat Specialist

United States, Washington, D.C. 135000.00 - 200000.00 USD / Year · Job Posted February 18, 2026
Apply Position
Job Link Share

Job Description

We’re looking for a security (or national security) professional who is innately curious and has the ability and desire to dive into the details of complex, murky, and sensitive investigations, conducted on behalf of multiple stakeholders with (often) competing and shifting priorities. As a Threat Specialist on the Palantir Security team, you will work alongside various internal teams to analyze potential external and insider threats, and mitigate the risks posed to Palantir assets and people. We are looking for a motivated self-starter who is eager to serve in a hybrid role, fusing operational security (OPSEC) expertise, threat research, and analysis. In this role, you will interface closely with Information Security, Compliance, Legal, Global Security and Investigations teams, as well as other internal/external stakeholders. This role requires established open source investigations and research skills, experience in Counterintelligence (CI), strong analytical writing and briefing/debriefing skills, and an appetite to become more technical; existing technical experience is a plus. You must be able to synthesize complex information from various sources and convey risk, as well as present investigative/analytical assessment data, in a clear and concise manner to internal and externals stakeholders, including company leadership.

Job Responsibility

  • Monitor, identify, and analyze internal/external security indicators to determine their impact on Palantir assets
  • Synthesize data and findings with general trend research to provide investigative support to teams across Palantir
  • Assess the validity of potential security risks and incidents and triage using solid prioritization skills
  • Collaborate with a variety of disparate stakeholders when required to investigate and remediate internal threats
  • Conduct security awareness training for internal stakeholders to help increase operational security awareness of Palantir employees
  • Explore and leverage open source information repositories to identify threats to employees, customers, and facilities in advance of or in response to actual incidents
  • Evaluate the changing risk environment with high-frequency in geographies where Palantir has interests, including providing updated CI and OPSEC guidance pertinent to those locales

Requirements

  • 5+ years conducting online/open source investigations and technical security analysis
  • formal training strongly preferred
  • 4+ years professional experience in government, law enforcement, intelligence, or national security conducting analysis/investigations or operations
  • Deep understanding of insider threat tactics, techniques, and procedures
  • Cybersecurity, intelligence, and/or CI experience preferred
  • Experience with open source monitoring tools is a plus
  • Strong written and verbal communication skills and experience presenting technical security concerns and complicated counterintelligence issues to non-technical audience
  • Geographical experience or subject matter expertise outside of the US is preferred
  • Possess active security clearance or the ability to acquire a security clearance
  • Willingness to travel up to 25% of the time if needed, and work a varied schedule based on the needs of the team

Nice to have

  • Experience with open source monitoring tools is a plus
  • Geographical experience or subject matter expertise outside of the US is preferred
  • existing technical experience is a plus

What we offer

  • Employees (and their eligible dependents) can enroll in medical, dental, and vision insurance as well as voluntary life insurance
  • Employees are automatically covered by Palantir’s basic life, AD&D and disability insurance
  • Commuter benefits
  • Take what you need paid time off, not accrual based
  • 2 weeks paid time off built into the end of each year (subject to team and business needs)
  • 10 paid holidays throughout the calendar year
  • Supportive leave of absence program including time off for military service and medical events
  • Paid leave for new parents and subsidized back-up care for all parents
  • Fertility and family building benefits including but not limited to adoption, surrogacy, and preservation
  • Stipend to help with expenses that come with a new child
  • Employees can enroll in Palantir’s 401k plan

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Threat Specialist

8 matching positions

Threat Specialist

We’re looking for a security (or national security) professional who is innately...
Location
Location
United States , Denver
Salary
Salary:
135000.00 - 200000.00 USD / Year
palantir.com Logo
Palantir Technologies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years conducting online/open source investigations and technical security analysis
  • formal training strongly preferred
  • 4+ years professional experience in government, law enforcement, intelligence, or national security conducting analysis/investigations or operations
  • Deep understanding of insider threat tactics, techniques, and procedures
  • Cybersecurity, intelligence, and/or CI experience preferred
  • Experience with open source monitoring tools is a plus
  • Strong written and verbal communication skills and experience presenting technical security concerns and complicated counterintelligence issues to non-technical audience
  • Geographical experience or subject matter expertise outside of the US is preferred
  • Possess active security clearance or the ability to acquire a security clearance
  • Willingness to travel up to 25% of the time if needed, and work a varied schedule based on the needs of the team
Job Responsibility
Job Responsibility
  • Monitor, identify, and analyze internal/external security indicators to determine their impact on Palantir assets
  • Synthesize data and findings with general trend research to provide investigative support to teams across Palantir
  • Assess the validity of potential security risks and incidents and triage using solid prioritization skills
  • Collaborate with a variety of disparate stakeholders when required to investigate and remediate internal threats
  • Conduct security awareness training for internal stakeholders to help increase operational security awareness of Palantir employees
  • Explore and leverage open source information repositories to identify threats to employees, customers, and facilities in advance of or in response to actual incidents
  • Evaluate the changing risk environment with high-frequency in geographies where Palantir has interests, including providing updated CI and OPSEC guidance pertinent to those locales
What we offer
What we offer
  • Employees (and their eligible dependents) can enroll in medical, dental, and vision insurance as well as voluntary life insurance
  • Employees are automatically covered by Palantir’s basic life, AD&D and disability insurance
  • Commuter benefits
  • Take what you need paid time off, not accrual based
  • 2 weeks paid time off built into the end of each year (subject to team and business needs)
  • 10 paid holidays throughout the calendar year
  • Supportive leave of absence program including time off for military service and medical events
  • Paid leave for new parents and subsidized back-up care for all parents
  • Fertility and family building benefits including but not limited to adoption, surrogacy, and preservation
  • Stipend to help with expenses that come with a new child
  • Fulltime
Read More
Arrow Right

Cyber Threat Specialist

Critical role within the Cyber Threat Intelligence Team. As a Threat Specialist ...
Location
Location
Australia , Victoria
Salary
Salary:
Not provided
woolworths.com.au Logo
Woolworths Supermarkets
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of tested cyber security experience within high-pressure environments, including SOC, NOC, and CIRT ecosystems
  • Expert-level mastery in network intrusion, detection, and response, with a current and sharp understanding of the modern threat landscape
  • Deep-seated intuition for malicious code, with the specialised skills required to understand the anatomy of an attack
  • Seamlessly applying the MITRE ATT&CK® framework and Cyber Kill Chain methodology to map adversary behavior and anticipate the 'next move'
  • Broad spectrum confidence across an array of security applications, ensuring the right tool is leveraged for the right threat at the right time
  • Advanced proficiency in Open Source Intelligence, turning public data into actionable defensive strategies
  • A rare ability to translate complex cyber risks into tangible business outcomes, ensuring security initiatives drive organisational value rather than just technical compliance
  • Comprehensive end-to-end exposure to Incident Response (IR), from initial triage through to post-mortem and long-term hardening
  • Equally effective as an individual contributor or a collaborative team player, maintaining peak performance in both autonomous and integrated environments
Job Responsibility
Job Responsibility
  • Maintain awareness of the cyber threat landscape by conducting research to contribute to formal threat reports and curate actionable intelligence
  • Triage, tune, and customise threat alerts while incorporating curated Indicators of Compromise (IOCs) into the existing threat framework
  • Identify and prioritise detection opportunities using SIEM and EDR tools, mapped against the Mitre ATT&CK framework for comprehensive coverage
  • Conduct threat hunting, trigger incident response workflows, and provide dedicated intelligence support during major security incidents
  • Proactively raise security risks and recommend appropriate controls to strengthen the organisation's defensive posture
  • Assist with the zero-day vulnerability process and ensure all technical documentation remains current and accurate
  • Drive continuous improvement by streamlining workflows through the strategic use of automation and advanced tooling
  • Fulltime
Read More
Arrow Right

Cyber Threat Intelligence Specialist

Join our mission to fight cybercrime and become a key member of our Threat Intel...
Location
Location
North Macedonia , Skopje
Salary
Salary:
Not provided
hornetsecurity.com Logo
Hornetsecurity
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of fundamental cybersecurity concepts, including the CIA triad (Confidentiality, Integrity, Availability), vulnerability management, Advanced Persistent Threats (APT), as well as security frameworks and standards such as NIST, ISO 27001 and MITRE ATT&CK
  • Advanced understanding of tools, tactics, techniques and Procedures (TTPs) utilized by threat actors and ability to identify behavioural or recurrent patterns
  • Proficiency with threat intelligence platforms such as OpenCTI, MISP or ThreatConnect
  • Familiarity with programming and scripting languages (e.g., Python, PowerShell)
  • Proficiency in network protocols and packet analysis, with a deep understanding of TCP/IP, DNS, HTTP/HTTPS, and other relevant protocols
  • Proficiency in using SIEM solutions (e.g., Splunk, QRadar), and other security tools
  • Strong analytical and problem-solving skills to assess complex threat information
  • Excellent written and verbal communication skills to effectively convey threat intelligence to both technical and non-technical audiences
  • Ability to work collaboratively in a team environment and build strong relationships with stakeholders
  • Strong attention to detail to identify subtle indicators of compromise and emerging threats
Job Responsibility
Job Responsibility
  • Lead the management of Threat Intelligence within our CTI platform. Verify and ensure the accuracy and reliability of data within the platform
  • Develop and maintain threat intelligence processes and procedures
  • Continuously monitor and analyze Cyber Threat Intelligence from various sources including open-source intelligence, commercial feeds and internal data
  • Identify and assess potential threats and vulnerabilities to our clients
  • Provide actionable intelligence insights to support relevant teams for incident response
  • Evaluate and recommend new tools and technologies to improve threat intelligence capabilities
  • Produce detailed reports and briefings on cyber threats, trends and incidents for technical and non-technical stakeholders
  • Collaborate with internal and external cybersecurity associations on behalf of Hornetsecurity, representing the company at industry events and conferences
What we offer
What we offer
  • Room for innovation and autonomy in a fast-growing international company
  • Temporary Employee Exchange Program – we provide the ability for you to work at our global office locations and explore the world (e.g. Berlin, Madrid, Malta, Montréal, Washington D.C.)
  • Flexible working hours and the option to work from home
  • Permanent contracts – we’re in it for the long haul and hope you are too!
  • Team events like Laser Tag, Office Movie Nights, Foodie Fridays and much more – let yourself be surprised!
  • FitKit subscription and private insurance for your health!
  • Referral Bonus: we pay 1500€ for each referral who is successfully hired by us!
  • Fulltime
Read More
Arrow Right

Specialist, Cyber Threat Intelligence

The Specialist, Cyber Threat Intelligence is responsible for proactively identif...
Location
Location
Canada , Toronto
Salary
Salary:
Not provided
aircanada.com Logo
Air Canada
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A relevant University degree/technical certification, and/or relevant experience commensurate to the role
  • 5+ years of hands-on professional experience in Cyber Threat Intelligence and Threat Hunting within large enterprise or critical infrastructure environments
  • Deep, applied understanding of adversary tradecraft, including intrusion kill chains, MITRE ATT&CK, Diamond Model, malware families, exploitation techniques, persistence mechanisms, and threats targeting aviation and critical infrastructure sectors
  • Demonstrated experience conducting intelligence-led and hypothesis-driven threat hunts
  • Strong hands-on experience with threat intelligence platforms (TIPs), including IOC ingestion, enrichment, scoring, aging, and operational deployment
  • Proven ability to perform malware and campaign analysis, correlating samples, infrastructure, C2 patterns, payload behavior, delivery mechanisms, and underground chatter into cohesive adversary assessments
  • Experience with dark web monitoring, closed forums, leak sites
  • Advanced log analysis and data correlation skills to identify low-signal, stealthy, or novel adversary activity
  • Hands-on experience developing automation pipelines, scripts, or tooling (Python, PowerShell, APIs, SOAR, etc.) to support intelligence collection, normalization, enrichment, and dissemination
  • Experience with query languages and analytics (KQL, SPL, SQL, etc.) to support threat hunting, detections, and investigations
Job Responsibility
Job Responsibility
  • Collect, analyze, validate, and contextualize cyber threat intelligence from multiple sources including OSINT, dark web forums, commercial feeds, ISACs, industry partners, and internal telemetry to identify emerging threats, adversary TTPs, and sector-specific risks
  • Drive and continuously mature the strategy, governance, and operational execution of the Cyber Threat Intelligence (CTI) program, establishing a formal intelligence lifecycle that ensures actionable intelligence is effectively collected, enriched, analyzed, disseminated, and operationalized within security functions
  • Track, profile, and conduct deep analysis of threat actors targeting the organization’s industry, technology stack, and supply chain, including long-term campaign tracking, infrastructure reuse, malware evolution, and adversary behavior patterns
  • Conduct intelligence-led and hypothesis-driven threat hunting across enterprise systems to identify stealthy, advanced, or previously undetected adversary activity
  • Support and participate in incident response, forensic analysis, and post-incident investigations, providing adversary attribution assessments, likely next-step analysis, and intelligence-based scope expansion
  • Serve as a bridge between fraud prevention, SOC, and intelligence teams to ensure comprehensive coverage of threats. Facilitate information sharing and collaboration to strengthen the organization’s overall security posture
  • Create detailed technical reports, threat advisories, and early warning alerts on emerging threats and incidents for technical and non-technical stakeholders
  • Fulltime
Read More
Arrow Right

Cyber Threat Intelligence Specialist

To reduce Vodafone’s cyber risk exposure by delivering timely, actionable threat...
Location
Location
United Kingdom , Newbury
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of active nation‑state and financially motivated threat actors targeting telecoms, enterprise networks, and critical national infrastructure, with focus on actor tactics, techniques and procedures (TTP's)
  • Hands‑on experience producing and applying operational threat intelligence, including indicator development, attack pattern analysis, and supporting detection, response, and remediation activities
  • Ability to triage, correlate, and integrate multiple intelligence sources (telemetry, open source, vendor, and partner intelligence) into clear, actionable outputs
  • Effective stakeholder engagement skills across SOC, Incident Management and cyber defence teams, with the ability to communicate threat information clearly to technical audiences under operational pressure
  • Experience working with external intelligence communities and information‑sharing groups to enrich situational awareness and support operational security outcomes
Job Responsibility
Job Responsibility
  • Deliver operational and tactical threat intelligence on active threat actors, campaigns, and techniques impacting Vodafone's networks, IT environment, and services, with a focus on supporting detection and mitigation of threats
  • Support live incidents, investigations, and Threat Action Groups by monitoring adversary activity, providing timely intelligence updates, and maintaining situational awareness throughout operational events
  • Analyse threat reporting, tooling, and external intelligence to identify actionable indicators, attack patterns, and detection opportunities, feeding directly into CSOC, Incident Management, and defensive teams
  • Track intelligence outcomes by assessing whether intelligence contributed to detection improvements, response actions, vulnerability remediation, or threat disruption, and feed lessons learned back into operational processes
What we offer
What we offer
  • Yearly bonus: 10%
  • Annual leave: 28 days + bank holidays + the opportunity to buy/sell/carry over 5 days/year
  • Charity days: 5 days/year
  • Maternity leave: 52 weeks: the first 13 weeks are fully paid, followed by 26 weeks of half pay
  • Private pension: You can contribute up to 5% of your basic pay with 2:1 matching from Vodafone up to 10%
  • Access to: private medical, private dental, free health assessments, share save scheme
  • Additional discounts: Vodafone retail, gym, cinema, cycle to work, season ticket loan
  • Fulltime
Read More
Arrow Right

Cyber Threat Hunting Specialist

At Vodafone, we’re not just shaping the future of connectivity for our customers...
Location
Location
United Kingdom , Newbury
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Threat Research Expertise
  • You are an experienced security analyst who operates well beyond alert-driven workflows
  • You have a deep understanding of adversary tactics, techniques, and procedures
  • Analytical Thinking
  • You are comfortable working with incomplete, ambiguous, or conflicting data
  • Tool Proficiency
  • You are highly proficient in querying and analysing large-scale security data
  • Data Source Fluency
  • You are confident working across diverse telemetry, including endpoint, identity, network, and cloud data
  • Collaborative Communication
Job Responsibility
Job Responsibility
  • Proactively search for signs of cyber threats across systems and networks
  • Proactive Threat Hunting
  • Drive proactive threat hunting across Vodafone’s environment
  • Own complex investigations end-to-end
  • Rule Development for Security Operations
  • Translate your hunting outcomes into robust, production-ready detection logic
  • Challenge existing detections, identifying gaps in coverage, and refining logic
  • Threat Intelligence Integration
  • Work closely with Cyber Threat Intelligence to turn intelligence into actionable outcomes
  • Assess, validate, and challenge intelligence by mapping it to real telemetry and observed behaviours
What we offer
What we offer
  • Yearly bonus: 10%
  • Annual leave: 28 days + bank holidays + the opportunity to buy/sell/carry over 5 days/year
  • Charity days: 5 days/year
  • Maternity leave: 52 weeks: the first 13 weeks are fully paid, followed by 26 weeks of half pay
  • Private pension: You can contribute up to 5% of your basic pay with 2:1 matching from Vodafone up to 10%
  • Access to: private medical, private dental, free health assessments, share save scheme
  • Additional discounts: Vodafone retail, gym, cinema, cycle to work, season ticket loan
  • Fulltime
Read More
Arrow Right

Strategic Threat Intelligence Specialist

To reduce Vodafone’s cyber risk exposure by delivering forward-looking, strategi...
Location
Location
United Kingdom , Newbury
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of nation-state and financially motivated threat actors targeting telecoms and critical national infrastructure
  • Experience in building or maturing intelligence-sharing processes, including defining requirements, standardising outputs, and measuring impact
  • Ability to combine multiple intelligence sources into clear, defensible strategic assessments
  • Strong stakeholder management skills across technical and executive audiences
  • Experience engaging with external intelligence communities and leveraging trusted relationships to enhance internal security posture
Job Responsibility
Job Responsibility
  • Produce strategic intelligence assessments on priority threat actors, campaigns, and emerging risks impacting telco, network and IT infrastructure
  • Mature and structure Vodafone’s intelligence-sharing relationships across internal stakeholders to ensure intelligence is actionable and consistently drives risk reduction
  • Strengthen and grow external intelligence partnerships with entities such as NCSC, ISACs, peer telcos, and intelligence providers
  • Establish feedback loops to measure whether shared intelligence results in detection improvements, vulnerability remediation, control uplift, or mission activity
  • Translate geopolitical developments, sector targeting trends, and adversary evolution into clear risk implications for Vodafone’s networks, platforms, estate, and supply chain
  • Brief senior leadership and stakeholders with concise, risk-based reporting that supports strategic decision-making
  • Support the development of structured threat missions aligned to priority adversaries, ensuring intelligence requirements are clearly defined and outcomes are tracked
What we offer
What we offer
  • Yearly bonus: 10%
  • Annual leave: 28 days + bank holidays + the opportunity to buy/sell/carry over 5 days/year
  • Charity days: 5 days/year
  • Maternity leave: 52 weeks: the first 13 weeks are fully paid, followed by 26 weeks of half pay
  • Private pension: You can contribute up to 5% of your basic pay with 2:1 matching from Vodafone up to 10%
  • Access to: private medical, private dental, free health assessments, share save scheme
  • Additional discounts: Vodafone retail, gym, cinema, cycle to work, season ticket loan
Read More
Arrow Right

Product Specialist - Eastern PA

Biocomposites is an international medical devices company that engineers, manufa...
Location
Location
Harrisburg
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3-5 years of documented medical or B2B sales success grounded in sales process training
  • Documented sales success and career progression
  • Demonstration of competency in presenting technical information
  • Ability to work with highly diverse groups
  • Ability to present and educate provided materials
  • Strong written and oral communication skills
  • Documented ability to influence decision makers
  • High organized with exceptional follow up
  • Computer skills, CRM skills, ability to utilize technology to aid in Territory Management
  • Bachelor's degree
Job Responsibility
Job Responsibility
  • Achieve sales revenue targets by product and specialty in assigned territory hospitals
  • Drive adoption in existing accounts and new users in hospitals within assigned territory
  • Exhibit confidence in product knowledge and science to handle competitive threats
  • Leverage data and local insight to prioritize local territory needs and activities
  • Utilize business planning tools, data and information to effectively work the territory while achieving goals through set quarterly MBOs
  • Enhance relationships with key stakeholders within distributor network to influence resource allocation and prioritize focus on Biocomposites' products
  • Ensure all distributor sales representatives sell compliantly and use our approved product messaging
  • Provide continuous training and education to all distributor sales representatives in all territory vertical markets
  • Identify and engage new distribution partners in our key vertical markets
  • Regularly update distributor network on market conditions, challenges, product innovations, competition and pricing
What we offer
What we offer
  • Competitive salary package and benefits
  • Opportunities to thrive and grow
  • Engaged and inclusive global teams
  • Fulltime
Read More
Arrow Right