Recorded Future

Senior Threat Intelligence Analyst (China Focus)

Arlington, Virginia, United States

Not SpecifiedCompensation
Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
Cybersecurity, IntelligenceIndustries

Requirements

Candidates should have a BA/BS or equivalent experience in Computer Science, Computer Engineering, Information Security, Security Studies, Intelligence, or a related field, with a preference for 5+ years of experience in Information Security and/or Threat Intelligence. Demonstrated experience in technical threat analysis and research is required, along with in-depth knowledge of TCP/IP and networking protocols. Proficiency in scripting languages like Python and familiarity with CTI research tools such as Maltego, Jupyter Notebook, and the Elastic Stack are necessary. Experience applying structured analytical techniques, understanding threat modeling frameworks like MITRE ATT&CK, and detailed knowledge of APT groups' activities, TTPs, motivations, and targeting patterns are also essential.

Responsibilities

The Senior Threat Intelligence Analyst will lead efforts to track state-sponsored APT campaigns originating from China, mentor peers in intrusion analysis, and represent Insikt Group externally. Responsibilities include conducting proactive research by synthesizing technical datasets, establishing methods to track APT campaigns using network, intrusion, and malware analysis, and hunting for threat actor infrastructure and activity. The role involves identifying and prioritizing detection mechanisms for command-and-control infrastructure, evaluating and improving threat intelligence workflows, and staying updated on evolving APT tradecraft. Additionally, the analyst will mentor colleagues, collaborate with geopolitical teams, propose new analytical methods, represent the company externally through briefings and engagements, and support customer intelligence needs through Recorded Future’s Analyst-on-Demand service.

Skills

Threat Intelligence
APT Tracking
Intrusion Analysis
Malware Analysis
Network Analysis
Infrastructure Hunting
Detection Mechanisms
Automation
Geopolitical Analysis
Technical Research
Reporting
Mentoring

Recorded Future

Provides machine-readable threat intelligence solutions

About Recorded Future

Recorded Future provides threat intelligence in the cybersecurity industry by gathering and analyzing information about potential threats to organizations. Their intelligence is delivered in a machine-readable format, making it easy for clients like threat analysts and security teams to integrate with their existing systems. Unlike competitors, Recorded Future focuses on partnerships with Value Added Resellers (VARs) to enhance their offerings and provide comprehensive support. The company's goal is to help organizations lower the risk of cyber attacks through effective threat intelligence.

Somerville, MassachusettsHeadquarters
2009Year Founded
$57.1MTotal Funding
ACQUISITIONCompany Stage
CybersecurityIndustries
1,001-5,000Employees

Benefits

Professional development and career advancement
Flexible work environment, be yourself
Generous vacation policy
Wellness programs
Company outings
Competitive compensation and benefits
Free snacks, drinks, and coffee in the office
Parental leave program
Environmentally conscious

Risks

Integration challenges with Mastercard's systems could delay synergy realization post-acquisition.
The acquisition may shift strategic priorities, alienating clients preferring independent operations.
Competitive pressures from European cybertech firms may impact the Filigran partnership.

Differentiation

Recorded Future offers machine-readable threat intelligence for seamless integration with security systems.
The company indexes data from open, dark web, and technical sources for comprehensive insights.
Recorded Future partners with VARs, enhancing their reach and providing hands-on support.

Upsides

Mastercard's acquisition enhances Recorded Future's AI capabilities for improved cybersecurity services.
Integration with XDR platforms offers a comprehensive security approach for Recorded Future.
The rise of zero-trust models allows Recorded Future to tailor its threat intelligence offerings.

Land your dream remote job 3x faster with AI