Threat Hunter - Security Operations Expert
Red Cell PartnersSalary not specified
Full Time
Senior (5 to 8 years)
Not SpecifiedCompensation
Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
Cybersecurity, IntelligenceIndustries
Requirements
Candidates should possess a BA/BS or equivalent experience in Computer Science, Computer Engineering, Information Security, Security Studies, Intelligence, or a related field, with a preference for 5+ years of experience in Information Security and/or Threat Intelligence. Demonstrated experience in technical threat analysis, in-depth knowledge of TCP/IP and networking protocols, and capability in identifying and tracking infrastructure through banner analysis and metadata correlation are required. Experience with static and dynamic malware analysis, proficiency in scripting languages like Python, and familiarity with CTI research tools such as Maltego, Jupyter Notebook, and the Elastic Stack are also necessary. Proven experience applying structured analytical techniques, intelligence methodologies, and threat modeling frameworks like MITRE ATT&CK is expected, along with a detailed understanding of APT groups' activities, TTPs, motivations, and targeting patterns, and experience with open-source intelligence-gathering tools.
Responsibilities
The Senior Threat Intelligence Analyst will lead efforts to track state-sponsored APT campaigns, focusing on actors operating beyond the traditional "Big Four" and emphasizing regions such as Asia, Europe, the Middle East, and emerging areas of strategic interest. Responsibilities include conducting proactive research, synthesizing technical datasets for novel insights and reporting, and establishing methods to track APT campaigns using network, intrusion, and malware analysis. The role involves hunting for threat actor infrastructure and activity, identifying and prioritizing detection mechanisms for command-and-control infrastructure, malware families, and threat groups, and continuously evaluating and improving threat intelligence workflows for automation and efficiency. Additionally, the analyst will mentor colleagues, collaborate with geopolitical and regional analysis teams, propose and evaluate new data sources and analytical methods, represent Insikt Group externally through customer briefings and media engagements, collaborate with engineering and data science teams for platform integration, and support customer intelligence needs through the Analyst-on-Demand service.
Skills
Threat Intelligence
APT Analysis
Intrusion Analysis
Malware Analysis
Network Analysis
Cyber Threat Research
Detection Engineering
Geopolitical Analysis
Technical Research
Data Synthesis
Automation
Recorded Future
Provides machine-readable threat intelligence solutions
About Recorded Future
Recorded Future provides threat intelligence in the cybersecurity industry by gathering and analyzing information about potential threats to organizations. Their intelligence is delivered in a machine-readable format, making it easy for clients like threat analysts and security teams to integrate with their existing systems. Unlike competitors, Recorded Future focuses on partnerships with Value Added Resellers (VARs) to enhance their offerings and provide comprehensive support. The company's goal is to help organizations lower the risk of cyber attacks through effective threat intelligence.
Somerville, MassachusettsHeadquarters
2009Year Founded
$57.1MTotal Funding
ACQUISITIONCompany Stage
CybersecurityIndustries
1,001-5,000Employees
Benefits
Professional development and career advancement
Flexible work environment, be yourself
Generous vacation policy
Wellness programs
Company outings
Competitive compensation and benefits
Free snacks, drinks, and coffee in the office
Parental leave program
Environmentally conscious
Risks
Integration challenges with Mastercard's systems could delay synergy realization post-acquisition.
The acquisition may shift strategic priorities, alienating clients preferring independent operations.
Competitive pressures from European cybertech firms may impact the Filigran partnership.
Differentiation
Recorded Future offers machine-readable threat intelligence for seamless integration with security systems.
The company indexes data from open, dark web, and technical sources for comprehensive insights.
Recorded Future partners with VARs, enhancing their reach and providing hands-on support.
Upsides
Mastercard's acquisition enhances Recorded Future's AI capabilities for improved cybersecurity services.
Integration with XDR platforms offers a comprehensive security approach for Recorded Future.
The rise of zero-trust models allows Recorded Future to tailor its threat intelligence offerings.
Related Jobs
RemoteRemoteSr. Intelligence Analyst, Asia-Pacific Mission (Remote)
CrowdstrikeSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSr. Threat Hunting Intelligence Analyst (Remote, East Coast)
CrowdstrikeSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSenior Cloud Security Researcher
Red CanarySalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior Business Intelligence Analyst
Imagine PediatricsSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSecurity Researcher - Malware Reverse Engineer (Remote)
CrowdstrikeSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteThreat Intelligence Specalist
DraftKingsSalary not specified
- Full Time
- Junior (1 to 2 years)