Senior Cyber Threat Intelligence Analyst

Role Overview: This role is responsible for driving intelligence-led cybersecurity operations by owning the full intelligence lifecycle — from structured data collection and enrichment to advanced analytical assessment and strategic intelligence sharing. The position plays a key role in strengthening the organization’s detection, prevention, and response capabilities through actionable, context-rich threat insights. Core Responsibilities: • Lead and continuously optimize the Cyber Threat Intelligence lifecycle, ensuring high-quality intelligence production and effective dissemination to relevant stakeholders. • Aggregate, validate, and correlate threat data from multiple open-source and commercial intelligence platforms, including VirusTotal, URLScan.io, GreyNoise, DomainTools, and Shodan, transforming raw indicators into meaningful intelligence. • Formulate and test threat hunting hypotheses by analyzing telemetry across endpoints, identity systems, cloud environments, and network infrastructure. • Monitor, attribute, and track threat actors and campaigns, identifying patterns, operational behaviors, and emerging adversary techniques. • Assess adversarial tactics and techniques in alignment with the MITRE ATT&CK framework and current global threat activity. • Conduct malware investigations to identify behavioral traits, cluster malicious artifacts, and enhance detection capabilities through enriched intelligence. • Collaborate closely with Tier 3 Analysts to support advanced threat hunting and incident response engagements. • Provide intelligence-driven input to the Vulnerability Management function to support risk-based prioritization and remediation strategies. • Translate intelligence findings into actionable detection rules, security use cases, and strategic recommendations. • Produce high-quality technical documentation, executive-ready summaries, and post-incident analytical reports. • Operate autonomously with strong analytical judgment while maintaining effective cross-team collaboration within Security. • Communicate complex technical intelligence clearly to both technical teams and business stakeholders, ensuring shared situational awareness and informed decision-making.