Senior Threat Intelligence Analyst

With 1,000 intelligence professionals, over $300M in sales, and serving over 1,800 clients worldwide, Recorded Future is the world’s most advanced, and largest, intelligence company!

Job Description: Senior Threat Intelligence Analyst (APT Trends)

This Role: Recorded Future is looking for an analyst to assist in producing consistently high quality cyber threat intelligence to clients with a particular focus on the activity, trends, and motivations of nation-state-aligned cyber threat actors (referred to hereafter as “APT groups”). The analyst will be primarily responsible for responding to ad hoc intelligence requests regarding the landscape of APT activity. Writing either ad hoc or recurring reports about this topic area will require the ability to work with or automate relevant datasets. Outside of reporting specifically on APT trends, the analyst may be asked to contribute insights about APT activity to intelligence with more general requirements.

Responsibilities to include: 

• Produce and review finished intelligence reports that address clients’ priority intelligence requirements related to activity from APT groups, particularly originating from the “Big 4” countries of Russia, China, North Korea, and Iran
• Engage with clients across report lifecycle: Initial scoping, finished intelligence delivery, and follow-up review / support
• Develop novel, automated, or simpler processes for research and analysis
• Work on projects across multiple research teams with sometimes tight deadlines

Required Skills / Experience:

• 5+ years experience as a threat intelligence analyst or in similar position
• BA/BS or MA/MS degree or equivalent experience in Computer Science, Information Security, or a related field.
• Demonstrable experience conducting technical threat analysis and research
• In-depth understanding of TCP/IP and other networking protocols and network traffic analysis techniques
• Detailed understanding of at least one nation-state APT group - past activities, TTPs, motivations, etc.
• Fluency in common CTI research and data analysis platforms/tools such as ELK Stack (ElasticSearch, Kibana), Maltego, Shodan, DomainTools, or other similar tools/datasets
• Managing client expectations based on pre-established scope of work and delivery timeframe 
• Ability to demonstrate  strong writing ability, to be assessed via a writing sample
• Practical experience using common threat intelligence analysis models such as MITRE ATT&CK, the Diamond Model, and the Cyber Kill Chain to incorporate into client reports

Highly Desirable Skills / Experience:

• Working knowledge of at least one language other than English, with relevance preferred for Russian, Chinese, Korean, and/or Farsi
• Experience working with clients to produce intelligence requirements, or reports / research in line with such requirements
• Demonstrable experience of conducting cyber threat investigations

Why should you join Recorded Future?
Recorded Future employees (or “Futurists”), represent over 40 nationalities and embody our core values of having high standards, practicing inclusion, and acting ethically. Our dedication to empowering clients with intelligence to disrupt adversaries has earned us a 4.8-star user rating from Gartner and more than 45 of the Fortune 100 companies as clients.

Want more info? 
Blog & Podcast: Learn everything you want to know (and maybe some things you’d rather not know) about the world of cyber threat intelligence
Instagram & Twitter: What’s happening at Recorded Future
The Record: The Record is a cybersecurity news publication that explores the untold stories in this rapidly changing field
Timeline: History of Recorded Future
Recognition: Check out our awards and announcements

We are committed to maintaining an environment that attracts and retains talent from a diverse range of experiences, backgrounds and lifestyles.  By ensuring all feel included and respected for being unique and bringing their whole selves to work, Recorded Future is made a better place every day.

If you need any accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to our recruiting team at careers@recordedfuture.com 

Recorded Future is an equal opportunity and affirmative action employer and we encourage candidates from all backgrounds to apply. Recorded Future does not discriminate based on race, religion, color, national origin, gender including pregnancy, sexual orientation, gender identity, age, marital status, veteran status, disability or any other characteristic protected by law.

Recorded Future will not discharge, discipline or in any other manner discriminate against any employee or applicant for employment because such employee or applicant has inquired about, discussed, or disclosed the compensation of the employee or applicant or another employee or applicant.

Recorded Future does not administer a lie detector test as a condition of employment or continued employment. This is in compliance with the law of the Commonwealth of Massachusetts, and in alignment with our hiring practices across all jurisdictions.

Notice to Agency and Search Firm Representatives:
Recorded Future will not accept unsolicited resumes from any source other than directly from a candidate. Any unsolicited resumes sent to Recorded Future, including those sent to our employees or through our website, will become the property of Recorded Future. Recorded Future will not be liable for any fees related to unsolicited resumes.

Agencies must have a valid written agreement in place with Recorded Future's recruitment team and must receive written authorization before submitting resumes. Submissions made without such agreements and authorization will not be accepted and no fees will be paid.