Director of Cyber Threat Intelligence (CTI)
US - Gaithersburg - MD, United States
USD 162K-243K Executive-level Full Time
Tasks
- Automate indicator enrichment and lifecycle management
- Build end to end attack path models
- Compare MTTI with mean time to containment
- Conduct purple team exercises
- Define CTI vision operating model and roadmap
- Deliver threat advisories with confidence ratings
- Derive detections as code and hunt hypotheses
- Develop adversary prioritization scoring rubric
- Develop detection use cases for detections as code pipeline
- Generate executive threat intelligence reporting
- Identify control gaps and choke points
- Implement mean time to impact analytics
- Integrate intelligence into TIP and SIEM pipelines
- Lead Cyber Threat Intelligence program
- Maintain threat watchlists and escalation triggers
- Manage CTI analyst team
- Map attacks to MITRE ATT&CK Enterprise and ICS
- Monitor credential leaks and data exposure
- Monitor dark web forums and breach dumps
- Optimize integrations across TIP SIEM EDR and case management
- Perform adversary emulation
- Prioritize risk based patching
- Produce post incident intelligence retrospectives
- Provide real time adversary context to SOC and incident response
- Reconstruct kill chains and recommend containment
- Support vulnerability management with CVE contextualization
- Tune detection content and reduce false positives
Perks/Benefits
- N/A
Skills/Tech-stack
Adversary Emulation | Attack Path | Attack path modeling | CVE Analysis | Cyber Threat | Cyber Threat Intelligence | Dark Web | Dark web monitoring | Detection engineering | Detections-as-code | Diamond Model | EDR | Indicator Lifecycle | Indicator Lifecycle Management | KQL | Kubernetes N/A | Lifecycle Management | MITRE ATT&CK | MITRE ATT&CK for ICS | MTTC | MTTI | N A | Path modeling | Purple Teaming | SIEM | SPL | Sigma | TIP | Threat Actor | Threat Intelligence | Threat actor attribution | Threat modeling | Vulnerability intelligence | Web monitoring | “as-code”
Education
N/A
Related jobs
-
Senior Director, Cybersecurity Architecture USD 160K-225KAWS Security | Access Management | Application Security | Architecture governance | Azure SecuritySenior-level Full TimeCleveland, OH, United States R23h ago
-
Sr. Program Director III (6674) USD 174K-240KAI machine learning | Agile | Analytics | Clearance Management | Cybersecurity401k match | Dependent care | Employee Assistance and Wellness Programs | Flexible work arrangements | Health, dental, and vision insuranceSenior-level Full TimeWashington, DC1d ago
-
800-53 | AD Connect | Access Certification | Access Management | Active Directory401k match | Bereavement leave | Dental insurance | Employee assistance program | Employee discount programSenior-level Full TimeRemote - Nationwide, United States R1d ago
-
Director, Information Security USD 136K-196KAccess Management | Cloud Security | Disaster Recovery | Encryption | Endpoint Security401k match | Dental insurance | Employee assistance program | Health savings account employer contributions | Life insuranceExecutive-level Full TimeOrlando, FL | Melbourne, FL2d ago
-
Palo Alto Networks XSIAM OR Google SecOps Director USD 155K-410KBusiness Development | Client Relationship Management | Client relationship | Cloud Security | CybersecurityExecutive-level Full TimeAtlanta - 1075 Peachtree Street NE, …2d ago
-
Chief Information Security Officer (CISO) USD 200K-250KAWS | Awareness Training | CAIQ | Cloud Security | CloudTrailExecutive-level Full TimeSan Antonio, TX or Jacksonville, FL2d ago
-
Access Management | Application Security | Authorization controls | Bash | Cloud SecurityExecutive-level Full TimePhoenix, AZ, United States3d ago
-
Director - Security Integration & Engineering-Application Security/ Vulnerability Management USD 144K-256KAPI Integration | API Security | Access Management | Application Security Testing | Attack surface managementExecutive-level Full TimePhoenix, AZ, United States3d ago
-
Director - Cyber Security (IAM Engineering) USD 174K-225KAPI Security | AWS | Access Controls | Access Lifecycle | Access ManagementExecutive-level Full TimePhoenix, AZ, United States3d ago
-
Director, Cyber Security Incident Response Team (CSIRT) USD 169K-253KAccess Management | Automation | Chain of Custody | Cloud Security | Crisis CommunicationHealth insurance | Paid Holidays | Paid leaves | Paid vacation | Retirement programExecutive-level Full TimeUS - Gaithersburg - MD, United …3d ago
-
Division Security Champion USD 145K-185KAI Machine Learning Security | AI machine learning | Application Security | Architecture Review | Bug BountySenior-level Full TimeExton, PA, US3d ago
-
Director, Cyber Security Incident Response Team (CSIRT) USD 169K-253KAccess Management | Automation | Chain of Custody | Cloud Security | Crisis management401k retirement program | Health insurance | Paid leaves | Paid vacation and holidaysExecutive-level Full TimeUS - Gaithersburg - MD, United …3d ago
-
AWS | Access Controls | Application Security | Azure | Cloud Security401k match | Dental insurance | Diversity and inclusion programs | Employee assistance program | Employee resource groupsExecutive-level Full TimeTempe, AZ, United States R3d ago
-
Director IT Risk and Security Management USD 190K-225KAccess Management | Agile | Certificate management | Cloud Access Security Broker | Cloud SecurityFlexible hybrid work model | Health and life insurance | Paid time off | Pension and retirement benefitsExecutive-level Full TimeTampa, FL, United States R3d ago
-
800-53 | AD Connect | Access Certification | Access Management | Active Directory401k plan with company matching | Bereavement | Employee assistance program | Employee discount program | Health dental vision careSenior-level Full TimeRemote - Nationwide, United States R3d ago
-
Director of Business Systems Administration USD 109K-224KApplication Lifecycle Management | Application Monitoring | Application lifecycle | Best practices | CRMCareer development | Continued education programs | Flexible work scheduleExecutive-level Full TimeMenasha-OMC, United States4d ago
-
Director of Information Security Engineering USD 125K-200K800-171 | AI Security | Access Management | Application Security | AzureDental insurance | Employer-funded retirement | Free tuition program | Low deductible medical insurance | Low to no cost benefitsExecutive-level Full TimeRemote (United States), United States R4d ago
-
Director, Information Security - Endpoint, Mobile, Cloud USD 147K-220KCloud Security | Endpoint Security | ISO 27000 | Information Security Policy | Information Security Standards401k match | Dental insurance | Disability insurance | Education benefit | Employee stock purchase planExecutive-level Full TimeWash, 213 Washington St., Newark, NJ, …4d ago
-
Director of Business Systems Administration USD 109K-224KApplication Lifecycle Management | Application Monitoring | Application lifecycle | Best practices | CRMExecutive-level Full TimeMenasha-OMC, United States4d ago
-
Cyber Risk Sr. Group Manager, Director USD 170K-300KAccess Management | Artificial Intelligence | COBIT | Compliance Risk | Compliance Risk Management401k | Accident insurance | Disability insurance | Life insurance | Medical, dental & vision coverageSenior-level Full Time388 GREENWICH STREET - TOWER, United …4d ago
-
Cyber Risk Sr. Group Manager, Director USD 170K-300KAccess Management | Artificial Intelligence | Audit management | Compliance Risk | Compliance Risk Management401k | Disability insurance | Health, dental and vision coverage | Life insurance | Paid time offSenior-level Full TimeLocation(s): New York, New York, United …4d ago
-
800-53 | AD Connect | AWS IAM | AWS IAM Identity Center | Access Certification401k match | Employee assistance program | Health and wellbeing benefits | Holidays | Life and disability insuranceSenior-level Full TimeRemote - Nationwide, United States R6d ago
-
Chief Information Security Officer (CISO) USD 237K-390KAccess Certification | Access Management | Audit evidence | Board reporting | Business Continuity401k retirement plan | Catered lunches | Dental insurance | Disability insurance | Employee assistance programExecutive-level Full TimeAustin, TX / Morristown, NJ (hybrid) R7d ago
-
Chief Information Security Officer (CISO) USD 237K-390KAccess Certification | Access Management | Business Continuity | Control Frameworks | Cybersecurity401k retirement plan | Dental insurance | Employee assistance program | Employer-paid life insurance | Flexible spending accountExecutive-level Full TimeMorristown, NJ / Austin, TX (hybrid) R7d ago
-
AI Assisted Development | Backend architecture | C++ | Cybersecurity | Distributed SystemsCareer growth opportunities | Flexible work hours | Hybrid work | Team eventsExecutive-level Full TimeAustin, Texas, United States7d ago