Threat Intelligence Research & Analysis. Conduct daily OSINT-based threat hunting to identify emerging threats, adversary behaviors, and relevant indicators of compromise (IO - Cs). Perform guided and unguided research into threat actors, campaigns, malware families, vulnerabilities, and exploits. Analyze open and closed environments to map adversary networks, identify credible threats, and track actor communities. Produce tactical, operational, and strategic intelligence products, including client-facing briefings, written assessments, and threat forecasts. Develop comprehensive threat reports on adversaries, global cyber events, and counter-threat considerations. Act as a senior escalation point for incident responders, threat analysts, and engineering teams. Automation, Enrichment & Technical Support. Leverage RESTful APIs, Python, and automation tooling to upload, validate, and enrich IO - Cs. Assess and maintain automated threat intelligence sources; add, tune, or deprecate feeds as needed. Cross-Team Collaboration & Client Engagement. Work collaboratively with IR teams, SOC leadership, and partner units to support threat-informed detection engineering and active cyber campaign response. Respond to Requests for Information (RFIs) and investigate potential false positives or intelligence mismatches. Brief internal stakeholders, leadership, and clients on evolving threat activity and recommended defensive actions. Participate in industry forums and represent g. TIC through research publications, conference presentations, and community engagement. Drive continuous improvement of the intelligence lifecycle, collection management, and analytic rigor. Support development of next-generation analytics platforms and big-data-driven intelligence capabilities. Travel as needed (up to 15–20%) for client engagements, conferences, and intelligence-sharing events. What we’re looking for:8 years of experience in cybersecurity, threat intelligence, incident response, or related technical fields — or equivalent demonstration of capability and excellence. Proven experience with OSINT methodologies and threat research fundamentals. Strong understanding of intelligence tradecraft frameworks, including:MITRE ATT&CK - Diamond Model. Intelligence Cycle. Cyber Kill Chain. Pyramid of Pain. Solid knowledge of malware analysis concepts and how malware informs intelligence operations. Working knowledge of modern cybersecurity tooling including SIEM, EDR, and vulnerability assessment platforms. Proficiency with Python or similar scripting languages. Strong Linux foundation and comfort with command-line utilities. Excellent written and verbal communication skills, including the ability to translate complex technical findings into clear, concise reports. Experience delivering client-facing briefings and handling executive-level conversations. Strong time management and ability to prioritize multiple concurrent research tasks. Preferred Qualifications. Security certifications such as OSCP, GIAC (GCTI/ GOSI/ GREM), CEH, Security , or similar. Strong understanding of exploitation techniques, low-level system fundamentals, assembly, or processor architecture. Experience with big-data analytics platforms or developing next-generation threat intelligence capabilities. Track record of publishing research or presenting at conferences.#LI-GN 1