Senior Threat Intelligence Solutions Engineer
Anomali
full-time
Posted on:
Location Type: Remote
Location: Remote • Colorado • 🇺🇸 United States
Visit company websiteSalary
💰 $140,000 - $160,000 per year
Job Level
Senior
About the role
- Conduct original, in-depth threat research on advanced adversaries, emerging malware, attack techniques, and evolving TTPs.
- Analyze attacker behavior across the kill chain, including infrastructure, tooling, operational security, and monetization models.
- Contribute to strategic and tactical understanding of threat actor campaigns and trends.
- Author and publish high-quality intelligence products for the customer community.
- Translate research into clear, consumable outputs for defenders, SOC teams, and executive stakeholders.
- Participate in public-facing thought leadership as appropriate (blogs, briefings, webinars, or conference content).
- Design, develop, and maintain high-fidelity detections aligned to adversary behaviors and techniques.
- Validate detections against real-world attack data and ensure operational effectiveness with minimal false positives.
- Collaborate with engineering and product teams to operationalize intelligence into platform capabilities.
- Serve as a customer-facing technical expert, providing intelligence products, detection engineering and otherwise augmenting their capabilities.
- Advise customers on threat modeling, detection strategy, and intelligence-driven security improvements.
- Build trusted relationships with customers by delivering credible, actionable, and timely products and services.
- Partner closely with product managers, engineers, customer support, and customer success teams to improve customer outcomes and product quality.
- Mentor junior analysts and engineers, providing guidance on research methods, detection development, and analytical rigor.
- Help shape threat intelligence strategy, research priorities, and best practices across the organization.
Requirements
- Bachelor's degree in Computer Science or an additional 3 years of relevant experience in lieu of degree
- Minimum of 5 years of experience and expertise in broad cyber threat intelligence, detection engineering and identifying emerging threats or trends, along with query design and automation.
- Strong understanding of attacker tactics, techniques, and procedures (TTPs) across multiple threat domains.
- Hands-on expertise developing threat detections using query languages, rules engines, or behavioral analytics and collaborating internally to automate / operationalize them.
- Proven ability to conduct and communicate original threat research and experience publishing high quality intelligence products
- Excellent written and verbal communication skills, including customer-facing presentations.
- Experience engaging directly with enterprise security teams and executive stakeholders as an advisor on threat modeling, detection strategy, and intelligence-driven security improvements.
- Prior experience as a practitioner within the US intelligence community
- Openness to coaching and a proactive approach to training/feedback
- Self-motivated, displaying a robust work ethic
- Willingness to travel up to 10%
- This position is not eligible for employment visa sponsorship. The successful candidate must not now, or in the future, require visa sponsorship to work in the US.
Benefits
- This position is eligible for benefits
- May be eligible for a bonus and/or equity
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
cyber threat intelligencedetection engineeringquery designautomationthreat modelingbehavioral analyticshigh-fidelity detectionsoriginal threat researchpublishing intelligence productsattacker tactics, techniques, and procedures (TTPs)
Soft skills
written communicationverbal communicationcustomer-facing presentationsmentoringcollaborationproactive approachself-motivatedrobust work ethicbuilding trusted relationshipscoaching
Certifications
Bachelor's degree in Computer Science