Threat Collections Engineer
Anthropic
full-time
Posted on:
Location Type: Hybrid
Location: San Francisco • California • District of Columbia • United States
Visit company websiteExplore more
Salary
💰 $300,000 - $405,000 per year
About the role
- Build automated detection systems that use disparate signals to identify abusive behavior
- Take systems from idea to proof-of-concept to production-grade with appropriate monitoring, documentation, and maintenance processes
- Develop and maintain YARA rule infrastructure, including tools for writing, validating, and testing rules against real data
- Create integrations with external threat intelligence platforms (e.g. VirusTotal, Censys, Urlscan) via MCP servers to enable multi-source correlation during investigations
- Build data pipelines that ingest intelligence from RSS feeds, CTI news sources, and partner sharing, using Claude to extract TTPs and generate targeted hunting queries
- Develop behavioral analytics capabilities using DBT-based frameworks and create searchable audit logging infrastructure
- Establish feedback loops with investigators to tune detection systems and reduce false positives
- Scrape and normalize data from external sources to feed threat detection and enrichment workflows
Requirements
- Strong coding proficiency in Python and SQL
- Experience with data pipeline orchestration tools (Airflow, DBT, or similar)
- Familiarity with threat intelligence concepts including IOCs, YARA rules, and threat correlation techniques
- Experience integrating external APIs and building data ingestion systems
- Can translate investigator needs and workflows into technical requirements
- Comfortable building v0 systems and iterating based on user feedback
- Strong communication skills for working closely with non-engineering stakeholders
- Experience with threat intelligence sharing frameworks (e.g. MISP, STIX/TAXII)
- Background in cyber threat intelligence, security operations, or abuse detection
- Experience building MCP servers or similar tool integrations for AI systems
- Familiarity with web scraping and data extraction at scale
- Understanding of LLM capabilities and how to leverage them for automation
- A Top Secret Clearance
Benefits
- Competitive compensation
- Generous vacation
- Parental leave
- Flexible working hours
- Visa sponsorship
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
PythonSQLYARA rulesdata pipeline orchestrationDBTAPI integrationweb scrapingdata extractionbehavioral analyticsthreat correlation techniques
Soft Skills
strong communication skillstranslating technical requirementsiterating based on user feedback
Certifications
Top Secret Clearance