Threat Intelligence Researcher

As a Threat Intelligence Researcher at SecurityScorecard, you will join the threat research team to produce timely, actionable intelligence for customers, partners, and internal stakeholders. This role involves tracking threat actors and their infrastructure, producing intelligence reports, and translating complex findings into clear content for various audiences. You will work closely with the marketing team on research-driven content and campaigns, participate in customer briefings, coordinate threat actor takedowns, and engage in industry events. Strong written and spoken English is essential, along with the ability to represent the team's work credibly in external settings.

Key responsibilities include identifying, tracking, and analyzing advanced persistent threats (APTs) and their infrastructure to gain insights into attack vectors, victimology, and attack scale. You will produce timely and actionable intelligence reports for customers, press, and partners, participate in customer briefings, incident mitigation, and coordinated threat actor takedowns. Additionally, you will develop and maintain high-fidelity detection signatures (YARA, Snort, Sigma) to protect customers, query large datasets using SQL, Python, or Splunk to identify anomalies and map out adversary infrastructure, and design and leverage AI and LLM automations to support your analysis workload.

The ideal candidate holds a Bachelor's or Master's degree in Computer Science, Cybersecurity, or a highly technical equivalent, with 3–5 years of hands-on experience in a threat intelligence research role within a prominent industry organization, military, law enforcement, or government. Familiarity with prominent threat actors, APTs, emerging threat vectors, and the wider threat landscape is required. Proficiency with large dataset querying and dashboard design using Splunk, SQL, or similar platforms is essential. A hacker's curiosity—the ability to look at a data point and see the hidden pattern—is highly valued. Experience with open source and commercial attack surface, malware analysis, and network intelligence tools and platforms is a plus. Native-level reading and writing proficiency in Russian, Mandarin, Korean, or Farsi is an additional bonus.

SecurityScorecard offers a competitive salary, stock options, health benefits, unlimited PTO, parental leave, tuition reimbursements, and more. The estimated total compensation range for this position is $100,000 - $120,000 (base plus bonus). Actual compensation is based on factors including skills, qualifications, and experience, and may vary from the range. Employees may also be eligible for annual performance-based incentive compensation awards and equity, among other company benefits.