SIXGEN Logo

SIXGEN

Cyber Threat Intelligence Analyst

Posted An Hour Ago
Be an Early Applicant
In-Office or Remote
Hiring Remotely in Northern District, VA
100K-155K Annually
Senior level
In-Office or Remote
Hiring Remotely in Northern District, VA
100K-155K Annually
Senior level
Collect, analyze, and disseminate actionable cyber and fraud intelligence from multiple sources, monitor dark web and brand abuse, support SOC/IR/threat hunting, produce operational and executive reports, and leverage AI/automation to improve intelligence workflows and defenses.
The summary above was generated by AI

Job Title: Cyber Threat Intelligence Analyst

Position Summary

The Senior Cyber Threat Intelligence Analyst is responsible for collecting, analyzing, and disseminating actionable intelligence to support enterprise cybersecurity operations, fraud prevention, and risk mitigation. This role proactively identifies emerging cyber threats, fraud campaigns, dark web activity, insider threats, and brand misuse that could impact organizational assets, personnel, or operations.

The ideal candidate possesses extensive experience conducting cyber threat intelligence analysis, monitoring dark web activity, identifying fraud indicators, and producing operational and executive-level intelligence reporting. This individual will collaborate closely with Security Operations, Incident Response, Threat Hunting, Vulnerability Management, and executive leadership to ensure intelligence is integrated into defensive operations and strategic decision-making.

Key Responsibilities

Cyber Threat Intelligence

  • Collect, analyze, correlate, enrich, and disseminate actionable cyber threat intelligence from commercial, open-source, government, and proprietary intelligence sources.
  • Produce timely intelligence products supporting cybersecurity operations, executive leadership, and mission stakeholders.
  • Identify emerging cyber threats, adversary tactics, techniques, and procedures (TTPs), and evaluate their potential impact to the organization.
  • Maintain threat intelligence processes, workflows, and standard operating procedures to support continuous intelligence operations.

Fraud Intelligence & Dark Web Monitoring

  • Monitor dark web forums, marketplaces, messaging platforms, and underground communities for indicators of fraud, credential theft, data leakage, and criminal activity targeting the organization.
  • Identify emerging fraud schemes, financial crime trends, phishing campaigns, and identity-based attacks relevant to federal operations.
  • Analyze criminal infrastructure and threat actor activity to identify risks before they impact organizational assets.
  • Develop intelligence products that help detect, prevent, and mitigate fraud targeting bureau systems, services, and customers.
  • Support fraud reporting and intelligence-sharing processes in accordance with Bureau of the Fiscal Service (BFS) requirements and established reporting mechanisms.

Brand Protection & Threat Monitoring

  • Monitor organizational brands, domains, and digital assets for misuse, impersonation, phishing, counterfeit activity, and unauthorized use.
  • Investigate potential brand abuse incidents and recommend mitigation strategies.
  • Coordinate with appropriate stakeholders to support brand protection activities, including takedown requests for malicious or unauthorized content.
  • Monitor cyber, insider, physical, and environmental threats that could impact enterprise operations.

Operational Intelligence Support

  • Integrate threat intelligence into Security Operations Center (SOC), Incident Response, Threat Hunting, Vulnerability Management, and Security Fusion Center activities.
  • Provide intelligence support during cybersecurity investigations and incident response activities.
  • Develop actionable recommendations that improve detection capabilities and reduce organizational risk.
  • Collaborate with cross-functional teams to improve intelligence-driven security operations.

Artificial Intelligence & Threat Intelligence Automation

  • Leverage Artificial Intelligence (AI) and automation technologies to improve threat intelligence collection, enrichment, prioritization, and analysis.
  • Research emerging AI-enabled threat intelligence platforms and security operations capabilities.
  • Evaluate opportunities to automate intelligence workflows using multi-source threat feeds and advanced analytics.
  • Provide recommendations on integrating AI into cybersecurity operations while supporting responsible and secure implementation practices.

Reporting & Briefings

  • Produce technical intelligence reports, executive summaries, threat assessments, and operational briefings.
  • Communicate complex threat information to technical and non-technical audiences.
  • Develop actionable recommendations based on intelligence findings to improve organizational security posture.
  • Support leadership with strategic intelligence products that inform operational and risk-based decisions.

Required Qualifications

  • Bachelor's degree in Cybersecurity, Intelligence Studies, Computer Science, Information Assurance, Criminal Justice, or a related field.
  • 5+ years of experience in Cyber Threat Intelligence, Security Operations, Fraud Intelligence, Digital Risk Protection, or Cyber Defense.
  • Demonstrated experience conducting dark web investigations and monitoring criminal ecosystems.
  • Strong understanding of cyber-enabled fraud, financial crime, phishing campaigns, account takeover, identity theft, and social engineering tactics.
  • Experience producing actionable cyber threat intelligence for operational security teams and executive leadership.
  • Knowledge of cyber threat frameworks including:
    • MITRE ATT&CK
    • Cyber Kill Chain
    • Diamond Model of Intrusion Analysis
  • Experience with commercial threat intelligence platforms, Digital Risk Protection (DRP) solutions, and open-source intelligence (OSINT).
  • Familiarity with Security Operations Center (SOC) workflows, incident response processes, and threat hunting methodologies.
  • Strong analytical, investigative, and critical thinking skills.
  • Excellent written and verbal communication skills.

Preferred Qualifications

  • GIAC Cyber Threat Intelligence (GCTI)
  • GIAC Open Source Intelligence (GOSI)
  • Certified Information Systems Security Professional (CISSP)
  • Certified Fraud Examiner (CFE)
  • SANS FOR578 (Cyber Threat Intelligence) or equivalent training.
  • Experience supporting Bureau of the Fiscal Service (BFS), Treasury, or other federal civilian agencies.
  • Experience using threat intelligence platforms such as Recorded Future, Anomali, ThreatConnect, Mandiant, Microsoft Defender Threat Intelligence, or similar technologies.
  • Familiarity with AI-enabled threat intelligence platforms, automation tools, and machine learning applications for cybersecurity.

Knowledge, Skills, and Abilities

  • Extensive knowledge of cybercriminal ecosystems, underground marketplaces, dark web communities, and threat actor behaviors.
  • Strong understanding of fraud methodologies, financial cybercrime, digital identity abuse, and brand impersonation techniques.
  • Ability to identify indicators of compromise (IOCs), indicators of attack (IOAs), and emerging fraud trends.
  • Experience correlating intelligence from multiple sources to produce timely, actionable reporting.
  • Ability to communicate intelligence findings effectively to cybersecurity teams, investigators, executives, and mission stakeholders.
  • Strong investigative mindset with the ability to recognize patterns, anticipate adversary behavior, and proactively identify organizational risks.
  • Ability to leverage automation and artificial intelligence to improve intelligence collection, enrichment, and operational effectiveness.

Compensation & Benefits

  • Competitive salary
  • Employer-paid health insurance premiums (medical, dental, vision)
  • Employer-paid short/long term disability insurance and basic life/AD&D insurance
  • 401K with a 4% employer contribution
  • Professional development reimbursement options available (training, certification, education, etc)​
  • Flexible and remote work policies for most positions
  • Paid Time Off (PTO) at a rate of three (3) weeks plus one (1) day per year of service up to four (4) weeks annually
  • 11 paid holidays per calendar year​

At SIXGEN, we are committed to fair and equitable compensation practices. The anticipated salary range for this role is $100,000 - $155,000 per year, depending on experience and qualifications. This range reflects our compensation philosophy, which takes into account various factors including the candidate's relevant experience, education, skills, LCATs rates and position level, and market competitiveness. In addition to base salary, employees may be eligible for other forms of compensation to include our growth incentive program, incentives and benefits. The final salary offer will be determined after a thorough review of the candidate's background and alignment with the role. Please note that this range is subject to change and should be considered as a guideline rather than a definitive figure.

We are committed to fostering an inclusive culture that values diversity in our people, reflecting the communities we serve and our customer base. We strive to attract and retain a diverse talent pool and create an environment where everyone is empowered to be their authentic selves at work.

SIXGEN is an Equal Opportunity Employer. We ensure that all applicants are considered for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, disability, age, marital status, ancestry, projected veteran status, or any other protected group or class.


Similar Jobs

7 Days Ago
Remote
USA
88K-114K Annually
Senior level
88K-114K Annually
Senior level
Cloud • Social Impact • Software
Collect, analyze, and disseminate cyber threat intelligence from multiple sources; monitor threat actors, TTPs, and vulnerabilities; support incident response and alert detection; produce timely, actionable intelligence products and recommendations to improve network defense.
Top Skills: Cyber Kill ChainMitre Att&CkOsintThreat Intelligence Platforms
Internship
Information Technology • Cybersecurity
The Cyber Threat Intelligence Analyst Internship involves learning core cyber threat intelligence principles, participating in threat analysis, and collaborating with the Security Operations Center to understand how intelligence supports security operations.
Top Skills: EdrMitre Att&CkSIEMThreat Intelligence Platforms
An Hour Ago
Easy Apply
Remote
United States
Easy Apply
328K-490K Annually
Senior level
328K-490K Annually
Senior level
Big Data • Fintech • Mobile • Payments • Financial Services
Lead and scale a team of Key & Enterprise Account Executives across US Travel, New Markets, and Canada. Drive GTM strategy, executive stakeholder management, complex deal negotiation, cross-functional deal orchestration, forecasting rigor, and post-close launch/expansion. Recruit, coach, and hold the team accountable while traveling regularly to accelerate deals and represent Affirm at industry events.

What you need to know about the San Francisco Tech Scene

San Francisco and the surrounding Bay Area attracts more startup funding than any other region in the world. Home to Stanford University and UC Berkeley, leading VC firms and several of the world’s most valuable companies, the Bay Area is the place to go for anyone looking to make it big in the tech industry. That said, San Francisco has a lot to offer beyond technology thanks to a thriving art and music scene, excellent food and a short drive to several of the country’s most beautiful recreational areas.

Key Facts About San Francisco Tech

  • Number of Tech Workers: 365,500; 13.9% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: Google, Apple, Salesforce, Meta
  • Key Industries: Artificial intelligence, cloud computing, fintech, consumer technology, software
  • Funding Landscape: $50.5 billion in venture capital funding in 2024 (Pitchbook)
  • Notable Investors: Sequoia Capital, Andreessen Horowitz, Bessemer Venture Partners, Greylock Partners, Khosla Ventures, Kleiner Perkins
  • Research Centers and Universities: Stanford University; University of California, Berkeley; University of San Francisco; Santa Clara University; Ames Research Center; Center for AI Safety; California Institute for Regenerative Medicine

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account