SIXGEN Logo

SIXGEN

Cyber Threat Intelligence Analyst

Posted 4 Hours Ago
Be an Early Applicant
In-Office or Remote
Hiring Remotely in Northern District, VA
100K-155K Annually
Senior level
In-Office or Remote
Hiring Remotely in Northern District, VA
100K-155K Annually
Senior level
Collect, analyze, and disseminate actionable cyber and fraud intelligence from multiple sources, monitor dark web and brand abuse, support SOC/IR/threat hunting, produce operational and executive reports, and leverage AI/automation to improve intelligence workflows and defenses.
The summary above was generated by AI

Job Title: Cyber Threat Intelligence Analyst

Position Summary

The Senior Cyber Threat Intelligence Analyst is responsible for collecting, analyzing, and disseminating actionable intelligence to support enterprise cybersecurity operations, fraud prevention, and risk mitigation. This role proactively identifies emerging cyber threats, fraud campaigns, dark web activity, insider threats, and brand misuse that could impact organizational assets, personnel, or operations.

The ideal candidate possesses extensive experience conducting cyber threat intelligence analysis, monitoring dark web activity, identifying fraud indicators, and producing operational and executive-level intelligence reporting. This individual will collaborate closely with Security Operations, Incident Response, Threat Hunting, Vulnerability Management, and executive leadership to ensure intelligence is integrated into defensive operations and strategic decision-making.

Key Responsibilities

Cyber Threat Intelligence

  • Collect, analyze, correlate, enrich, and disseminate actionable cyber threat intelligence from commercial, open-source, government, and proprietary intelligence sources.
  • Produce timely intelligence products supporting cybersecurity operations, executive leadership, and mission stakeholders.
  • Identify emerging cyber threats, adversary tactics, techniques, and procedures (TTPs), and evaluate their potential impact to the organization.
  • Maintain threat intelligence processes, workflows, and standard operating procedures to support continuous intelligence operations.

Fraud Intelligence & Dark Web Monitoring

  • Monitor dark web forums, marketplaces, messaging platforms, and underground communities for indicators of fraud, credential theft, data leakage, and criminal activity targeting the organization.
  • Identify emerging fraud schemes, financial crime trends, phishing campaigns, and identity-based attacks relevant to federal operations.
  • Analyze criminal infrastructure and threat actor activity to identify risks before they impact organizational assets.
  • Develop intelligence products that help detect, prevent, and mitigate fraud targeting bureau systems, services, and customers.
  • Support fraud reporting and intelligence-sharing processes in accordance with Bureau of the Fiscal Service (BFS) requirements and established reporting mechanisms.

Brand Protection & Threat Monitoring

  • Monitor organizational brands, domains, and digital assets for misuse, impersonation, phishing, counterfeit activity, and unauthorized use.
  • Investigate potential brand abuse incidents and recommend mitigation strategies.
  • Coordinate with appropriate stakeholders to support brand protection activities, including takedown requests for malicious or unauthorized content.
  • Monitor cyber, insider, physical, and environmental threats that could impact enterprise operations.

Operational Intelligence Support

  • Integrate threat intelligence into Security Operations Center (SOC), Incident Response, Threat Hunting, Vulnerability Management, and Security Fusion Center activities.
  • Provide intelligence support during cybersecurity investigations and incident response activities.
  • Develop actionable recommendations that improve detection capabilities and reduce organizational risk.
  • Collaborate with cross-functional teams to improve intelligence-driven security operations.

Artificial Intelligence & Threat Intelligence Automation

  • Leverage Artificial Intelligence (AI) and automation technologies to improve threat intelligence collection, enrichment, prioritization, and analysis.
  • Research emerging AI-enabled threat intelligence platforms and security operations capabilities.
  • Evaluate opportunities to automate intelligence workflows using multi-source threat feeds and advanced analytics.
  • Provide recommendations on integrating AI into cybersecurity operations while supporting responsible and secure implementation practices.

Reporting & Briefings

  • Produce technical intelligence reports, executive summaries, threat assessments, and operational briefings.
  • Communicate complex threat information to technical and non-technical audiences.
  • Develop actionable recommendations based on intelligence findings to improve organizational security posture.
  • Support leadership with strategic intelligence products that inform operational and risk-based decisions.

Required Qualifications

  • Bachelor's degree in Cybersecurity, Intelligence Studies, Computer Science, Information Assurance, Criminal Justice, or a related field.
  • 5+ years of experience in Cyber Threat Intelligence, Security Operations, Fraud Intelligence, Digital Risk Protection, or Cyber Defense.
  • Demonstrated experience conducting dark web investigations and monitoring criminal ecosystems.
  • Strong understanding of cyber-enabled fraud, financial crime, phishing campaigns, account takeover, identity theft, and social engineering tactics.
  • Experience producing actionable cyber threat intelligence for operational security teams and executive leadership.
  • Knowledge of cyber threat frameworks including:
    • MITRE ATT&CK
    • Cyber Kill Chain
    • Diamond Model of Intrusion Analysis
  • Experience with commercial threat intelligence platforms, Digital Risk Protection (DRP) solutions, and open-source intelligence (OSINT).
  • Familiarity with Security Operations Center (SOC) workflows, incident response processes, and threat hunting methodologies.
  • Strong analytical, investigative, and critical thinking skills.
  • Excellent written and verbal communication skills.

Preferred Qualifications

  • GIAC Cyber Threat Intelligence (GCTI)
  • GIAC Open Source Intelligence (GOSI)
  • Certified Information Systems Security Professional (CISSP)
  • Certified Fraud Examiner (CFE)
  • SANS FOR578 (Cyber Threat Intelligence) or equivalent training.
  • Experience supporting Bureau of the Fiscal Service (BFS), Treasury, or other federal civilian agencies.
  • Experience using threat intelligence platforms such as Recorded Future, Anomali, ThreatConnect, Mandiant, Microsoft Defender Threat Intelligence, or similar technologies.
  • Familiarity with AI-enabled threat intelligence platforms, automation tools, and machine learning applications for cybersecurity.

Knowledge, Skills, and Abilities

  • Extensive knowledge of cybercriminal ecosystems, underground marketplaces, dark web communities, and threat actor behaviors.
  • Strong understanding of fraud methodologies, financial cybercrime, digital identity abuse, and brand impersonation techniques.
  • Ability to identify indicators of compromise (IOCs), indicators of attack (IOAs), and emerging fraud trends.
  • Experience correlating intelligence from multiple sources to produce timely, actionable reporting.
  • Ability to communicate intelligence findings effectively to cybersecurity teams, investigators, executives, and mission stakeholders.
  • Strong investigative mindset with the ability to recognize patterns, anticipate adversary behavior, and proactively identify organizational risks.
  • Ability to leverage automation and artificial intelligence to improve intelligence collection, enrichment, and operational effectiveness.

Compensation & Benefits

  • Competitive salary
  • Employer-paid health insurance premiums (medical, dental, vision)
  • Employer-paid short/long term disability insurance and basic life/AD&D insurance
  • 401K with a 4% employer contribution
  • Professional development reimbursement options available (training, certification, education, etc)​
  • Flexible and remote work policies for most positions
  • Paid Time Off (PTO) at a rate of three (3) weeks plus one (1) day per year of service up to four (4) weeks annually
  • 11 paid holidays per calendar year​

At SIXGEN, we are committed to fair and equitable compensation practices. The anticipated salary range for this role is $100,000 - $155,000 per year, depending on experience and qualifications. This range reflects our compensation philosophy, which takes into account various factors including the candidate's relevant experience, education, skills, LCATs rates and position level, and market competitiveness. In addition to base salary, employees may be eligible for other forms of compensation to include our growth incentive program, incentives and benefits. The final salary offer will be determined after a thorough review of the candidate's background and alignment with the role. Please note that this range is subject to change and should be considered as a guideline rather than a definitive figure.

We are committed to fostering an inclusive culture that values diversity in our people, reflecting the communities we serve and our customer base. We strive to attract and retain a diverse talent pool and create an environment where everyone is empowered to be their authentic selves at work.

SIXGEN is an Equal Opportunity Employer. We ensure that all applicants are considered for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, disability, age, marital status, ancestry, projected veteran status, or any other protected group or class.


Similar Jobs

7 Days Ago
Remote
USA
88K-114K Annually
Senior level
88K-114K Annually
Senior level
Cloud • Social Impact • Software
Collect, analyze, and disseminate cyber threat intelligence from multiple sources; monitor threat actors, TTPs, and vulnerabilities; support incident response and alert detection; produce timely, actionable intelligence products and recommendations to improve network defense.
Top Skills: Cyber Kill ChainMitre Att&CkOsintThreat Intelligence Platforms
Internship
Information Technology • Cybersecurity
The Cyber Threat Intelligence Analyst Internship involves learning core cyber threat intelligence principles, participating in threat analysis, and collaborating with the Security Operations Center to understand how intelligence supports security operations.
Top Skills: EdrMitre Att&CkSIEMThreat Intelligence Platforms
21 Minutes Ago
Easy Apply
Remote
USA
Easy Apply
70K-85K Annually
Mid level
70K-85K Annually
Mid level
Enterprise Web • HR Tech • Information Technology • Software
Support and optimize business systems (Salesforce, NetSuite, HubSpot) and integrations, build and maintain dashboards and reports, lead data quality initiatives, troubleshoot system issues, enable employees through documentation and training, and identify automation and process improvements leveraging AI and integration tools.
Top Skills: Ai-Powered ToolsCeligoCRMErpHubspotInformaticaMarketing AutomationNetSuiteSalesforceZapier

What you need to know about the Chicago Tech Scene

With vibrant neighborhoods, great food and more affordable housing than either coast, Chicago might be the most liveable major tech hub. It is the birthplace of modern commodities and futures trading, a national hub for logistics and commerce, and home to the American Medical Association and the American Bar Association. This diverse blend of industry influences has helped Chicago emerge as a major player in verticals like fintech, biotechnology, legal tech, e-commerce and logistics technology. It’s also a major hiring center for tech companies on both coasts.

Key Facts About Chicago Tech

  • Number of Tech Workers: 245,800; 5.2% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: McDonald’s, John Deere, Boeing, Morningstar
  • Key Industries: Artificial intelligence, biotechnology, fintech, software, logistics technology
  • Funding Landscape: $2.5 billion in venture capital funding in 2024 (Pitchbook)
  • Notable Investors: Pritzker Group Venture Capital, Arch Venture Partners, MATH Venture Partners, Jump Capital, Hyde Park Venture Partners
  • Research Centers and Universities: Northwestern University, University of Chicago, University of Illinois Urbana-Champaign, Illinois Institute of Technology, Argonne National Laboratory, Fermi National Accelerator Laboratory

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account