The Basics:

Tanium is looking for a Threat Intelligence Analyst that will support the various stages of the cyber threat intelligence lifecycle (direction, collection, processing, analysis, dissemination, feedback) to derive actionable insights tied to the organization’s business objectives, enhance existing capabilities, and minimize security gaps. This role is a multifunctional one, working in conjunction with various teams across different business units, enhancing and enriching the organization’s internal and external services with insights gained during continuous analysis of the cyber threat landscape. The Threat Intelligence Analyst will support the Security Operations team in developing and improving the workflows of a Cyber Threat Intelligence program designed to enrich multi-team functions via the incorporation of threat intelligence data. 

This position is available for remote workers with flexible working hours. When support for incident response is required, this role may require occasional work outside of normal business hours. 

 What you'll do:

• Assist in developing and improving processes and procedures tied to cyber threat intelligence activities, with an emphasis on increasing automation across services 
• Monitor the cyber threat landscape for intelligence relevant to the organization’s evolving business objectives 
• Assist in identifying areas of concern that could impact the organization based on an evolving threat landscape 
• Track and prioritize attacker motivations, tactics, techniques, and procedures as they pertain to the organization, and leverage this data to aid in the performance of adversary simulation or ‘purple teaming’ exercises 
• Participate in cross functional threat modeling exercises to derive proactive and reactive countermeasures 
• Assist in the production of metrics and reports illustrating the impact of threat intelligence 
• Assist in the development of threat briefs to provide, as needed, to security and technology leadership teams 
• Incorporate meaningful threat intelligence insights into security workflows 
• Analyze high volumes of data and distill raw data into actual threat intelligence information 
• Perform intelligence-driven threat hunting exercises and review organizational log telemetry to identify signs of compromise 
• Derive actionable intelligence via the observation and review of historical organizational trends
• Proactively identify security gaps and collaborate with the appropriate stakeholders to develop detections and countermeasures 
• Develop and maintain relationships within the larger threat intelligence community (e.g., ISACs, regional cyber agencies, etc.) 
• Assist in the evaluation and potential onboarding of new threat intelligence tooling 
• Perform the research and cross-team collaboration required to respond to requests for information from various customers/stakeholders 

We’re looking for someone with: 

• Education 
  • Bachelor's Degree in Computer Science, IT or other relevant degree or equivalent work experience
• Experience
  • 3+ years in cybersecurity and incident investigation 
  • 2+ years in threat intelligence, risk analysis, or equivalent role 
  • Familiarity with threat hunting fundamentals  
  • Practical experience processing, analyzing, contextualizing, and making cyber threat intelligence relevant 
  • Propensity for making analytical risk-based decisions and recommendations 
  • Ability to convey complex information in a clear and concise manner both verbally and in written form 
  • Understanding of threat landscape, threat actors, and the internal and external factors that impact organizational security 
  • Familiarity with information security threats, motivations (including geopolitical), tactics, techniques, mitigations, and countermeasures 
  • Experience deriving and implementing detective and protective countermeasures based on intelligence data 
  • Familiarity with security tools and platforms (e.g., SIEMs, vulnerability scanners, and malware analyzers) 
  • Familiarity with IDS/IPS systems, endpoint Antivirus, and EDR products · Familiarity with common frameworks (e.g., Mitre ATT&CK, CIS) 
  • Familiarity with various operating systems (e.g., Linux, Windows, macOS) and cloud hosting providers (e.g., AWS, GCP, Azure, OCI) 

About Tanium 

Tanium offers an endpoint management and security platform built for the world’s most demanding IT environments. Many of the world’s largest and most sophisticated organizations —  including nearly half of the Fortune 100, top retailers and financial institutions, and multiple branches of the U.S. Armed Forces — rely on Tanium to make confident decisions, operate efficiently, and remain resilient against disruption. Tanium has been named to the Forbes Cloud 100 list of “Top 100 Private Companies in Cloud Computing” for five consecutive years and ranks 4th on FORTUNE’s list of the “Best Workplaces in Technology 2020.” 

On a mission. Together. 

At Tanium, we are stewards of a culture that emphasizes the importance of collaboration, respect, and diversity. In our pursuit of revolutionizing the way some of the largest enterprises and governments in the world solve their most difficult IT challenges, we are strengthened by our unique perspectives and by our collective actions.   

We are an organization with stakeholders around the world and it’s imperative that the diversity of our customers and communities is reflected internally in our team members. We strive to create a diverse and inclusive environment where everyone feels they have opportunities to succeed and grow because we know that only together can we do great things. 

Vaccine Mandate (US Only)

​​​​​​​At Tanium, the health and safety of our employees and the community are our top priority. In our effort to control the spread of Covid-19, Tanium requires that all newly hired employees be fully vaccinated for Covid-19 as of their start date, to the extent allowed by applicable law. If you are unable to get the Covid-19 vaccine due to a medical condition, disability, or sincerely held religious belief, Tanium will engage in the interactive process and consider requests for an accommodation.

Taking care of our team members 

Each of our team members has 5 days set aside as volunteer time off (VTO) to contribute to the communities they live in and give back to the causes they care about most.