Cyware delivers an innovative approach to cybersecurity that unifies threat intelligence, automation, threat response, and vulnerability management with data insights gleaned from assets, users, malware, attackers, and vulnerabilities. Cyware’s Cyber Fusion platform integrates SOAR and TIP technology, enabling collaboration across siloed security teams. Cyware is widely deployed by enterprises, government agencies, and MSSPs, and is the leading threat intelligence sharing platform for global ISACs and CERTs.
Your next opportunity starts here!
More on Cyware: (www.cyware.com)Built and designed by SecOps practitioners and cybersecurity leaders, Cyware offers multiple technologies within its Cyber Fusion platform, including advanced threat intelligence solutions (TIP) for large and small security teams, vendor-agnostic security automation (SOAR), and purpose-built security case management. As a result, organizations can increase speed and accuracy while reducing costs and analyst burnout. Cyware's Virtual Cyber Fusion solutions make secure collaboration, information sharing, and enhanced threat visibility a reality for enterprises, sharing communities (ISAC/ISAO), MSSPs, and government agencies of all sizes and needs.
About you:- You are driven, inquisitive, proactive, and energetic
- You have a growth mindset and are committed to delivering results
- You thrive in a fast-paced, collaborative environment
We're hiring a Solutions Architect who sits at the intersection of Product and our Customers — someone who can take Cyware's threat intelligence, automation, and collective-defense platform and rapidly build use cases that prove value: for pre-sales discovery, and in post-sales solutioning. You will be an expert use-case factory, not a playbook support person.
You'll work as closely with our Product and Engineering teams as you do with Customers. You'll translate what the market is asking for into demonstrable architectures and reusable assets, you'll shape the roadmap with field-grounded insight, and you'll enable our Sales Engineers, Product Manager, Technical Delivery Managers, and Customer Success Managers to tell a sharper technical story. Roughly half of your impact will be internal (Product collaboration, use-case development, maintaining use case library, team enablement) and half will be external (POCs use cases, solutioning the right architecture for Customers).
Above all, you understand where security operations are going: AI-assisted and AI-autonomous (agentic) SOC, intelligence-driven automation, and the shift from reactive alert-handling to proactive, machine-speed defense.
Come join an exciting cybersecurity product startup that has closed its Series C funding round!
What You Will Do:- Rapidly build, package, and maintain reusable use cases and reference architectures on the Cyware platform, for threat intelligence operationalization, security automation, agentic/autonomous SOC workflows, and collective defense that can be used across pre-sales demos and post-sales delivery.
- Design and build use cases that simulate real customer environments and prove technical fit.
- Build compelling demos and narratives that clearly communicate the uniqueness of the value proposition to both technical decision-makers and executives.
- Act as a primary voice of the market to Product, translating customer pain points and field signals into product requirements, roadmap input, and enhancement ideas.
- Collaborate with Product and Engineering on emerging capabilities (especially AI/agentic features), pressure-testing them against real use cases before they reach the field.
- Help define and prototype net-new use cases on Cyware's collaboration and threat-sharing applications.
- Enable Sales Engineering, Technical Delivery, and Customer Success teams with reusable technical assets, reference architectures, enablement materials, and best practices.
- Support strategic deals with planning, architecture, and execution; anticipate concerns and offer creative solutions.
- Produce clear solution architecture models and documentation as key project deliverables.
- US Citizenship is a requirement of this position in accordance with 8 U.S.C 1324b(a)(2)(C).
- Bachelor's Degree and 8+ years of progressive experience across development, design, infrastructure, and/or related IT and Security disciplines.
- At least 3 years of direct security solution architecture experience (infrastructure, systems, application, or security solutions).
- Strong knowledge of Cyber Threat Intelligence (CTI), Incident Response, and Vulnerability Management, including frameworks such as MITRE ATT&CK, the Cyber Kill Chain, and the Diamond Model
- Hands-on experience designing and implementing security automation and SOAR workflows for detection, investigation, and response.
- Experience developing automation in Python, including playbooks, REST API integrations, and scripting.
- Familiarity with the broader security ecosystem you'll integrate with SIEM, EDR/XDR, UEBA, CMDB, NAC, and threat-intel enrichment sources (e.g., VirusTotal, Flashpoint, Intel471, Mandiant, Crowdstrike, and OSINT) and how data and actions move between them across cloud and SaaS environments.
- Strong grasp of enterprise network architecture, operating system concepts, and IT security fundamentals.
- Proven track of problem-solving in the cybersecurity domain, leveraging automation, and implementing industry-standard practices.
- Architect scalable solutions using Cyware’s Intel Exchange to streamline the ingestion, normalization, enrichment, and operationalization of multi-source threat data (STIX/TAXII, commercial feeds, OSINT, and ISACs).
- Guide customers on threat modeling and intelligence-driven defense practices, helping them pivot from reactive security postures to proactive threat hunting.
- Establish best practices for data governance, indicator lifecycle management, and false-positive reduction within the customer's intelligence ecosystem.
- Strong understanding of AI-assisted and agentic AI security operations, including autonomous SOC use cases, governance considerations (explainability, guardrails, auditability), and emerging industry trends.
- Design and implement integrations between the Threat Intelligence Platform and enterprise security technologies using APIs, automation, and custom connectors.
- Equally credible whiteboarding with a security engineer and presenting to the head of Client Success, CPO and CTO.
- A builder's instinct: you'd rather show a working use case than describe one.
- Comfortable operating across the Product/field boundary and enabling others, not just executing solo.
- Act as a trusted advisor to enterprise customers, guiding their security leadership and operational teams on modern Cyber Threat Intelligence (CTI) strategies and maturity roadmaps.
- Conduct technical discovery workshops and gap analyses to understand unique customer workflows, pain points, and business objectives.
- Translate complex threat landscapes and technical platform capabilities into actionable, value-driven business outcomes for both technical and executive stakeholders.
- Formulate tailored success plans that ensure customers maximize the return on investment (ROI) and utilization of their Cyber Threat Intelligence Platform (CTIP).
We're a lean team, so your impact will be felt immediately. If this all sounds like a good fit for you, why not join us?
You’ll love working at Cyware because- We foster an exciting and challenging start-up culture.
- We’re not just employees. We’re people. We offer a comprehensive benefits package including time off, paid holidays, retirement plans, insurance coverage and much more.
- We’ll invest in your career. Our company is growing quickly and we will give you the opportunity to do the same. You will have access to a number of professional development opportunities so that you can keep up with the company’s evolving needs.
- We offer competitive compensation packages. We deeply value the talent our team brings to the table and believe that fair and equitable total compensation packages are part of our commitment to everyone who works here.
- We value diversity of people, culture, and ideas.
Cyware is dedicated to hiring a diverse workplace that celebrates an inclusive culture and a sense of belonging. As an equal opportunity employer, we do not discriminate based on race, color, religion, sex (including pregnancy, gender identity, gender expression, and sexual orientation), national origin, age, veteran status, genetic information or disability.
How to ApplyApply right here. You've found the application!
Please note, all official communication regarding this position will only be conducted through email addresses ending in "@cyware.com".Skills Required
- US citizenship is required
- Bachelor's degree
- 8+ years progressive experience across development, design, infrastructure, or related IT and security disciplines
- At least 3 years of direct security solution architecture experience
- Strong knowledge of Cyber Threat Intelligence, Incident Response, and Vulnerability Management (MITRE ATT&CK, Cyber Kill Chain, Diamond Model)
- Hands-on experience designing and implementing security automation and SOAR workflows
- Experience developing automation in Python, including playbooks, REST API integrations, and scripting
- Familiarity integrating with SIEM, EDR/XDR, UEBA, CMDB, NAC, and threat-intel sources (VirusTotal, Flashpoint, Intel471, Mandiant, CrowdStrike, OSINT)
- Strong grasp of enterprise network architecture, operating system concepts, and IT security fundamentals
- Experience architecting scalable solutions for ingestion, normalization, enrichment, and operationalization of threat data (STIX/TAXII, commercial feeds, OSINT, ISACs)
- Understanding of AI-assisted and agentic AI security operations, governance (explainability, guardrails, auditability)
- Ability to design and implement integrations between Threat Intelligence Platform and enterprise security technologies using APIs, automation, and custom connectors
- Strong written and verbal communication; able to whiteboard with engineers and present to executives
- Experience conducting technical discovery workshops, gap analyses, and formulating customer success plans
What We Do
Cyware is a product-based cybersecurity provider. We offer a full-stack of innovative cyber fusion solutions for all-source strategic, tactical, technical and operational threat intelligence sharing & threat response automation. Cyware’s Enterprise Solutions are designed to promote secure collaboration, inculcate cyber resilience, enhance threat visibility and deliver needed control by providing organizations with automated context-rich analysis of threats for proactive response without losing the element of human judgment. Cyware solutions are pushing the boundaries of current security paradigms by utilizing advances in Machine Learning, Artificial Intelligence, Security Automation & Orchestration technologies to empower enterprises in adapting to the evolving threat landscape. Cyware’s clients include Fortune500 financial, healthcare, energy and defense organizations, multinational retail corporations, trade associations, industry groups (including ISACs and ISAOs), non-profits and government agencies.









