Senior Manager, Threat Intelligence

Job not on LinkedIn

October 14

Apply Now

Receive Emails with Similar Jobs

UltraViolet Cyber

WebsiteLinkedInAll Job Openings

Cybersecurity • Security

UltraViolet Cyber is a company that specializes in providing advanced cybersecurity solutions, focused on unifying defensive and offensive security practices. They offer a Security-as-Code platform that continuously monitors for threats across an organization's entire attack surface, integrating both red team (attack) and blue team (defense) activities. Their services include Managed Detection & Response, SOC as a Service, Continuous Penetration Testing, and Continuous Threat Exposure Management. UltraViolet Cyber aims to enhance cyber readiness and resilience by enabling organizations to protect themselves at machine speed, efficiently and effectively.

201 - 500 employees

🔒 Cybersecurity

🔐 Security

📋 Description

• Lead and mentor a team of threat intelligence and detection engineers. • Develop and maintain the organization’s threat intelligence program, ensuring intelligence directly informs detection and response priorities. • Establish and maintain intelligence-sharing partnerships (e.g., ISACs, government agencies, peer organizations). • Define and track KPIs to measure the effectiveness of threat hunting and detection engineering programs. • Conduct proactive threat hunts leveraging intelligence on emerging adversary behaviors (MITRE ATT&CK-aligned). • Develop, test, and tune detections across SIEM, EDR, and cloud security platforms (e.g., Microsoft Sentinel, Splunk, Defender, CrowdStrike). • Collaborate with incident response and SOC teams to validate detections and improve coverage gaps. • Use automation and scripting (e.g., Python, KQL, PowerShell) to enhance hunting and detection efficiency. • Identify, access, collect data and other threat intelligence for dark web sources. • Review cybercrime forums/marketplaces and other platforms to determine their potential as ongoing collection targets.

🎯 Requirements

• 7+ years in cybersecurity with at least 3 years in threat intelligence, threat hunting, or detection engineering roles. • 3+ years of experience with dark web, OSINT tools • Strong understanding of adversary TTPs, MITRE ATT&CK, and intrusion kill chain analysis. • Proficiency with SIEM, EDR, and cloud-native security tools (e.g., Sentinel, Splunk, Defender, Elastic, CrowdStrike). • Hands-on experience scripting in Python, Bash, KQL, PowerShell, or similar languages. • Ability to work with Linux, including command line for analysis of large datasets. • Demonstrated ability to translate intelligence into operational detection and response improvements. • Excellent written and verbal communication skills, including the ability to brief executives on complex technical issues.

🏖️ Benefits

• 401(k), including an employer match of 100% of the first 3% contributed and 50% of the next 2% contributed • Medical, Dental, and Vision insurance (available on the 1st day of the month following your first day of employment) • Group Term Life, Short-Term Disability, and Long-Term Disability • Voluntary Life, Hospital Indemnity, Accident, and/or Critical Illness • Participation in the Discretionary Time Off (DTO) Program • 11 Paid Holidays Annually