×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Director, Threat Intelligence Research

Job in New York, New York County, New York, 10261, USA
Listing for: Arctic Wolf Networks, Inc.
Full Time position
Listed on 2026-06-01
Job specializations:
  • IT/Tech
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 100000 - 125000 USD Yearly USD 100000.00 125000.00 YEAR
Job Description & How to Apply Below
Location: New York

At Arctic Wolf, you won’t just watch the cybersecurity industry evolve – you'll help lead the change. Our global Pack is made up of people who thrive on solving hard problems, moving fast, and building technology that protects organizations around the world. We are proud to be recognized by Forbes, CNBC, Fortune, CRN, Bartner Peer Insights and IDC Market Scape – but what matters most is the work behind it: delivering real outcomes for customers through award‑winning innovation like our Aurora Platform.

About

the Role

This senior leadership role owns the strategy and execution of Cyber Threat Intelligence (CTI) at Arctic Wolf, an AI‑native security operations company. The mission is singular: anticipate what will hurt our customers, and translate that foresight into prioritized, contextual intelligence that directly drives detection engineering, threat operations, and product outcomes.

Job Scope

Owns the vision and execution of Arctic Wolf’s Cyber Threat Intelligence function. Directs multiple intelligence teams, defines collection and analytic priorities tied to customer risk, and is accountable for the speed, relevance, and downstream impact of intelligence on detection engineering, threat operations, and product.

Key Responsibilities
  • Drive detection engineering through intelligence‑led collection and prioritization, ensuring every campaign, TTP, and threat actor tracked translates into a ranked detection backlog tied to customer risk.
  • Anticipate what will hurt customers: define collection priorities, PIRs, and coverage goals grounded in Arctic Wolf’s customer base, sectors, attack surface, and adversary landscape.
  • Lead the rapid‑response function for high‑severity events (zero‑days, mass exploitation, breach disclosures, geopolitically driven campaigns), coordinating cross‑functional response and public communications.
  • Partner with Data Science, Threat Operations, Detection Engineering, Product Management, and Engineering to productize intelligence, turning research into customer‑facing capabilities, signals, and content.
  • Build an agentic‑first operating model: codify intelligence workflows as agentic systems, evaluate and adopt frontier AI tooling, and lead the team’s transformation into AI‑native analysts.
  • Set the internal CTI frameworks (PIRs, ATT&CK alignment, attribution discipline, confidence and probability language, intel‑to‑detection pipeline) used across the company.
Expert Positioning Goal

Establish Arctic Wolf as a recognized authority in threat research through rapid‑response publications, blogs, podcasts, and original research reports. Engage with PR, Communications, and Marketing to ensure timely, accurate, and high‑impact external messaging during major incidents and disclosures, and to amplify research that defines the company’s voice in the market. Speak at top‑tier industry and government forums (e.g., RSA, Black Hat, FIRST, SANS Summits, FS‑ISAC, Infra Gard, ISAC and government exchanges) and represent Arctic Wolf in public‑private partnerships.

Brief customers, executives, and boards on the threats most relevant to their environment, sector, and risk profile.

Knowledge & Experience

Demonstrated leadership of a regional or global CTI function with direct, measurable impact on detection engineering, threat operations, or product outcomes – ideally within an MDR, MSSP, EDR/XDR, or major incident response practice. Expertise in threat actor attribution, campaign tracking, TTP analysis, and translating intelligence into ranked detection priorities and customer‑relevant guidance. Hands‑on track record of operating in agentic and AI‑native workflows: building, evaluating, or leading teams that use LLM agents, retrieval pipelines, and automation as a primary mode of work.

Proven ability to partner with Data Science, Detection Engineering, Threat Operations, and Product Management to productize intelligence capabilities and ship customer‑facing outcomes. Experience leading rapid‑response programs and serving as a public‑facing voice during major incidents: blogs, briefings, podcasts, conference keynotes, and earned media engagement with PR and Communications. Experience engaging with…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search