Senior Threat Intelligence Analyst, VP

We are seeking a Senior Threat Intelligence Analyst reporting directly to the Tactical CTI team manager. This role is focused on understanding and anticipating the tactics of advanced persistent threat (APT) actors, particularly as they adopt and weaponize AI and emerging technologies, and translating that understanding into actionable guidance for defensive strategy and architecture.

Operating at the forefront of a rapidly evolving threat landscape, you will lead the analysis and synthesis of threat intelligence to provide deep insight into how sophisticated actors target modern enterprise environments. Your work will emphasize understanding not just what threats are active, but how and why they operate—informing proactive defensive decisions.

You will work closely with external partners, threat intelligence teams, security architects, technical control owners, and security testing functions to ensure adversary behavior and attack life cycles are meaningfully reflected in threat models, secure architecture designs, and advanced defensive considerations. This includes providing expert input to architecture and design discussions to ensure controls are resilient against highly capable and adaptive adversaries.

• Lead collaborative work streams with external partners to identify and understand advanced and emerging threats
• Work day‑to‑day with security architects, platform engineers, and advanced defensive teams to ensure APT tradecraft, attacker behavior, and AI‑enabled threat scenarios are explicitly reflected in threat models and architectural decisions.
• Translate advanced persistent threat actor tactics, techniques, and attack life cycles into concrete architectural risks, defensive assumptions, and design constraints for modern enterprise and cloud environments.
• Collaborate closely with technical control owners to map adversary techniques to real control implementations, identifying gaps or misalignment against advanced and adaptive threats.
• Provide intelligence‑driven input into threat modeling exercises, helping teams identify realistic attack paths, trust boundary weaknesses, and high‑impact failure modes.
• Partner with advanced defensive and detection engineering teams to inform control design, detection strategies, and response patterns based on observed and emerging APT behavior.
• Work with security testing teams (e.g., red team, adversary emulation, assurance functions) to ensure testing scenarios and hypotheses are aligned to current and anticipated APT tactics, including AI‑assisted techniques.
• Act as a trusted intelligence advisor during architecture and design reviews, clearly articulating how design choices influence exposure to sophisticated threat actors.
• Continuously assess how new technologies and platforms—including cloud‑native services, automation, and AI systems—change attacker opportunities and threat modeling assumptions.

• Expertise in advanced persistent threat (APT) actors, including how sophisticated adversaries adapt tactics, techniques, and tooling—especially through the use of AI and emerging technologies.
• Strong ability to translate threat intelligence into threat models, attack paths, and architectural risk scenarios that resonate with engineers and architects.
• Proven experience collaborating closely with security architects, advanced defensive engineers, and technical control owners to influence design and control decisions.
• Solid understanding of security controls and trust boundaries across identity, cloud, network, endpoint, and application layers, and how they fail under real adversary pressure.
• Ability to reason about modern architectures and platforms and assess how design choices change attacker opportunities and defensive assumptions.
• Clear, credible communicator who can operate as a trusted advisor, synthesizing intelligence and technical insight into actionable guidance for engineering and security leadership.

• 5+ years of operational experience in cyber defense, threat intelligence, or security testing
• Active TS/SCI clearance
• Located in the Washington, D.C. area
• Prior experience performing…