Threat Intelligence Manager

Overview

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft's mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers' heterogeneous environments, as well as ensuring the security of our own internal estate.

Security is a core priority for Microsoft, and threat intelligence is fundamental to how we protect customers at global scale. We are seeking a Manager / Leader of Threat Intelligence Security Analysts to lead a U.S.

-based team focused on tracking criminal threat actors and transforming intelligence into insights, recommendations, and protective outcomes that help defend customers, platforms, and services.

In this role, you will lead a high-performing team of analysts responsible for understanding adversary behavior, identifying emerging threats, and delivering actionable intelligence that informs security operations, product strategy, and engineering investments. You will bring an engineering-minded approach to intelligence leadership, using data, tooling, automation, and AI to improve how the team operates and how intelligence is produced, scaled, and operationalized.

A key part of this role is building a hybrid human + agentic operating model. You will define how analysts and AI-powered systems work together to accelerate research, surface insights, improve analytic quality, and increase the impact of the team. You will partner closely with engineering, product, research, and security organizations to convert intelligence into durable customer value.

This role is ideal for a leader with deep threat intelligence expertise, a track record of organizational leadership, strong industry relationships, and the ability to represent Microsoft credibly across the security community.

Responsibilities

* Lead, coach, and grow a U.S.

-based team of Threat Intelligence Security Analysts focused on tracking criminal threat actors, campaigns, infrastructure, and emerging trends.

* Define the vision, strategy, and priorities for the team to deliver high-quality intelligence that drives customer protection and business impact.

* Build and operationalize a hybrid human + agentic intelligence team, applying AI technologies, automation, and workflow innovation to improve scale, speed, and insight generation.

* Foster an engineering-oriented culture that values technical depth, experimentation, continuous improvement, and measurable outcomes.

* Partner across engineering, product, security research, detections, data science, and incident response teams to translate intelligence into protections, investigations, product improvements, and strategic decisions.

* Drive production of clear, actionable intelligence outputs for technical teams, leadership, and external stakeholders, including actor assessments, campaign analysis, strategic reporting, and executive briefings.

* Establish and maintain analytic standards, tradecraft, quality controls, and operating mechanisms for the team.

* Develop trusted relationships across the intelligence community, including industry partners, external organizations, and agencies engaged in tracking criminal threat actors.

* Represent Microsoft through customer engagements, industry forums, and presentations at security conferences and other external events.

* Hire and develop diverse talent, build an inclusive and high-performing team culture, and create an environment where analysts can do their best work.

Qualifications

Minimum Qualifications:

* Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 5+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection.

* OR Master's Degree…