×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Data Security

Principal Threat Intelligence Researcher; Unit

Job in Reston, Fairfax County, Virginia, 22090, USA
Listing for: Palo Alto Networks, Inc.
Full Time position
Listed on 2026-05-28
Job specializations:
  • IT/Tech
    Cybersecurity, Data Security
Salary/Wage Range or Industry Benchmark: 162700 - 263175 USD Yearly USD 162700.00 263175.00 YEAR
Job Description & How to Apply Below
Position: Principal Threat Intelligence Researcher (Unit 42)

Job Summary

We are seeking a Principal Threat Intelligence Researcher for Unit 42’s Threat Intelligence Delivery Execution (TIDE) Team. This team plays a critical role in creating timely, relevant, and actionable threat insights to drive business and security outcomes for our customers. We are looking for a high performing, experienced CTI analyst with a strong track record in understanding CTI stakeholder intelligence needs and developing tailored intelligence in line with their security use cases.

Responsibilities
  • Client-facing Briefing
    :
    Deliver fused intelligence insights on a recurring basis to clients across industry verticals focusing on relevant cyber threat activities, trends, and shifts in the cyber threat landscape trends. Custom tailored content should empower defensive actions for clients, providing their threat intelligence and security teams with key observations, insights, and perspective. Content creation will require performing independent research across internal data sets, commercial third party data, and open sources.

    This will also include leveraging existing Unit 42 intelligence publications and working with partners from internal intelligence teams.
  • Client-facing RFI Support
    :
    Provide tailored research and analysis for client-based RFIs to drive business and security outcomes. Leverage the full weight of Palo Alto Network's unique data holdings, ongoing research, cross-company capabilities, and externally sourced information. Assist leadership in creating a scalable solution to service multiple industries and similar stakeholder types. Model research findings into Unit 42’s Threat Intelligence Knowledge Repository (TIKR). Provide recommendations and help implement improvements to service support quality and speed to enhance the effectiveness and differentiation of our threat intelligence services.

    Some requests will require rapid turnaround time, which may include operating outside of normal business hours.
  • Threat Profile Production
    :
    Create cyber threat profiles for clients to identify top cyber threat activities, groups, and trends relevant to a client’s unique business operations then provide tailored defensive recommendations. Work with clients to understand their operational footprint, business objectives, technology and security stacks, and areas of risk exposure. Develop MITRE ATT&CK workflows and heatmaps for top threat groups.
  • Anticipatory Threat Knowledge Creation
    :
    Develop structured intelligence insights tracking adversary trends, motivations, organizational priorities, and historical region and industry targeting patterns. This information will act as a backdrop to support intelligence production response for unfolding cyber events, exploitation trends, and threat actor campaigns. Collaborate with other Unit 42 CTI SMEs in fusion cells to expand research and existing collateral on threat groups.
  • Peer Empowerment
    :
    Act as a resource for colleagues, sharing expertise and best practices to enhance team capabilities. Provide guidance to grow technical and strategic research acumen through personalized or group brown bag sessions.
  • Leverage AI for Analytic Workflows
    :
    Integrate Generative AI, Notebook

    LM, and other artificial intelligence and machine learning solutions across all phases of the intelligence lifecycle to improve analytic workflows. Use and develop new AI solutions to reduce research toil, query existing intelligence holdings, and accelerate report and presentation creation.
Required Qualifications
  • 7 years minimum in the CTI field with experience in threat research, analytic production, and client-facing delivery.
  • Strong knowledge of cyber threat actors, noteworthy attacks, and ability to quickly recognize inflection points, signalling shifts, evolution, or deviation from threat activity baselines or industry norms.
  • Ability to contextualize cyber events, identify how the events fit into a current or historical pattern, the impact on an industry or organization, and tailored defensive recommendations.
  • Experience operating under short fuse deadlines, managing concurrent tasks, and thriving in complex and sometimes ambiguous situations.
  • Strong writing and…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search