Director, Threat Research
Listed on 2026-07-08
-
IT/Tech
Cybersecurity
Onwards Together!
Illumio is the leader in ransomware and breach containment, redefining how organizations contain cyberattacks and enable operational resilience. Powered by the Illumio AI Security Graph, our breach containment platform identifies and contains threats across hybrid multi-cloud environments – stopping the spread of attacks before they become disasters. Recognized as a Leader in the Forrester Wave™ for Microsegmentation, Illumio enables Zero Trust, strengthening cyber resilience for the infrastructure, systems, and organizations that keep the world running.
Location:4 on-site days a week in Sunnyvale, CA Headquarters. Our Team's Vision:
At Illumio, we’re pioneering cybersecurity innovation with our Illumio Insights platform, which leverages a dynamic security graph built from network flows, workload inventories, identity data, threat data, and vulnerability data. This graph enables essential functions such as breach risk detection, network segmentation assessment, active breach identification, and intelligent policy recommendations. To accelerate our product evolution and establish market-leading threat intelligence capabilities, we’re building a world‑class, data‑driven Threat Research function.
We are seeking a hands‑on Head of Threat Research to build and lead this new team from the ground up. You will serve as the long‑term subject matter expert and strategic leader for the Illumio Insights product team, translating real‑world threats and large‑scale security datasets into actionable insights that drive product enhancements, detection logic, data enrichment, and customer risk reduction. This role starts with deep individual‑contributor work and quickly expands into team‑building, thought leadership, and external publishing.
This is a rare opportunity to shape a critical new function at the intersection of threat intelligence, product innovation, and security graph analytics.
- Define the team charter, research roadmap, operating model, and success metrics focused on measurable product impact and customer risk reduction.
- Design processes that transform large‑scale security datasets into high‑value insights, including structured feedback loops with Product, Engineering, and Security teams.
- Establish quality standards, documentation practices, and research methodologies tailored to our security graph platform.
- Build and track KPIs that demonstrate tangible improvements in detection efficacy, segmentation posture, and breach containment.
Hands‑On Threat Research and Analysis
- Personally analyze large‑scale security datasets to uncover attacker behaviors, TTPs (Tactics, Techniques, and Procedures), emerging risks, and misconfigurations.
- Leverage the security graph to model attack paths, recommend segmentation strategies that reduce the risk of lateral movement, and identify opportunities for stronger breach containment.
- Map findings to MITRE ATT&CK and real‑world adversary tradecraft; develop and validate hypotheses about evolving threats.
- Create internal threat models and risk frameworks that directly inform detection logic, data enrichment, graph quality, and policy recommendations.
Product, Customer, and Strategic Impact
- Partner closely with Product Management and Engineering to translate research into concrete enhancements: improved detection algorithms, data tagging, analytics, and customer‑facing risk insights.
- Collaborate with Customer Success, Field teams, and executives to communicate emerging threats observed in aggregate data and their implications for segmentation strategy.
- Influence product roadmap decisions and help position Illumio Insights as the industry benchmark for proactive threat‑informed security.
Scale and Lead the Team
- Hire, mentor, and grow a high‑performing Threat Research team over time.
- Evolve the function from internal product‑focused research into broader external thought leadership (publications, conference talks, industry reports).
- Foster a culture of curiosity, rigor, and impact‑driven research.
- 10+ years of experience in threat research, detection engineering, incident response, or threat intelligence, with a proven track record of hands‑on…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).