About Cyware

Cyware delivers an innovative approach to cybersecurity that unifies threat intelligence, automation, threat response, and vulnerability management with data insights gleaned from assets, users, malware, attackers, and vulnerabilities. Cyware’s Cyber Fusion platform integrates SOAR and TIP technology, enabling collaboration across siloed security teams. Cyware is widely deployed by enterprises, government agencies, and MSSPs, and is the leading threat intelligence sharing platform for global ISACs and CERTs.

Your next opportunity starts here!

More on Cyware: (www.cyware.com)

Built and designed by SecOps practitioners and cybersecurity leaders, Cyware offers multiple technologies within its Cyber Fusion platform, including advanced threat intelligence solutions (TIP) for large and small security teams, vendor-agnostic security automation (SOAR), and purpose-built security case management. As a result, organizations can increase speed and accuracy while reducing costs and analyst burnout. Cyware's Virtual Cyber Fusion solutions make secure collaboration, information sharing, and enhanced threat visibility a reality for enterprises, sharing communities (ISAC/ISAO), MSSPs, and government agencies of all sizes and needs.

About you:

You are driven, inquisitive, proactive, and energetic
You have a growth mindset and are committed to delivering results
You thrive in a fast-paced, collaborative environment

Why We Are Hiring:

The Threat Intelligence Integration Specialist is responsible for driving product designs, delivering client demos, coordinating and conducting product briefings and webinars, working with technology partners on common use cases and integrations, serving on multiple MITRE and industry alliance committees, fielding inquiries, interacting and collaborating with other industry experts in knowledge sharing groups and initiatives, and innovating to improve processes and deliverables.

Come join an exciting cybersecurity product startup that just closed Series C funding round!

What You Will Do:

Collect, process, catalog, and document threat information using a multi-source approach and various technical and human means
Regularly interact with various commercial threat intel feed and malware sandbox partners for integration with Cyware products
Work with Technical Alliance Partnership to establish new value and relationships to build and improve integrations
Work with the Product team as a subject matter expert for cyber threat intelligence mapping and integration into standard formats such as STIX/TAXII
Provide Cyber Threat Intelligence and related integration knowledge to internal stakeholders.
Critically analyze threat intelligence feeds and help internal teams for better integration
Knowledgeable in threat hunting tools and capabilities
Work with the product team for providing any expert advice on new features for Cyware's threat intel products
Work with the research team and external partners for threat intelligence-related projects when required.
Establish and maintain a repository of a threat intelligence feed providers and enrichment providers
Work effectively with all teams that operate across numerous geographies
Quickly obtain knowledge of our current existing process, and identify success factors, strengths, weaknesses, and opportunities.
Demonstrate analytics and provide intel briefing to Cyware executive leadership
Provide advisory on all Threat Intel related activities

Who You Are

US Citizenship is a requirement of this position in accordance with 8 U.S.C 1324b(a)(2)(C)
5+ years of work experience as a Threat Intel Analyst/Specialist with relevant hands-on experience with large-scale enterprise cybersecurity products.
The candidate should have experience with the management of information security tools such as Threat Intel Platform, Threat Intel Feeds, etc.
Sound knowledge of STIX / TAXII, MITRE ATT&CK framework and related use cases
Good analytical & development skills (Python development skills would be preferred)
Knowledge of handling the IOC, TTP and Threat actors in conjunction with SOC/Incident Response and Threat Hunting operations
The candidate must have experience working with large threat intel feeds like Crowdstrike, Mandiant, Recorded Future, Flashpoint, etc.
Bachelor's degree in Computer Science, Computer Engineering or other similar domains
Experience in conducting product demos and webinars for customers
Good understanding of designing and implementing security automation
Good understanding of SOC / Security Management Workflows in enterprise environments
Knowledge of current hacking techniques, vulnerability disclosures, data breach incidents, and security analysis techniques
Ability to translate business risks to cyber risks and corresponding direction for intelligence collection activities and advising clients on threat mitigation strategies
Ability to translate technical information for diverse audiences including C-suite and technical management team members
Fluent English language skills (spoken and written)
Relevant Technical Security Certifications (GIAC, CISSP, SSCP, EC-Council, Offensive Security, etc.) is a plus
An individual who can manage projects and ensure task deadlines are met
Demonstrated ability to work successfully with colleagues across different time zones and geographies

We're a lean team, so your impact will be felt immediately. If this all sounds like a good fit for you, why not join us?

You’ll love working at Cyware because

We foster an exciting and challenging start-up culture.
We’re not just employees. We’re people. We offer a comprehensive benefits package including time off, paid holidays, retirement plans, insurance coverage and much more.
We’ll invest in your career. Our company is growing quickly and we will give you the opportunity to do the same. You will have access to a number of professional development opportunities so that you can keep up with the company’s evolving needs.
We offer competitive compensation packages. We deeply value the talent our team brings to the table and believe that fair and equitable total compensation packages are part of our commitment to everyone who works here.
We value diversity of people, culture, and ideas.

EEO Statement:

Cyware is dedicated to hiring a diverse workplace that celebrates an inclusive culture and a sense of belonging. As an equal opportunity employer, we do not discriminate based on race, color, religion, sex (including pregnancy, gender identity, gender expression, and sexual orientation), national origin, age, veteran status, genetic information or disability.

How to Apply

Apply right here. You've found the application!

Apply for this Job

* Required

First Name *

Last Name *

Email *

Phone *

Resume/CV *

Dropbox Google Drive

(File types: pdf, doc, docx, txt, rtf)

Cover Letter

Dropbox Google Drive

(File types: pdf, doc, docx, txt, rtf)

US Citizenship is a requirement of this position in accordance with 8 U.S.C 1324b(a)(2)(C). Do you meet this requirement? *

Do you reside in either the United States or Canada? *

Have you worked with threat feed providers such as FireEye, Crowdstrike, and Mandiant? *

Do you have experience with STIX/TAXII? *

Do you have experience with data mapping of threat feeds? *

Please briefly describe your experience with doing data mapping of threat feeds and troubleshooting connectors.

Our system has flagged this application as potentially being associated with bot traffic. Please turn off any VPNs, clear your browser cache and cookies, or try submitting your application in a different browser. If this issue persists, please reach out to our support team via our help center.

Please complete the reCAPTCHA above.

Threat Intel Integration Specialist (REMOTE)