Senior Security Engineer - Threat Intelligence

Job Description:

Senior Security Engineer - Threat Intelligence

Threat Intelligence Program Development & Management:

• Develop and refine the organization's threat intelligence strategy, aligning with business objectives and risk appetite.

• Establish and maintain threat intelligence collection, analysis, and dissemination processes.

• Manage and optimize threat intelligence platforms (TIPs) and related tools.

Threat Analysis & Reporting:

• Conduct in-depth analysis of threat data from diverse sources (OSINT, commercial feeds, dark web, etc.).

• Identify and track adversary TTPs, campaigns, and emerging threats.

• Produce actionable threat intelligence reports and briefings for various stakeholders.

• Utilize the Mitre ATT&CK framework.

Threat Hunting & Detection:

• Lead proactive threat hunting initiatives based on threat intelligence and anomaly detection.

• Develop and implement custom detection rules for SIEM and other security tools.

• Collaborate with D&R to enhance threat detection and response capabilities.

Vulnerability & Risk Assessment:

• Leverage threat intelligence to prioritize vulnerability remediation efforts.

• Contribute to the development of security policies and procedures.

Incident Response Support:

• Provide critical threat intelligence support during incident response activities.

• Analyze malware samples and conduct forensic investigations as needed.

• Assist in post-incident analysis and lessons learned.

Automation & Tooling:

• Automate threat intelligence workflows and processes using scripting languages (Python, etc.).

• Evaluate and implement new threat intelligence technologies.

• Integrate threat intelligence data with existing security infrastructure.

• Develop custom detection logic and signatures (e.g., YARA, Snort, Suricata, Sigma) based on threat intelligence to enhance SOC monitoring and alerting capabilities.

• Collaborate with engineering teams to automate intelligence ingestion, enrichment, and correlation workflows using Python and relevant APIs.

Collaboration & Communication:

• Collaborate with cross-functional teams, including security operations, engineering, and legal.

• Share threat intelligence with internal and external stakeholders.

• Stay up-to-date on the latest threat landscape and security trends.

Remitly is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.