Threat Intelligence Engineer

📋 Description

• • TENEX.AI is at the forefront of revolutionizing cybersecurity, operating as an AI-native, automation-first Managed Detection and Response (MDR) provider. We empower organizations by acting as a force multiplier for their security teams, enhancing their defense capabilities through sophisticated threat detection, swift incident response, and unwavering continuous protection. Our foundation is built upon a team of seasoned industry experts with profound experience in cybersecurity, automation, and the strategic application of AI-driven solutions. As a rapidly expanding startup, we are proudly backed by influential industry leaders and a top-tier investor, Andreessen Horowitz. This is a unique opportunity to join us at the ground floor, where your contributions will significantly shape our culture and trajectory. We are a lean, yet robustly funded team that has recently secured substantial investment, presenting a low-risk, high-reward environment for exceptional talent.
• • As a Threat Intelligence Engineer at TENEX.AI, you will be a critical component of our expanding cybersecurity division. Your primary focus will be to bolster our threat intelligence capabilities by diligently collecting, meticulously analyzing, and comprehensively reporting on emerging threats. This role is pivotal in enhancing our overall security posture and directly contributes to the development and refinement of our nascent threat intelligence program. You will collaborate extensively with various security functions across the organization, proactively identifying and assisting in the mitigation of potential risks and cyber threats.
• • Your responsibilities will encompass a broad spectrum of threat intelligence activities. You will be tasked with the proactive research, identification, and collection of vital threat intelligence data from a diverse array of sources. This includes leveraging open-source intelligence (OSINT), subscribing to commercial threat feeds, and analyzing internal security data to uncover critical insights. The role demands a strong understanding of core cybersecurity principles, including network protocols, operating systems, security architectures, and common attack vectors. A foundational knowledge of basic malware analysis concepts is also essential.
• • A significant aspect of your role will involve the analysis and correlation of raw threat data. You will meticulously examine this data to discern potential patterns, trends, and connections, thereby translating complex information into actionable intelligence. This analysis will directly support the correlation of identified threat intelligence with internal security events and known vulnerabilities within our client environments. Your efforts will focus on transforming raw data into concrete technical indicators of compromise (IOCs) and contributing to the precise identification of adversary tactics, techniques, and procedures (TTPs).
• • You will play a key role in reporting and disseminating your findings. This involves drafting clear, concise, and impactful threat intelligence reports, executive briefings, and urgent alerts tailored for our internal security teams, including Security Operations (SecOps) and Incident Response (IR). Effective communication of complex technical information to various audiences will be paramount.
• • Tracking and maintaining up-to-date information on threat actors is another core responsibility. You will assist in documenting and understanding their motivations, evolving capabilities, and their preferred TTPs. This intelligence will be crucial for proactive defense strategies and informed incident response.
• • Supporting the development of technical indicators of attack (IOAs) and indicators of compromise (IOCs) based on observed adversary behaviors will be a key contribution. You will help integrate these indicators into our existing security tools and platforms, enhancing our detection and prevention capabilities.
• • You will also monitor and analyze vulnerability disclosures and exploit trends, providing initial insights into potential risks and their implications for our clients and internal systems. Staying abreast of the latest cybersecurity threats, vulnerabilities, and industry best practices is a continuous requirement. You will actively share your knowledge and findings with the security operations and detection engineering teams, fostering a culture of continuous learning and improvement.
• • Building and maintaining strong relationships with internal stakeholders will be essential. You will assist in preparing regular threat landscape updates and technical briefings for various technical teams, ensuring alignment and informed decision-making across the organization. This role offers a unique chance to work with cutting-edge AI-driven cybersecurity technologies and Google SecOps solutions, collaborating with a talented and innovative team dedicated to advancing security operations. We foster a culture of growth and development, providing ample opportunities to expand your expertise in AI, cybersecurity, and emerging technologies.