What You'll Do
Lead the development and delivery of threat intelligence across multiple client engagements, translating complex data into clear, actionable insights. Analyze evolving threat landscapes and produce detailed reports on threat actors, campaigns, and sector-specific risks. Monitor open, deep, and dark web environments to detect emerging threats and exposures relevant to client operations.
Support incident response efforts by providing timely intelligence that helps interpret attacker behavior and guide mitigation strategies. Collaborate with detection engineering and threat hunting teams to strengthen defensive capabilities using frameworks like MITRE ATT&CK. Contribute to intelligence-driven assessments such as TIBER-EU or TLPT by shaping realistic attack scenarios and delivering comprehensive findings.
Advise clients directly through briefings and consultations, ensuring intelligence is clearly communicated and contextually relevant. Assist in building mature threat intelligence functions by helping design operating models, assess readiness, and implement effective processes. Work closely with internal experts to maintain high standards in reporting, analysis, and methodology.
Requirements
- 2–5 years of professional experience, including 1–3 years focused on cyber threat intelligence or a related cybersecurity field
- Proven ability to support strategic, operational, or tactical intelligence initiatives
- Strong grasp of threat actor tactics, techniques, and procedures (TTPs), intelligence lifecycles, and frameworks such as MITRE ATT&CK
- Experience gathering and analyzing intelligence from open-source, deep, and dark web environments
- Excellent analytical and written communication skills, with a track record of producing structured, high-quality reports
- Ability to work independently on defined tasks and collaboratively on complex, multi-team projects
- Fluent in English; German language proficiency is a plus
- Eligible for NATO security clearance
Benefits
- 10,000€ training budget and 10 dedicated learning days every two years
- Access to expert-led training from professionals who speak at top-tier security conferences
- Support for earning advanced technical certifications (e.g., GSE, GXPN, GREM, GCFA, OSCP)
- Personal coaching for career development, with each employee paired with an internal mentor
- Flexible work model with hybrid office and home working options, including opportunities to work abroad
- Statutory leave plus 5 additional days provided by the company
- Annual off-site events and regular team-building activities
- An agile, entrepreneurial culture that encourages innovation and initiative
