Threat Intelligence Researcher at SecurityScorecard

<p><strong>About SecurityScorecard:</strong></p> <p><span style="font-weight: 400;">SecurityScorecard is the global leader in cybersecurity ratings, with over 12 million companies continuously rated, operating in 64 countries. Founded in 2013 by security and risk experts Dr. Alex Yampolskiy and Sam Kassoumeh and funded by world-class investors, SecurityScorecard’s patented rating technology is used by over 25,000 organizations for self-monitoring, third-party risk management, board reporting, and cyber insurance underwriting; making all organizations more resilient by allowing them to easily find and fix cybersecurity risks across their digital footprint.&nbsp;</span></p> <p><span style="font-weight: 400;">Headquartered in New York City, our culture has been recognized by Inc Magazine as a "Best Workplace,” by Crain’s NY as a "Best Places to Work in NYC," and as one of the 10 hottest SaaS startups in New York for two years in a row. Most recently, SecurityScorecard was named to Fast Company’s annual list of the</span><a href="https://securityscorecard.com/blog/blog-top-innovators-of-the-year/"><span style="font-weight: 400;"> </span><span style="font-weight: 400;">World’s Most Innovative Companies for 2023</span></a><span style="font-weight: 400;"> and to the Achievers 50 Most Engaged Workplaces in 2023 award recognizing “forward-thinking employers for their unwavering commitment to employee engagement.”&nbsp; SecurityScorecard is proud to be funded by world-class investors including Silver Lake Waterman, Moody’s, Sequoia Capital, GV and Riverwood Capital.</span></p> <p><strong>About the Role:</strong></p> <p>You'll be joining SecurityScorecard's threat research team as its intelligence-focused practitioner, working alongside deep technical researchers to produce timely, actionable intelligence for customers, partners, and internal stakeholders. Where the Threat Researcher role is anchored in technical analysis, this role sits at the intersection of research and communication — you'll be tracking threat actors and their infrastructure, producing intelligence reports, and translating complex findings into clear, credible content for a range of audiences.</p> <p>Marketing is currently one of the team's primary stakeholders, and you'll work closely with them on research-driven content and campaigns — but the team's ambition is to become a resource for every division in the company, and you'll be part of building that reputation. Customer briefings, coordinated threat actor takedowns, and participation in industry events are all part of the mandate. Strong written and spoken English is essential, as is the ability to represent the team's work credibly in external settings.</p> <p>This is a role for someone who combines analytical depth with the communication skills to make that work land.</p> <p><strong>Key Responsibilities:&nbsp;</strong></p> <ul> <li>Deep Technical Research and Tracking: Identify, track, and analyze advanced persistent threats (APTs), their TTPs, and their live infrastructure to gain insights into attack vectors, victimology, and attack scale.</li> <li>Intelligence Briefing and Reporting: Produce timely and actionable intelligence reports for customers, press, and partners. Participate in customer briefings, incident mitigation, and coordinated threat actor (TA) takedowns.</li> <li>Detection Engineering: Develop and maintain high-fidelity detection signatures (YARA, Snort, Sigma) to protect customers.</li> <li>Hunting and Monitoring: Query massive datasets (using SQL, Python, or Splunk) to identify anomalies and map out adversary infrastructure. Build workbooks, dashboards, and develop methodologies to improve detections.</li> <li>AI and LLM Automation: Design and leverage AI and LLM automations to support your analysis workload.</li> </ul> <p><strong>Qualifications:</strong></p> <ul> <li>Education: Bachelor's or Master's in Computer Science, Cybersecurity, or a highly technical equivalent.</li> <li>Experience: 3–5 years in a hands-on threat intelligence research role within a prominent industry organization, military, law enforcement, or government.</li> <li>Knowledge: Familiarity with prominent threat actors, APTs, emerging threat vectors, and the wider threat landscape.</li> <li>Technical Skills: Proficiency with large dataset querying and dashboard design using Splunk, SQL, or similar platforms.</li> <li>Mindset: A hacker's curiosity — the ability to look at a data point and see the hidden pattern.</li> <li>Bonus: Experience with open source and commercial attack surface, malware analysis, and network intelligence tools and platforms.</li> <li>Additional Bonus: Native-level reading and writing proficiency in Russian, Mandarin, Korean, or Farsi.</li> </ul> <p><span data-sheets-value="{&quot;1&quot;:2,&quot;2&quot;:&quot;SecurityScorecard is an industry-leading cybersecurity company backed by Google, Sequoia, and Riverwood. Our mission is to make the world a safer place. We measure your and your vendors' cyber-health by assigning a security rating of \&quot;A\&quot; through \&quot;F\&quot; based on outside-in, non-intrusive data. Our Comprehensive security ratings, advanced data analytics, and actionable insights discover Third-Party Vulnerabilities &amp; Security Gaps In Real-Time. \nHeadquartered in NYC with over 200+ employees globally, raised over $110M USD, used by 1,000+ enterprise customers, and rating 1.5 million companies. We have created a new category of enterprise software, and our culture has helped us be recognized as one of the 10 hottest SaaS startups in NY for two years in a row.\nOur vision is to create a new language for companies and their partners to communicate, understand, and improve each other’s security posture.&quot;}" data-sheets-userformat="{&quot;2&quot;:15235,&quot;3&quot;:{&quot;1&quot;:0},&quot;4&quot;:[null,2,16043212],&quot;10&quot;:2,&quot;11&quot;:4,&quot;12&quot;:0,&quot;14&quot;:[null,2,0],&quot;15&quot;:&quot;\&quot;Proxima Nova\&quot;&quot;,&quot;16&quot;:10}"><strong>Benefits:</strong></span><span data-sheets-value="{&quot;1&quot;:2,&quot;2&quot;:&quot;SecurityScorecard is an industry-leading cybersecurity company backed by Google, Sequoia, and Riverwood. Our mission is to make the world a safer place. We measure your and your vendors' cyber-health by assigning a security rating of \&quot;A\&quot; through \&quot;F\&quot; based on outside-in, non-intrusive data. Our Comprehensive security ratings, advanced data analytics, and actionable insights discover Third-Party Vulnerabilities &amp; Security Gaps In Real-Time. \nHeadquartered in NYC with over 200+ employees globally, raised over $110M USD, used by 1,000+ enterprise customers, and rating 1.5 million companies. We have created a new category of enterprise software, and our culture has helped us be recognized as one of the 10 hottest SaaS startups in NY for two years in a row.\nOur vision is to create a new language for companies and their partners to communicate, understand, and improve each other’s security posture.&quot;}" data-sheets-userformat="{&quot;2&quot;:15235,&quot;3&quot;:{&quot;1&quot;:0},&quot;4&quot;:[null,2,16043212],&quot;10&quot;:2,&quot;11&quot;:4,&quot;12&quot;:0,&quot;14&quot;:[null,2,0],&quot;15&quot;:&quot;\&quot;Proxima Nova\&quot;&quot;,&quot;16&quot;:10}"><br><br>Specific to each country, we offer a competitive salary, stock options, Health benefits, and unlimited PTO, parental leave, tuition reimbursements, and much more!</span></p> <p>The estimated total compensation range for this position is $100,000 - $120,000 (base plus bonus). Actual compensation for the position is based on a variety of factors, including, but not limited to affordability, skills, qualifications and experience, and may vary from the range. In addition to base salary, employees may also be eligible for annual performance-based incentive compensation awards and equity, among other company benefits.&nbsp;</p> <p><em><span style="font-weight: 400;">SecurityScorecard is committed to Equal Employment Opportunity and embraces diversity. We believe that our team is strengthened through hiring and retaining employees with diverse backgrounds, skill sets, ideas, and perspectives. We make hiring decisions based on merit and do not discriminate based on race, color, religion, national origin, sex or gender (including pregnancy) gender identity or expression (including transgender status), sexual orientation, age, marital, veteran, disability status or any other protected category in accordance with applicable law.&nbsp;</span></em></p> <p><em><span style="font-weight: 400;">We also consider qualified applicants regardless of criminal histories, in accordance with applicable law. We are committed to providing reasonable accommodations for qualified individuals with disabilities in our job application procedures. If you need assistance or accommodation due to a disability, please contact [email protected].</span></em></p> <p><em><span style="font-weight: 400;">Any information you submit to SecurityScorecard as part of your application will be processed in accordance with the Company’s privacy policy and applicable law.&nbsp;</span></em></p> <p><em><span style="font-weight: 400;">SecurityScorecard does not accept unsolicited resumes from employment agencies.&nbsp; Please note that we do not provide immigration sponsorship for this position. &nbsp; <span style="color: rgb(255, 255, 255);">#LI-DNI</span></span></em></p>