Threat Intelligence Analyst

Apply
  • Location:
    RTP, North Carolina, US
  • Alternate Location
    Anywhere in the USA, Brussels
  • Area of Interest
    Security
  • Compensation Range
    91600 USD - 116200 USD
  • Job Type
    Professional
  • Technology Interest
    *None
  • Job Id
    1447142

The application window is expected to close on: October 10, 2025


NOTE: Job posting may be removed earlier if the position is filled or if a sufficient number of applications are received.


The successful applicant will be performing work on US Government classified environments, and therefore, must be a U.S. Person (i.e. U.S. citizen, U.S. national, lawful permanent resident, asylee, or refugee). This position may also perform work that the U.S. government has specified can only be performed by a U.S. Citizen on U.S. soil.


Meet the Team

We are the Threat Intelligence Team within Security, Visibility, and Incident Command (SVIC) at Cisco. Our team is responsible for delivering cyber threat intelligence to internal security teams across the company and the broader threat intelligence community. Our goal is to help protect Cisco, its business units, and increase the understanding of the threat landscape to help improve our security posture and reduce risk.

We are a small agile team with a successful track record demonstrating how threat intelligence can be used across internal security teams to identify, protect, detect, and respond to threats impacting our environment.


Your Impact

  • Collect, process, and analyze data from internal and external sources to produce actionable intelligence products based on requirements from Cisco’s leadership
  • Develop partnerships with security teams across Cisco to provide data-driven insights into existing and emerging threats
  • Create impactful threat intelligence reports that aid prioritization of preventative controls and mitigations to improve Cisco's internal security posture
  • Maintain visibility and understanding of the threat landscape as it relates to adversaries with the highest capability and intent to disrupt Cisco's operations
  • Support response to internal incidents by analyzing intelligence collected during investigations and building a common understanding of threat activities and attribution
  • Drive complex initiatives with key business partners to continuously improve visibility
  • Collaborate across teams for training, development opportunities, and service improvement
  • Capture metrics in direct-support to executive-level briefings (daily, weekly, monthly)
  • Ensure that all documents, workflows and processes remain accurate and up-to-date


Minimum Qualifications

  • 3+ years of experience as a SOC Analyst, Detection Engineer, or Threat Intelligence Analyst
  • 2+ years of experience analyzing indicators and incorporating them into organizational security posture improvements
  • 2+ years using Cybersecurity Frameworks like MITRE ATT&CK, Diamond Model, Cyber Kill Chain, etc. to map and contextualize intelligence and behaviors
  • 2+ years of experience building threat reports for various levels of leadership


Preferred Qualifications

  • 2+ years studying and analyzing threat adversaries and the threat landscape
  • Experience with Atlassian products such as Jira and Confluence
  • Experience with Threat Intelligence Platforms to manage indicators
  • Experience with Intelligence Management Platforms to organize, cluster, and enrich intelligence
  • Experience building actor profiles and attributing activity to them
  • Experience tracking specific adversaries and hunting for their infrastructure
  • Experience with Censys, Shodan, VirusTotal, and other vendor platforms
  • Excellent interpersonal skills and ability to see things through the customer’s eyes
  • Bachelor’s degree in computer science, information security or related field or equivalent work experience


At Cisco, we’re revolutionizing how data and infrastructure connect and protect organizations in the AI era – and beyond. We’ve been innovating fearlessly for 40 years to create solutions that power how humans and technology work together across the physical and digital worlds. These solutions provide customers with unparalleled security, visibility, and insights across the entire digital footprint. Simply put – we power the future.

Fueled by the depth and breadth of our technology, we experiment and create meaningful solutions. Add to that our worldwide network of doers and experts, and you’ll see that the opportunities to grow and build are limitless. We work as a team, collaborating with empathy to make really big things happen on a global scale. Because our solutions are everywhere, our impact is everywhere.

We are Cisco, and our power starts with you. 

Message to applicants applying to work in the U.S. and/or Canada:

When available, the salary range posted for this position reflects the projected hiring range for new hire, full-time salaries in U.S. and/or Canada locations, not including equity or benefits. For non-sales roles the hiring ranges reflect base salary only; employees are also eligible to receive annual bonuses. Hiring ranges for sales positions include base and incentive compensation target. Individual pay is determined by the candidate's hiring location and additional factors, including but not limited to skillset, experience, and relevant education, certifications, or training. Applicants may not be eligible for the full salary range based on their U.S. or Canada hiring location. The recruiter can share more details about compensation for the role in your location during the hiring process.

U.S. employees have access to quality medical, dental and vision insurance, a 401(k) plan with a Cisco matching contribution, short and long-term disability coverage, basic life insurance and numerous wellbeing offerings.

Employees receive up to twelve paid holidays per calendar year, which includes one floating holiday (for non-exempt employees), plus a day off for their birthday. Non-Exempt new hires accrue up to 16 days of vacation time off each year, at a rate of 4.92 hours per pay period. Exempt new hires participate in Cisco’s flexible Vacation Time Off policy, which does not place a defined limit on how much vacation time eligible employees may use, but is subject to availability and some business limitations. All new hires are eligible for Sick Time Off subject to Cisco’s Sick Time Off Policy and will have eighty (80) hours of sick time off provided on their hire date and on January 1st of each year thereafter.  Up to 80 hours of unused sick time will be carried forward from one calendar year to the next such that the maximum number of sick time hours an employee may have available is 160 hours. Employees in Illinois have a unique time off program designed specifically with local requirements in mind. All employees also have access to paid time away to deal with critical or emergency issues. We offer additional paid time to volunteer and give back to the community.

Employees on sales plans earn performance-based incentive pay on top of their base salary, which is split between quota and non-quota components. For quota-based incentive pay, Cisco typically pays as follows:

.75% of incentive target for each 1% of revenue attainment up to 50% of quota;

1.5% of incentive target for each 1% of attainment between 50% and 75%;

1% of incentive target for each 1% of attainment between 75% and 100%; and once performance exceeds 100% attainment, incentive rates are at or above 1% for each 1% of attainment with no cap on incentive compensation.

For non-quota-based sales performance elements such as strategic sales objectives, Cisco may pay up to 125% of target. Cisco sales plans do not have a minimum threshold of performance for sales incentive compensation to be paid.

Share

Apply