Threat Intelligence Researcher - 1387240

December 01, 2022 - Fulton MD or Remote

Who You’ll Work With:

Creating leading threat intelligence is the focus of the Cisco Talos Security Intelligence and Research Group (Talos). Talos is comprised of leading threat researchers supported by sophisticated systems. Talos researchers create threat intelligence for Cisco products to protect customers from both known and emerging threats. The team’s expertise spans software development, reverse engineering, vulnerability triage, malware investigation, and intelligence gathering. Talos maintains the official rule sets and communities of Snort.org, ClamAV, SenderBase.org and SpamCop.

Threat Intelligence and Interdiction Team. The Threat Intelligence and Interdiction team is a self-contained threat discovery, analysis, response, and reporting body made up of diverse and specialized security, intelligence, and research skill sets. Threat Intelligence Researchers work to investigate and identify threat actor campaigns and generate actionable intelligence for the Talos Security Group in the form of detection and written analysis. This position also works closely with Cisco Talos’s Incident Response team to deliver up-to-date analysis of the latest threat activity.

Role and Responsibilities:

  • Research, analyze, and undermine threat actor campaigns
  • Generate actionable intelligence in support of incident response objectives
  • Proactively hunt for adversaries on customer networks leveraging a variety of tools and techniques
  • Pivot on indicators-of-compromise through large telemetry sets to uncover related tools, tactics, and procedures
  • Author written analysis on demand in response to a wide range of threat intelligence questions
  • Engineer original approaches for detecting and connecting threat activity
  • Develop innovative solutions for advancing research capability
  • Act as a trusted interface to private and public organizations into Cisco’s Threat Intelligence groups

Minimum Qualifications:

  • Typically, Bachelors + 7 years related experience or Masters + 4 years related experience, or equivalent experience
  • Strong understanding of information systems and communication protocols
  • Strong understanding of information security and the threat landscape
  • Strong deductive reasoning ability
  • Proactive problem solver and highly developed sense of curiosity
  • Ability to work in a dynamic, rapidly moving work environment
  • Excellent verbal and written communications skills

Desired Skills:

  • Detailed understanding of current cyber security threats, attacks, and countermeasures
  • Strong understanding of adversary attack methodologies, techniques, and infrastructure
  • Experience with network and endpoint forensics
  • Experience with threat intelligence research
  • Experience with malicious payload and tool analysis
  • Proficiency in at least one programming language

Why Cisco

At Cisco, each person brings their unique talents to work as a team and make a difference. Yes, our technology changes the way the world works, lives, plays, and learns, but our edge comes from our people. Our People Are The Heart of Cisco.

Cisco is proud to be an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

We see inclusion and diversity as essential to fueling the power of connection. Learn about inclusion and collaboration in action at Cisco. Diversity, Inclusion and Collaboration at Cisco.

Benefits and Perks

We strive to keep our teams happy and healthy. Many roles have the option to be Remote or Hybrid. Cisco provides competitive pay, excellent medical, dental and vision coverage, 401(k) match, 20 days of paid time off plus holidays, support for parents and paid time to volunteer. View the benefits overview. Benefits and Perks - Cisco.

Join us! #WeAreCisco

Cisco Covid-19 Vaccination Requirements

The health and safety of Cisco’s employees, customers, and partners is a top priority. Our goal is to protect and mitigate the spread of COVID-19 infection for strong business resiliency during the pandemic. Therefore, Cisco may require new hires to be fully vaccinated against COVID-19 if the role requires business-related travel, meeting with customers/partners (including visiting third-party sites on behalf of Cisco), attending trade events, and Cisco office entry, unless otherwise prohibited by applicable law, and in countries where COVID-19 vaccination is legally required. The company will consider legally required accommodations/exceptions for medical, religious, and other reasons as per the requirements of the role and in accordance with applicable law. Additional information will be provided to candidates about the requirements and accommodation process at the offer time based on region.


Clicking APPLY will direct you away from TalosIntelligence.com