Cyber Threat Intelligence, Lead jobs in United States
cer-icon
Apply on Employer Site
company-logo

MITRE · 9 hours ago

Cyber Threat Intelligence, Lead

positionFort Meade, MD
timeFull-time
remoteHybrid
senioritySenior Level, Lead/Staff
money$159K/yr - $238K/yr
date8+ years exp

MITRE is a not-for-profit corporation dedicated to tackling the nation's toughest challenges, particularly in cybersecurity and critical infrastructure. The Lead Cyber Threat Intelligence role involves applying expertise to assist sponsors in securing critical infrastructure, analyzing adversary tactics, and supporting risk assessments to enhance mission assurance.

Cyber SecurityInformation TechnologyNon ProfitQuantum ComputingSaaS
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Apply cyber threat intelligence expertise to assist sponsors or private owner/operators in securing critical infrastructure and performing cyber operations
Guide government sponsors or private owner/operators in building and advancing their cyber threat intelligence capabilities and programs
Track and analyze adversary tactics, techniques, and procedures (TTPs) relevant to industrial control systems (ICS), Operational Technology (OT), and space system OT, impacting critical infrastructure and national security missions
Support cyber threat modeling, risk assessments, and mission impact analyses for critical infrastructure and space systems based on unclassified and classified sources
Fuse multiple intelligence sources to develop products and recommendations for sponsors to support mission assurance and risk-informed decision-making
Monitor and analyze emerging threats, vulnerabilities, and supply chain risks affecting ICS/OT and Space OT technologies
Serve as a subject matter expert (SME) in cyber threat intelligence with a focus on ICS/OT-relevant threats, working closely with OT engineers and domain experts
Brief sponsors and senior leaders on threat trends, risks, and mitigation strategies to enhance mission assurance
Produce and deliver artifacts and strategic briefings that synthesize classified and unclassified reporting into clear, decision-focused insights for senior leaders
Partner with sponsors to identify key intelligence gaps, prioritize collection, and provide feedback to collectors to improve coverage of priority threats
Contribute to thought leadership (e.g., white papers, best practice guides, methodologies) on threat-informed defense, cyber risk assessment, and CTI tradecraft for critical infrastructure

Qualification

Cyber Threat IntelligenceIndustrial Control Systems (ICS)Operational Technology (OT)Adversary TTPsCybersecurity FrameworksRisk AssessmentAnalytical SkillsBriefing SkillsInterpersonal SkillsCollaboration

Required

Typically requires a minimum of 8 years of related experience with a bachelor's degree; or 6 years and a master's degree; or a PhD with 3 years' experience; or equivalent combination of related education and work experience
Degree in Computer Science, Cybersecurity, Information Systems, Intelligence Studies, Strategic Intelligence, or related field
Deep understanding of adversary TTPs, including frameworks and models such as ATT&CK, SPARTA, Diamond Model, and Cyber Kill Chain
Experience with or strong interest in industrial control systems (ICS), Operational Technology (OT), SCADA environments, space system OT, or demonstrated ability to rapidly learn new mission domains while applying cyber threat intelligence expertise
Ability to lead discussions, collaborate across different teams and organizations, and brief technical and non-technical stakeholders
Experience collecting, analyzing, and correlating intelligence from unclassified and classified sources, including government, commercial, and industry feeds
Must be a US citizen with a TS clearance
This position requires a minimum of 50% hybrid on-site at MITRE or government locations

Preferred

Demonstrated experience applying frameworks like ATT&CK to real-world campaigns and mapping adversary TTPs to security controls, risk assessments, or defensive measures
Experience developing and publishing methodologies or best practices for threat-informed defense, cyber risk assessments, or mapping ATT&CK techniques to security controls
Experience designing and implementing CTI knowledge management artifacts (e.g., report templates, playbooks, data models, or visualizations such as attack flows or campaign maps)
Experience providing analytic support to national cyber defense organizations (e.g., CISA, DoD, IC) or allied partners, including campaign tracking and threat trend analysis
Experience conducting and presenting in-depth analysis of APT campaigns or cyber-enabled intellectual property theft for policy-makers or international stakeholders
Demonstrated track record of leading multi-disciplinary analysis efforts or small teams to deliver high-impact products for demanding government sponsors
Significant hands-on cyber experience—particularly in operational technology (OT) or control systems—within one or more mission domains such as space systems, weapons systems, emerging technologies, critical infrastructure sectors, intelligence analysis, policy, mission assurance, technical targeting, or command and control (C2)
Advanced knowledge of ICS/OT architectures (e.g., PLCs, DCS, SCADA) and industrial protocols (e.g., Modbus, DNP3, OPC)
Experience applying structured analytic techniques and intelligence tradecraft in a government or intelligence-community environment
History of building trusted relationships with demanding customers or leaders
Excellent interpersonal skills, judgment, discretion, and tact
Deep technical expertise in one or more areas including modeling and simulation, systems engineering, mission engineering, OT countermeasures, threat emulation, or susceptibility assessment and analysis
Advanced degree in Computer Science, Cybersecurity, Information Systems, Intelligence Studies, or a related field
Candidates with deep cyber threat intelligence and intelligence tradecraft experience who are motivated to grow their ICS/OT expertise are strongly encouraged to apply

Company

MITRE

twittertwittertwitter
Glassdoor2.8
company-logo
The MITRE Corporation is working to solve some of the nation’s biggest challenges in defense, cybersecurity, healthcare, homeland security, the judiciary and transportation.
dateFounded in 1958
location
Bedford, Massachusetts, USA
people-size5001-10000 employees
web-link
http://www.mitre.org

Funding

Current Stage
Late Stage
Total Funding
$2.05M
Key Investors
US Department of EnergyMassachusetts Technology Collaborative
2023-07-27Grant
2023-06-08Grant· $2.05M

Leadership Team

leader-logo
Katie Schroth
Air & Space Forces Center Vice President
linkedin
leader-logo
Kerry Buckley
Vice President
linkedin

Recent News

thefastmode.com
NVIDIA, Cisco Drive AI-RAN Innovation with 6G Wireless Stack
2025-10-31
Nextgov.com
NVIDIA, Booz Allen launch AI-ready wireless stack for 6G
2025-10-29
Security Week
Will AI-SPM Become the Standard Security Layer for Safe AI Adoption?
2025-10-09
Company data provided by crunchbase