Apply on Employer Site

Truist · 16 hours ago

Senior Cyber Threat Intelligence (CTI) Engineer

Atlanta, GA

Full-time

Onsite

Senior Level, Lead/Staff

8+ years exp

Truist Bank is seeking a Senior Cyber Threat Intelligence (CTI) Engineer who will be responsible for designing, engineering, and advancing CTI capabilities to support enterprise cybersecurity objectives. This role requires deep technical expertise and hands-on operational intelligence analysis to deliver actionable intelligence across the full intelligence lifecycle.

BankingFinanceFinancial Services

H1B Sponsor Likely

Responsibilities

Design, implement, and innovate enterprise threat intelligence capabilities, including threat intelligence platforms (TIP), data pipelines, and integrations with security tooling (e.g., SIEM, SOAR, EDR/NDR/XDR)

Engineer automated pipelines for ingesting, enriching, correlating, and distributing threat intelligence across stakeholders and system

Develop and maintain integrations and automation that enable intelligence enrichment and orchestration

Establish data quality standards and evolve lifecycle management for intelligence artifacts

Continuously assess and improve intelligence workflows, tooling, analytic methods, and dissemination practices

Perform analysis of cyber threats, adversaries, campaigns, techniques, and threat models to identify risks relevant to the organization’s attack surface

Apply structured analytic techniques to raw intelligence to assess relevance, confidence, and potential impact

Monitor emerging threats, vulnerabilities, and breach/attack trends to drive proactive defensive actions

Support threat hunting and incident response with intelligence‑driven context, hypotheses, during active investigations

Translate intelligence products into operational outputs such as detection requirements, prioritized response actions, defensive recommendations, and control improvements

Partner with key stakeholders to embed intelligence into day‑to‑day security workflows

Support intelligence‑led prioritization of threats, vulnerabilities, and control/capability gaps based on threat modeling

Serve as a subject‑matter expert for cyber threat intelligence, advising technical teams and stakeholders on threat landscape and intelligence‑informed decisions

Participate/lead in industry-facing intelligence and knowledge sharing

Mentor and guide junior analysts and engineers, promoting consistent analytic standards and engineering best practices

Qualification

Threat intelligence platformsCybersecurity experienceScripting/programmingCloud environments (Azure/AWS)Data pipelinesIncident responseProfessional certificationsMentoringCollaboration

Required

Bachelor's degree and eight years of experience in systems engineering or administration or an equivalent combination of education and work experience

Deep specialized and/or broad functional knowledge in applied enterprise information security technologies including but not limited to firewalls, intrusion detection/prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security

Previous experience in leading complex IT projects

Preferred

Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or a related technical field, or equivalent practical experience

Advanced scripting and/or programming experience used to automate intelligence processing and integration

Significant experience in cybersecurity with demonstrated progression into advanced threat intelligence engineering and operational analysis responsibilities

Proven ability to design and operate threat intelligence platforms, automation workflows, and intelligence data pipelines in complex enterprise environments

Engineering and automation in cloud environments (Azure/AWS), TIP (e.g. OpenCTI), tuning commercial threat intelligence tools and feeds

Strong background in adversarial capability‑focused analysis, including mapping observed activity to techniques, tactics

Demonstrated experience integrating intelligence into security operations, incident response, and detection processes

Experience operating in financial services sector/highly regulated environments where intelligence capabilities support risk management and regulatory expectations

Professional certifications (AWS DevOps, Azure Engineer) or equivalent experience demonstrating engineering expertise

Professional certifications (GCIH, GMON, GCTI, GSEC) or equivalent experience demonstrating cybersecurity and intelligence expertise

Benefits

Medical

Dental

Vision

Life insurance

Disability

Accidental death and dismemberment

Tax-preferred savings accounts

401k plan

No less than 10 days of vacation

10 sick days

Paid holidays

Defined benefit pension plan

Restricted stock units

Deferred compensation plan

Company

Truist

Glassdoor3.3

Truist is the sixth-largest commercial bank in the U.S.

Founded in 2019

Charlotte, North Carolina, USA

10001+ employees

https://www.truist.com

H1B Sponsorship

Truist has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (313)

2024 (247)

2023 (288)

2022 (275)

2021 (278)

2020 (270)

Funding

Current Stage

Late Stage

Total Funding

unknown

2021-01-01Seed

Leadership Team

Michael Maguire

Chief Financial Officer

James Cordovana

SVP of Cloud Security Enterprise Architect

Recent News

PR Newswire

Truist announces new Head of Structured Credit

2026-01-16

Bizjournals.com Feed (2025-11-12 15:43:17)

Truist Championship at Quail Hollow lands Charlotte auto giant as sponsor

2026-01-15

Pulse 2.0

Faropoint Secures $600 Million Acquisition Credit Facility For Industrial Value Fund IV

2026-01-09

Company data provided by crunchbase