Senior cloud threat intelligence Researcher

A stealth funded cyber startup (backed by Some of the best VC) is looking for a Senior Cloud Threat Intelligence researcher.

In this role you will own end‑to‑end cloud threat research: hunt directly in raw telemetry, build technical and behavioral profiles of adversaries, and help turn findings into product capabilities and client‑facing guidance. You will own a portfolio of cloud‑focused threat actors and keep our knowledge of their tooling and current TTPs, and be expected to develop into a world-leading expert on these adversaries and their operations, working and sharing threat information with peers.

You will work with our security researchers and product team - from ideation onward - to shape requirements, risk models, and the roadmap based on emerging cloud tradecraft.

What you will do

● Hunt and monitor cloud‑focused threat actors using raw telemetry and diverse intelligence sources.

● Ingest and analyze threat information from blogs, reports, conference talks, and other sources.

● Devise new and innovative techniques to surface cloud actor activity and TTPs; implement them as code, queries, and monitoring signatures/scripts.

● Build and maintain actor profiles and TTP catalogs.

● Design and execute lab experiments that emulate cloud and hybrid attack techniques.

● Help define and continuously refine a product‑specific cloud threat model and the telemetry needed to support it.

● Write public reports/blog posts on your findings.

Experience

● 5+ years in Threat intelligence research/analysis - Threat hunting and monitoring with VirusTotal, passive dns, whois data, active and passive internet wide scanning

Qualifications

● Hands‑on experience with major cloud providers (AWS/Azure/GCP)

● Proficiency in scripting like Python

● Experience with data-driven threat analysis using query languages (e.g., SQL) or data analysis tools (e.g., Pandas)

● Demonstrated ability to self-learn and independently drive research.

● Knowledge of networking protocols such as HTTP, DNS and TCP/IP

Advantage

● Incident response and detection engineering, threat hunting and forensics knowledge of cloud platforms, Cloud security research