MSS Threat Intelligence Lead

We are seeking a highly skilled and experienced MSS Threat Intelligence Lead who will be responsible for leading the threat intelligence and brand monitoring functions within our Managed Security Services (MSS) offering. This role is critical in providing proactive actionable intelligence to protect client environments and digital assets from emerging cyber threats. The individual will coordinate closely with key stakeholders including SOC teams, MSS Engineering, Service Delivery Managers (SDMs), Incident Response, Legal and Compliance teams to ensure that intelligence operations are aligned with client requirements and overall business objectives.

The role also involves overseeing threat intelligence collection, analysis, and dissemination as well as leading efforts in digital brand protection, threat actor tracking, and the integration of threat intelligence into operational security workflows.

• Develop and drive the threat intelligence vision, roadmap, and operational strategy across MSS services.
  
• Establish processes for proactive threat hunting, intelligence collection, analysis, and dissemination.
  
• Align threat intelligence practices with industry frameworks such as MITRE ATT&CK, NIST, and ISO 27001.
  

• Lead efforts to detect, analyze, and respond to digital threats targeting client brands (e.g., domain spoofing, phishing, impersonation, and social media abuse).
  
• Monitor dark web, surface web, and deep web sources for brand-related threats using threat intelligence and DRP platforms.
  
• Coordinate takedowns and legal escalations for fraudulent domains, fake profiles, and leaked sensitive data.
  

• Identify emerging threats, IOCs, and TTPs targeting key industries and clients.
  
• Analyze intelligence from OSINT, commercial feeds, industry ISACs, and proprietary MSS telemetry.
  
• Correlate threat data with internal incidents and SOC use cases to enhance detection capabilities.
  

• Deliver strategic, operational, and tactical intelligence reports for internal teams and MSS clients.
  
• Create weekly threat landscape updates, actor profiles, sector-specific threat advisories, and executive briefings.
  
• Establish and maintain intelligence dashboards and alerting mechanisms.
  

• Evaluate and optimize threat intelligence and brand protection platforms.
  
• Work with MSS Engineering to automate threat ingestion, enrichment, and correlation within SIEM and SOAR platforms.
  
• Ensure seamless integration of threat intelligence feeds into detection and response workflows.
  

• Identify intelligence gaps, process inefficiencies, and operational risks related to threat intelligence and brand monitoring.
  
• Establish governance for threat intel validation, classification, and dissemination policies.
  

• Support incident response teams with threat context, adversary attribution, and post-incident retrospectives.
  
• Incorporate lessons learned from incidents into threat models and operational procedures.
  
• Continuously improve threat intelligence operations based on client feedback, evolving threats, and internal audits.
  

8 years in threat intelligence, security operations, or digital risk protection with a focus on brand monitoring, threat analysis, and leadership of cyber intelligence functions.
Strong understanding of threat intelligence lifecycle, SIEM, SOAR, dark web monitoring, phishing detection, log analysis, and security frameworks (MITRE ATT&CK, NIST, ISO 27001).

Proven experience managing intelligence-driven initiatives using ITIL, Agile, or PMPaligned methodologies with a track record of cross-functional stakeholder coordination.

Ability to communicate complex threat intelligence concepts clearly to both technical analysts and non-technical executives, including delivering briefings, reports, and threat advisories.

Excellent analytical and investigative skills to identify emerging threats, detect anomalies, and drive proactive mitigation strategies.

Bachelor's degree in computer science, Information Security, or a related field.