Sr Manager Threat Intelligence

Job Description

The Senior Manager of Cyber Threat Intelligence will lead and direct a team of managers and analysts in the identification, analysis, and reporting of cyber threat intelligence across multiple or major sections of the organization. This role is responsible for establishing the operational objectives and work plans for the CTI function, ensuring the development and execution of a comprehensive threat intelligence strategy that aligns with overarching organizational goals. The Senior Manager will oversee in-depth technical threat analysis, the creation of actionable intelligence for a broad range of stakeholders, the strategic management of infrastructure and workflows, and the enforcement of standard operating procedures. A critical aspect of this role involves proactive collaboration with multiple cross-functional peers, customers, and vendors to strengthen agreements, build buy-in for intelligence initiatives, and improve the overall effectiveness of security programs. The Senior Manager will also be instrumental in driving the long-term vision and execution for building advanced supporting systems and technologies. The ideal candidate possesses advanced technical expertise in threat analysis and security technologies, coupled with exceptional leadership, communication, and strategic thinking abilities to guide their team and significantly elevate the company's security posture.

Key Responsibilities:

• Manage and provide strategic direction to a team of cyber threat intelligence analysts, fostering their professional growth and development, and ensuring the consistent delivery of high-quality intelligence products through effective oversight and mentorship.
• Establish the operational objectives and work plans for the cyber threat intelligence team(s), aligning individual and team goals with the broader CTI strategy and organizational objectives.
• Develop, document, and drive the execution of the cyber threat intelligence strategy across multiple areas of the organization, ensuring alignment with overarching security and business goals.
• Lead the maturation of the CTI function by proactively identifying, evaluating, and integrating significant advancements in intelligence tradecraft, analytical techniques, automation, AI/ML capabilities, and relevant technologies across teams.
• Establish, track, analyze, and report on key performance indicators (KPIs) and metrics to measure the effectiveness, impact, and value proposition of the CTI program to senior leadership and a diverse range of stakeholders.
• Define, prioritize, and oversee the management of intelligence requirements (PIRs) derived from diverse stakeholder needs and the evolving threat landscape, with a strong focus on threats targeting the media and entertainment sector and adjacent industries.
• Interact with direct reports, multiple cross-functional peers, customers, and vendors to exchange information that strengthens agreements, builds buy-in for intelligence initiatives, and improves the effectiveness of security programs; maintain and enhance relationships with established external partners and vendors.
• Oversee in-depth technical analysis of complex and novel threats (malware, network traffic, vulnerabilities) conducted by the team, providing guidance and expertise as needed.
• Direct the development and maintenance of the organization's threat intelligence infrastructure, custom feeds, and diverse data sources, ensuring scalability and reliability.
• Serve as the organization's primary point of contact and subject matter expert on complex cyber threat intelligence matters, delivering strategic and operational threat briefings, comprehensive written reports (tactical, operational, strategic), and impactful presentations to inform executive leadership, security operations, incident response, risk management decisions, and strategic planning across the organization.
• Develop, implement, and enforce consistent standard operating procedures (SOPs), advanced analytical tradecraft standards, robust data handling protocols, and rigorous quality control mechanisms for all CTI activities across all teams.
• Build and cultivate strong, collaborative relationships with key internal stakeholders across various departments, including Security Operations Center (SOC), Incident Response (IR), Vulnerability Management, and Threat Hunting, ensuring effective information sharing and coordinated security efforts across multiple teams.
• Drive the strategic adoption and integration of threat intelligence technologies and platforms across multiple teams, including envisioning and overseeing the building of necessary supporting systems and integrations to significantly enhance operational efficiency and intelligence capabilities.
• Document and ensure the dissemination of best practices and critical knowledge within the team and to relevant stakeholders across the organization.

Qualifications:
Qualifications

Requirements:

• Minimum 10 years of progressive cybersecurity experience with increasing responsibility in threat hunting, incident response, digital forensics, cyber intelligence, or related fields, including significant experience leading and managing technical teams.
• Advanced expertise in security technologies (EDR, SIEM, cloud security, network security) and a deep understanding of network and host-based security concepts and protocols within complex, multi-faceted enterprise networks.
• Extensive proven experience with threat intelligence platforms, advanced data analysis tools, and scripting/query languages (e.g., Python, SPL, SQL, LogScale), with the ability to guide the team in their effective utilization.
• Comprehensive and strategic understanding of the cyber threat landscape (tactical, operational, strategic), including security and analysis frameworks (MITRE ATT&CK, Kill Chain, Diamond Model, NIST Incident Response, etc.), with the ability to anticipate future trends.
• Demonstrated advanced experience in network and host-based analysis and investigation, with the ability to guide and mentor the team in complex investigations.
• Exceptional analytical and problem-solving skills with superior written and verbal communication, including extensive experience briefing corporate executives and diverse professional audiences.
• Significant demonstrated experience in leading, mentoring, and developing technical teams, as well as developing, implementing, and enforcing standard operating procedures and complex workflows across teams.
• Proven ability to envision and drive the implementation of strategic systems and technologies to support security operations across multiple domains and in developing and executing comprehensive security strategies aligned with overarching organizational goals.
• Ability to be on-call to provide strategic support and guidance during critical incidents and non-traditional hours.
• Highly self-motivated and able to work independently and collaboratively across diverse teams and organizational levels.
• Relevant advanced certifications (e.g., CISSP, CISM, SANS GIAC certifications at the expert level) are highly preferred.

Additional Requirements:

• Fully Remote: This position has been designated as fully remote, meaning that the position is expected to contribute from a non-NBCUniversal worksite, most commonly an employee’s residence.

This position is eligible for company sponsored benefits, including medical, dental and vision insurance, 401(k), paid leave, tuition reimbursement, and a variety of other discounts and perks. Learn more about the benefits offered by NBCUniversal by visiting the Benefits page of the Careers website. Salary range: $160,000 - $210,000 (bonus eligible)

We are accepting applications for this position on an ongoing basis.

Additional Information

As part of our selection process, external candidates may be required to attend an in-person interview with an NBCUniversal employee at one of our locations prior to a hiring decision. NBCUniversal's policy is to provide equal employment opportunities to all applicants and employees without regard to race, color, religion, creed, gender, gender identity or expression, age, national origin or ancestry, citizenship, disability, sexual orientation, marital status, pregnancy, veteran status, membership in the uniformed services, genetic information, or any other basis protected by applicable law.

If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access nbcunicareers.com as a result of your disability. You can request reasonable accommodations by emailing AccessibilitySupport@nbcuni.com.

For LA County and City Residents Only: NBCUniversal will consider for employment qualified applicants with criminal histories, or arrest or conviction records, in a manner consistent with relevant legal requirements, including the City of Los Angeles' Fair Chance Initiative For Hiring Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the California Fair Chance Act, where applicable.