Cyber Threat Intelligence Analyst
Trm-Labs
Build a Safer World. TRM Labs provides AI-powered intelligence solutions that help public and private sector agencies investigate and disrupt crime. TRM's platforms enable investigators to trace illicit activity, build cases, and construct operating pictures of threat networks. Leading agencies and businesses worldwide rely on TRM to make the world safer and more secure. About the role: As a Cyber Threat Intelligence Analyst , you will conduct ad hoc investigations, time‑sensitive blockchain analysis for our partners, and contribute to investigative methods and workflows that help TRM scale rapidly and effectively. You will collaborate closely with blockchain intelligence experts, engineers, and data scientists to deliver high‑confidence analytical support to TRM’s partners and internal teams. The impact you will have: Produce finished cyber threat intelligence, including actor profiles, campaign reports, IOC packages, infrastructure attributions, and evidence‑ready analytical outputs. Act as an analyst across multiple active actors and campaigns at once, helping improve quality, share tradecraft, and informally support other analysts through strong analytical execution. Assist in complex investigations from seed indicators such as domains, IPs, hashes, aliases, or wallets through to attributed actors, clusters, or campaign pictures. Correlate technical indicators with OSINT, identity signals, infrastructure patterns, and financial‑rail activity to build a fuller understanding of adversary behavior. Triage large indicator sets, cluster infrastructure, and turn fragmented signals into clear, defensible findings that stakeholders can act on immediately. Support incident responders, threat hunters, investigators, and partner‑facing teams with timely, high‑confidence intelligence products and briefings. Help evaluate new analytical tooling by pressure‑testing it on real workflows and identifying where it meaningfully reduces analyst effort or improves output quality. Contribute to stronger investigation workflows, analytic standards, and repeatable methods that improve analyst throughput without sacrificing rigor. What we're looking for: 3+ years of experience in cyber threat intelligence, intelligence analysis, incident‑driven investigations, or a closely related analytical field. Demonstrated experience producing finished intelligence products such as actor profiles, campaign reports, attribution assessments, or infrastructure mapping. Deep familiarity with cyber investigations, infrastructure attribution, campaign analysis, and actor profiling. Strong OSINT instincts and the ability to resolve identities, aliases, and behavior across fragmented sources. The ability to connect technical findings to financial infrastructure, including wallets, laundering paths, sanctions exposure, or identity‑linked leads when relevant to the investigation. Excellent judgment about analytical confidence, evidentiary strength, and what can or cannot be defended in a report, referral, or operational setting. A track record of independently driving complex investigations, improving workflows, and elevating the quality of analytical work around you. Excellent written and verbal communication skills, with the ability to package findings for technical and non‑technical audiences alike. Comfort operating in a fast‑paced environment where priorities can change quickly and ambiguity is normal. AI fluency is required. AI tools should be a meaningful part of your research, synthesis, and workflow acceleration toolkit, with strong human quality control over the resulting output. About the Team: TRM's intelligence and investigations work combines national‑security‑grade tradecraft with deep analytical workflows across cyber, OSINT, and blockchain‑enabled threat activity. This role sits at the intersection of intelligence production, investigations, and product‑informed tradecraft, helping ensure TRM’s analytical capabilities remain operationally relevant, scalable, and high‑quality across multiple use cases and stakeholders. The team is best suited for someone who can independently drive complex analytical work, collaborate effectively across functions, and take a long‑term, intentional approach to improving how investigations are done across the broader organization. Distributed team with an async‑first approach via Slack and Notion, plus structured syncs for alignment. High autonomy, high standards, low bureaucracy — work directly with analysts, engineers, and customers who depend on your output. Team Operating Rhythms: Weekly team syncs to align targeting priorities and review disruption opportunities. Daily async standups via Slack on active work, returns, and target packages in flight. Primary time zone overlap: US Eastern / Central. All output documented in Notion and TRM’s investigative tools. Surge availability expected during time‑sensitive disruption windows. Life at TRM We are building a safer world. That promise shows up in how we work every day. TRM moves quickly. We are a high velocity, high ownership team that expects clarity, follow‑through, and impact. People who thrive here are energized by hard problems, experimentation, and continuous feedback. If something takes months elsewhere, it will ship here in days. Our work sits at the intersection of AI, national security, and fighting crime. The problems are complex, the stakes are real, and the environment evolves quickly. The pace and intensity of the work reflect the importance of the mission. At TRM, you should expect: Priorities and targets to change quickly as we experiment and iterate. Work that often requires operating with a high degree of ambiguity. A high level of personal ownership and accountability. Close collaboration across teams and functions. Frequent, high‑touch communication. Creative problem solving and out‑of‑the‑box thinking. A pace that rewards urgency, adaptability, and outcomes. This environment is energizing for people who enjoy building, solving hard problems, and making progress in situations that are not always fully defined. It also requires comfort navigating ambiguity, adjusting course as new information emerges, and maintaining focus and positivity in a fast‑moving and intense environment. We also recognize that this style of operating is not for everyone. If you are primarily optimizing for predictability or a consistently balanced workload, we encourage you to use the interview process to pressure test whether this environment is truly the right fit. We want teammates who thrive here, not just survive here. At the same time, many people find this work deeply rewarding. If you are excited by meaningful problems, motivated by ambitious goals, and energized by working alongside mission‑driven colleagues, there is a good chance you will find TRM to be an exceptional place to grow and contribute. AI Fluency at TRM AI fluency is a baseline expectation at TRM. We believe AI meaningfully changes how top performers operate. We expect every team member to use AI to accelerate and reimagine their craft, not just automate surface tasks. At TRM, AI fluency means you are among the top 10 percent of operators in your function in how you apply AI to: Accelerate repeatable workflows. Structure and solve problems. Improve output quality. Increase speed and leverage. You will be evaluated on applied AI fluency during the interview process. Leadership Principles We hire and grow against three leadership principles. They’re the standards for how we operate, treat each other, and make decisions. Impact‑Oriented Trailblazer: We put customers first and move with speed, focus, and adaptability. We treat every plan like an experiment – test, ship, measure, and iterate quickly. Master Craftsperson: We care deeply about our craft. We balance speed with high standards, own outcomes end‑to‑end, and invest in getting better everyday. Inspiring Colleague: We add clarity and energy, not noise. We bring humility, candor, and a one‑team mindset — giving and receiving feedback to make the team stronger. Join our Mission At TRM we care deeply about our craft. We are looking for individuals who want their work to matter, who experiment with speed and rigor, and who take pride in building a safer world for billions of people. If you’re excited by TRM’s mission but don’t check every box, we encourage you to apply — we hire for slope, judgment, and the will to learn fast. TRM is a Series C company with $220M in total funding, backed by Blockchain Capital, Goldman Sachs, Bessemer, Y Combinator, Thoma Bravo, and others. Headquartered in San Francisco, TRM operates as a distributed‑first company with hubs in Los Angeles, San Francisco, New York, Washington D.C., London, and Singapore. #J-18808-Ljbffr
$230k - $290k
A technology company based in San Francisco is seeking a Technical Cyber Threat Investigator to safeguard AI systems from cyber threats. As part of the Threat Intelligence team, you will investigate misuse, develop detection techniques, and engage with external partners...Cyber- ...Trinnex in San Francisco is seeking a Senior Cyber Security Analyst to secure software development lifecycles for water utilities. This role involves monitoring systems for security threats and leading incident response efforts. The ideal candidate will have 6+ years...Cyber
- ...Intelligence Analyst Contact Government Services is hiring an Intelligence Analyst ready to be a member of a dynamic and fast paced intel... ...program for a federal agency supporting the US Government's threat watchlisting and screening mission. As an Intelligence Analyst...SuggestedRemote workFlexible hours
$169.7k - $217.5k
...improve our readiness to handle security incidents, and strengthen threat detection, response, and data protection across cloud and on-... ...security events, and overseeing sensitive investigations related to cyber activities ~ Bachelor's degree in Computer Science,...CyberLocal area- ...Vice President, Artificial Intelligence About the Company Top provider of information... ...Vulnerability Management Analytics Cyber Security Network Security Security... ...of the cybersecurity domain, including threat detection, vulnerability management, and...Cyber
- ...Mercor is seeking a Cybersecurity Expert to remotely evaluate AI-generated outputs related to threat analysis and security architecture. The ideal candidate will have 3+ years in cybersecurity and a strong analytical background. You will review resilience to threats...Hourly payContract workRemote work
- ...capabilities, including agentless cloud posture discovery, real-time threat protection, and integrated API security. From misconfigurations... ...). Experience in MySQL. Bachelor's degree in Engineering / Cyber Security, or an equivalent qualification. Experience with Cloud...Cyber
$158k - $215k
...Program Manager (Labs) Do you want to help make the world safe from cyber attack? At Corelight, we believe that the best approach to... ...these insights to speed incident response and proactively hunt for threats. Corelight Labs is the heartbeat of our innovation, where open‑...Cyber$190k - $225k
...Security Engineering Builder" and not Security Analysts, Operations, someone who only build... ...Bachelor or Masters in Computer Science, Cyber Security or similar roles. ~ Strong software... ...Experience with detection engineering, threat hunting, adversary simulation, and...Cyber- ...safeguarding our applications, infrastructure, and data from threats and vulnerabilities. You will work closely with development, DevOps... ...threat modeling to ensure our systems remain resilient against cyber threats. Your expertise will help build and maintain a...CyberTemporary workWorldwide
$80k - $110k
...GPT, DALL-E, Stable Diffusion implementations) • Create technical documentation including AI system security architecture reviews, threat models specific to ML pipelines, compliance mappings, and remediation roadmaps aligned with both traditional security standards (NIST...CyberPart timeFlexible hours$90k - $95k
...Overview An Analyst on Control Risks' Online Threat Intelligence (OTI) team will: Conduct and lead operational delivery of open-source intelligence investigations. Work with the regional OTI team in scoping, delivering and peer reviewing intelligence product for our clients...Permanent employmentWork at officeRemote workFlexible hours$99k - $232k
...Type: Full time Travel Requirements: Up to 40% At PwC, our people in cybersecurity focus on protecting organizations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide...CyberFull timeH1b$106.8k - $194.8k
...will be responsible for implementing and managing Web Application Firewall (WAF) solutions to protect client applications from cyber threats. You will work within a team of cybersecurity professionals to establish effective security measures that safeguard web applications...CyberSummer holidayFlexible hours- ...Contract / C2C Contract duration - 12 months Juniper Networks Cyber Fusion is looking for a certified cybersecurity professional to... ..., DevOps, and IT teams. Stay updated on emerging security threats and trends for cloud environments. Qualifications ~...CyberContract workRemote work
$175k - $220k
...practices. Perform architecture reviews and threat modeling for cloud services, AI-enabled... ...or Masters in Computer Science, Cyber Security or similar roles. ~ Strong software... ...use Sigma to explore live data, build intelligent applications, and automate critical...CyberFull timeWork at officeFlexible hours$99k - $232k
...Type: Full time Travel Requirements: Up to 40% At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide...CyberFull timeH1b- ...strong technical foundation, curiosity for threat analysis, and a desire to grow within a... ...What the job involves We are seeking a SOC Analyst II to join our growing Security... ...defend the organization against evolving cyber threats This role will support day‑to‑day...CyberContract work
$124k - $280k
...contributes to the success of our Firm. The Opportunity As part of the Cyber Strategy, Risk & Compliance team, you will be at the forefront... ...organizations, helping them stay ahead of emerging threats. Responsibilities Lead and manage strategy, transformation and engineering...CyberFull timeH1b$122.7k - $187.8k
...and exceed sales targets for Accenture Security offerings across Cyber Defense , Cloud Security, Identity & Access Management, and Risk... ...as a security innovator by sharing insights on emerging threats, regulatory trends, and AI-driven security solutions. Travel...CyberContract workWork experience placementLive inWork at officeLocal areaWorldwide$110k - $130k
...O’Melveny has an immediate opening for a Competitive Intelligence Analyst in any of our West Coast offices. The Competitive Intelligence ("CI") Analyst will be responsible for producing strategic research on clients, industries, practices, competitors, legal issues, and...Immediate start$85k - $120k
...Competitive Intelligence Analyst Cooley is seeking a Competitive Intelligence Analyst to join the Data Delivery team. Position summary: Cooley Innovation embraces a culture of customer service excellence and all members of the department are expected to move this agenda...Full timeTemporary workWork experience placementWork at officeLocal areaFlexible hoursWeekend work$201.6k - $325k
...ensure that general-purpose artificial intelligence benefits all of humanity. We believe that... ...beneficial uses of advanced AI, including cyber defense, critical infrastructure... ...AI, including AI-enabled cyber attacks, threats to critical infrastructure, election-related...CyberLocal area- ...U.S. and its Allies to secure the space environment and counter threats from the ultimate high ground. Your Mission We are seeking... ...Classified Overlays), CMMC Level 3, NIST 800-171 Rev. 3, EAR/ITAR cyber regulations, and — critically - the governance, risk management,...CyberPermanent employment
- ...applications for the position of Senior Systems Analysts in the Information Services Division.... ...a mission‑driven organization from cyber threats? If so, the Cybersecurity Team at the... ..., data management, business intelligence, system integration, cloud technologies...CyberFull timeRemote work
- ...We’re taking on the crusty global cyber market, the “no-bullsh*t” sec platform for devs. In the past, only large enterprises needed to worry about security. Today, every startup holds significant customer data, and cybersecurity has become the top concern of all CEOs....Cyber
$70 - $125 per hour
...operations, MDR, and custom detection engineering. Design and execute threat hunting methodologies and develop tailored detection content... .... Stay current on AI-driven security capabilities and emerging cyber risk trends, translating these into practical client guidance....CyberHourly payLong term contractLocal area$95k - $203k
...in the enterprise AI era. Our Context Intelligence Platform turns fragmented data into a trusted... ...numerous awards and industry and analyst recognition for our technology, our culture... ...and knowledge ~ Understanding of cyber threat vectors and countermeasures ~ Understanding...CyberFlexible hours- ...defends the world's most sensitive networks—from global commerce to national defense—quietly, relentlessly, and with resolve. As cyber threats grow faster and smarter, we serve as the trusted force behind network resilience, putting elite defense within reach. By...Cyber
$120k - $175k
...Technology Cyber Security Architect Cooley is seeking a Cyber Security Architect to... ...proactively identify and mitigate cyber threats to protect our organization's assets with... ...on emerging technologies and artificial intelligence (AI) security. Working collaboratively...CyberFull timeTemporary workWork at officeFlexible hoursWeekend work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cyber Threat Intelligence Analyst. Be the first to apply!
- information security consultant San Francisco, CA
- remote cyber security analyst San Francisco, CA
- cyber security analyst San Francisco, CA
- criminal intelligence analyst San Francisco, CA
- intelligence analyst San Francisco, CA
- competitive intelligence analyst San Francisco, CA
- military intelligence analyst San Francisco, CA
- military intelligence officer San Francisco, CA
- cyber San Francisco, CA
- counter intelligence San Francisco, CA


