Cyber Threat Intelligence (CTI) Analyst, Lead Associate

Job Description

The Senior Cyber Threat Intelligence (CTI) Analyst provides advanced technical and analytical support for the collection, analysis, and management of cyber threat intelligence. The role identifies patterns in cyber threat data, assesses risk, and produces actionable intelligence to support operational and strategic decision-making.

The analyst works across intelligence, operational, and management stakeholders to support threat monitoring, analysis, reporting, and platform administration. The role supports the full intelligence lifecycle, including collection, processing, analysis, and dissemination of cyber threat intelligence.

Responsibilities may include:

Monitors cyber threat intelligence from open, commercial, and classified sources using threat intelligence platforms such as OpenCTI
• Analyzes adversary tactics, techniques, and procedures (TTPs) to develop and maintain a cyber threat knowledge base
• Identifies patterns of behavior across cyber incidents, and documents Indicators of Compromise (IOCs) and emerging threats.
• Enriches threat intelligence data to provide additional analytical context
• Administers and maintains the CTI platform, ensuring data integrity, availability, and performance
• Ingests, normalizes, and correlates cyber threat data from multiple sources using STIX/TAXII standards to support data fusion and analysis
• Produces structured intelligence products (alerts, briefs, threat landscape reports) and communicates findings to stakeholders
• Provides training and support to field offices and headquarters users
• Contributes to the development and implementation of CTI best practices and standards

Required Qualifications

• High School Diploma with a minimum of 8 years of related Cyber Threat Intelligence Analysis experience
• BS/BA with a minimum of 5 years of related experience
• Experience operating cyber threat intelligence platforms (e.g., OpenCTI)
• Experience analyzing cyber threat actor tactics, techniques, and procedures (TTPs)
• Experience producing intelligence products such as threat alerts, briefs, or threat landscape reports
• Experience documenting Indicators of Compromise (IOCs) and cyber threat trends
• Experience working with multiple operating systems (Windows, Linux, Android)
• Knowledge of application, network, and mobile device security
• Ability to analyze threat intelligence reports and produce actionable intelligence
• Experience communicating intelligence findings to stakeholders
• Active TS/SCI security clearance with the ability to obtain a polygraph

Desired Qualifications / Skills

• Experience administering or managing cyber threat intelligence platforms
• Experience with STIX/TAXII data standards for structured intelligence ingestion
• Experience performing data normalization, enrichment, and correlation across multiple sources
• Experience integrating intelligence data across systems (data fusion)
• Strong understanding of network architecture, TCP/IP, and infrastructure components (routers, switches, firewalls)
• Experience analyzing intrusion activity and cyber threats across enterprise environments
• Experience with scripting or automation to support data processing or analysis
• Experience providing technical training or user support for intelligence platforms
• Experience supporting intelligence lifecycle processes (collection, processing, analysis, dissemination)
• Strong analytical skills with the ability to identify patterns, trends, and operational impacts in cyber threat data

This critical National Security role is eligible for Peraton's premier benefits package, designed to recognize andsupport the professionals safeguarding our nation. A few highlights:

• 280 hours of annual leave (5 weeks of PTO & 2 weeks of holiday)
• Health Benefits (medical, dental & vision) - very low to no cost employee contributions
• Annual Critical Skills Bonus

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can't be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we're keeping people around the world safe and secure.