Staff Security Analyst, Threat Intelligence

📋 Description

• Proactively hunt criminal ecosystems targeting Robinhood; translate intel into scalable defenses.
• Build and operationalize a Universe of Threats by tracking phishing, scams, and fraud.
• Establish and mature a proactive threat intel lifecycle with partners and authorities to generate early warnings.
• Investigate attacker infrastructure across domains, DNS, logs, and cloud; convert to detections.
• Coordinate threat actor infrastructure takedowns with hosting providers and registrars to disrupt operations.
• Design and automate OSINT workflows to scale analysis and reporting.

🎯 Requirements

• 8–12+ years in threat intel/brand protection; 3–5+ years at senior/staff level.
• Hands-on tracking of phishing/scams/impersonation/fraud; indicator-to-campaign analysis.
• Familiar with domain patterns, DNS/certificate analysis, cloud abuse (AWS, GCP, Azure).
• Experience with OSINT tools, SQL, Python, SIEM/SOAR, OpenCTI, and case management.
• Translate complex threats into clear business risk for technical teams and executives.
• Mentor others or lead cross-team initiatives with accountability.

🎁 Benefits

• Challenging, high-impact work to grow your career.
• Performance-driven compensation with multipliers, equity, and 401(k) matching.
• Best-in-class benefits including 100% paid health insurance for employees.
• Lifestyle wallet — a flexible benefits spending account.
• Employer-paid life and disability insurance, fertility benefits, and mental health.
• Time off to recharge including holidays, PTO, sick time, and parental leave.