Principal Engineer - Cyber Threat Intelligence

The Principal Engineer, Cyber Threat Intelligence (CTI), will serve as a senior technical authority within the global Cyber Defense organization. This role is responsible for leading advanced threat research, analyzing adversary tactics and campaigns, and producing actionable intelligence to support detection, response, and risk management. The Principal Engineer will collaborate with SOC, incident response, vulnerability management, and red team functions to anticipate threats and strengthen the enterprise's resilience. This position requires deep expertise in threat actor profiling, malware analysis, and intelligence operations, with the ability to translate complex findings into practical defensive measures.

• Lead advanced research and analysis of nation-state, cybercriminal, and insider adversary tactics, techniques, and procedures (TTPs).

• Produce high-quality threat intelligence reports, threat actor profiles, and risk assessments for global stakeholders.

• Translate intelligence findings into actionable detection rules, threat hunting hypotheses, and SOC playbook improvements.

• Serve as a subject matter expert on cyber threat landscape trends, emerging attack vectors, and evolving tools and malware.

• Conduct malware reverse engineering and technical analysis to understand adversary capabilities and persistence methods.

• Collaborate with threat hunters, incident responders, and detection engineers to operationalize intelligence at scale.

• Act as a technical escalation point for intelligence-driven investigations and campaigns.

• Maintain relationships with external intelligence providers, government agencies, and industry partners to enrich the company's intelligence sources.

• Mentor and provide technical guidance to CTI analysts and other cyber defense personnel.

• Contribute to red/blue/purple team exercises with intelligence-informed scenarios and adversary emulation.

• Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or equivalent work experience; Master's degree preferred.

• Advanced knowledge of threat intelligence lifecycle, adversary tactics, and intrusion analysis.

• Familiarity with intelligence frameworks such as MITRE ATT&CK, Diamond Model, and Cyber Kill Chain.

• GIAC Cyber Threat Intelligence (GCTI)

• GIAC Reverse Engineering Malware (GREM)

• GIAC Certified Forensic Analyst (GCFA)

• Offensive Security Certified Professional (OSCP) or Offensive Security Certified Expert (OSCE)

• Certified Information Systems Security Professional (CISSP)

• 10+ years of progressive experience in cybersecurity, with at least 7 years dedicated to threat intelligence, malware analysis, or adversary research.

• Proven expertise profiling advanced persistent threat (APT) groups and cybercriminal organizations.

• Hands-on experience with malware analysis, reverse engineering, and exploit research.

• Proficiency with CTI platforms, OSINT tools, and enrichment sources (commercial, open-source, and government).

• Demonstrated success in turning intelligence insights into measurable improvements in detection and response.

• Strong written and verbal communication skills, with the ability to brief both technical teams and executive leadership on complex intelligence findings.

We provide compensation, benefits, and resources that enable a highly inclusive culture and support our team members' ability to live with purpose every day. In addition to traditional offerings like medical, dental, and vision care, we also provide a comprehensive suite of benefits that focus on the physical, emotional, financial, and social aspects of wellness. This encompasses support for working families, which may include backup dependent care, adoption assistance, infertility coverage, family building support, behavioral health solutions, paid parental leave, and paid caregiver leave. To encourage your personal growth, we also offer a variety of training programs, professional development resources, and opportunities to participate in mentorship programs, employee resource groups, volunteer activities, and much more. For details, visit https://www.virtualfairhub.com/cencora

Cencora is committed to providing equal employment opportunity without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, age, disability, veteran status or membership in any other class protected by federal, state or local law.

The company's continued success depends on the full and effective utilization of qualified individuals. Therefore, harassment is prohibited and all matters related to recruiting, training, compensation, benefits, promotions and transfers comply with equal opportunity principles and are non-discriminatory.

Cencora is committed to providing reasonable accommodations to individuals with disabilities during the employment process which are consistent with legal requirements. If you wish to request an accommodation while seeking employment, please call 888.692.2272 or email hrsc@cencora.com. We will make accommodation determinations on a request-by-request basis. Messages and emails regarding anything other than accommodations requests will not be returned