Home › Companies › Insanecyber › Threat Intelligence and Detection Engineer
Threat Intelligence and Detection Engineer
Insanecyber · Active · BambooHR
Job facts
| Field | Value |
|---|---|
| Company | Insanecyber |
| Title | Threat Intelligence and Detection Engineer |
| Normalized title | - |
| Department / team | Managed & Professional Services |
| Location | San Antonio, TX, United States |
| Work model | - |
| Employment type | Full Time |
| Salary | - |
| Status | active |
| ATS provider | BambooHR |
| Posted / first seen | 2026-02-03 / 2026-05-30 |
| Changed / last seen | 2026-05-30 / 2026-06-06 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Insanecyber. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through BambooHR. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in San Antonio. | Open |
| Department jobs | Active postings in Managed & Professional Services. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Insanecyber |
| Source | b044153e-1217-4e03-8614-3ac4736686f3 |
| ATS provider | BambooHR |
Description
At Insane Cyber , we’re focused on advancing cybersecurity for the better. We’ve developed innovative tools backed by expert support to change how organizations perform deep level proactive and reactive analysis. We partner with our customers to provide cutting-edge solutions and services to help protect our critical infrastructure and critical operations from threats – from the power grid to manufacturing.
Our flagship Valkyrie and Cygnet products provide host and network analysis automation beyond the capabilities of other products on the market. Our Corvus and Aesir product lines deliver managed and professional services to help assess and fill gaps and weaknesses in the security posture of clients' security programs.
It’s an exciting time for us as we continue to grow our products and services, and we need a great team in place!
As we grow, we are seeking a Threat Intelligence and Detection Engineer to join our team. This role is crucial for the continued development and enhancement of our flagship products, Valkyrie and Cygnet. You will be a key player in our professional services team , bringing your expertise and innovative thinking to advance our technology and maintain our competitive edge in the market.
Responsibilities
Provide expert proactive and reactive consultancy services to clients, helping them understand and mitigate cybersecurity risks. Typical services include, but are not limited to threat hunting, incident response, digital forensics, and architecture reviews
Keep up with current and emerging threats and develop innovative ways to implement detection of threats in Valkyrie and Cygnet with both host and network data
Collaborate with engineering, professional services, external customers and other internal and external groups to identify , architect, develop and deliver capabiliti es to end users
Perform analysis and investigations, correlating events and data to detect security incidents
Participate in incident response efforts through out the IR life cycle.
Develop and maintain security incident response plans
Operationalize, monitor, and optimize security and network monitoring solutions
Improve observability and monitoring of the customer environments, collaborating with internal and customer teams to enhance visibility into security events and incidents
Apply working experience with protocol dissection and proprietary protocol analysis — preferably
in the industrial space
Work with a cross-functional team to develop new detections specifically for industrial environments
Deliver solutions to and manage cybersecurity projects, ensuring alignment with client needs and best industry practices
Build and maintain strong relationships with clients, acting as a trusted advisor in cybersecurity matters
Ensure the quality and timeliness of service delivery , adhering to project deadlines and client expectations
Stay updated on the latest cybersecurity trends and technologies, applying this knowledge to improve service quality
Qualifications
Minimum 3 -5 years of full-time experience in cybersecurity
Bachelor’s or Master’s degree in Information Technology , Cybersecurity, or a related field, or equivalent experience
Experience in digital forensics, incident response, or threat hunting is a plus
Experience in industrial sectors, Operational Technology (OT), Industrial Control Systems (ICS ) and/or critical operations assurance is a plus
Experience in a startup or rapidly growing professional services organization is a plus
Working knowledge of proprietary and open-source threat detection engines and rulesets (Suricata, Yara, Sigma, Zeek, etc. )
Working experience with host and network data analysis across packet capture files, host logs, registry, memory and/or disk artifacts
Working knowledge of major nation state and criminal level threats and experience building host and network detections to identify those threats
Deep working knowledge of MITRE ATT&CK, D3FEND, or other threat modeling frameworks
[Nice to Have] Proficiency in backend languages and frameworks, such as Python, JavaScript, C, Go, Rust, or similar technologies
Proven track record of successful delivery in a consulting environment
Excellent client relationship management skills and the ability to explain complex technical concepts clearly
Strong communication skills, collaboration mindset, and an ability to learn quickly required
Benefits
Competitive Base Salary
Equity offering subject to board approval
Comprehensive medical/dental/vision/life insurance plan
Retirement plan with employer match
Flexible working hours and generous time-off policy
Insane Cyber is proud to be an equal-opportunity employer. We celebrate diversity and strive to foster an inclusive environment for all employees. If you're a visionary with a passion for pushing the boundaries of industrial cybersecurity, we'd love to hear from you.
Full job record
| Job ID | c08232b4eb19147740984a87eff9daa51ad0c0d1 |
| Org ID | c34eb337-0750-4932-b46a-008ecf8e8653 |
| Source ID | b044153e-1217-4e03-8614-3ac4736686f3 |
| Board ID | b044153e-1217-4e03-8614-3ac4736686f3 |
| Provider | bamboohr |
| Provider Job Key | 42 |
| Title | Threat Intelligence and Detection Engineer |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | — |
| Department | Managed & Professional Services |
| Team | — |
| Employment Type | full_time |
| Workplace Type | — |
| Remote Policy | — |
| Country | United States |
| Region | TX |
| City | San Antonio |
| Salary Raw | — |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://insanecyber.bamboohr.com/careers/42 |
| Apply URL | https://insanecyber.bamboohr.com/careers/42 |
| First Seen At | 2026-05-30 06:02:21Z |
| Last Seen At | 2026-06-06 09:36:41Z |
| Last Checked At | 2026-06-06 09:36:41Z |
| Last Changed At | 2026-05-30 06:02:21Z |
| Inactive At | — |
| Source Posted At | 2026-02-03 00:00:00Z |
| Source Updated At | — |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=bamboohr/board=insanecyber/date=2026-06-06/2026-06-06T09-36-41-202Z-cc7188ebaa81b22ede9fa0209c78f7e8565a58bbeb357338cd4c83b7e071126f.json |
Event Fields
{
"content_hash": "03ae72a391dabb0b8487bbc44391ef09f676b26668ab9dd81b1b418171a4e94b",
"source_hash": "508b2242f4ec71234d1462e5302bf2adebedfd7f26aa3fef4e7db8344a2525c8",
"last_changed_at": "2026-05-30T06:02:21.873Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "San Antonio, Texas, United States",
"city": "San Antonio",
"region": "TX",
"country": "United States",
"is_remote": false,
"confidence": 0.8
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-06T09:36:41.821Z",
"launch_scope": {
"reason": "bamboohr_production_catalog",
"included": true,
"location": {
"raw": "San Antonio, Texas, United States",
"city": "San Antonio",
"region": "TX",
"country": "United States",
"is_remote": false,
"confidence": 0.8
},
"countries": [
"United States"
]
},
"remote_policy": null,
"salary_period": null,
"workplace_type": null,
"salary_currency": null
}Extensions
{}Native Structured
{
"list_job": {
"id": "42",
"isRemote": null,
"location": {
"city": null,
"state": null
},
"atsLocation": {
"city": "San Antonio",
"state": "Texas",
"country": "United States",
"province": null
},
"departmentId": "18551",
"locationType": "1",
"jobOpeningName": "Threat Intelligence and Detection Engineer",
"departmentLabel": "Managed & Professional Services",
"employmentStatusLabel": "Full-Time"
},
"detail_errors": [],
"detail_job_opening": {
"location": {
"city": null,
"state": null,
"postalCode": null,
"addressCountry": null
},
"datePosted": "2026-02-03",
"atsLocation": {
"city": "San Antonio",
"state": "Texas",
"country": "United States",
"countryId": "1"
},
"description": "<p><span><span>At Insane </span><span>Cyber</span><span>, </span><span>we’re</span><span> focused on advancing cybersecurity for the better. </span><span>We’ve</span><span> developed innovative tools backed by expert support to change how organizations perform deep level </span><span>proactive</span><span> and reactive analysis. We partner with our customers to provide </span><span>cutting-edge</span><span> solutions and services to help protect our critical infrastructure and critical operations from threats – from the power grid to manufacturing.</span></span><span> </span></p>\n<p><span> </span></p>\n<p><span><span>Our flagship Valkyrie and Cygnet products provide host and network analysis automation beyond the capabilities of other products on the market. Our Corvus and Aesir product lines deliver managed and professional services to help assess and fill gaps and weaknesses in the security posture of clients' security programs.</span></span><span> </span></p>\n<p><span> </span></p>\n<p><span><span>It’s</span><span> an exciting time for us as we continue to grow our products and services, and we need </span><span>a great team</span><span> in place!</span></span><span> </span></p>\n<p><span> </span></p>\n<p><span><span>As we grow, we are seeking a </span><span>Threat Intelligence and Detection </span><span>Engineer to join our team.</span><span> This role is crucial for the continued development and enhancement of our flagship products, </span><span>Valkyrie</span><span> and Cygnet. You will be a key player in our </span><span>professional services team</span><span>, bringing your </span><span>expertise</span><span> and innovative thinking to advance our technology and </span><span>maintain</span><span> our competitive edge in the market.</span></span><span> </span></p>\n<p><span><span> </span></span><span> </span></p>\n<p><span style=\"font-weight: bold\"><span><span>Responsibilities</span></span></span><span><span> </span></span><span> </span></p>\n<ul>\n<li><span><span>Provide expert </span><span>proactive</span><span> and reactive consultancy services to clients, helping them understand and mitigate cybersecurity risks. Typical services include, but are not limited </span><span>to</span><span> threat hunting, incident response, digital forensics, and architecture </span><span>reviews</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Keep up with current and emerging threats </span><span>and develop innovative ways to implement detection of threats in Valkyrie and Cygnet with both host and network </span><span>data</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Collaborate with engineering, professional services, external </span><span>customers</span><span> and other internal and external groups to </span><span>identify</span><span>, architect, develop and deliver capabiliti</span><span>es to end </span><span>users</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Perform analysis and investigations, correlating events and data to detect security </span><span>incidents</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Participate in incident response efforts through</span><span>out</span><span> the IR life cycle. </span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Develop and </span><span>maintain</span><span> security incident response </span><span>plans</span></span><br></li>\n<li>Operationalize, monitor, and optimize security and network monitoring solutions <span style=\"font-size: 12pt\"> </span></li>\n</ul>\n<ul>\n<li><span><span>Improve observability and monitoring of the customer environments, collaborating with internal and customer teams to enhance visibility into security events and </span><span>incidents</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Apply working experience with protocol dissection and proprietary protocol analysis</span><span>—</span><span>preferably</span><br><span>in the industrial </span><span>space</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Work with a cross-functional team to develop new detections specifically for </span><span>industrial </span><span>environments</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Deliver solutions to and manage cybersecurity projects, ensuring alignment with client needs and best industry </span><span>practices</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Build and </span><span>maintain</span><span> strong relationships with clients, acting as a trusted advisor in cybersecurity </span><span>matters</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Ensure the quality and timeliness of </span><span>service delivery</span><span>, adhering to project deadlines and client </span><span>expectations</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Stay updated on the latest cybersecurity trends and technologies, applying this knowledge to improve service </span><span>quality</span></span><br></li>\n</ul>\n<p><span><br></span></p>\n<p><span style=\"font-weight: bold\"><span><span>Qualifications</span></span></span><span> </span></p>\n<ul>\n<li><span><span>Minimum </span><span>3</span><span>-5 </span><span>years of </span><span>full-time </span><span>experience in cybersecurity</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Bachelor’s or </span><span>Master’s degree in Information Technology</span><span>, Cybersecurity, or a related field, or equivalent experience</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Experience in digital forensics, incident response, or threat hunting is a </span><span>plus</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Experience in industrial sectors, Operational Technology (OT), Industrial Control Systems (ICS</span><span>)</span><span> and/or critical operations assurance is a </span><span>plus</span><span> </span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Experience in a startup or rapidly growing professional services organization is a </span><span>plus</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Working knowledge of proprietary and </span><span>open-source</span><span> threat detection engines and rulesets (Suricata, Yara, Sigma, Zeek, </span><span>etc.</span><span>)</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Working experience with host and network data analysis across packet capture files, host logs, registry, </span><span>memory</span><span> and/or disk artifacts</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Working knowledge of major nation state and criminal level threats and </span><span>experience</span><span> building host and network detections to </span><span>identify</span><span> those threats</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Deep working knowledge of MITRE ATT&CK, D3FEND, </span></span><span><span>or</span></span><span><span> other threat modeling frameworks</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>[Nice to Have] </span><span>Proficiency in backend languages and frameworks, such as Python, JavaScript, C, Go, Rust, or similar technologies</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Proven </span><span>track record</span><span> of successful delivery in a consulting environment</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Excellent client relationship management skills and the ability to explain complex technical concepts </span><span>clearly</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Strong communication</span><span> skills, collaboration mindset, and an ability to learn quickly </span><span>required</span></span><span> </span></li>\n</ul>\n<p><span><span> </span></span><span> </span></p>\n<p><span style=\"font-weight: bold\"><span><span>Benefits</span></span></span><span><span> </span></span><span> </span></p>\n<ul>\n<li><span><span>Competitive Base Salary</span></span><br></li>\n<li>Equity offering subject to board <span style=\"font-size: 12pt\">approval</span><span style=\"font-size: 12pt\"> </span></li>\n</ul>\n<ul>\n<li>Comprehensive medical/dental/vision/life insurance plan <span style=\"font-size: 12pt\"> </span></li>\n</ul>\n<ul>\n<li><span><span>Retirement plan with employer match </span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Flexible working hours and generous time-off policy </span></span><span> </span></li>\n</ul>\n<p><span><span> </span></span><span> </span></p>\n<p><span><span>Insane </span><span>Cyber</span><span> is proud to be an equal-opportunity employer. We celebrate diversity and strive to foster an inclusive environment for all employees. If </span><span>you're</span><span> a visionary with a passion for pushing the boundaries of industrial cybersecurity, </span><span>we'd</span><span> love to hear from you.</span></span></p>",
"compensation": null,
"departmentId": "18551",
"locationType": "1",
"seekPromoted": false,
"jobCategoryId": null,
"jobOpeningName": "Threat Intelligence and Detection Engineer",
"departmentLabel": "Managed & Professional Services",
"jobOpeningStatus": "Open",
"minimumExperience": "Mid-level",
"jobOpeningShareUrl": "https://insanecyber.bamboohr.com/careers/42",
"employmentStatusLabel": "Full-Time"
}
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/c08232b4eb19147740984a87eff9daa51ad0c0d1?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/c34eb337-0750-4932-b46a-008ecf8e8653JSONGET https://api.bluedoor.sh/job-postings/v1/sources/b044153e-1217-4e03-8614-3ac4736686f3JSONGET https://api.bluedoor.sh/job-postings/v1/jobs/c08232b4eb19147740984a87eff9daa51ad0c0d1/eventsJSON