2

Remote Microsoft Threat Intelligence Jobs (NOW HIRING)

Job Title Cyber Threat Intelligence Analyst - Remote Requisition Number R7811 Cyber Threat Intelligence Analyst - Remote (Open) Location Arizona - Home Teleworkers Additional Locations Alabama - Home ...

Senior Cyber Threat Analyst

$99K - $128K/yr

Experience with Microsoft Threat Intelligence and Google Threat Intelligence (Previously Mandiant ... Remote Work Policy Remote work necessitates a high level of trust in our employees. To ensure that ...

Senior Cyber Threat Analyst

$102K - $132K/yr

Experience with Microsoft Threat Intelligence and Google Threat Intelligence (Previously Mandiant ... Remote Work Policy Remote work necessitates a high level of trust in our employees. To ensure that ...

Cyber Threat Intelligence

Raleigh, NC · Remote

$100K - $120K/yr

This is a fully remote position; however, candidates must be available to work standard daytime ... Gather Threat intelligence from open-source, dark web, and proprietary intelligence sources to ...

Threat Intelligence Analyst III

Reston, VA · On-site +1

$110K - $165K/yr

Reston, VA (Hybrid/Remote) R eports To: Threat Intelligence Officer, Americas Travel Required: Up ... Microsoft Office applications, particularly Excel, PowerPoint, and Word CERTIFICATIONS (Desired)

Exposure to Threat Intelligence Platforms (open source and/or enterprise grade) * Ability to ... Remote-flexible workforce * Wellness Programs * 401(k) program with employer match * Flexible paid ...

Cyber Threat Intelligence - Threat actor tracking, malware analysis, data leak monitoring, darknet ... Location: Remote Key Responsibilities * Conduct in-depth OSINT/WEBINT investigations across ...

Threat Hunt Analyst

Lakewood, CO · On-site +1

$99K - $225K/yr

Remote Work: No Job Number: R0238495 Location: Lakewood,CO,US Share job via: Share Threat Hunt ... Working at the intersection of cyber threat intelligence, detection engineering, and operational ...

next page

Showing results 1-20

Remote Microsoft Threat Intelligence information

See salary details

$45.5K

$104.6K

$144K

How much do remote microsoft threat intelligence jobs pay per year?

As of Jul 19, 2026, the average yearly pay for remote microsoft threat intelligence in the United States is $104,643.00, according to ZipRecruiter salary data. Most workers in this role earn between $94,000.00 and $118,500.00 per year, depending on experience, location, and employer.

What is a Remote Microsoft Threat Intelligence professional?

A Remote Microsoft Threat Intelligence professional is an expert who analyzes and responds to cyber threats targeting Microsoft technologies, while working from a remote location. They monitor security data, investigate potential incidents, and provide actionable intelligence to protect organizations using Microsoft products and services. These professionals often collaborate with security teams to detect, assess, and mitigate evolving cyber risks. Their work is crucial in ensuring the safety and resilience of digital infrastructures, especially in distributed or cloud-based environments.

How does a Remote Microsoft Threat Intelligence professional typically collaborate with other security teams to address emerging threats?

Remote Microsoft Threat Intelligence professionals frequently work closely with incident response, SOC (Security Operations Center), and IT teams to detect, analyze, and mitigate cyber threats. Collaboration often involves real-time communication through secure channels, sharing threat intelligence reports, and participating in coordinated investigations of suspicious activity. While working remotely, professionals leverage Microsoft’s security platforms and collaboration tools to ensure seamless teamwork and timely response. Regular cross-team meetings and knowledge-sharing sessions are also common to stay ahead of evolving threats and maintain a unified defense posture.

What is the difference between Remote Microsoft Threat Intelligence vs Remote Cybersecurity Analyst?

AspectRemote Microsoft Threat IntelligenceRemote Cybersecurity Analyst
CertificationsMicrosoft Certified: Security, Compliance, and Identity Fundamentals, GIAC certificationsCompTIA Security+, CISSP, CEH
Work EnvironmentFocus on Microsoft security tools, cloud environments, threat detection within Microsoft ecosystemsBroader security monitoring across various platforms, networks, and systems
Industry UsagePrimarily in organizations using Microsoft products and cloud servicesAcross diverse industries with varied security infrastructures
Search & Comparison IntentUnderstanding specialized Microsoft threat roles, cloud securityGeneral cybersecurity threat detection and analysis roles

Remote Microsoft Threat Intelligence specialists focus on identifying threats within Microsoft environments, leveraging specific Microsoft security tools. In contrast, Remote Cybersecurity Analysts have a broader scope, monitoring and analyzing threats across multiple platforms and systems. Both roles require security certifications but differ in their technical focus and work environment.

What are the key skills and qualifications needed to thrive as a Remote Microsoft Threat Intelligence Analyst, and why are they important?

To excel as a Remote Microsoft Threat Intelligence Analyst, you need a strong background in cybersecurity, threat analysis, and knowledge of current cyber threats, often supported by a degree in computer science or a related field. Familiarity with Microsoft security platforms (like Microsoft Defender, Sentinel), threat intelligence platforms, and relevant certifications such as Security+, CISSP, or Microsoft Certified: Security Operations Analyst Associate is highly valued. Strong analytical thinking, attention to detail, and effective communication skills are crucial for interpreting threats and conveying findings to stakeholders. These competencies are essential to accurately identify, assess, and mitigate security risks in a rapidly evolving digital environment.
More about Remote Microsoft Threat Intelligence jobs
What cities are hiring for Remote Microsoft Threat Intelligence jobs? Cities with the most Remote Microsoft Threat Intelligence job openings:
What are the most commonly searched types of Microsoft Threat Intelligence jobs? The most popular types of Microsoft Threat Intelligence jobs are:
What states have the most Remote Microsoft Threat Intelligence jobs? States with the most job openings for Remote Microsoft Threat Intelligence jobs include:
Infographic showing various Remote Microsoft Threat Intelligence job openings in the United States as of July 2026, with employment types broken down into 90% Full Time, 7% Part Time, and 3% Contract. Highlights an 87% Physical, 3% Hybrid, and 10% Remote job distribution, with an average salary of $104,643 per year, or $50.3 per hour.

Cyber Threat Intelligence Analyst - Remote

CSAA

Remote

Full-time

Retirement

Posted 22 days ago


Job description

External candidates: In order for your application to be correctly processed please sign-in before you apply

Internal candidates: Please go to Workday and click "Find Jobs" link under Career

Thank you for considering opportunities with us!

Job Title

Cyber Threat Intelligence Analyst - Remote

Requisition Number

R7811 Cyber Threat Intelligence Analyst - Remote (Open)

Location

Arizona - Home Teleworkers

Additional Locations

Alabama - Home Teleworkers, Alabama - Home Teleworkers, Arkansas - Home Teleworkers, California - Home Teleworkers, Colorado - Home Teleworkers, Connecticut - Home Teleworkers, Delaware - Home Teleworker, District of Columbia - Home Teleworkers, Florida - Home Teleworkers, Georgia - Home Teleworkers, Idaho - Home Teleworkers, Illinois - Home Teleworkers, Indiana - Home Teleworkers, Iowa - Home Teleworkers, Kansas - Home Teleworker, Kentucky - Home Teleworkers, Louisiana - Home Teleworkers, Maine Home Teleworkers, Maryland - Home Teleworkers, Massachusetts - Home Teleworkers, Michigan - Home Teleworkers, Minnesota - Home Teleworkers, Mississippi - Home Teleworker, Missouri - Home Teleworker, Montana - Home Teleworkers {+ 21 more}

Job Information

CSAA Insurance Group (CSAA IG), a AAA insurer, is one of the leading personal lines property and casualty insurance groups in the United States. Here, every employee shapes our mission. We build innovative, human-centered solutions that help AAA members prevent, prepare for, and recover from life's uncertainties. You will join a collaborative, inclusive culture where your strengths have room to grow and your ideas can drive real impact. Step into a role where you can contribute to our shared success through meaningful work.

We are actively hiring for a Cyber Threat Intelligence Analyst - Remote

Your Role: We are seeking an experienced Cyber Threat Intelligence (CTI) Analyst to help mature the CSAA CTI program. This handson role focuses on operationalizing the Threat Intelligence Platform (TIP), tracking priority threats, and delivering actionable, detectiondriven intelligence to security teams and leadership. The ideal person is a wellrounded security professional who is comfortable working across teams, proactively identifying risk, and translating intelligence into prevention, detection, and response actions.

Your Work: The CSAA Cyber Threat Intelligence Team is responsible for identifying, analyzing, and tracking cyber threats that may impact the organization. We collect intelligence from a wide range of internal and external sources and use that information to understand threat actors, campaigns, vulnerabilities, and attacker tradecraft relevant to our environment.

The successful candidate will be responsible for analyzing and contextualizing threat intelligence, identifying potential risks, and supporting security operations through actionable insights. They will help improve insight into emerging threats, support investigative efforts, and contribute to the continued development and maturity of the CTI program.

  • Monitor and analyze intelligence from commercial, industry, and OSINT sources to track threat actors, campaigns, and vulnerabilities, and assess their relevance, impact, and risk to the organization

  • Maintain and use Threat Intelligence Platforms (TIP) and related tools to support intelligence operations, including ingestion, enrichment, tagging, and data quality

  • Integrate intelligence across security tools (SIEM, SOAR, case management) to support operations

  • Collect, enrich, and manage actionable IOCs to drive detection, blocking, and mitigation efforts across security operations

  • Provide realtime intelligence context during investigations and incidents (e.g., adversary behavior, infrastructure, objectives)

  • Analyze vulnerability intelligence, including KEV listings and active exploitation trends, to support riskbased vulnerability prioritization

  • Respond to ad hoc and timesensitive intelligence requests from stakeholders

  • Support threat hunting by developing indicators, behaviors, and hypotheses

  • Produce and deliver intelligence reports and briefings for technical and nontechnical audiences

  • Improve intelligence workflows, intake processes, RFIs, and documentation

Required Experience, Education and Skills
  • 6+ years of experience in Cyber Threat Intelligence, SOC, Incident Response, Threat Hunting, or related cybersecurity roles

  • Bachelor's degree in computer science, Information Technology, or a related field, or an equivalent combination of education and experience

  • Deep experience operating and optimizing industry leading Threat Intelligence Platforms (TIPs)

  • Proven experience leveraging commercial threat intelligence providers such as Flashpoint, Recorded Future, Intel 471, ZeroFox, or comparable services to support operational intelligence requirements

  • Strong mastery of the intelligence lifecycle, with demonstrated ability to operationalize intelligence from collection through dissemination and action

  • Advanced working knowledge of the MITRE ATT&CK framework, with experience applying it to threat analysis, detection engineering, and reporting

  • Demonstrated experience managing and enriching IOCs, with a focus on translating intelligence into measurable detection, blocking, and mitigation outcomes

  • Solid understanding of SIEM, SOAR, EDR, and case management platforms, and how intelligence integrates into and enhances investigative workflows

  • Experience analyzing vulnerability and exploit intelligence to assess realworld risk, likelihood of exploitation, and potential business impact

  • Strong written and verbal communication skills, with the ability to clearly articulate complex threat and risk concepts to both technical and nontechnical stakeholders

What would make us excited about you?

  • A teammate who values collaboration and knowledge sharing

  • Ability to think critically and operate effectively in ambiguous or evolving situations

  • Strong communication skills

  • A strong passion for continuous learning, with curiosity to stay current on emerging threats, techniques, and evolving security trends

  • A selfstarter who takes initiative, operates effectively with minimal direction, and proactively sees opportunities to improve security outcomes

  • Actively shapes our company culture (e.g., participating in employee resource groups, volunteering, etc.)

  • Lives into cultural norms (e.g., willing to have cameras when it matters: helping onboard new team members, building relationships, etc.)

  • Travels as needed for role, including divisional / team meetings and other in-person meetings

  • Fulfills business needs, which may include investing extra time, helping other teams, etc

Please note we are hiring for this role remote anywhere in the United States with the following exceptions: Hawaii and Alaska.

Why Choose a Career at CSAA IG?

At CSAA IG, we are a mission-driven organization proudly committed to empowering our members, our employees, and our communities to thrive.

Recognition: We offer a total compensation package, annual bonus eligibility for most roles, 401(k) with a company match, and so much more! Read more about what we offer and what it is like to be a part of our dynamic team at https://careers.csaainsurance.aaa.com/us/en/benefits.

Career Growth: We believe in growth for everyone. Here at CSAA IG, leaders and mentors partner with employees to align interests, unlock development opportunities, and support longterm success.

Flexible Workplace: We embrace a remote-first culture through our Flexible Workplace. Most employees hold Home-Flex roles, working primarily from home, often with the flexibility to work from various locations including CSAA offices. Our flexible workplace empowers you to balance remote work with intentional inperson moments that deepen connection and collaboration.

Inclusion and Belonging: An inclusive and welcoming workplace is the cornerstone of our success. By fostering an environment where people feel valued and heard, we deepen our ability to understand and meet the unique needs of our members. This strengthens innovation and enhances our products and services, giving us a competitive edge in the market.

Sustainability: As climate change leads to more frequent and severe weather events, we are taking bold action to build more resilient communities and reduce our environmental impact. Submit your application to be considered. We communicate via email, so check your inbox and/or your spam folder to ensure you don't miss important updates from us.

CSAA is committed to providing reasonable accommodations to qualified applicants and employees with disabilities or other limitations. If you would like to request an accommodation to participate in the job application or interview process, please contact TalentAcquistion@csaa.com

If you apply and are selected to continue in the recruiting process, we will schedule a preliminary call with you to discuss the role and will disclose during that call the available salary/hourly rate range based on your location. Factors used to determine the actual salary offered may include location, experience, or education.

CSAA does not provide visa sponsorship for this role. Applicants must have authorization to work indefinitely in the US. Please do not apply for this role if at any time (now or in the future) you will need immigration support (i.e., H-1B, TN, STEM OPT Training Plans, etc.).

CSAA Insurance Group is an equal opportunity employer.

#LI-SB1

.

The national average salary range for this position is $122,850.00-$136,500.00. However, we have a location-based compensation structure. Our salary ranges vary and are calculated based on work location. The starting pay range for this position across all the states we hire in is $122,850.00-$164,000.00. This role also includes an opportunity for a company-wide annual discretionary bonus, through our Annual Incentive Plan (AIP), of up to 10% of eligible pay.This job posting will be unposted on Fri, 31 Jul 2026.