Threat Intelligence Manager Jobs (NOW HIRING)

This position is National Remote. You'll enjoy the flexibility to telecommute* from anywhere within the U.S. as you take on some tough challenges. For all hires in Minneapolis, Virginia, Maryland, or Washington, D.C. area, you will be required to work in the office for a minimum of four (4) days per week.

The Threat Intelligence Manager is responsible for leading and integrating Enterprise Risk Intelligence (ERI) threat intelligence operations across both the Collection & Monitoring and Online Threat Intelligence functions. This role ensures end-to-end management of open-source intelligence (OSINT) collection, monitoring, intake, and escalation of threats directed at executives, employees, facilities, and enterprise operations.

The manager provides direct leadership to analysts across both functions, establishing clear operational standards, ensuring disciplined execution of monitoring and collection activities, and maintaining consistent, high-quality outputs. This role is accountable for the ongoing development, maturation, and continuous improvement of the Threat Intelligence program, ensuring scalable capability, consistent tradecraft, and alignment with enterprise security priorities.

This position is full time. Employees are required to have flexibility to work any of our 8-hour shift schedules during our normal business hours of 8:00 am - 5:00 pm. It may be necessary, given the business need, to work occasional overtime.

We offer weeks of on-the-job training. The hours of the training will be based on schedule or will be discussed on your first day of employment.

Primary Responsibilities:

People Leadership & Team Management

• Directly manage Collection & Monitoring Analysts and Online Threat Intelligence Analysts, providing day-to-day oversight, coaching, and performance management.
• Establish expectations for analytical rigor, documentation standards, and operational discipline across both functions.
• Lead hiring, onboarding, training, and development to build and sustain OSINT collection and online monitoring capabilities.
• Manage workload prioritization, shift alignment, and surge coverage to ensure consistent operational support across monitoring, intake, and collection activities.
• Support after-hours on-call responsibilities as needed; provide senior-level oversight for incident response during major security events.

Collection & Monitoring Operations (POI-Focused)

• Oversee execution of OSINT research and monitoring activities supporting POI-related security inquiries.
• Ensure analysts collect, organize, and maintain accurate documentation of information related to individuals of security concern.
• Validate identification of concerning behaviors, escalation indicators, and targeting activity through open-source information.
• Maintain structured processes for case tracking, documentation, and escalation of identified risks.

Online Threat Intelligence Monitoring (Executive & Enterprise Focused)

• Oversee the Online Threat Intelligence function responsible for continuous monitoring of open-source and digital environments for threats directed at executives, employees, and enterprise assets.
• Ensure monitoring coverage across social media platforms, forums, blogs, and other online sources to identify threats, hostile narratives, or indicators of targeting.
• Oversee triage, processing, and escalation of online threat information in alignment with established procedures and criteria.
• Ensure consistent documentation, logging, and intake of online threat data to support downstream analysis and threat management activities.

Operational Oversight & Continuous Improvement

• Ensure timely identification, triage, and escalation of threats across both collection and online monitoring functions while maintaining accountability for accuracy, completeness, and timeliness of outputs.
• Provide leadership oversight during elevated threat periods or incidents, ensuring coordinated monitoring, intake, and response support - on-call support
• Reinforce adherence to established procedures, documentation standards, and information handling requirements across both teams.
• Lead the ongoing development and maturation of Threat Intelligence collection and monitoring programs, establishing consistent OSINT methodologies and analyst tradecraft.
• Drive continuous improvement through structured reviews, feedback loops, and refinement of monitoring coverage and threat detection capabilities.

You'll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in.

Required Qualifications:

• High School Diploma / GED
• Must be 18 years of age OR older
• 6 years of experience in intelligence, threat analysis, investigations, or security operations
• 2 years of experience managing analysts or operational teams
• Experience leading operational teams responsible for monitoring, investigations, or threat detection
• Understanding of OSINT collection, online threat monitoring, and intelligence lifecycle processes
• Familiarity with social media monitoring tools, OSINT platforms, and digital investigation practices
• Familiarity with online research and monitoring platforms
• People leadership skills with the ability to mentor, develop, and manage analytical teams
• Ability to manage competing priorities in high-tempo environments
• Written and verbal communication skills with the ability to guide clear and objective analysis
• Proficiency with Microsoft Office Suite tools
• Ability to work full time. Employees are required to have flexibility to work any of our 8-hour shift schedules during our normal business hours of 8:00 am - 5:00 pm. It may be necessary, given the business need, to work occasional overtime

Preferred Qualifications:

• Understanding of Behavioral Threat Assessment and Management (BTAM) a plus
• Familiarity of AI tools

Telecommuting Requirements:

• Ability to keep all company sensitive documents secure (if applicable)
• Required to have a dedicated work area established that is separated from other living areas and provides information privacy.
• Must live in a location that can receive a UnitedHealth Group approved high-speed internet connection or leverage an existing high-speed internet service.

*All employees working remotely will be required to adhere to UnitedHealth Group's Telecommuter Policy

Pay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc. In addition to your salary, we offer benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). No matter where or when you begin a career with us, you'll find a far-reaching choice of benefits and incentives. The salary for this role will range from $91,700 to $163,700 annually based on full-time employment. We comply with all minimum wage laws as applicable.

Application Deadline: This will be posted for a minimum of 2 business days or until a sufficient candidate pool has been collected. Job posting may come down early due to volume of applicants.

At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location, and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups, and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission.

UnitedHealth Group is an Equal Employment Opportunity employer under applicable law and qualified applicants will receive consideration for employment without regard to race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or protected veteran status, or any other characteristic protected by local, state, or federal laws, rules, or regulations.

UnitedHealth Group is a drug - free workplace. Candidates are required to pass a drug test before beginning employment.