Cyber Threat Intelligence Production Manager

Deloitte Technology Cyber Risk Posted: 14-Aug-2025

Same job available in 3 locations

Hermitage, Tennessee, United States

Nashville, Tennessee, United States

Tampa, Florida, United States

Deloitte Global is the engine of the Deloitte network. Our professionals reach across disciplines and borders to develop and lead global initiatives. We deliver strategic programs and services that unite our organization.

Work you'll do

Professionals currently in a Deloitte Global role may be considered for this position, regardless of their US location. 

As the Threat Intelligence Production and Dissemination Manager, you will lead the creation, quality control, and distribution of high-quality threat intelligence reports and briefings, ensuring timely and actionable insights for Deloitte’s leadership and technical teams. This position will also aid in producing comprehensive operating pictures, cyber security situational awareness, and overseeing the review and reporting of near real-time alerts that help prevent risk to the Deloitte network and brand.
 

The ideal candidate demonstrates strong leadership and excels at managing a team to consistently deliver high-quality, relevant intelligence products. You possess excellent analytical, technical, and communication skills, with a deep understanding of cyber threats and the ability to translate complex information into clear, actionable insights. A proactive mindset, attention to detail, and a commitment to continuous improvement are essential for success in this role. Responsibilities include:
  • Lead a team of geographically dispersed intel analysts to accomplish your team’s missions.
  • Produce monthly and quarterly threat intelligence reports that accurately describe recent cyber threats and events, ensuring information is relevant and timely for the Deloitte threat landscape.
  • Develop executive-level briefings and respond to RFIs from senior leadership, delivering clear and actionable intelligence.
  • Oversee the creation of geography-specific threat landscape reports and manage the quality of products produced by Production & Dissemination analysts.
  • Provide quality control for all intelligence products, determine their relevancy, and ensure consumers receive accurate and up-to-date information.
  • Manage the threat monitoring and alerting process to ensure customers are warned of imminent threats.
  • Provide customers with easy access to relevant cyber threat information.
  • Develop and maintain robust forecasting processes that provide critical insights to guide strategic planning and drive informed decision-making across the organization.
  • Facilitate coordination between analysts across teams within Analysis & Production to ensure intelligence products are prepared for both operational and executive audiences.
  • Work closely with the Intel Operations Manager to ensure data availability meets consumer requirements.
  • Support the Analysis and Production Senior Manager in developing intelligence requirements, collecting feedback to improve products, and overseeing production metrics to enhance quality and efficiency.
  • Serve as the acting Analysis and Production Senior Manager during their absence, ensuring continuity of operations and leadership.
  • Organize and deliver training and professional development opportunities to maintain staff expertise.
  • Lead the onboarding and training of new threat intelligence customers.
  • Develop regular engagement with Member Firm executives to build and maintain strong working relationships.
  • Minimal travel may be required as part of this role (>10% time) for participation in team events, conferences, and training.

The team

Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what can be" to help Deloitte deliver and connect with its clients, its communities, and one another in ways not previously conceived.

Qualifications

 
Minimum of 7 years of experience in information security or intelligence in a cyber threat intelligence environment.
  • Experience managing and mentoring both senior and junior analysts, including coordinating weekly tasks and deliverables.
  • Strong English written and verbal communication skills, with the ability to present complex information clearly to diverse audiences.
  • Knowledge of Threat Intelligence tradecraft and fundamental concepts, and experience in developing intelligence assessments.
  • Demonstrated ability to oversee and provide quality control for intelligence products, ensuring accuracy, relevance, and timeliness.
  • Strong interpersonal skills and ability to work well with people of diverse cultures and backgrounds.
  • Deep subject matter expertise in threat actor tactics, techniques, and procedures (TTPs), with the ability to translate technical intelligence for operational and executive audiences.
  • Knowledge of models that describe cyber-attacks (e.g., Cyber Kill Chain, Diamon Model, MITRE ATT&CK).
  • Proficient in manipulating and analyzing complex datasets using various tools and techniques to uncover new insights, identify trends, and support informed decision-making.
  • Demonstrated expertise in analyzing CVE and vulnerability reporting, including determining device impact.
  • Experience producing and presenting clearly written operational, tactical, and strategic intelligence and writing concise research reports
  • Experience in leading projects, tasks, and analytical or investigative processes with minimal oversight or direction; developing Standard Operating Procedure documents for new or existing processes.
  • Communicate with stakeholders with varying levels of technical proficiency.
  • Experience working independently and collaborating effectively with team members located in different geographic regions.
  • Desire and ability to work in a dynamic, fast-paced environment.
  • Demonstrated ability to identify, handle, and safeguard confidential and sensitive information with discretion and in accordance with organizational policies and best practices.
Education  
  • Bachelor’s degree in cybersecurity, technology, intelligence studies, or related field of study; advanced degree preferred.
Desired Experience and Skills
  • Relevant industry certifications such as GIAC GCTI, CISSP, or similar are strongly preferred.
  • Hands-on experience utilizing the MITRE ATT&CK framework for threat analysis and detection.
  • Familiarity with formal aspects of threat intelligence, including cognitive biases, Analysis of Competing Hypotheses (ACH), and related methodologies.
  • Proven ability to research and contextualize cybersecurity and geopolitical landscapes to inform situational awareness and risk assessments.
  • Deep understanding of host and network forensic artifacts and indicators of compromise (IOCs), with the ability to interpret their significance and uncover malicious activity.
  • Proficient in using Threat Intelligence Platform (TIP) software such as ThreatConnect, Anomali, ThreatQuotient, MISP, or other commonly used platforms.
  • Experience conducting link analysis to identify relationships and patterns within threat data.
  • Strong understanding of networking concepts, including basic IP communication, TOR, proxies, VPNs, other communication obfuscation methods, and the technical and administrative organization of the Internet.
  • Knowledge of social media platforms and online communities, including both formal and informal venues such as forums, IRC, Jabber, Reddit, and others.
  • Skilled in open-source investigation techniques and experienced with open-source tools such as VirusTotal, Hybrid Analysis, Domain Tools, and similar resources for assessing indicators.
  • Experience leveraging the private sector and other published threat intelligence reporting to support effective decision-making.
  • Practical experience using Splunk for log analysis, threat detection, and security monitoring within enterprise environments.
  • While this is a remote position, the ability to commute to the Washington D.C. offices is preferred.

Our culture

At Deloitte Global people are valued and respected for who they are – with opportunities to bring their unique perspectives, talents and passions to business challenges. Our global workspace creates room for individuality and collaboration. Ours is an inclusive, supportive, connected culture with a focus on development, flexibility, and well-being. This culture makes Deloitte Global one of the most rewarding places to work, and to transform your career.

Professional development

From entry-level employees to senior leaders, we believe in investing in you, helping you identify and hone your unique strengths at every step of your career. We offer opportunities to build new skills, take on leadership opportunities, and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.

Benefits

At Deloitte, we value our people and offer employees a broad range of benefits. Our Total Rewards program reflects our continued commitment to lead from the front in everything we do—that’s why we take pride in offering a comprehensive variety of programs and resources to support your health and well-being.

Recruiting for this role ends on November 7, 2025.
Deloitte Global is required by local law to include a reasonable estimate of the compensation range for this role for individuals applying to work in our Rochester locations. This compensation range takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and delivery model. We would not anticipate that the individual hired into this role would land at or near the top end of the range, but such a decision will be dependent on the facts and circumstances of each case. A reasonable estimate of the range is $ - $ for individuals applying to work in these locations.

At Deloitte Global, we know we’re at our best when we look out for one another; prioritize respect, fairness, development and wellbeing; foster an inclusive culture and embrace diversity in all forms. All qualified applicants will receive consideration for employment regardless of their background, experience, identity, ability or thinking style, and if you need assistance or an accommodation during the application process for accessibility reasons this is available upon request. The preferred candidate will be subject to background screening by Deloitte or by their external third-party provider.
November 7, 2025
Rochester
Back to job list