Threat Intelligence Consultant

As a Senior Threat Intelligence Consultant, you will be a key contributor within NVISO's Threat Intelligence (TI) team, working closely with colleagues to deliver high-quality threat intelligence services to our clients and to support other teams across the organization. Your work will help organizations better understand their threat landscape, anticipate emerging threats, and respond effectively to real-world adversary activity.

You will contribute across a broad range of threat intelligence activities, including strategic and operational intelligence, sector-specific threat landscapes, and continuous monitoring of open, deep, and dark web sources. Your intelligence will support not only incident response engagements, but also other NVISO services such as Managed Detection & Response (MDR) and Red Team operations, enabling detection, response, and adversary simulation activities with relevant and timely intelligence.

You will also contribute to intelligence-led security assessments such as TIBER-EU and TLPT, collaborating with experienced team members to develop realistic threat scenarios and actionable intelligence.

Working in a highly collaborative environment, you will focus on delivering accurate, relevant, and well-communicated intelligence outputs, while actively sharing knowledge and contributing to the continuous improvement of our services and ways of working.

Your responsibilities:

• Contribute to the delivery of high-quality threat intelligence services across strategic, operational, and tactical use cases.
• Produce threat intelligence deliverables such as threat landscapes, adversary and campaign analysis, and sector-specific intelligence reports.
• Perform continuous monitoring of open, deep, and dark web sources to identify relevant threats, exposures, and emerging risks.
• Provide actionable threat intelligence in support of incident response engagements, helping to contextualize attacks and inform response decisions.
• Support other NVISO teams such as MDR and Red Team by delivering intelligence that informs detection engineering, threat hunting, and adversary emulation activities.
• Contribute to intelligence-led security assessments (e.g. TIBER-EU, TLPT), supporting threat research, scenario development, and reporting.
• Support capability-building engagements such as TI maturity assessments, operating model design, and intelligence process implementation.
• Participate in client-facing meetings and briefings, clearly communicating intelligence findings and insights.
• Collaborate closely with team members to ensure consistency, quality, and continuous improvement of threat intelligence deliverables and processes.

• 2-5 years of professional experience with 1-3 years experience in cyber threat intelligence or a closely related cybersecurity role.
• Hands-on experience contributing to strategic, operational, or tactical threat intelligence use cases.
• Exposure to intelligence-led assessments such as TIBER-EU, TLPT, or comparable frameworks is a plus.
• Solid understanding of threat actors, attacker tradecraft, and intelligence frameworks (e.g. MITRE ATT&CK), as well as the intelligence lifecycle.
• Experience with open-source, deep, and dark web research and monitoring techniques.
• Ability to work independently on defined tasks and collaborate effectively within a team on larger engagements.
• Strong analytical and writing skills, with the ability to produce clear, structured, and high-quality intelligence deliverables.
• Effective communication and interpersonal skills to work collaboratively with clients and cross-functional internal teams.
• Up-to-date knowledge of current cyber threats, attacker TTPs, and emerging trends.
• Language: English (must have), German (nice to have).
• Eligibility for NATO security clearance.

Your availability

Standard business hours with occasional flexibility required during active client engagements and incident response support.

At NVISO, we care. We are committed to offering you a highly competitive remuneration package including financial and non-financial components:

• A training budget of 10.000€ and 10 days every 2 years.
• Working and learning from the best people in the European cyber security industry. We have multiple SANS Instructors working at NVISO, our staff has presented at popular hacking conferences (BlackHat, BruCON, OWASP, etc) and all of our technical staff can acquire deep technical security certifications (GSE, GXPN, GREM, GCFA, OSCP, etc).
• An entrepreneurial and agile company, where you will be stimulated and supported in driving new initiatives (either through internal innovation or by improving our service offering), without losing sight of having fun!
• Regular team-building and fun events with legendary off-site events once a year. The location of the next team building is one of the most closely guarded secrets at NVISO… We can however disclose that we've visited Lisbon, Dubai and Malta over the past few years.
• Our commitment to coach and counsel you and help you grow; each employee receives a personal coach within the team, whose role is to ensure your well-being and helps you grow in your career!
• Flexible working model and home office possibilities (+working abroad options).
• Statutory leave plus 5 additional leave days by NVISO.

It all starts with the mission: NVISO is here to protect European society from potentially devastating cyber attacks! This means we offer cyber security services to private and governmental organizations to help them better prepare for, prevent, detect and respond to cyber security incidents. All of this is built on four fundamental values that define who we are: We are Proud, We Break Barriers, We Care and No BS!