Senior Cyber Threat Intelligence Advisor

When you join the Federal Reserve-the nation's central bank-you'll play a key role, collaborating with leading tech professionals to strengthen and protect our economic, financial and payments systems. We invest in contemporary and emerging technology each year to support the Federal Reserve and our economy, and we're building a dynamic team for our future.

Bring your passion and expertise, and we'll provide the opportunities that will challenge you and propel your growth-along with a wide range of benefits and perks that support your health, wealth, and life. In addition to competitive compensation, we offer a comprehensive benefits package that includes tuition assistance, generous paid time off, top-notch health care benefits, child and family care leave, professional development opportunities, a 401(k) match, pension, and more. All brought together in a work environment where you can truly find balance.

About the Opportunity

The National Incident Response Team (NIRT), a national service provider for the Federal Reserve System (FRS), delivers effective and efficient national intrusion detection, incident response, security intelligence, threat assessment, and vulnerability assessment services for the FRS. NIRT brings together experts across multiple disciplines to deliver cross-functional, cybersecurity services to support the protection of mission-critical applications and systems that support market operations, financial institution supervision, services to banking organizations, services to the U.S. Treasury Department, and internal FRS operations.

NIRT is seeking an enthusiastic and experienced cyber threat intelligence or information security professional to serve as a Senior Cyber Threat Intelligence (CTI) Advisor on a team composed of 12 CTI Advisors and Analysts. This role is responsible for providing primarily tactical and operational cyber threat intelligence services, including providing tactical support to NIRT Incident Response and Adversary Emulation teams, providing new TTPs for monitoring to the Detection Engineering team, conducting engineering and automation in support of CTI collection operations, and prioritizing vulnerabilities and making recommendations to vulnerability management professionals. This role is also responsible for producing daily, quarterly, and ad hoc intelligence reports, as well as occasionally briefing analysis and assessments to FRS stakeholders, in an effort to improve the overall security and cyber defenses of the FRS in relation to current and future cyber threats. Finally, this role will be expected to perform highly complex analysis, leveraging internal and external data sources, with little to no supervision; identify opportunities and support projects to improve the maturity of the team's products and services; and mentor more junior team members.

What You Will Do

• Assist leadership in developing strategy and direction for the CTI service, leading to continuous improvement and maturation of the team's products and services
• Leverage experience in the intelligence, cybersecurity, or information security domains to coach and mentor junior staff
• Generate effective and innovative solutions to support and lead through organizational change
• Demonstrate strong interpersonal and networking skills in connecting with customers, partners, and peers
• Review intelligence reporting and determine relevance for the FRS and specific customers, including evaluating content for future NIRT action (i.e., detection, response, assessment, or emulation)
• Triage and evaluate intelligence reporting for relevance, based primarily on customer intelligence requirements
• Conduct complex analysis and communicate relevant cyber threat intelligence, including on evolving threats, to customers and business leaders, translating the information into risk-based guidance whenever possible
• Optimize the cyber intelligence lifecycle; manage delivery of core intelligence services; and develop cross-team initiatives to implement cybersecurity improvements for recognized gaps

Qualifications:

• Bachelor's degree in Computer Science, Information Systems, Computer Engineering, Cybersecurity, Systems Analysis, or a related field required. Master's degree in Computer Science, Information Systems, Computer Engineering, Cybersecurity, Systems Analysis, or a related field is preferred.
• 8+ years of experience in cybersecurity, preferably in Security Operations, Incident Response, Digital Forensics, Threat Intelligence, or Threat Hunting.
• Expert ability to analyze cyber threat activity and develop relevant recommendations.
• Firm understanding of common frameworks used for threat intelligence and risk measurement (e.g. Kill Chain, Diamond Model, MITRE ATT&CK, Factor Analysis of Information Risk).
• Demonstrated ability in investigating malicious host or network activity, extracting and researching IOCs, and leveraging data such as Passive DNS, Network Flow data, internet scanning data, and data from malware repositories.
• Demonstrated ability in scripting/automating data collection, data cleaning, and basic analytics.
• Understanding of network and endpoint security concepts, architectures, and tools.
• Outstanding writing and briefing skills, including the ability to relay technical information to a non-technical audience
• Preferred experience building and managing an intelligence knowledge base related to threat actors, campaigns, threat scenarios, etc.
• Familiarity with cyber threats targeting the US financial sector (e.g., Nation States, Cybercriminals, Hacktivists) and their associated TTPs, preferred.
• Relevant cybersecurity certification(s) (e.g., GIAC, OSCP, CISSP).

Discover the Reason Why So Many People Love It Here!

When you join the Richmond Fed, not only will you find a challenging and purposeful career, you'll also have access to a wide range of benefits and perks that support your health and wealth, including:

• Great medical benefits
• Pension and 401(k) with employer match
• Paid time off
• Tuition reimbursement
• Paid volunteer leave
• Onsite amenities that make working here fun!

Other Requirements and Considerations:

• Candidates should review the Bank's Employee Code of Conduct to ensure compliance with conflict-of-interest rules and personal investment restrictions.
• If you need assistance or an accommodation due to a disability, please notify
• Sponsorship is not available for this role. The selected candidate will be subject to a government security investigation and must meet eligibility requirements for access to classified information. The ability to obtain and maintain a National Security Clearance (Secret or Top Secret) is required for this role. ship is required to be eligible for a National Security Clearance.
• The hiring range is $126,000 - $174,000 LIR annually.
• For candidates located near other National IT locations, outside of Richmond, VA, the listed hiring and salary ranges may be adjusted based on your geographic location.
• Salary offered will be based on the job responsibilities and the individual's knowledge, skills, and experience as defined in the job qualifications.
• Applications are reviewed on a rolling basis. Interested candidates are strongly encouraged to apply by September 10, 2025.
• Always verify and apply to jobs on Federal Reserve System Careers or through verified Federal Reserve Bank social media channels.

Full Time / Part Time
Full time

Regular / Temporary
Regular

Job Exempt (Yes / No)
Yes

Job Category
Information Technology Family Group

Work Shift
First (United States of America)

The Federal Reserve Banks are committed to equal employment opportunity for employees and job applicants in compliance with applicable law and to an environment where employees are valued for their differences.

Always verify and apply to jobs on Federal Reserve System Careers ( ) or through verified Federal Reserve Bank social media channels.

Privacy Notice