Note: The job is a remote job and is open to candidates in USA. Gallagher, a global community of people, is seeking a Cyber Threat Intelligence Analyst to deliver actionable intelligence for enterprise cyber defense. The role involves coordinating with Managed Security Service Providers, analyzing threat actors, and leading intelligence collection to protect non-integrated and in-flight M&A entities.
Responsibilities
- Coordinate with Gallagher’s Threat Intelligence Lead
- Analyze and assess threat actors, campaigns, and vulnerabilities impacting:
- Non-integrated / partially integrated M&A entities
- Assured Partners during transitional migration phases
- Map adversary activity using MITRE ATT&CK, identifying exposure across varying levels of security maturity
- Produce intelligence across:
- Tactical (IOCs, actor activity)
- Operational (campaign trends, targeting patterns)
- Strategic (industry risk, geopolitical drivers)
- Partner with MSSP (e.g., ReliaQuest) to:
- Validate and enrich threat intelligence outputs for non-integrated M&A’s including Assured Partners
- Ensure coverage for high-risk threats across all non-integrated M&As
- Review and challenge MSSP-provided intelligence for completeness and relevance
- Act as internal escalation point for intelligence gaps or inconsistencies
- Lead intelligence collection for entities not yet onboarded to centralized security tooling, including:
- OSINT monitoring (credential leaks, brand impersonation, exposed infrastructure)
- Dark web / criminal forum monitoring
- External attack surface analysis
- Identify early indicators of compromise affecting:
- Newly acquired entities
- Divested or transitioning networks
- Develop intelligence-driven risk profiles for M&A assets lacking full visibility
- Support cybersecurity due diligence and post-acquisition threat monitoring
- Provide intelligence assessments on:
- Newly acquired organizations prior to full integration
- Assured Partners migration risk exposure during transition phases
- Identify active threats targeting transitional environments and recommend interim controls
- Collaborate with M&A cyber and integration teams to prioritize security onboarding
Skills
- 3–7 years in Cyber Threat Intelligence, SOC, or Incident Response
- Experience operating in hybrid models (internal + MSSP)
- Exposure to M&A cybersecurity, transitional IT environments, or decentralized architectures
- Bachelor's degree
- Strong business/relevant industry acumen
- Solid business communications skills
- GIAC GCTI, CTIA, CISSP, or GCIH
- Experience supporting M&A integration or large-scale migrations
- Familiarity with STIX/TAXII
- OSINT tooling (e.g., Maltego, Shodan, Recorded Future, SpyCloud)
- Scripting (Python) for enrichment and automation
Benefits
- Medical/dental/vision plans, which start from day one!
- Life and accident insurance
- 401(K) and Roth options
- Tax-advantaged accounts (HSA, FSA)
- Educational expense reimbursement
- Paid parental leave
- Digital mental health services (Talkspace)
- Flexible work hours (availability varies by office and job function)
- Training programs
- Gallagher Thrive program – elevating your health through challenges, workshops and digital fitness programs for your overall wellbeing
- Charitable matching gift program
Company Overview