Professional Resume Template for

Threat Intelligence Analyst

Liam J. Kensington

Arlington, VA

(703) 555-0138

liam.kensington@cybermail.io

linkedin.com/in/liam-kensington-intel | github.com/liamkensington-sec

Professional Summary

Security-focused Threat Intelligence Analyst with 5 years of background monitoring global cyber threats, tracking threat actor groups, and translating complex security logs into actionable intelligence. Proficient in applying the MITRE ATT&CK framework and threat modeling methodologies to identify vulnerabilities and predict adversary campaigns. Successfully authored 140+ tactical and strategic intelligence briefings, reducing incident response times by 32% through early detection of indicators of compromise. Skilled in utilizing SIEM tools, open-source intelligence databases, and threat sharing platforms. Proficient with Splunk, MISP, ThreatConnect, Wireshark, and Python scripting.

Work Experience

Threat Intelligence Analyst — Vanguard Security Labs

Arlington, VA | January 2024 – Present

  • Monitored 18 target-specific threat groups using MISP and OSINT sources, producing 45 early warning alerts that mitigated active network penetration risks for 12 corporate clients.
  • Analyzed 1,500+ malicious files and suspicious network communication logs using Wireshark and Yara, extracting 80+ unique indicators of compromise to update firewalls and endpoint protection rules.
  • Automated threat intelligence ingestion processes by writing custom Python scripts, reducing manual analyst data entry times by 12 hours weekly and increasing threat feed ingestion speed by 40%.
  • Authored 32 strategic threat briefings for executive leadership, mapping adversary tactics to the MITRE ATT&CK framework, which directly guided a $250,000 security infrastructure budget expansion.

Associate Threat Intelligence Analyst — Sentinel Cyber Defense

Reston, VA | August 2021 – December 2023

  • Maintained the corporate threat database of over 12,000 records, executing Python scripting updates that reduced search query latency by 35% and improved team reporting speed.
  • Investigated 80+ security alerts escalated by the SOC team, identifying 14 false positives and optimizing Splunk SIEM alert correlation rules to reduce triage workloads by 15%.
  • Evaluated 250+ phishing emails reported by users, identifying 3 key active campaigns and blocking 48 malicious domains at the email gateway within 15 minutes of initial notification.
  • Drafted weekly threat reports and summaries detailing global ransomware activity and emerging zero-day vulnerabilities, distributing actionable summaries to 18 internal engineering teams.

Education

Bachelor of Science in Cybersecurity

George Mason University · Fairfax, VA · 2021

Skills

Threat intelligence lifecycle, OSINT gathering, MITRE ATT&CK mapping, Malware analysis, Indicators of Compromise (IOCs), Dark web monitoring, Network packet analysis, SIEM log correlation, Python scripting, SQL database querying, Splunk, MISP, ThreatConnect, Wireshark, Yara

Projects

Automated Indicator Ingestion Engine

Role: Lead Developer & Threat Analyst

Tools: Python, MISP, Splunk, ThreatConnect

Engineered a Python tool to parse raw threat feeds and inject IOCs directly into the SIEM, reducing analyst investigation time by 45%.

Adversary Campaign Tracking Dashboard

Role: Threat Analyst

Tools: Splunk, HTML, CSS, JavaScript, SQL

Designed a dashboard tracking activity from 12 APT groups, increasing internal visibility of vulnerability targets and reducing security alert noise by 28%.

Certifications

  • GIAC Cyber Threat Intelligence (GCTI) (2022)
  • Certified Threat Intelligence Analyst (CTIA) (2023)
  • CompTIA Security+ (2021)

Additional information

  • Languages: English (Native), French (Conversational)
  • Professional Memberships: Cyber Threat Alliance Member (2022-Present)
  • Volunteer Work: Mentoring cybersecurity students through regional non-profit organizations (2023-Present)

Ready to use this template?

Customize this template

Job Market Insights

Market data and opportunities for

Threat Intelligence Analyst

Job Market Insights

$95,000

-

$145,000

Avg:

$120,000

Growth Outlook:

The employment of information security analysts, including threat intelligence specialists, is projected to grow 32% from 2024 to 2034, which is much faster than the average for all occupations. The increasing frequency of state-sponsored cyber espionage and ransomware campaigns targeting critical infrastructure drives this demand. Organizations need specialized experts to monitor adversary behaviors and secure digital assets, ensuring a strong outlook for professionals in this field.

32% growth over 10 years (2024–2034)

Key Skills Required

Focus on these skills when customizing your resume for recruiter screenings.

Hands-on experience tracking threat groups and analyzing malware behaviors using MISP or ThreatConnect || Proficiency in mapping security events and threat campaigns using the MITRE ATT&CK framework || Strong capability to analyze network packet logs and extract indicators of compromise using Wireshark

Search Jobs

Explore live openings for

Threat Intelligence Analyst

roles and tailor your resume to match the market demand.

Search

FAQ

Common questions about the

Threat Intelligence Analyst

position

What does a Threat Intelligence Analyst do on a daily basis?
Which software tools are most critical for this role?
What is the MITRE ATT&CK framework and how is it used?
Is a security clearance required for Threat Intelligence Analysts?
What is the typical career path for a Threat Intelligence Analyst?
What is the difference between threat intelligence and threat hunting?
Use this template