Head of Threat Research

About Netcraft

Netcraft is the global leader in cybercrime detection and disruption. We’re a trusted partner for three of the four largest companies in the world and many large governments. We've blocked over 225 million cyber-attacks to date, and we take down around 33% of the world's phishing attacks.

Our purpose and passion are focused on just one thing: protecting the world from cybercrime.

That passion shapes how we work, too. We’re proud of our talented team and the value each person brings, and we’ve built a workplace where people feel supported and inspired. From strong benefits and wellness programs to meaningful collaboration and team connection.

About the Role

As Head of Threat Research at Netcraft, you will lead the team responsible for publishing research grounded in Netcraft’s unique data sets, including global malicious URL and domain telemetry, and a takedown corpus spanning more than 20 years of phishing, malware, and brand impersonation attacks.

This is a newly created role within the expanding Product Strategy and Emerging Threats team. You will conduct hands-on research, lead a small team of threat analysts, own the publication pipeline, and help represent Netcraft through conferences, webinars, media engagements, and written publications.

This is a remote position based in the United States, with occasional travel for conferences, team meetings, and customer engagements.

What the Job Involves

Content Leadership & Public Presentation

Set editorial direction and quality standards across whitepapers, customer reports, blog posts, and briefing materials

Speak at industry conferences and webinars, including keynotes, panels, and expert commentary

Present complex findings to security analysts, senior executives, board members, and government officials

Serve as a media spokesperson on Netcraft’s threat research, including interviews and commentary with media outlets

Research & Analysis

Research phishing, malware, malicious JavaScript, and cybercrime campaigns using Netcraft’s threat intelligence platforms

Produce threat assessments ranging from short reactive write-ups on active campaigns to in-depth briefings on threat actors and emerging trends using internal telemetry and open-source intelligence

Track how threat actors exploit current events, emerging technologies, and changes in the threat landscape

Attribute infrastructure and campaigns to named threat actor groups and criminal ecosystems over time

Review the team’s research output for quality, accuracy, and technical depth prior to publication

Team Leadership & Collaboration

Mentor and develop a team of threat analysts

Partner with engineering and operations teams to turn research findings into detection rules, IOC feeds, takedown signals, and platform improvements

Support complex customer engagements by mapping threats to frameworks such as MITRE ATT&CK, the Diamond Model, and the Cyber Kill Chain, while briefing customers directly

Brief product, marketing, and sales teams on research findings to support roadmap planning, positioning, and customer conversations

Who You Are

Required Skills & Experience

Published research in threat intelligence or cybersecurity (blog posts, whitepapers, conference talks, etc.)

Experience presenting original research to audiences ranging from technical analysts to C-suite executives

Several years of threat intelligence experience, including experience leading or managing a team

Strong editorial judgment with experience reviewing and improving research writing for clarity, quality, and accuracy

Experience managing or contributing to a publication pipeline

Deep understanding of phishing, malware, online fraud, social engineering, and threat actor TTPs

Current working knowledge of web technologies, internet infrastructure, and data analysis

You’ll Thrive Here If You

Enjoy balancing hands-on research, team leadership, and public speaking

Can communicate complex technical concepts clearly to both technical and non-technical audiences

Prefer working with first-party intelligence and care about translating research into meaningful disruption, detection, and takedown outcomes

The Rewards Package

33 days vacation, including national holidays (which can be worked if preferred)

Generous enhanced family leave and pay

Enhanced sick pay increasing with length of service

Equity Tracking Units allowing you to share in Netcraft’s long-term success (eligibility criteria apply)

Hybrid and flexible working options

401(k) Safe Harbor Plan with employer match

Comprehensive private health coverage, including medical, dental, vision, and life insurance

Meals, snacks, and drinks provided in the office

Two paid Learning & Development days per year plus access to learning platforms such as Udemy and Coursera

Two paid Volunteering Days per year to support community and charitable involvement

Spot reward bonus scheme recognizing outstanding contributions

Employee Referral Bonus scheme

Diversity, Equity & Inclusion

This is deeply important to us. Through our ally network, we support under-represented groups and maintain a working environment free from bias, harassment, or discrimination. We encourage candidates from all backgrounds to apply.

We’re also happy to make adjustments to the hiring process to ensure every candidate can participate fully.

Please note: Netcraft does not accept unsolicited approaches from external recruiters.