Cyber-Intelligence & Information Operations Specialist Remote / Telecommute Jobs

Overview We are seeking a highly skilled Cyber-Intelligence Specialist with deep expertise in identifying, analyzing, and forecasting cyber-enabled influence operations (IO), state-sponsored disinformation, and advanced persistent threat (APT) activity. The ideal candidate brings a strong background in AI-powered automation, threat hunting, and scalable intelligence workflows—capable of transforming complex digital signals into actionable insights for government, enterprise, and executive audiences. This role is ideal for an analyst who thrives at the intersection of cyber operations, geopolitical risk, and emerging AI-driven threats. This is a hybrid position with one day per week on the client site in Tysons Corner and four days per week remote. Key Responsibilities Information Operations & Disinformation Analysis • Uncover, track, and assess state-sponsored influence operations, including campaigns aligned with the People’s Republic of China (PRC) and Russia. • Conduct deep-dive investigations into IO narratives, artifacts, and TTPs, identifying behavioral patterns across social platforms, inauthentic websites, and covert online assets. • Identify groundbreaking findings such as: o Recruitment of U.S. persons by foreign operatives to amplify propaganda or organize domestic protests. o Leaked AI prompts and operational workflows used by pro-PRC IO actors. o Major PRC-linked IO campaigns such as DRAGONBRIDGE and HaiEnergy. AI-Driven Intelligence Automation • Architect and maintain AI-powered reporting pipelines using Python, Gemini, and Google AI Studio. • Develop automated intelligence workflows enabling rapid analysis of IO actors, hacktivist activity, website defacements, and DDoS claims. • Produce the first AI-driven reporting series used within Mandiant Threat Intelligence, resulting in analysis later cited in an FBI affidavit. Cyber Threat Analysis & Actor Profiling • Conduct structured research on APT and cyber espionage campaigns, particularly those associated with the PRC. • Translate complex technical findings into clear, actionable reporting for Fortune 500 clients and U.S. government stakeholders. • Build and maintain threat actor playbooks using the MITRE ATT&CK framework, internal graph-analytics tools, VirusTotal, Censys, and OSINT enrichment workflows. Executive Communication & Client Engagement • Deliver high-impact intelligence briefings to senior executives, corporate security teams, and government partners. • Develop clear, data-driven recommendations to mitigate geopolitical, cyber, and influence-operation risks. Required Qualifications • 5+ years of experience in threat intelligence, cyber operations, or information operations analysis. • Demonstrated expertise analyzing state-sponsored disinformation and influence campaigns. • Strong proficiency with Python, AI/ML-driven analytics, and automated reporting pipelines. • Experience with OSINT, graph-based modeling, enrichment platforms, and threat research tools (VirusTotal, Censys, etc.). • Excellent written and verbal communication skills, including experience presenting to senior leadership. • Familiarity with frameworks such as MITRE ATT&CK and structured analytic methodologies. Preferred Qualifications • Experience working in high-profile intelligence roles within technology companies, cybersecurity vendors, or government agencies. • Background in PRC, Russia, or geopolitical cyber operations. • Experience integrating LLMs and generative AI into threat intelligence workflows. • Previous publications, investigations, or contributions cited by government entities or major industry reports. Apply tot his job