Updated April 2026

Threat Intelligence Analyst
Resume Example

A research-focused resume for threat intelligence analysts tracking adversaries and producing actionable intelligence. Designed for CTI roles.

Use This Template Read the breakdown
ATS Score
87
Excellent
Keywords · Impact · Format
Use this template

Elias Thornton

Arlington, VA  |  [email protected]  |  (555) 482-9137  |  linkedin.com/in/eliasthornton
Summary

Threat intelligence analyst with 5 years of experience tracking APT groups and producing strategic and tactical intelligence for enterprise SOC teams. Authored 120+ intelligence reports that directly informed detection rules, reducing mean time to detect by 40%. Skilled in OSINT, malware analysis, and threat modeling using Diamond Model and MITRE ATT&CK.

Technical Skills
Intelligence: OSINT, HUMINT analysis, Diamond Model, Kill Chain, MITRE ATT&CK, STIX/TAXII
Tools: Recorded Future, VirusTotal, MISP, Maltego, Shodan, Splunk, ThreatConnect
Technical: Malware Analysis, YARA rules, Python, Wireshark, Sandbox Analysis
Reporting: Intelligence Briefings, IOC Management, Threat Modeling, Risk Assessments
Experience
Threat Intelligence Analyst - Ironclad Cyber Defense Jun 2023 – Present
  • Tracked 8 APT groups targeting financial sector clients, producing 65 tactical intelligence reports that led to 40 new detection rules
  • Reduced mean time to detect targeted attacks by 40% by integrating threat intelligence feeds into Splunk correlation searches
  • Analyzed 200+ malware samples using sandbox environments and YARA rules, contributing 350 IOCs to the enterprise threat feed
  • Delivered 12 strategic threat briefings to C-suite executives, directly influencing $1.2M in security investment decisions
Junior Threat Analyst - NovaCyber Solutions Aug 2020 – May 2023
  • Monitored 15 dark web forums and 8 Telegram channels for threat actor activity, identifying 25 credential leak incidents affecting clients
  • Built an automated IOC enrichment pipeline in Python that processed 500 indicators daily, reducing analyst triage time by 60%
  • Created MITRE ATT&CK mappings for 30 threat campaigns, enabling the SOC to prioritize detection coverage for 12 high-risk techniques
  • Authored 55 intelligence reports with an average stakeholder satisfaction score of 4.7 out of 5 across 200 recipients
Education
B.S. Computer Science - Virginia Tech 2020
Build Your Resume With This Template

Free to start. No credit card required.

Why This Resume Works

1
Intelligence production is quantified

120+ reports, 350 IOCs, and 40 detection rules show prolific and actionable output.

2
Business influence demonstrated

$1.2M in security investment influenced by briefings shows strategic value beyond technical analysis.

3
APT tracking experience named

Tracking 8 APT groups by sector proves focused adversary research capability.

Section-by-Section Breakdown

Summary

State the number of intelligence reports produced and their measurable SOC impact. Name your frameworks.

Skills

Separate intelligence methodologies from technical tools. Include a Reporting category.

Experience

Quantify reports authored, IOCs produced, detection rules created, and briefings delivered.

Education

CS or cybersecurity degrees work. GCTI, CTIA, or SANS certifications are highly valued.

Key Skills for Threat Intelligence Analyst Resumes

Based on analysis of thousands of job postings, these are the most frequently required skills:

Threat Intelligence MITRE ATT&CK OSINT Malware Analysis YARA Python Splunk STIX/TAXII Diamond Model IOC Management Dark Web Monitoring Threat Modeling Recorded Future MISP Intelligence Reporting

Common Mistakes on Threat Intelligence Analyst Resumes

  • Saying 'researched threats' without specifics - Name the APT groups, sectors targeted, and number of campaigns analyzed.
  • No connection between intelligence and detection - Show how your reports became detection rules, response playbooks, or investment decisions.
  • Missing IOC and report volume metrics - Threat intelligence is a production role. Quantify your output volume and quality.
  • Ignoring stakeholder communication - Briefings, satisfaction scores, and executive presentations show communication skills.
  • Not referencing intelligence frameworks - Diamond Model, Kill Chain, and MITRE ATT&CK alignment shows structured analytical methodology.

How to Write a Threat Intelligence Analyst Resume That Gets Interviews

A strong resume focuses on measurable outcomes, not job duties. Show what you accomplished in each role, using specific numbers and results that prove your value to the next employer.

1
Start each bullet with a strong action verb

Replace "Responsible for" with "Led," "Built," "Reduced," or "Delivered." Action verbs show initiative and ownership.

2
Quantify your impact wherever possible

Revenue generated, costs saved, time reduced, team size managed, or customers served. Numbers make abstract accomplishments concrete.

3
Tailor your resume for each application

Read the job description and mirror their exact keywords and phrases. ATS systems match your resume against the posting, and close matches score higher.

4
Keep formatting simple and ATS-friendly

Single column, standard fonts, clear section headers, and no tables or graphics. A clean format ensures both ATS parsers and human reviewers can scan your resume quickly.

Once your threat intelligence analyst resume is drafted, score your resume to catch keyword gaps before submitting.

Related Guides

Best Skills to Put on a Resume How to Quantify Your Resume Bullet Points The Complete ATS-Friendly Resume Guide 150+ Resume Synonym Guides

Ready to build yours?

Upload your existing resume or start fresh. Get an ATS score and AI-powered suggestions in 30 seconds.

More Resume Examples

Cybersecurity Analyst View example → Security Engineer View example → Security Operations Analyst View example → Incident Response Analyst View example → Network Engineer View example → Data Analyst View example → Software Engineer View example → Cloud Engineer View example →