Anomali Platform Engineer | Threat Intelligence Specialist

We are seeking an experienced Anomali Threat Intelligence Specialist to join our cybersecurity team. The ideal candidate will have in-depth expertise in leveraging the Anomali platform to detect, investigate, and respond to cyber threats. This role requires hands-on experience in threat intelligence integration, incident investigation, and automation workflows using Anomali.

Location: Riyadh, Saudi Arabia (On-site)

Job Type: Full-time

Key Responsibilities:

• Configure, manage, and optimize the Anomali Threat Intelligence Platform (TIP).
• Integrate threat intelligence feeds into SIEMs, SOAR tools, and other security systems.
• Analyze, validate, and enrich threat intelligence data from various sources.
• Develop and maintain threat intelligence workflows, dashboards, and reports in Anomali.
• Correlate threat intelligence data with security events to detect potential attacks.
• Collaborate with SOC, incident response, and threat hunting teams to operationalize threat intelligence.
• Ensure the platform is updated with the latest indicators, signatures, and configurations.
• Provide training and knowledge transfer on Anomali best practices to internal teams.

Required Skills & Experience:

• Proven experience (2+ years) working directly with the Anomali Threat Intelligence Platform.
• Strong understanding of cyber threat intelligence frameworks (MITRE ATT&CK, STIX/TAXII).
• Experience integrating Anomali with SIEM tools (Splunk, QRadar, etc.).
• Familiarity with SOAR platforms and security automation workflows.
• Knowledge of threat intelligence lifecycle and analysis techniques.
• Solid understanding of TCP/IP, DNS, HTTP/S, and other network protocols.
• Hands-on experience with threat hunting and incident response processes.