SR Consultant, Surface Area Management - Threat Intelligence
Cargill's size and scale allows us to make a positive impact in the world. Our purpose is to nourish the world in a safe, responsible and sustainable way. We are a family company providing food, ingredients, agricultural solutions and industrial products that are vital for living. We connect farmers with markets so they can prosper. We connect customers with ingredients so they can make meals people love. And we connect families with daily essentials - from eggs to edible oils, salt to skincare, feed to alternative fuel. Our 160,000 colleagues, operating in 70 countries, make essential products that touch billions of lives each day. Join us and reach your higher purpose at Cargill.
Job Purpose and Impact
As a Threat Intelligence Senior Consultant you will play a critical role in strengthening the organization's security posture by leading the collection, analysis, and dissemination of actionable threat intelligence. Your expertise will drive proactive defense measures, inform executive and operational decisions, and ensure alignment between emerging cyber threats and enterprise risk. You will serve as a key advisor to both technical teams and leadership, transforming raw intelligence into strategic insights that reduce exposure and accelerate response to adversarial activity..
Key Accountabilities
Want more jobs like this?
Get jobs in Wayzata, MN delivered to your inbox every week.
OPERATIONAL THREAT INTELLIGENCE
• Monitor, collect, and analyze raw threat data from a diverse range of sources (OSINT, commercial feeds, dark web, internal telemetry) to identify immediate threats, campaigns, and indicators of compromise (IOCs) relevant to the organization.
• Develop and disseminate tactical threat intelligence, including IOCs, YARA or SIGMA rules, Snort/Suricata signatures, and detection logic, for rapid deployment by Security Operations Center (SOC) and Incident Response (IR) teams.
• Provide actionable intelligence on how vulnerabilities are being exploited to inform remediation efforts and compensating controls.
• Provide real-time support during active incidents, offering deep technical context on adversary TTPs, malware families, and observed attack chains.
• Contribute to the enhancement of security controls and detection capabilities by identifying gaps based on current threat intelligence and recommending specific improvements.
INTELLIGENCE DISSEMINATION & COMMUNICATION
• Produce clear, concise, and technically accurate intelligence reports, alerts, and briefings for various audiences, from technical defenders to executive leadership.
• Contextualize technical findings with relevant business impact to ensure intelligence is actionable and understood by non-technical stakeholders.
• Actively participate in knowledge sharing and training initiatives to uplift the overall threat intelligence maturity across the organization.
Qualifications
REQUIRED QUALIFICATIONS
• 4 years of relevant work experience
• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field, or equivalent practical experience.
• Demonstrable experience with threat intelligence platforms (TIPs) and security information and event management (SIEM) systems (e.g., Splunk, Elastic, Sentinel).
• Strong understanding and ability to deconstruct complex adversary tactics, techniques, and procedures (TTPs) and experience applying frameworks like MITRE ATT&CK to articulate adversary behaviors and inform defensive strategies.
• Excellent written and verbal communication skills, with the ability to convey complex technical information to diverse audiences.
• Demonstrated experience in leading and operationalizing a Threat Intelligence program.
PREFERRED QUALIFICATIONS
• Experience with scripting languages (e.g., Python) for data analysis, automation, or malware analysis.
• Experience with vulnerability scanning platforms (e.g., Tenable.sc, Nessus, Qualys) and their integration with threat intelligence.
• Experience performing in-depth technical analysis of malware (static and dynamic), phishing campaigns, and observed adversary techniques to understand their functionality, capabilities, and intent.
• Experience analyzing network traffic (PCAP), logs, and endpoint data to identify technical indicators and patterns of malicious activity.
• Certifications such as GCTI, GREM, GCFA, CISSP, or similar.
Equal Opportunity Employer, including Disability/Vet.
Perks and Benefits
Health and Wellness
- Short-Term Disability
- HSA With Employer Contribution
- Health Insurance
- Health Reimbursement Account
- Dental Insurance
- Vision Insurance
- Life Insurance
- Long-Term Disability
- FSA
- HSA
- Mental Health Benefits
Parental Benefits
- Fertility Benefits
- Family Support Resources
- Birth Parent or Maternity Leave
- Non-Birth Parent or Paternity Leave
- Adoption Assistance Program
- Adoption Leave
Work Flexibility
- Flexible Work Hours
- Remote Work Opportunities
- Hybrid Work Opportunities
Office Life and Perks
- Casual Dress
- On-Site Cafeteria
- Holiday Events
Vacation and Time Off
- Paid Vacation
- Paid Holidays
- Personal/Sick Days
- Sabbatical
- Leave of Absence
- Volunteer Time Off
Financial and Retirement
- 401(K) With Company Matching
- Stock Purchase Program
- Performance Bonus
- Relocation Assistance
- Financial Counseling
Professional Development
- Tuition Reimbursement
- Promote From Within
- Mentor Program
- Shadowing Opportunities
- Access to Online Courses
- Lunch and Learns
- Internship Program
- Work Visa Sponsorship
- Leadership Training Program
- Associate or Rotational Training Program
Diversity and Inclusion