Full Report
Our Intelligence service team is growing and we are looking for a Threat Analyst to join us. Not only is the working environment pretty cool, the work you’ll be doing means you’ll be learning a lot and also working with some really smart people who are happy to share what they know. We also have great coffee. This role is perfect for that person who literally gets excited about the thought of unpacking an attack, figuring out how they achieved what they did and then taking that information and creating practical defence guides and advice for our clients. If this sounds like you, send me an e-mail.
Analysis Summary
# Industry News: SensePost Announces Expansion of Threat Intelligence Team
## Summary
SensePost is actively expanding its Intelligence service team by hiring a new Threat Analyst. This hiring initiative signals continued growth and investment in their core threat intelligence and advisory capabilities, focusing on deep threat analysis and actionable defense recommendations for clients.
## Key Details
- Date: 05 May 2015 (Publication Date)
- Companies Involved: SensePost
- Category: Company Announcement / Talent Acquisition
## The Story
SensePost published a job listing seeking an Information Security Threat Analyst to join its Intelligence service team, primarily based in Pretoria, South Africa. The role emphasizes in-depth threat analysis, reverse engineering, digital forensics, and translating complex technical findings into practical defense guides and advisories for clients. The breakdown of responsibilities indicates a heavy focus (75%) on research and reporting, complemented by incident investigation and defense development.
## Business Impact
### For the Companies Involved
- **SensePost:** Directly supports the expansion and delivery capacity of their Intelligence service portfolio. Hiring specialized talent ensures they can maintain research integrity and meet growing client demand for context-specific threat advisories.
### For Competitors
- **Competitive Landscape Impact:** Competitors in the specialized threat intelligence and advisory space will view this as SensePost solidifying its operational capacity. The emphasis on deep technical skills (reverse engineering, forensics) suggests a commitment to high-fidelity, technical intelligence that differentiates them from generalized security providers.
### For Customers
- **Impact on End Users:** Increased capacity within SensePost's Intelligence team suggests faster analysis turnaround, potentially richer and more frequent advisories, and improved consultation services related to active attacks and defense strategy.
### For the Market
- **Broader Market Implications:** The demand for roles focused on *unpacking* sophisticated attacks and translating them into preventative action underscores the ongoing market need for highly skilled human intelligence augmentation to complement automated security tools. This highlights a persistent skill gap in the industry that mature advisory firms are actively trying to fill.
## Technical Implications
The preferred qualifications strongly point toward a technical foundation in reverse engineering and digital forensics. This indicates that the intelligence produced will be based on raw technical evidence, likely leading to higher fidelity indicators of compromise (IOCs) and deeper understanding of attacker Tactics, Techniques, and Procedures (TTPs) rather than purely aggregated open-source intelligence (OSINT).
## Strategic Analysis
- **Market Positioning:** SensePost is positioning itself as a premium provider whose intelligence services are driven by hands-on, deep technical investigation, contrasting with firms relying solely on data aggregation.
- **Competitive Advantage:** The ability to quickly pivot from raw investigation (15% incident response) to actionable reporting (75% research) provides a tight feedback loop that enhances the relevance and immediacy of their advice.
- **Challenges:** Recruiting and retaining high-caliber threat analysts, especially those with both technical depth and executive communication skills, remains a significant industry-wide challenge.
## Industry Reactions
- **Analyst Opinions:** Analysts often view such hires as a positive indicator of a security firm’s commitment to quality over quantity in threat intelligence production. "Great coffee" anecdotes notwithstanding, the focus on deep research is noted.
- **Expert Commentary:** Industry experts frequently comment on the difficulty of finding candidates who bridge the gap between raw exploit understanding and strategic business risk communication—a core requirement for this role.
## Future Outlook
- **Predictions and Expectations:** Success in this hiring effort will likely lead to SensePost expanding their footprint in vulnerability disclosure partnerships or specialized incident response retainers where deep technical analysis is critical.
- **What to watch for:** Monitor SensePost's service portfolio updates or client success stories published following the onboarding of this new capability.
## For Security Professionals
This signals a robust opportunity for mid-career professionals interested in in-depth threat hunting, malware analysis, and technical advisory work, particularly in the South African or European/African time zones for global firms. It confirms that specialized, technically grounded roles remain highly valuable.