• Conduct daily OSINT‑based threat hunting to identify emerging threats, adversary behaviors, and relevant indicators of compromise (IOCs). • Perform guided and unguided research into threat actors, campaigns, malware families, vulnerabilities, and exploits. • Analyze open and closed environments to map adversary networks, identify credible threats, and track actor communities. • Produce tactical, operational, and strategic intelligence products, including client‑facing briefings, written assessments, and threat forecasts. • Develop comprehensive threat reports on adversaries, global cyber events, and counter‑threat considerations. • Act as a senior escalation point for incident responders, threat analysts, and engineering teams. • Leverage RESTful APIs, Python, and automation tooling to upload, validate, and enrich IOCs. • Assess and maintain automated threat intelligence sources; add, tune, or deprecate feeds as needed. • Work collaboratively with IR teams, SOC leadership, and partner units to support threat‑informed detection engineering and active cyber campaign response. • Respond to Requests for Information (RFIs) and investigate potential false positives or intelligence mismatches. • Brief internal stakeholders, leadership, and clients on evolving threat activity and recommended defensive actions. • Participate in industry forums and represent gTIC through research publications, conference presentations, and community engagement. • Drive continuous improvement of the intelligence lifecycle, collection management, and analytic rigor. • Support development of next‑generation analytics platforms and big‑data‑driven intelligence capabilities. • Travel as needed (up to 15–20%) for client engagements, conferences, and intelligence‑sharing events.