You ArePassionate about security, love what you do and have a genuine desire to outsmart the bad guys. You have the experience to analyze a clients' security posture, anticipate security requirements and help find right-sized solutions based on industry leading practices. You have a proven track record working successfully in a fast-paced, agile environment.
The WorkIs an exciting opportunity to lead, influence, and execute on the technical and engineering core of a global cyber threat intelligence program serving mission-critical industry environments. As the Threat Informed Defense Senior Manager, you will own the capability that turns intelligence into defensive outcomes - structuring, normalizing, and operationalizing threat data so it drives detection, hunting, and response across Accenture's managed security stacks and those of our clients.
In this role, you will define how threat actors, campaigns, TTPs, malware, infrastructure, indicators, and telemetry are structured and consumed across TIP, SIEM, SOAR, and EDR. You will assess client and program defensive capabilities, recommend improvements, and implement the architecture and standards that make intelligence machine-consumable at enterprise scale. You'll have the opportunity to structure threat intelligence programs, govern analytic and engineering tradecraft, and continuously shorten the gap between adversary action and defensive response.
Ideal candidates for this category have previous experience leading or supporting one or more of the following:
- Threat-informed defense program design, including the threat profile 12 threat modeling 12 detection 12 hunting 12 response lifecycle,
- Central data model, common schema, or threat data normalization across multiple security tools or platforms (TIP, SIEM, SOAR, EDR),
- Detection engineering and detection-content governance (YARA, Sigma, behavioral signatures),
- Telemetry pipeline integration and threat hunt program development across EDR, network, identity, cloud, and OT data sources.
Travel may be required for this role. The amount of travel will vary from 0 to 100% depending on business need and client requirements.
Here's what you need- Minimum of 10 years of experience across cyber threat intelligence, threat-informed defense, detection engineering, threat hunting, or security operations, with demonstrated technical depth in at least two of these areas
- Minimum of 5 years leading technical teams, including experience managing other team leads or managers (second-line leadership).
- Minimum of 5 years of experience and demonstrated working knowledge of the core security stack - TIP, SIEM, SOAR, and EDR - and how intelligence and detection content is operationalized across them.
- Minimum of 5 years of hands-on experience with structured threat data and the MITRE ATT&CK framework, including modeling threat actors, campaigns, TTPs, malware, and infrastructure as related objects.
- Minimum of 5 years of experience defining or governing data structures, schemas, or normalization standards that span multiple tools or teams.
- Bachelor's degree or equivalent (minimum 12 years) work experience. (If Associate's Degree, must have minimum 6 years work experience)
Professional Skills Requirements- Strong written and verbal communication skills, including the ability to brief executive and client stakeholders and to report status, risk, and blockers clearly to senior leadership.
- Bachelor's degree in a relevant field, or equivalent professional experience.
Preferred Qualifications- Advanced degree in computer science, cybersecurity, data engineering, or a related discipline.
- Direct experience designing or owning a central data model, data fabric, or common data schema for a security or intelligence program.
- Practical familiarity with threat-informed defense methodologies and frameworks (e.g., MITRE ATT&CK, D3FEND, MITRE Threat-Informed Defense) and the threat profile 12 threat modeling 12 detection 12 hunting 12 response lifecycle.
- Working knowledge of STIX/TAXII and intelligence interchange standards.
- Experience in an MxDR/MDR or incident response consulting environment, ideally at global scale.
- Exposure to telemetry across diverse data sources - EDR, network, identity, cloud, and OT.
- Familiarity with relevant regulatory and reporting contexts (e.g., NIS2, DORA) as they affect intelligence and detection requirements.
- Relevant certifications such as GCTI, GREM, GCFA, GDAT, GCDA, or CISSP.
- Published threat research, detection content, or open-source contributions to the security community
Compensation at Accenture varies depending on a wide array of factors, which may include but are not limited to the specific office location, role, skill set, and level of experience. As required by local law, Accenture provides a reasonable range of compensation for roles that may be hired as set forth below.
We anticipate this job posting will be posted until 08/16/2026.
Accenture offers a market competitive suite of benefits including medical, dental, vision, life, and long-term disability coverage, a 401(k) plan, bonus opportunities, paid holidays, and paid time off. See more information on our benefits here:
U.S. Employee Benefits | Accenture
Role Location Annual Salary Range
California $132,500 to $338,300
Cleveland $122,700 to $270,600
Colorado $132,500 to $292,200
District of Columbia $141,100 to $311,200
Illinois $122,700 to $292,200
Maine $112,900 to $249,000
Maryland $132,500 to $292,200
Massachusetts $132,500 to $311,200
Minnesota $132,500 to $292,200
New York $122,700 to $338,300
New Jersey $141,100 to $338,300
Virginia $122,700 to $311,200
Washington $141,100 to $311,200