Threat Analyst

Styx Intelligence is a fast-growing cybersecurity company based in Vancouver on a mission to make the digital world safer. Our AI-powered platform helps organizations protect what matters most - their brand, executives, and digital assets - by detecting and stopping threats like phishing, impersonation, data leaks, and even emerging risks fueled by generative AI. Backed by top-tier venture investors, we’re building an all-in-one digital risk protection solution that brings together cutting-edge technology, real-time visibility, and automated takedowns. 

At Styx, we move quickly, think boldly, and work collaboratively. Joining our team means having the opportunity to shape the future of online security, solve meaningful challenges at scale, and grow alongside a company that’s just getting started. 

About the Role 

We're looking for a hands-on, versatile Threat Intelligence Analyst to join our growing team.  This role sits at the intersection of cybersecurity, brand protection, and customer support, and is ideal for someone who is equally comfortable executing investigations, managing enforcement actions, and supporting customers. 

We are looking for someone who is comfortable owning a product end-to-end and working autonomously.  

Responsibilities 

Threat Disruption & Takedowns  

• Own and manage all aspects of the takedown and disruption program, including phishing sites, domain impersonation, social media impersonation, scam content, rogue mobile applications, copyright violations, and abuse of customer brand assets. 
• Submit, track, and manage takedown requests across registrars, hosting providers, CDNs, social media platforms, app stores, marketplaces, and other third-party service providers. 
• Investigate and analyze domains, URLs, IP addresses, mobile applications, social media accounts, and other digital assets to assess malicious activity and determine appropriate enforcement actions. 
• Handle complex abuse cases and drive investigations and enforcement actions through to resolution. 
• Maintain accurate records of investigations, takedown requests, communications, and outcomes. 
• Monitor takedown performance and identify opportunities to improve response times and success rates. 

Customer Success & Solution Ownership 

• Serve as the primary owner of customer delivery for the Brand Protection and Executive Protection solution.  
• Act as a customer-facing resource, responding to inquiries, providing status updates, resolving issues, and supporting onboarding activities. 
• Conduct customer environment reviews and cleanup initiatives to improve data quality and platform effectiveness. 
• Continuously evaluate and improve monitoring coverage by reviewing keywords, detection logic, and platform configurations. 
• Analyze monitoring results to identify coverage gaps, false positives, and opportunities to improve detection quality. 
• Develop and refine keyword strategies to maximize visibility into brand abuse, impersonation, phishing, and other digital risks. 

Operations & Process Improvement 

• Own workflows end-to-end, ensuring consistency, efficiency, and quality across operational activities. 
• Identify opportunities to automate, streamline, and scale operational processes. 
• Create and maintain operational procedures, documentation, and best practices. 

Cross-Functional Collaboration 

• Partner closely with Engineering, Product, Support, and Threat Intelligence teams to address customer needs and operational challenges. 
• Provide feedback and recommendations to improve platform capabilities, workflows, and service delivery. 
• Act as a subject matter expert for takedown operations, monitoring optimization, and digital risk investigations. 

Required Skills 

• 4+ years of experience working in a cybersecurity or threat intelligence role with understanding of attack vectors, OSINT, brand protection, and digital risk 
• Hands-on experience with Takedown processes (DMCA, abuse reporting, platform enforcement) and Phishing / impersonation / scam investigations 
• Familiarity with OSINT tools (e.g., VirusTotal, DomainTools, RiskIQ, Maltego, Shodan) 
• Strong investigative and analytical thinking 
• Ability to manage multiple tasks and priorities independently 
• Clear written and verbal communication, especially customer-facing 
• Organized with strong attention to detail and follow-through 
• Comfortable working in startup-paced environments with evolving requirements 

Nice-to-Haves: 

• Experience working directly with customers or external stakeholders 
• Basic scripting or automation (Python, APIs, etc.) 
• Experience in startup or high-growth environments 

Why Join Styx Intelligence 

• Work on high-impact problems that matter to businesses around the world 
• Work with a team of SME with a lot of room for ownership 
• Competitive salary and equity package 
• Flexible remote work, generous vacation, and growth opportunities 

Styx Intelligence is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. If you require accommodation during the recruitment process, please let us know.