Threat Collections Engineer
AnthropicSan Francisco, California, United States • Washington, District of Columbia, United States
Posted January 20, 2026
300000 - 405000 USD year
Full Time
About the Company
Anthropic's mission is to create reliable, interpretable, and steerable AI systems. We want AI to be safe and beneficial for our users and for society as a whole.
Job Description
We are looking for a Threat Collections Engineer to join our Threat Intelligence team. In this role, you will build the infrastructure that powers our threat discovery capabilities—integrating external data sources, developing detection systems for automated lead generation, and creating internal tooling that scales our investigators' impact.
Requirements
- Build automated detection systems that use disparate signals to identify abusive behavior.
- Take systems from idea to proof-of-concept to production-grade with appropriate monitoring, documentation, and maintenance processes
- Develop and maintain YARA rule infrastructure, including tools for writing, validating, and testing rules against real data
- Create integrations with external threat intelligence platforms (e.g. VirusTotal, Censys, Urlscan) via MCP servers to enable multi-source correlation during investigations
- Build data pipelines that ingest intelligence from RSS feeds, CTI news sources, and partner sharing, using Claude to extract TTPs and generate targeted hunting queries
- Develop behavioral analytics capabilities using DBT-based frameworks and create searchable audit logging infrastructure
- Establish feedback loops with investigators to tune detection systems and reduce false positives
- Scrape and normalize data from external sources to feed threat detection and enrichment workflows
Benefits
- Generous Paid Time Off
- Generous Parental Leave
- Tuition Reimbursement
- Relocation Assistance