Cyber Threat Intelligence; CTI Manager

Why Choose Bottomline?
Are you ready to transform the way businesses pay and get paid? Bottomline is a global leader in business payments and cash management, with over 35 years of experience and moving more than $16 trillion in payments annually. We're looking for passionate individuals to join our team and help drive impactful results for our customers. If you're dedicated to delighting customers and promoting growth and innovation - we want you on our team!

Location: This role is Remote based;
Candidates can be located in the US or EU markets.

The Cyber Threat Intelligence Manager is a critical leadership role responsible for establishing, managing, and advancing the organization's threat intelligence capabilities within the fintech and payment processing ecosystem. This position requires a strategic mindset combined with hands‑on technical expertise to deliver actionable intelligence that drives risk‑informed decision‑making across the enterprise. The successful candidate will serve as the primary intelligence authority, translating complex threat landscapes into clear, actionable insights for both technical and executive audiences while building a mature, scalable threat intelligence program aligned with business objectives.

• Lead the design, implementation, and ongoing maturation of the enterprise threat intelligence program in partnership with the Senior Director of Security Operations and Senior Manager of Threat and Vulnerability Management
• Deploy and operationalize the organization’s threat intelligence platform, ensuring integration with existing security infrastructure and maximizing operational efficiency
• Establish and maintain intelligence collection requirements, prioritization frameworks, and dissemination protocols tailored to stakeholder needs
• Develop and maintain relationships with external intelligence sharing communities, industry groups, ISACs, and government agencies relevant to financial services

• Produce high‑quality strategic, operational, and tactical intelligence products addressing threat actor TTPs, emerging attack vectors, and sector‑specific risks affecting payment processing operations
• Analyze threat data from multiple sources to identify trends, patterns, and indicators of compromise relevant to the organization’s attack surface
• Translate technical threat intelligence into actionable recommendations for security operations, incident response, and risk management teams
• Deliver regular intelligence briefings to the Senior Director of Security Operations, CISO, and other executive stakeholders on the evolving threat landscape

• Serve as the fusion operations lead, coordinating intelligence‑driven response across fraud, security, and privacy teams during complex, cross‑functional incidents
• Provide intelligence support to vulnerability management operations, including threat context for prioritization decisions and exploitation likelihood assessments
• Support US hours coverage for vulnerability management activities when the Senior Manager requires operational assistance
• Collaborate with the SOC, incident response, and detection engineering teams to ensure intelligence is operationalized into defensive capabilities

• Establish and manage intelligence requirements from diverse stakeholders across risk management, compliance, fraud prevention, application security, and business units
• Develop tailored intelligence products and briefings appropriate to audience technical sophistication and organizational role
• Serve as the subject matter expert on cyber threat intelligence for internal and external engagements, including audits, regulatory inquiries, and board presentations

• Master’s degree in Cybersecurity, Information Security, Computer Science, Information Technology, or related technical field
• Relevant professional certifications such as GCTI, GIAC, CISSP, CISM, or equivalent strongly preferred

• 3–5 years of progressive cybersecurity experience with at least 2…