Threat Intelligence Researcher

SentiLink provides innovative identity and risk solutions, empowering institutions and individuals to transaction with confidence. We're building the future of identity verification in the United States replacing a clunky, ineffective, and expensive status quo with solutions that are 10x faster, smarter, and more accurate.

We've seen tremendous traction and are growing extremely quickly. Our real-time APIs have helped verify hundreds of millions of identities, starting with financial services and rapidly expanding into new markets. SentiLink is backed by world-class investors including Craft Ventures, Andreessen Horowitz, NYCA, and Max Levchin.

We've earned recognition from TechCrunch, CNBC, Bloomberg, Forbes, Business Insider, PYMNTS, American Banker, LendIt, and have been named to the Forbes Fintech 50 list every year since 2023. Last but not least, we've even made history -– we were the first company to go live with the eCBSV and testified before the United States House of Representatives on the future of identity.

SentiLink supports a variety of ways to work, ranging from fully remote to in-office. We operate as a digital-first company with strong collaboration across the U.S. and India. We maintain physical offices in Austin, San Francisco, New York City, Seattle, Los Angeles, and Chicago in the U.S., and in Gurugram (Delhi) and Bengaluru in India. If you're located near one of these offices, we would love for you to spend time in the office regularly. Some roles are hybrid or in-office by design. For example, our engineering team in India works primarily from our Gurugram office.

Responsibilities:

• Discover and track high-signal fraud ecosystems across Telegram, Signal, WhatsApp, Potato, darknet forums, and other emerging platforms where illicit activity evolves.

• Map and maintain a living directory of fraud communities, vendors, and schemes — documenting shifts, closures, and migrations as they happen.

• Build and operate secure digital personas to gain and sustain access to closed or semi-closed environments without disrupting their natural flow.

• Conduct daily OSINT and dark-web collection, archiving, and curation of intelligence related to key actors, fraud types, and evolving schemes.

• Enrich collected data with structured metadata to make it usable for downstream analysis, detection models, and automation pipelines.

• Deliver clear, concise intelligence summaries and trend reports that help teams understand emerging risks and adapt proactively.

• Constantly experiment with new tools, methods, and platforms — identifying at least two promising new intelligence sources each quarter.

• Maintain and enhance operational infrastructure (personas, tooling, SOPs) to ensure access remains reliable, ethical, and secure.
  

Requirements:

• Demonstrated interest in fraud ecosystems, open-source intelligence (OSINT), or investigative research.

• Ability to dedicate 4–8 hours daily immersed in unstructured, sensitive, and dynamic online environments.

• Strong technical fluency; comfortable with navigating unfamiliar platforms, managing multiple accounts, and using investigative tools.

• Highly organized with meticulous attention to detail—able to structure large volumes of data clearly and consistently.

• Strong multitasking skills; capable of tracking trends, actors, and discussions across multiple sources simultaneously.

• Excellent written communication skills for clear, concise, and actionable intelligence reporting.

• Strong analytical judgment to identify meaningful patterns, actors, or threats within noisy environments.

• Operates with a high degree of discretion and maintains strong operational security practices.

• Employer paid group health insurance for you and your dependents

• 401(k) plan with employer match (or equivalent for non US-based roles)

• Flexible paid time off

• Regular company-wide in-person events

• Home office stipend, and more

• Follow Through

• Deep Understanding

• Whatever It Takes

• Do Something Smart