Kroll Inc. Jobs Hiring Now
Kroll Inc. is hiring for 53 open roles on Migrate Mate as of July 16, 2026, concentrated in business analysis and cloud & DevOps, with listed salaries up to about $250,000. Migrate Mate updates Kroll Inc.'s live openings daily. Kroll is a global advisory firm providing valuation, financial investigations, compliance, cyber risk, and corporate intelligence services to clients across industries.
Find Kroll Inc. JobsOverview
Kroll Inc. hiring data on Migrate Mate, as of July 16, 2026.
- Open jobs
- 53
- Top team
- Business Analysis
- Seniority
- Mid to senior level
- Work type
- 40% remote or hybrid
- Top location
- New York
- Salary range
- $50,000–$250,000
Listed salaries for Kroll Inc. roles on Migrate Mate range from about $50,000 to $250,000 per year across 53 open roles, as of July 16, 2026. Some roles list hourly contract rates.
Open Roles at Kroll Inc.
Showing 25 of 53+ Kroll Inc. jobs



















































Kroll CTI is seeking a highly motivated and client-focused Director, Embedded Threat Intelligence – Incident Resppnse & Ransomware Servies to support our Incident Response and Cyber Risk advisory practice. This role sits at the intersection of threat intelligence, ransomware analysis, and frontline incident response support, delivering actionable intelligence to clients facing sophisticated cyber threats.
As a trusted advisor, you will support global clients during high-impact ransomware incidents, providing deep intelligence on adversaries, guiding investigative efforts, and delivering strategic and tactical insights that enable informed decision-making under pressure.
Key Responsibilities:
Client-Facing Incident Response Support
Embed with Incident Response teams to provide real-time intelligence support during active ransomware incidents
Translate technical findings into clear, actionable recommendations for client stakeholders, including executives, legal counsel, and IT/security teams
Assist with attribution analysis, threat actor profiling, and understanding adversary intent
Contribute to client briefings, situation updates, and post-incident reporting
Ransomware Threat Intelligence & Adversary Analysis
Track and analyze ransomware groups, affiliates, and broader cybercriminal ecosystems
Develop detailed intelligence on adversary TTPs, tooling, infrastructure, and operational playbooks
Map attacker behavior to frameworks such as MITRE ATT&CK to support detection and response
Identify and assess emerging ransomware trends, targeting patterns, and sector-specific risks
Malware Analysis & Technical Investigation
Conduct static and dynamic malware analysis on ransomware payloads, loaders, and supporting tools
Reverse engineer malware to understand encryption techniques, persistence mechanisms, and command-and-control activity
Extract and validate IOCs and behavioral indicators to enhance detection and response efforts
Collaborate with digital forensics and IR teams to link malware findings to broader intrusion activity
Covert Collection & Intelligence Development
Conduct covert intelligence collection across restricted-access environments, including dark web forums, leak sites, and negotiation portals
Monitor ransomware group communications, victim disclosures, and affiliate activity
Provide insight into attacker motivations, timelines, and negotiation dynamics
Tactical & Strategic Reporting
Produce high-quality, client-ready deliverables under tight timelines, including:
Incident-specific intelligence summaries
Ransomware group profiles and threat assessments
Tactical reports detailing TTPs, IOCs, and defensive recommendations
Tailor reporting for both technical and non-technical audiences, ensuring clarity and impact
Support development of thought leadership and threat landscape reporting
Required Qualifications:
Bachelor’s degree in Cybersecurity, Computer Science, Intelligence Studies, or related field (or equivalent experience)
3–7+ years of experience in cyber threat intelligence, incident response, or cyber consulting
Strong understanding of ransomware attack lifecycles, including initial access, lateral movement, exfiltration, and extortion
Hands-on experience with malware analysis and reverse engineering tools (e.g., Ghidra, IDA Pro, Wireshark, sandbox environments)
Experience producing actionable intelligence on TTPs and IOCs
Proven ability to operate in high-pressure, client-facing environments
Preferred Qualifications
Familiarity with enterprise incident response engagements and crisis management
Experience with threat actor negotiation dynamics or ransomware leak site monitoring
Proficiency in scripting (Python, PowerShell) to support analysis and automation
Relevant certifications (e.g., GCTI, GCFA, GREM, CISSP)
Core Competencies
Strong client communication and stakeholder management skills
Ability to distill complex threat intelligence into clear, decision-ready insights
Analytical rigor and attention to detail in fast-moving environments
Sound judgment in handling sensitive and high-stakes incidents
Team-oriented mindset with ability to collaborate across technical and non-technical teams
What Success Looks Like
Delivering high-confidence, actionable intelligence that directly informs client response decisions
Enhancing the effectiveness and speed of ransomware incident containment and remediation
Building trusted relationships with clients during critical, high-pressure engagements
Contributing to the firm’s reputation as a leader in cyber incident response and threat intelligence advisory services
Your recruiter will be happy to walk you through your U.S.-specific benefits, which include:
Healthcare Coverage: Comprehensive medical, dental, and vision plans.
Time Off and Leave Policies: Generous paid time off (PTO), paid company holidays, generous parental and family leave.
Protective Insurances: Life insurance, short- and long-term disability coverage, and accident protection.
Compensation and Rewards: Competitive salary structures, performance-based incentives, and merit-based compensation reviews.
Retirement Plans: 401(k) plans with company matching.
Please note that benefits may vary by region, department and role. We encourage you to speak with your recruiter to learn more about the specific benefits available for your position.
About Kroll
Join the global leader in risk and financial advisory solutions—Kroll. With a nearly century-long legacy, we blend trusted expertise with cutting-edge technology to navigate and redefine industry complexities. As a part of One Team, One Kroll, you'll contribute to a collaborative and empowering environment, propelling your career to new heights. Ready to build, protect, restore and maximize our clients’ value? Your journey begins with Kroll.
In order to be considered for a position, you must formally apply via careers.kroll.com.
We are proud to be an equal opportunity employer and will consider all qualified applicants regardless of gender, gender identity, race, religion, color, nationality, ethnic origin, sexual orientation, marital status, veteran status, age or disability.
The current salary range for this position is $200,000 to $230,000
#DNI
Job Roles at Kroll Inc.
Working at Kroll Inc.
Kroll Inc.'s 53 open roles are mid to senior level, and about 40% are remote or hybrid. The most active teams are business analysis, cloud & DevOps, and partnerships & business development. Kroll is an advisory firm whose work spans financial valuation, transaction advisory, investigations, compliance, and cyber resilience. The firm employs professionals across finance, technology, legal, and operations functions, with roles ranging from analyst-level advisory positions to senior directors and vice presidents. Most Kroll Inc. roles are based in New York, with some in Washington and Boston.
Explore more roles by function
Browse thousands of live openings across engineering, sales, product, and more, and apply in just a few clicks.
Browse jobs by roleKroll Inc. Jobs: Frequently Asked Questions
How many jobs is Kroll Inc. hiring for right now?
Kroll Inc. is hiring for 53 open roles on Migrate Mate as of July 16, 2026, updated daily, concentrated in business analysis and cloud & DevOps. Open positions span advisory, technology, and operational functions across multiple seniority levels. Migrate Mate pulls Kroll Inc.'s listings continuously so the count reflects what is actively posted.
What kinds of roles does Kroll Inc. hire for?
The most active teams are business analysis, cloud & DevOps, and partnerships & business development. Kroll's open roles span financial advisory work such as technical accounting, transaction advisory, and portfolio valuation, alongside technology positions including software engineering and DevOps, plus compliance, investigations, and marketing functions. Most postings are mid to senior level, though analyst-level and operational roles appear regularly as well.
Are Kroll Inc. jobs remote or in-person?
A mix of remote and on-site. About 40% of Kroll Inc.'s open roles on Migrate Mate are remote or hybrid as of July 16, 2026, with the rest based in New York. Each Kroll Inc. listing shows its work location so you can filter before applying.
How do I apply to a job at Kroll Inc.?
Find a Kroll Inc. role you want on Migrate Mate, then follow the listing directly to Kroll Inc.'s own careers page to submit your application. Kroll manages its own hiring process, so all screening, interviews, and offers are handled by the company. Migrate Mate does not accept applications on Kroll Inc.'s behalf.
What do Kroll Inc. jobs pay?
Listed salaries for Kroll Inc. roles on Migrate Mate range from about $50,000 to $250,000 per year as of July 16, 2026, with most postings at mid to senior level. Some roles list hourly contract rates. Exact pay is set by Kroll Inc. and shown on each listing.
Does Kroll Inc. hire entry-level?
Most of Kroll Inc.'s open roles on Migrate Mate are mid to senior level as of July 16, 2026. Entry-level openings are limited. Check individual Kroll Inc. listings for stated experience requirements.
Where is Kroll Inc. hiring?
Most Kroll Inc. roles are based in New York, with some in Washington and Boston, and about 40% offer remote or hybrid work as of July 16, 2026. Migrate Mate shows the location on each listing.