Cyber Threat Investigator - QY7475Y9
Riverside, CA, United States
AMS Accelerate IT
< Our IT recruitment services in Romania/> Learn More For companies Looking to accelerate your business with new teammates? Contact now! [WHAT WE OFFER_] < WeThe client's mission is to protect the worlds most sensitive data by equipping organizations to detect, investigate and stop advanced cyber-attacks.
Attackers are relentless and clever. They hide their exploits deep inside networks, email and endpoints. They dig as deep as attackers hide. With it, customers will know when they are being attacked, and they can retrace attackers steps and freeze them in their tracks.
The elite team of incident responders is in the trenches every day assisting customers to manage their way through critical security incidents of all kinds. This seat on the front lines gives us a unique view to see what works and what doesnt when it comes to keeping attackers at bay.
Take a seat with our preeminent team and be a part of our mission to give our customers the power to combat todays sophisticated advanced threats with a robust, comprehensive portfolio of products, services, and expertise.
Join a team where you can make a difference!
What about the project?
The client, the industry innovator in proactive cyber defense solutions, safeguards modern IT environments with unparalleled detection, deception, response, cloud security, and compliance capabilities. We offer full visibility across hybrid environments via rich, dynamic cyber terrain mapping and multi-faceted context and risk assessment.
These features help minimize attackable surface areas, automate exposure prevention, threat-detection, and incident response, and provide the context, accuracy, speed, and portability security professionals need to find and neutralize adversaries earlier in the attack lifecycle.
With this company, organizations remain resilient before and throughout cyber-attacks and emerge stronger and more secure.
We are looking for a Threat Researcher to help fuel our cutting-edge NDR and Cloud products that defend organizations from a variety of cyber threats.
Requirements:
- Experience authoring rules using YARA/Snort/Suricata and Bash scripting
- Expert knowledge of network fundamentals and protocols (HTTP, SMTP, DNS, SMB, etc) is required
- Experience with Bash/Shell scripting
- Experience with network and packet analysis using tools such as Wireshark
- Previous experience within the cybersecurity industry
- Able to work independently on tasks within a team environment
Nice to have:
- Experience working with security benchmarks such as CIS benchmarks
- Understanding of the adversary tactics and techniques frameworks
- Experience with incident response and documentation is strongly desired
- Experience writing malware detection and prevention rules is applications such as Suricata, and YARA
- Degree in Computer Science or equivalent
- Reverse engineering experience
Responsibilities:
- Keep up to date on the latest information security threats
- Create rules based on CIS benchmarks of various operating systems, to feed our product
- Understand tactics and techniques, C2 patterns and indicators of compromise
- Create multi-layered countermeasures for the Fidelis Elevate product site including NDR and cloud
- Create rules for our NDR product to detect malicious activities on the network level
- Document findings and creating blog posts related to malware analysis and detections
Diversity is important to us:
At the heart of our company is a diverse group of employees who rely on their intimate knowledge of customer requirements and a unique blend of skill and innovation to develop and deliver the best possible products and services. The company encourages the inclusion of all people and a work environment free from discrimination.
They are dedicated to the principles of equal employment and advancement of people based on their individual qualifications, skills and abilities. This commitment is supported by policies and procedures that foster a nondiscriminatory workplace. Guided by a rigorous code of ethics that is applied with integrity, these fundamental characteristics are reflected throughout our organization and are key components of the strength we deliver to our customers.
Looking forward to get in touch with you!
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Bash Cloud Compliance Computer Science Cyber defense DNS Exploits Incident response Malware Reverse engineering Risk assessment Scripting SMTP Snort
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Cloud Security Architect jobs
- Open Product Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Chief Information Security Officer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open IT Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Manager Pentest H/F jobs
- Open Security Operations Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Security Consultant jobs
- Open Senior Network Security Engineer jobs
- Open Senior Security Architect jobs
- Open Windows-related jobs
- Open Risk assessment-related jobs
- Open CISM-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open ISO 27001-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open Vulnerability management-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open DoD-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open DevOps-related jobs
- Open Splunk-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open IPS-related jobs
- Open Kubernetes-related jobs