Senior Cybersecurity Researcher (Web Threats, Protection for Hosting Providers)
Singapore, Singapore
Acronis
Acronis provides award-winning backup software & data protection solutions for consumers, businesses & MSPs. Protect your sensitive information!SUMMARY:
Acronis brings advanced cyber protection solutions to web hosting providers and website owners. As a Cybersecurity Researcher at the global Cyber Protection Operations team, you will be fighting against modern web cyber attacks by comprehensive analysis of latest threats and creating security definition for Acronis products. As an expert in cyber threats you will participate in research, design and development of new cyber protection technologies.
RESPONSIBILITIES:
Perform research in some of the following areas of server and endpoint protection:
- Vulnerability assessment and configuration assessment;
- Network security, intrusion detection and protection, including web applications protection;
- Prevention and detection of attacks that utilize malware/hacktools and targeting Linux/UNIX systems.
- Develop, support and tune vulnerability, misconfiguration and threat detection rules.
- Conduct online research of latest cyber threats and ensure it can be prevented/detected with existing technologies. Share research results in blogposts and articles.
- Analyze suspicious scripts, traffic, websites and their contents both found in the wild or retrieved from customers, adding latest threat detections or fixing false alarms.
- Design, develop and monitor automation scripts and pipelines to minimize manual efforts required from analysts/researchers.
- Advise colleagues and customers about real-world attacks and the corresponding detection / prevention countermeasures.
REQUIREMENTS:
- Linux expertise for 3+ years of system administration / system or web development / security audits for some of the following: RHEL (CentOS) / Debian / Ubuntu;
- Deep understanding of common cyber attack techniques and methods; network protocols; vulnerability and configuration assessment
- Knowledge of Linux security subsystems, tools and conceptions, including logging abilities
- Decent skills in configuring at least one of: web / application / database / mail servers running on Linux/UNIX
- Good interpersonal, written and verbal communication skills
Would be a plus:
- Technical security certifications like OSCP (the best choice) or CEH or proven experience in security assessments
- Practical skills in security scanners, vulnerability & configuration assessment tools, SIEMs, WAFs, traffic analysis software
- Background in development security software or routine security task automation
- Knowledge of OWASP methodologies
- Skills in programming languages enough for fast PoC creation (Python, shell, etc.)
- Decent experience with other UNIX operating systems
- Knowledge of PHP v5+ language
- Practice in reverse engineering and corresponding methods, techniques and tools
- Some Machine Learning skills or wish to improve yourself in this area
- Experience with virtualization, containerization and cloud technologies
#LI-WC1
Tags: Audits Automation CEH Cloud Debian Intrusion detection Linux Machine Learning Malware Network security OSCP OWASP PHP Python Reverse engineering Security assessment Threat detection Ubuntu UNIX
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Manager Pentest H/F jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open IT Security Engineer jobs
- Open Senior Cyber Security Specialist jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open CI/CD-related jobs