Threat Engineer
Remote - USA
Applications have closed
Dragos, Inc.
Dragos secures industrial assets across vertical industries. Learn more about how we protect critical industries to reinforce ICS/OT cybersecurity around the world.
Dragos Global Threat Intelligence finds, detects, tracks, and helps defeat industrial control systems (ICS) cyber threats worldwide. These threats affect the safe and continued operation of critical functions such as clean water, reliable power, sanitation, food processing, and oil and gas production. We work with customers worldwide across a variety of industrial sectors to deliver knowledge of cyber threats and vulnerabilities ultimately securing the computers, systems, networks, and assets that create and maintain modern civilization.
The Threat Engineer uses knowledge of malicious cyber activities and a multitude of datasets to automate the ability to find and track adversaries across networks. The Threat Engineer will work with a global team of Threat Hunters, Vulnerability Researchers, Malware Analysts, and others to find ICS threats faster than ever before - shortening our time between findings threats and enabling ICS defenders.
We’re looking for an individual with experience and passion for finding new cybersecurity threats combined with the expertise of automating that tradecraft to scale.
The Threat Engineer should be familiar with the most popular public and paid cybersecurity data sources but also be willing to find and evaluate new data sources and work with Dragos’ own private data stores. They will utilize a variety of practices including the Diamond centered-hunting technique, data science, and hypothesis-driven threat hunting to automatically extract likely threats from the data for further evaluation and enrichment before publishing to ICS defenders.
This is a fully remote position located anywhere in the United States.
The Threat Engineer uses knowledge of malicious cyber activities and a multitude of datasets to automate the ability to find and track adversaries across networks. The Threat Engineer will work with a global team of Threat Hunters, Vulnerability Researchers, Malware Analysts, and others to find ICS threats faster than ever before - shortening our time between findings threats and enabling ICS defenders.
We’re looking for an individual with experience and passion for finding new cybersecurity threats combined with the expertise of automating that tradecraft to scale.
The Threat Engineer should be familiar with the most popular public and paid cybersecurity data sources but also be willing to find and evaluate new data sources and work with Dragos’ own private data stores. They will utilize a variety of practices including the Diamond centered-hunting technique, data science, and hypothesis-driven threat hunting to automatically extract likely threats from the data for further evaluation and enrichment before publishing to ICS defenders.
This is a fully remote position located anywhere in the United States.
Responsibilities
- Engineer new tools and improve existing tools which substantially increase our ability to discover and track new and known ICS threats
- Develop new threat hunting tradecraft
- Collaborate with a broad team of threat hunters to automate successful tradecraft
- Find, evaluate, and integrate new tools and data sources for improvements in ICS threat hunting
- Continually evaluate and measure the effectiveness of tools in driving ICS threat discovery
- Document tool functionality and enable adoption by threat hunters and others
Requirements
- 2 or more years hunting cyber threats
- 2 or more years automating cyber threat hunting tradecraft
- Proficiency in at least one modern scripting language
- Knowledge of the principles of cybersecurity and a wide variety of cyber threats
- Experience in popular public and paid cybersecurity datasets and their APIs
- Experience in AWS cloud technology and infrastructure
Tags: APIs AWS Cloud ICS Industrial Malware Scripting Threat intelligence Vulnerabilities
Perks/benefits: Equity Health care Insurance Team events Unlimited paid time off
Regions:
Remote/Anywhere
North America
Country:
United States
Job stats:
59
6
0
Categories:
Security Engineering Jobs
Threat Intel Jobs
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs