Vulnerability Intelligence Analyst
Remote - Dallas, Texas, United States
Applications have closed
Digital Shadows
Digital Shadows minimizes digital risk by identifying unwanted exposure and protecting against external threats.Digital Shadows is fast growth company with offices in London, San Francisco, Dallas, Frankfurt and Singapore. Our mission is to protect organizations from external digital risks across the open, deep, and dark web. We do this by providing relevant threat intelligence, context, expertise, and remediation that enables organizations and security teams to focus on their core business in the digital era. Our SearchLight™ service combines scalable data analytics with threat intelligence analysts to monitor for cyber threats, data leakage, reputation risks and a whole lot more. You can learn more about us at www.digitalshadows.com or review the Forrester New Wave report where we were named the leader in Digital Risk Protection.
We are currently seeking a Vulnerability Intelligence Analyst that can apply their theoretical and practical knowledge of vulnerabilities to support the production of client facing Photon intelligence products. This is a tactical role and the successful candidate will be responsible for reporting on major vulnerabilities, analyzing data feeds, and providing in-depth analysis on how vulnerabilities can impact clients.
Role and Responsibilities
- Deliver tactical vulnerability intelligence to support the Photon Team’s production of SearchLight Intelligence
- Conduct research into vulnerabilities and malware and provide insights into how these could manifest as cyber threats drawing on industry feeds, proprietary data and multiple sources including primary and restricted-access sources
- Drive the creation of client-facing threat profiles available in the SearchLight portal
- Support client Requests for Intelligence (RFIs) as needed
- Share knowledge, to support all Photon team members
- Support the Cyber Threat Intelligence Leads and Managers in developing vulnerability intelligence products
Requirements
- 3+ years experience, ideally in a vulnerability intelligence, penetration testing or network intrusion analysis based role
- Sound technical understanding of hardware and software-based vulnerabilities
- Experience with vulnerability assessment products and tooling
- Ability to use suitable coding/scripting languages (preferably Python or Java)
- Familiar with Diamond Model, Cyber Kill Chain, and ATT&CK/D3FEND frameworks
- Demonstrated writing ability and able to explain complex technical subject matter to non-specialists
- A university degree or equivalent education (i.e. Computer Science, Cyber Security, Data Science) with strong academic results or equivalent professional experience
- Comfortable working in cross functional intelligence teams
- Inquisitive and curious mindset when it comes to threat identification, threat hunting
- Willing and eagerness to learn and able to adapt with the growth of the business
- Up-to-date insights into current exploit techniques, vulnerability disclosures, data breach incidents, and security analysis techniques, combined with the understanding of the potential impact on an organization’s security posture
Desirable
- Security Operations or incident response experience preferred but not required
- Experience of red-teaming events and penetration testing practices
- Foreign language skills are a plus, especially key languages (Russian, Mandarin, Farsi)
- Soft skills including coaching and mentoring
Benefits
- Generous compensation package which includes; competitive salary, annual bonus, stock options and expense reimbursements related to travel and remote working.
- Excellent benefits; generous health insurance, paid time off (PTO), volunteering days, paid parental leave, paid military leave, paid sick leave, long service award of additional PTO, employee assistance program and mental health support.
- Spirited and energetic culture; regular team building events (in-person and online), monthly employee care packages, employee engagement activities with prizes, weekly updates from our cofounders, employee thank you cash awards, company swag!
- Career Development: In-house training programs and online learning management platforms, employee career path programs, professional certification and eduction support.
Tags: Analytics Computer Science Cyber Kill Chain Exploit Incident response Java Malware Pentesting Python Scripting Security analysis Threat intelligence Vulnerabilities
Perks/benefits: Career development Competitive pay Equity Health care Parental leave Salary bonus Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open ISO 27001-related jobs
- Open Clearance-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open CI/CD-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs