Senior Cybersecurity Researcher

Acronis brings advanced cyber protection solutions to web hosting providers and website owners. As a Cybersecurity Researcher at the global Cyber Protection Operations team, you will be fighting against modern web cyber attacks by comprehensive analysis of latest threats and creating security definition for Acronis products. As an expert in cyber threats you will participate in research, design and development of new cyber protection technologies.

RESPONSIBILITIES:

Perform research in some of the following areas:

• Vulnerability and configuration assessment;
• Patch management;
• Behavior analysis of suspicious activity detection;
• Prevention and detection of attacks that utilize malware/hacktools and targeting Linux/UNIX or macOS systems.
• Conduct online research of latest cyber threats and ensure it can be prevented/detected with existing technologies. Share research results in blogposts and articles.
• Analyse suspicious scripts, traffic, websites and their contents both found "in the wild" or retrieved from customers, adding latest threat detections or fixing false alarms.
• Design, develop and monitor automation scripts and pipelines to minimize manual efforts required from analysts/researchers.
• Advise colleagues and customers about real-world attacks and the corresponding detection / prevention countermeasures.

REQUIREMENTS:

• Deep knowledge of security concepts and principles for at least 2 operating systems: Linux, MacOS, other UNIXes - file system permissions, privilege separation, firewalls, logging, another built-in security mechanisms
• Decent understanding of common cyber attack techniques and methods; network protocols; vulnerability and configuration assessment
• Good interpersonal, written and verbal communication skills
• Upper-intermediate English

Would be a plus:

• Technical security certifications like OSCP (the best choice) or CEH or proven experience in security assessments
• Background in software development (security domain as the best option) or routine security task automation
• Practical skills in security scanners, vulnerability & configuration assessment tools, SIEMs, WAFs, traffic analysis software
• Skills in programming languages enough for fast PoC creation (Python, shell, etc.)
• Practice in reverse engineering and corresponding methods, techniques and tools
• Experience with virtualization, containerization and cloud technologies

#LI-WC1