Protectwise, Inc. logo
Threat Researcher - Network Analyst - Protectwise, Inc. Denver, CO, United States Bookmark Share Print 675 8 32

Listing Description

Members of the Threat Research & Analysis team work on hunting evil in customer environments, managing and curating threat intelligence, and working with the engineering team to develop and implement new network threat detection techniques. This role is heavily focus on network forensics and its application to detection and incident response. Here you will have the unique ability to conduct research and investigations using a highly scalable, full PCAP datastore.You will:

Design and implement methods to detect attacker activity in network traffic on both a tactical and strategic level.

Perform network-based forensics on a massive PCAP dataset.

Develop network indicators through research, malware analysis, and network forensics.

Manage, validate, and classify threat intelligence from a variety of sources.

Research new threats and attacker techniques.

Blog and conduct webinars about interesting findings and innovative detection techniques.

Hunt for new threats and track high level attacker trends.

Requirements/Experience:

Strong knowledge of network protocols, network analysis tools, and network architecture.

Ability to analyze raw PCAP data to validate security events, interpret network traffic, and extract indicators.

Perform basic malware analysis to develop network based indicators and custom protocol decoders.

Knowledge of common attacker tools, malware families, and known attacker group TTPs.

Ability to write tools and automate tasks in scripting languages such as Python.

Experience hunting for unknown threats, as well as tracking existing campaigns and adversaries to see how they evolve over time.

Experience writing snort/suricata signatures.

BA or BS / MA or MS degree in Computer Science, Computer Engineering, Math, Information Security, Information Assurance, Information Security Management, Intelligence Studies, Cybersecurity, Cybersecurity Policy, or a related field; or, relevant work experience.

Listing Details

  • Citizenship: No Requirements
  • Incentives: Stock Options

 

  • Education: Bachelors Degree
  • Travel: No Travel
  • Telework: Optional Telecommute

About Us

NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

Useful Links

Our Contacts

1765 Greensboro Station Pl.
Suite 900
Tysons Corner Va 22102

(703) 594-7765

requests@ninjajobs.org
www.ninjajobs.org
Chat with us!