Listing Description
Company Description
Anomali delivers earlier detection and identification of adversaries in your organization’s network by making it possible to correlate tens of millions of threat indicators against your real time network activity logs and up to a year or more of forensic log data. Anomali’s approach enables detection at every point along the kill chain, making it possible to mitigate threats before any material damage to your organization has occurred.
Job Description
Anomali Threat Research (ATR) is the Cyber Threat Intelligence (CTI) team supporting Anomali’s customers. ATR is responsible for conducting OSINT research, and producing intelligence products delivered through the Anomali extended detection and response platform. The team is also responsible for working with internal teams on projects that require threat intelligence and security operations expertise. We are seeking a passionate threat researcher to join the Anomali Threat Research team to assist in creating intelligence-focused research for our customers and the wider security community. These intelligence products contain aspects that require static and dynamic analysis written in a detail-oriented manner. You will also get the opportunity to do company sponsored security certifications relevant to threat intelligence and, your specific area of work, to help you advance in your career.
Required Experience
o Eight or more years in a CTI (cyber threat intelligence) or reverse engineering role.
o Ability to hunt for and identify malware for analysis and binary signature creation, as well as, creating intelligence reports
o Profound experience with reverse engineering tools (disassemblers, decompilers, debuggers) and processes (reconstructing code logic, unpacking malware)
o Reconstructing code with static and dynamic reverse engineering
o Experience with system internals for multiple platforms: Android, macOS, and Windows
o Programming and scripting language knowledge, particularly Python
o Profound experience in debugging, assembly language, and deobfuscation
o Expertise in explaining complex technical and non-technical in verbal and written communication is mandatory
Responsibilities
o Actively contribute to ongoing ATR team responsibilities including weekly updates and rapid response projects
o Become a subject matter expert in Anomali products (Lens, Match, ThreatStream)
o Create OSINT and primary-sourced reports on a regular cadence as required by customers
o Conduct reverse engineering on malware and tools
o Responding to internal and customer requests for information
o Threat hunting for current and future threats
Desired Skills
Analytical
o Capable of independent and team-driven projects
o Communication and presentations of complex ideas and projects
o Experience working on time-sensitive deliverables
o Knowledge of current threat landscape, malware and threat actors
o Previous experience publishing and/or presenting research on a public forum
Benefits
Salary
o Competitive Salary
Medical
o Private Healthcare Plan
o Dental Plan
o Optical Plan
Work-Life Balance
o Paid Public Holidays
o Accrued Paid Time Off – 25 days
Equal Opportunities Monitoring
It is our policy to ensure that all eligible persons have equal opportunity for employment and advancement on the basis of their ability, qualifications and aptitude. We select those suitable for appointment solely on the basis of merit without regard to an individual's disability, race, religion, sex, age or sexual orientation. Monitoring is carried out to ensure that our equal opportunity policy is effectively implemented.
If you are interested in applying for employment with Anomali and need special assistance or accommodation to apply for a posted position, contact our Recruiting team at recruiting@anomali.com. We are happy to discuss reasonable adjustments.
Listing Details
- Salary: $150000 - $210000
- Citizenship: Not Provided
- Incentives: Both
- Education: Not Provided
- Travel: No Travel
- Telework: Full Telecommute