Go Enterprise, contact us anytime: email, phone, or chat

  • Senior Adversary Hunter

    Dragos

    Protect civilization! Save Lives! Join Dragos and hunt threats targeting industrial control networks like power, water, refineries, and other ICS environments worldwide.

Description

Apply Here: https://jobs.lever.co/dragos/1ac62f7c-7772-41a8-8171-b4b94b0952d5

Have you spent time hunting threats inside and outside networks? Developed and tracked activity groups? Want to use those skills to hunt those who threaten civilization? Want to catch and expose threats targeting power plants, water, manufacturing systems, and other industrial control systems? Dragos threat intelligence works to discover these threats, develop innovative analytics for detection, support investigations and incident response, and provide customers with world-class situational awareness. Unlike many other teams with a broader mission, we focus solely on operational threats to industrial control networks; this gives our analysts the time and space necessary to do world-class research and intelligence on the most advanced and significant threats in the world. Most analysts as they progress in their career are required to increase their scope thereby losing many critical skills – this is an opportunity for experienced analysts to drop back down into a highly technical and specific area of critical importance becoming one of the few ICS threat hunters in the world. A rare opportunity for many.

At Dragos, we are not traditional intelligence analysts; we are hunters of evil which threatens the functions of civil society. We are dedicated to the idea that intelligence not properly communicated is not intelligence at all. We get excited by the “thrill of the hunt” and support our Threat Operations Center during customer security incidents. If you are as excited about this as us, please let us know! 

This is not an entry-level position for unexperienced analysts or those seeking to transition hunting. Prior hunting experience against advanced and persistent threats is a requirement.

Location: Fully Remote Preferred! That's right - we're a fully remote intelligence team and encourage remote work.

US Citizens and US Permanent Residents located in the US preferred

Requirements
* 3+ years’ hunting and tracking targeted threats
* 3+ years’ experience with network-based intrusion analysis 
* Knowledge of common malware functionality and operations and comfortable working with static and dynamic binary analysis output 
* 2+ years developing analytics to enable threat hunting and detection 
* Experience pivoting across the Diamond Model and all stages of the kill-chain 
* Demonstrable experience producing customer-facing intelligence reports with strong writing skills 
* Experience developing indicators of compromise (IOCs) for customer-facing applications 
* 1+ year working directly with customers to collect requirements and feedback on intelligence products and services 
* Able to work well with a remote team of collaborators and deliver product on time and within quality guidelines 
* Comfortable in at least one scripting language (like Python) enabling the analyst to automate their own tasks when necessary 
* Good research and documentation skills including knowledge of major OSINT sources and their investigatory value 

Optional
* Experience with industrial control systems and threats specific to their operational environment 
* Experience reverse engineering malware with static and/or dynamic tools and techniques 
* Experience developing YARA, snort, and/or Bro signatures 
* Experience working with an operations center and/or incident response team 

Apply Here: https://jobs.lever.co/dragos/1ac62f7c-7772-41a8-8171-b4b94b0952d5

Dragos seeks passionate, hard-working, fun-loving, small-ego, big-brained people. Our tagline is “Safeguarding Civilization” not because we think highly of ourselves, but because the problems we are solving are critically important, today and in the years to come. We look for ICS experts across industries who are committed to growing global expertise in the space by training the next wave of future innovators and thought leaders.   We offer competitive salary, equity, full benefits (medical, dental, vision, disability, and life insurance-all 100% covered) and 6% match-401K.  Come join us! 


Responsibilities

  • Discover new threats to industrial control systems
  • Author customer-ready intelligence reports
  • Develop situational awareness of threats to industrial control systems
  • Support industrial control security incident response
  • Develop detection analytics

Details

  • Travel Up to 25%
  • Incentives Stock options
  • Clearance & Citizenship No requirements
  • Remote Work Full remote okay
  • Education No requirements
  • Salary Range Not provided

Join NinjaJobs!

Registered users get the benefit of full listing views, searches, posting options and more!

Company Ratings powered by

  • 5.0

    Overall Rating - Very Satisfied


  • Culture and Values 5.0
  • Work/Life Balance 5.0
  • Senior Management 5.0
  • Comp and Benefits 5.0
  • Career Opportunities 5.0