It Security Researcher Jobs

** There is a new culture called DevSecOps in the security realms, and I believe the reason why "SEC" placed in the middle is due to its nature that SEC people must be able to coordinate with Dev (Developer), and also with Ops (Operations) team. But, that also means, IT Security team these days can come from DEVELOPER world, or OPERATIONS ENGINEERING world. Feel free to apply as well if you are coming from software or operation engineering (IT Infra, Network, Sysadmin, DevOps, etc) background, and you want to transform your skills into IT security world.

Role:

We are looking for a IT Security Researcher to become a valued member of our company's Research and Development Team. The main objective of this role is to safeguard customers from complex, broad-ranging cybersecurity attacks and threats. The key tasks involved are: comprehensively researching and understanding various cyber threats (including Malware, APT, Vulnerabilities, and Phishing), developing resilient threat detection rules, and conducting meticulous investigative response activities to alleviate detection issues encountered by our company and clients. You will be working in close collaboration with our Engineering to bolster our holistic defense capabilities, thereby countering persistent threats in the cybersecurity landscape.

Responsibilities:

- Document and enrich the understanding of the threat landscape including attacker techniques, emerging trends, and patterns.

- Design and develop novel threat detection techniques or methodologies.

- Write generic and durable threat detections rules based on Static and Dynamic detection engines.

- Build tools and automation to improve productivity.

- Share learnings and knowledge through documentation, brownbag or team meetings to improve overall team’s expertise and capabilities.

- Proactively track activities of and identify/attribute financially motivated cyber threat actors.

Additional, or Preferred Qualifications:

- Experience in software development lifecycle, large-scale computing, machine learning modeling, DevOps, cybersecurity, and/or anomaly detection

- Proficient in coding in one or more of the following programming languages: C, C++, Python, or Go

- Experience in writing Sigma, and Yara detection rules

- Technical skills associated with malware analysis, exploits and vulnerabilities