Threat Researcher

Infoblox

  • Madrid
  • Permanente
  • Tiempo completo
  • Hace 25 días
Threat ResearcherEngineering Madrid, Spain Madrid, SpainDescriptionIt's an exciting time to be at Infoblox. Named a Top 25 Cyber Security Company by The Software Report and one of Inc. magazine's Best Workplaces for 2020, we are leading the way to next-level DDI with our Secure Cloud-Managed Network Services, bringing next-level security, reliability, and automation to cloud and hybrid systems-all managed through a single pane of glass. Our success depends on bright, energetic, talented people who share a passion for building the next generation of networking technologies-and having fun along the way.We are looking for a Threat Researcher to join our Analysis and Research team in EMEA. In this role, you will contribute to the discovery and assessment of threat indicators that appear in the Domain Name System (DNS), as well as identify, block and track DNS-based infrastructure actors. You will build subject matter expertise in modern threats and big data technologies to identify, evaluate, and extract new threats, supporting Infoblox capabilities that protect customers all over the world.You're the ideal candidate if you are an experienced intelligence or threat researcher who knows and understands DNS (protocols, datasets, tunnelling); if you love to code and build features that help customers understand their network; and if you love to analyse malware and malicious documents or sites and create detectors for them. Individuals with strong logic, correlation, analytical, communication and technical skills; the motivation to continuously learn; and who thrive in a fast-paced, dynamic environment will fit well on our team.What you'll do:
  • Discover threats related to DNS and script algorithms to deliver indicators to protect customer networks
  • Contribute workflows, algorithms, and/or enrichments to help customers prioritize and understand threats within their network
  • Research, design, develop, and build repeatable analytics, heuristics and rules-based detection around threats, tactics/techniques/procedures (TTPs), and indicator scoring
  • Use statistics, and scripting in python and pyspark, to draw insights from very large, diverse data sets
  • Analyse structured and unstructured data sets to identify trends and anomalies that could indicate malicious activity
  • Collaborate with others of different expertise to address complex threat problems
  • Craft reports on discoveries such as threat actors, malware, and campaigns
What you'll bring:
  • Bachelor's Degree in Computer Science or equivalent experience
  • Familiarity with AWS technologies and comfort with Python and Command Line Interface
  • Knowledge of threat analysis and research, familiarity with leveraging open-source or an equivalent level of experience in statistical analysis with a passion for threat intelligence
  • Coding and data skills such as Python, data analysis and statistics, use of notebooks (Jupyter, Databricks)
  • Ability to analyse threat signatures in DNS traffic and other data sources to find and identify malicious activity, campaigns, and understand changes in the threat landscape
  • Experience using virtual environments for analysis of suspicious sites and files
  • Experience writing intelligence reports and presentations
  • A collaborative approach, questioning and inquisitive mind, and a drive to learn and employ new tools and techniques
  • Experience in network protocol log analysis, preferably in the DNS protocol and/or other complex data sources for threat hunting
What success looks like:After six months you will…
  • Contribute to new algorithms to find suspicious or malicious indicators for our products
  • Support research and contribute to at least one publication
  • Understand our data sources, pipelines, tools, and techniques
After about a year, you will…
  • Collaborate with others to execute threat research projects
  • Hone your research and prototyping capabilities to better protect our customers
  • Use our data sources to develop new analytics in threat intelligence and prioritization
We've got you covered:Our holistic package includes coverage of your health, wealth, and wellness-as well as a great work environment, employee programs, and company culture. We offer a competitive salary and benefits package and generous paid time off to help you balance your life. We have a strong culture and live our every day-we believe in transparency, curiosity, respect, and above all, having fun while delighting our customers.Why Infoblox?We've created a culture that embraces and rewards innovation, curiosity, and creativity. We achieve remarkable results by working together in a supportive environment that focuses on continuous learning and embraces change. So, whether you're a software engineer, marketing manager, customer care pro, or product specialist, you belong here, where you will have the opportunity to grow and develop your career. Check out . We think you'll be excited to join our team.

Infoblox