Cybersecurity Expert Engineer : Threat Research & Detection
Enea
- Clichy, Hauts-de-Seine
- CDI
- Temps-plein
- Lead the setup & automation of a cybersecurity lab for malware & TTP's analysis, experimentation and training purposes.
- Lead malware analysis, extract malware IOC's & TTP's, and produce high-fidelity detection signatures.
- Participate in research related to machine learning-based threat and anomaly detection focusing on network traffic.
- Contribute to the design of new cybersecurity-oriented products/features on top Qosmos NG DPI.
- Educate, train, and provide guidance to R&D team members on key cybersecurity subjects.
- Carryout experiments and prototyping to determine feasibility of solutions to complex engineering problems.
- Contribute to conversations on product strategy and direction.
- An expertise and a passion for threat research & detection, and a deep understanding of the cybersecurity threat landscape.
- Ability to qualify and develop high quality detection signatures based on analysis of malicious behavior. proficiency in writing Suricata rules is highly appreciated.
- Experience with systems such as IDPS, NDR, XDR, SIEM or SOAR.
- Familiarity with existing TTP frameworks (MITRE ATT&CK, Cyber Kill Chain)
- Strong communication & collaboration skills.
- Willingness to get things done, take initiative and challenge existing assumptions and conventions.
- Experience in applying Machine Learning/Deep Learning techniques to detecting network threats or network anomalies.
- Experience with one or more of the following programming languages: Python, C, Rust.