Required Threat Intelligence Researcher - Off-site.
What will you do?
Track day-to-day emerging cyber events and identify those with the greatest impact on our customers.
Receive research requests from our different clients and investigate them according to the time and scope defined. Use every tool at your disposal to get to the information required and develop new ways to collect and find the necessary data.
Analyse ongoing attacks to assess their origin, purpose and impact on our customers.
Track down threat actors across the clear, deep and dark web. Engage with hackers to retrieve more intelligence and collect unique information which is not otherwise accessible.
Support company content marketing and PR efforts with researches of all kinds. From broad sector research (Finance, Retail, Healthcare etc.) to fast real-time analysis of data breaches and emerging events.
Contribute to infosec community through papers, blogs, and presentations on new and innovative findings.
Be a leading knowledge source in information security and cyber matters supporting other departments with your knowledge and expertise.
Requirements:
At least 3 years of experience at the cyber security industry.
Experience and understanding in cyber threat intelligence, good knowledge in Clear / Deep / Dark web forums and open source intelligence sources, sites and tools.
Experience in investigating threats, using OSINT, HUMINT and any other web research tools to investigate threat actors and their TTPs while providing context to threats and arriving to conclusions from incomplete or missing data.
You will need the technical Know-how to extract threat data (IPs, Domains, ports, malware and malicious communications) from multiple sources to create reports on the threats you will face in your research.
Experience with different threat vectors threating our customers: Ransomware, Bots, Crytominers, RATs, info stealers, trojans, malicious JavaScript, phishing sites, Fake profiles, vulnerable or misconfigured databases, IOT devices etc.
Knowledge in network defence technologies, cyber kill chain, Mitre ATT&CK framework, known cyber crime groups, APTs and their targeted sectors.
Ability and desire to work across Technologies and our different platform offerings.
Experience with paper writing English papers and reports (from 3 to 20 pages) big plus.
Excellent Hebrew and English skills including: Verbal and written, knowing more languages big plus.
Advantage
Former experience in a threat intelligence position.
Former experience in writing marketing-oriented research papers, blogs or documents.
Experience with obtaining, structuring and analyzing databases and the tools required to do so.
Experience in conducting independent research including downloading and installing OSs, Tools, and infrastructure.
Knowledge with web-oriented attacks, tools and techniques.
Ability to synthesize technical information and document it in an engaging manner through graphical and verbal depictions.
A good familiarity with the cyber security research community.