Empresa:

Bitsight

Descrição da Função

Bitsight is a cyber risk management leader transforming how companies manage exposure, performance, and risk for themselves and their third parties. Companies rely on Bitsight to prioritize their cybersecurity investments, build greater trust within their ecosystem, and reduce their chances of financial loss.

Built on over a decade of technological innovation, its integrated solutions deliver value across enterprise security performance, digital supply chains, cyber insurance, and data analysis.

• We invented the cyber ratings industry in 2011
• Over 3000 customers trust Bitsight
• Over 750 teammates are dispersed throughout Boston, Raleigh, New York, Lisbon, Singapore, and remote

Bitsight's Threat Research team develops and deploys strategies to discover systems compromised by malware and potentially unwanted applications through in-depth research and analysis of malware families and infrastructure. As a Principal Threat Researcher, you will research how threats target systems and derive novel mechanisms to infer infections and trends in the threat landscape from our sensor networks. The output of your work will directly improve the world's largest malware infection tracking system. This is one of the biggest differentiators of Bitsight, as its volume, accuracy, and data quality allow for a unique capability when measuring security ratings.

We are seeking candidates who are passionate about cybersecurity and can research threats with limited supervision, derive meaningful intelligence from datasets, and develop tools and scripts to assist in threat hunting and tracking.

Objectives & Responsibilities

• Keep up to date with the current and past threat landscape to infer detection patterns from multiple data sources;
• Develop software prototypes of network telemetry data collection systems;
• Conduct exploratory data analysis on network and security telemetry datasets;
• Create malware traffic detection signatures based on network communication patterns;
• Research and evaluate methods of inferring security properties from network telemetry data;
• Help design and implement threat data collection pipelines;
• Carefully document decisions and observations made during research;
• Lead complex malware Research initiatives;
• Lead the Research and implementation of novel malware artifact collection techniques;
• Act as a mentor to less experienced team members.

Qualifications

• Academic background (BSc or MSc) in cybersecurity, computer science, or similar technological field; or relevant professional experience;
• Previous experience with malware analysis;
• Deep understanding of modern malware infrastructure and operation;
• Familiarity with detection engineering;
• Expert level knowledge in reverse engineering Windows, Linux, Android, MacOS or iOS Operating Systems;
• Hands-on experience with malware tracking techniques such as sinkhole
• Experience with public cloud platforms such as AWS and GCP and container technologies such as Docker;
• Proficient in standard scripting languages;
• Strong communication and analytical skills, including the ability to identify and solve ambiguous problems;
• Previous work experience in Cybersecurity technical or operational teams is a plus.

Education

• BSc or MSc in cybersecurity, computer science, or similar technological field; or relevant professional experience;
• Relevant industry certifications are a plus.

Observações

Not Specified (Portugal)