Fortra is hiring a Remote Associate Threat Researcher
\nAs an Associate Threat Researcher, you will join Fortraโs Managed Threat Intelligence group: a world-class threat intelligence team focused on generating actionable threat intelligence findings for clients of Fortra Managed Services. With a core focus on email-based threats, account takeover attacks, and other digital impersonation fraud such as counterfeiting, this role helps Fortra clients fully understand the nature of the threats targeting them and gives critical intelligence to help clients most effectively prioritize aspects of their defensive posture.\n\nWHAT YOU'LL DO\n\n\n* Actively research a variety of cyber threats using technical analysis techniques, data analysis, and both open-source and deep/dark web intelligence gathering.\n\n* Produce both long and short form finished intelligence products taking the form of threat reports, intelligence briefings, whitepapers, and RFI deliverables.\n\n* Partner with Marketing and other content teams to translate intelligence findings into blog posts and other material demonstrating Fortraโs thought leadership.\n\n* Perform cutting-edge research on BEC and other types of phishing attacks.\n\n* Write intelligence alerts, threat reports, whitepapers, and blog posts based on research findings from the Fortraโs Threat Intelligence teams.\n\n* Participate in a peer review process of intelligence deliverables by providing notes and constructive feedback.\n\n* Analyze threats to identify novel adversary capabilities, tactics, techniques, and procedures.\n\n* Conduct data analysis to identify notable trends and activity groups in email-delivered, Account Takeover, and Digital Impersonation activity across the cybercrime ecosystem.\n\n* Monitor previously identified activity groups over time to track activity and evolution in their behavior.\n\n* Engage with customers and internal stakeholders to conduct RFI intake briefings and communicate threat research findings. This will involve presenting findings to key stakeholders.\n\n* Other duties as assigned.\n\n\n\n\nQUALIFICATIONS\n\n\n* 5+ years in security operations, or 1-3 years in intelligence analysis or investigative journalism.\n\n* Strong understanding of social engineering techniques, phishing threats, and digital impersonation tactics.\n\n* Experience analyzing email-based threats, including familiarity with SMTP and email header analysis.\n\n* Fluent in reading web-based scripting languages including HTML, PHP, and JavaScript.\n\n* Able to effectively develop intelligence requirements to an RFI via interaction with stakeholders.\n\n* Exceptional research skills using both OSINT and private threat data.\n\n* Experience querying both relational and non-relational databases.\n\n* Outstanding data analysis skills and experience with data analysis tools, including Microsoft Excel.\n\n* Exceptionally strong analytical reasoning, problem solving, and decision-making skills.\n\n* Exceptional ability to write reports communicating complex research findings to a broad audience.\n\n* Able to effectively present analytical findings to a wide range of audiences\n\n* Ability to work independently and effectively as part of a remote team with minimal supervision.\n\n* Relentless curiosity and desire to self-develop in order to keep up with the evolving threat landscape.\n\n* Intermediate scripting knowledge, and a passion for automating routine or repetitive tasks.\n\n* Experience with querying MySQL, MSSQL, Athena, MongoDB, and ELK systems.\n\n* Familiarity with web-application penetration testing principles. Note: this job is not a pen-testing role.\n\n* Experience analyzing web traffic using Wireshark, developer tools, or other mechanisms.\n\n* Experience DE obfuscating code to facilitate analysis.\n\n\n \n\n#Salary and compensation\n
No salary data published by company so we estimated salary based on similar jobs related to Marketing and Marketing jobs that are similar:\n\n
$70,000 — $110,000/year\n
\n\n#Benefits\n
๐ฐ 401(k)\n\n๐ Distributed team\n\nโฐ Async\n\n๐ค Vision insurance\n\n๐ฆท Dental insurance\n\n๐ Medical insurance\n\n๐ Unlimited vacation\n\n๐ Paid time off\n\n๐ 4 day workweek\n\n๐ฐ 401k matching\n\n๐ Company retreats\n\n๐ฌ Coworking budget\n\n๐ Learning budget\n\n๐ช Free gym membership\n\n๐ง Mental wellness budget\n\n๐ฅ Home office budget\n\n๐ฅง Pay in crypto\n\n๐ฅธ Pseudonymous\n\n๐ฐ Profit sharing\n\n๐ฐ Equity compensation\n\nโฌ๏ธ No whiteboard interview\n\n๐ No monitoring system\n\n๐ซ No politics at work\n\n๐ We hire old (and young)\n\n
๐ Please reference you found the job on Remote OK, this helps us get more companies to post here, thanks!
When applying for jobs, you should NEVER have to pay to apply. You should also NEVER have to pay to buy equipment which they then pay you back for later. Also never pay for trainings you have to do. Those are scams! NEVER PAY FOR ANYTHING! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. A good idea is to check the domain name for the site/email and see if it's the actual company's main domain name. Scams in remote work are rampant, be careful! Read more to avoid scams. When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.
Frontpage
๐ Remote jobs
๐ Dark mode
๐ฉโ๐ป Hire remote workers
๐จ Post a remote job
๐ฑ Compact mode
โ๏ธ Remote work blog new
Health insurance for teams
Hacker News mode
Safe for work mode
