Dell
CTU Sr. Security Researcher - Threat Intelligence
Japan, JP - Computer Hardware, Computer Software, Information Technology and Services
CTU Sr. Security Researcher - Threat Intelligence - (Remote - Japan)
Company Description
Dell SecureWorks is a market leader in information security services with more than 3,600 clients worldwide spanning North America, Latin America, Europe, the Middle East and the Pacific Rim. Organizations of all sizes, across all industries rely on Dell SecureWorks to protect their assets, improve compliance and reduce costs. The combination of strong customer service, award-winning security technology and experienced security professionals makes Dell SecureWorks the premier provider of information security services for any organization. Positioned as a leader of the MSSP industry by several global industry analyst firms, Dell SecureWorks also has received SC Magazine’s “Best Managed Security Service” award and Frost & Sullivan’s North America Security Incident Mitigation and Response Customer Value Leadership Award, among others.
Role Overview
The Sr. Security Researcher is a member of our Counter Threat Unit (CTU) Threat Intelligence team which researches, applies, and delivers intelligence about active and emerging information security threats. The successful candidate will influence the state of information security through proactive research into emerging threats, generation of defensive countermeasures, and consultation with clients, internal stakeholders, and the broader security community. The Sr. Security Researcher is a multi-faceted expert, a thought leader, a mentor for other security professionals, a trusted professional among the security community, and a public representative of Dell SecureWorks.
Role Responsibilities
- Identify and lead performance of proactive all-source research to identify and characterize new threats, vulnerabilities, and risks to customer security context;
- Interact with clients and the security community to understand evolving threat context for advanced threat research;
- Use threat research to develop actionable intelligence to drive customer protection to include producing analysis to inform countermeasure development;
- Perform second-tier malware analysis to include reverse engineering;
- Produce actionable intelligence information for delivery to clients in the form of threat research reports, threat indicator data feeds, helpdesk ticket responses, and briefings;
- Influence global security through publication and presentation of new and novel security research;
- Provide expert-level security consultation in support of other business units, to include Security Operations Center, Security Risk Consulting, Sales, Marketing, Engineering, and Product Management;
- Provide input into strategic direction of organization and services in areas without precedent;
- Provide expert advice to security researchers and clients on security strategy, policies, and procedures; and
- Generate and apply innovation via moderate-to-long term projects to improve value of existing service lines and inform creation of new service lines.
Qualifications
Requirements
Knowledge, Skills and Abilities
- 5+ years of professional experience in systems administration, systems engineering, software development, and/or TCP/IP network administration;
- 5+ years of experience with a variety of security-related contexts, including secure coding practices, vulnerability analysis, IDS/IPS, cloud computing, virtualization, mobile security, incident response, digital forensics, malware analysis, threat research, DDoS mitigation, or intelligence analysis.
- 5+ years of experience with scripting-level programming in at least two of Perl, Python, PHP, Javascript, and/or shell programming.
- 2+ years of experience analyzing malicious code to include reverse engineering.
- Fluency in at least two high-level programming languages such as C/C++, Java, Delphi, or Visual Basic.
- Fluency in x86 assembly language on 32 and 64 bit platforms.
- Ability to make use of diverse datasets to create value.
- Technical knowledge of fundamental web protocols and technologies, to include HTTP, HTTPS, HTML, Javascript, XML, AJAX, JSON, and REST.
- Demonstrated and recognized expertise in at least one aspect of information security, to include significant publication and/or presentation of new or novel research topic to public forum, conference, or media outlet.
- Demonstrated track record of identifying and pursuing strategic and complex areas of security research in collaboration with internal and external stakeholders at all levels, to include defining appropriate policies, practices, and countermeasures.
- Demonstrated ability to participate in private information sharing and analysis programs limited to vetted and trusted members.
- Courage and willingness to challenge conventional wisdom.
- Unimpeachable personal and professional integrity.
- Strong technical communication skills, both written and verbal.
- Effective time management and organizational skills.
- Team player with the ability to work autonomously in a fast-paced, dynamic environment.
- Investigative and analytical problem solving skills.
- Inherent passion for information security and service excellence.
- Limited travel when required.
Desired Skills:
- Experience as a technical team leader or experience in leading small to medium sized teams.
- Experience leading medium to large scale technical projects involving multiple internal and external stakeholders.
Education
- Undergraduate degree in Information Security, Computer Science, or other applicable field plus 10 years of relevant experience; or
- Graduate degree in Information Security, Computer Science, or other applicable field plus 8 years of relevant experience; or
- 10+ years of relevant experience or equivalent combination of education and work experience.
Preferences
Certifications
- CISSP, GIAC, or SSCP certification preferred
No salary provided
Posted August 27, 2014 at 04:56AM from LinkedIn http://ift.tt/1tbw6JD
via IFTTT
No comments:
Post a Comment