Cybereason provides enterprise endpoint protection built to defend against tomorrow’s threats today.

Blue Team Investigator at Cybereason

+ 1 more | Remote
Sorry, this job was removed at 6:23 a.m. (CST) on Monday, January 24, 2022
Find out who’s hiring remotely Nationwide
See all Remote jobs Nationwide
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Cybereason's mission is to ‘protect it all’ – delivering unparalleled prevention, detection, investigation, and response for all endpoints: workstations, laptops, mobile devices and more.

Our cyber-defence solutions combine machine learning and AI to analyze threats, connecting huge volumes of data to reveal cyber-attacks and shut them down, as well as block intrusion of known and unknown threats. With our latest offerings, we can also seamlessly automate detection and prevention across traditional endpoints as well as mobile devices.

Since entering the Japan market in 2016, we have seen tremendous growth, now holding #1 market share. We are constantly evolving and hope to expand our team with daring individuals that never give up!

As a member of Cybereason’s Global SOC’s Blue Team, the Blue Team Investigator will leverage the Cybereason Defense Platform and additional technology to reverse the adversary's advantage. This team understands various levels of offensive and defensive technologies, their effectiveness, and both documented and innovative implementations to mitigate attacks. Our Blue Team, in addition, develops and maintains its own tools and infrastructure to quickly detect, analyze, triage, and respond to emerging and sophisticated attacks.

What you will do

  • Develop tools and automation that leverage the Cybereason Defense Platform and Global SOC technology to aggressively identify, triage, and respond to emerging threats including, but not limited to, those used in attacker toolkits and related TTPs.
  • Perform detailed analysis of emerging threats from which detection and mitigation solutions are designed and implemented.
  • Assist other Global SOC teams and relevant stakeholders in the detection and mitigation of advanced attacks and attacker emulation in customer environments.
  • Create and deliver public and private technical documentation on research and analysis findings, mitigation mechanisms and implementations, as well as ‘best practices’ to ensure the security of customer environments.
  • Interface with customers in the presentation of findings and recommendations at all levels from SOC analysts to c-suite executives
  • Work closely with internal company teams both in Product and R&D, as well as customer-facing teams
  • Assist in the continued creation, maintenance, and improvement of the Blue Team’s tech stack
  • Work closely with and enable other customer-facing teams in the analysis and reporting of red team and penetration testing events in customer environments.

What we are looking for

  • 7+ years of experience working in IT, cybersecurity or IT administration
  • 4+ years of relevant cybersecurity experience in Incident Response, endpoint security, digital forensics, or red teams
  • Background and experience in at least two of the following four areas required:
    • Strong knowledge of modern operating systems (Windows – a must, OS X and Linux – advantage)
    • Solid foundation in networking protocols and architectures
    • Experience with security tools and frameworks, particularly with open-source tools (such as Sysinternals, OLE tools, Volatility, debuggers, disassemblers, etc.)
    • Solid foundation with a scripting language (Python, Bash, PowerShell, etc.)
  • Experience with a coding language (C, C++, Java, etc) an advantage
  • Self-motivated and results-oriented; capable of leading and completing assignments without supervision
  • Comfortable working in remote work environments with a globally distributed team in multiple countries.
  • Strong organizational skills and ability to handle a wide range of tasks and re-prioritize them on short notice
  • Motivation to constantly improve processes and methodologies
  • Good written and oral communication skills, experience working with international customers

More about working at Cybereason Japan

Our Tokyo and Osaka offices are open, highly supportive and fun! To support you at work, we provide flexible work-life management policies, plenty of food and drinks, paid-leave for supporting your family and health, 401k, fun monthly events such as Premium Fridays and “Lunch & Learn”, as well as career support. You’ll have a chance to work in cooperation with a growing team of over 600 people (and growing!) with teams in Tel Aviv, Boston and other locations around the world.


「働きがいのある会社」として認定 / Great Place to Work® Certified

サイバーリーズン・ジャパンは、Great Place to Work® から、働きがいのある会社であることを認める「働きがい認定」企業として選出されました。 詳細や認定企業一覧はこちらをご参�ください。

Cybereason Japan has been selected and certified by Great Place to Work® as an employee-validated great workplace. Click here for details and a list of certified companies.

Please follow us!

See More
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Product
  • Sales & Marketing
    • Google AnalyticsAnalytics
    • IllustratorDesign
    • PhotoshopDesign
    • ConfluenceManagement
    • JIRAManagement
    • TrelloManagement
    • HubSpotCRM
    • SalesforceCRM

What are Cybereason Perks + Benefits

Cybereason Benefits Overview

Our offices are open, highly collaborative and yes- fun! To support you at work (and play) we offer some killer perks: ample time off to relax and recharge, plenty of food and drinks (including beer and soda), work from home options, generous employer-paid insurance coverage for you and your family, 401k and a Long Term Care benefit.

Partners with Nonprofits
Eat lunch together
Daily sync
Open office floor plan
Documented equal pay policy
Unconscious bias training
Diversity manifesto
Diversity Employee Resource Groups
Our UbU advisory board is in place to hold our organization accountable for DEI initiatives.
Hiring Practices that Promote Diversity
Our talent acquisition team uses non-bias tools in our sourcing and hiring efforts.
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Wellness Programs
Mental Health Benefits
Since we are currently working remotely, and we are facing unprecedented times, Cybereason has partnered with the Calm app. Each employee has a free premium subscription.
Retirement & Stock Options Benefits
Roth and Traditional 401(K)
Company Equity
Performance Bonus
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
Remote Work Program
Family Medical Leave
Vacation & Time Off Benefits
Unlimited Vacation Policy
Paid Volunteer Time
Paid Holidays
Paid Sick Days
Perks & Discounts
Beer on Tap
Casual Dress
Commuter Benefits
Company Outings
Stocked Kitchen
Some Meals Provided
Happy Hours
Fitness Subsidies
Cybereason currently reimburses its employees up to $50 a month for any exercise membership.
Home Office Stipend for Remote Employees
Cybereason reimburses its employees for home office equipment up to a certain amount.
Professional Development Benefits
Job Training & Conferences
Diversity Program
Lunch and learns
Promote from within

An Insider's view of Cybereason

How would you describe the company’s work-life balance?

Cybereason does an awesome job at making sure each employee takes time for themselves, especially during these trying times. We've had extra company-wide days off, extended long weekends, and even end the day a little early on Fridays for Happy Hour Trivia! I'm very grateful that our senior leaders truly care about our lives outside of Cybereason.


Talent Projects Coordinator

What's the biggest problem your team is solving?

My team works to solve one of the most difficult issues we face today: keeping people and businesses safe in an increasingly digitized world. Knowing that the work we do matters and brings a positive impact to people’s lives is what keeps us focused each and every day.


VP of North America Sales Engineering

How do you empower your team to be more creative?

I believe in both forgiveness over permission and that anyone who makes a mistake immediately gets air cover while success brings them a spotlight. I want people focused on outcomes and finding ways there, not worrying about coloring inside the lines.


Chief Security Officer/President of Cybereason Government

More Jobs at Cybereason