Senior Threat Intelligence Researcher - Linux

What are we looking for?

We are seeking a highly motivated and skilled individual to join our team as a Senior Threat Intelligence Researcher for Linux research. The ideal candidate should have a solid background in cybercrime investigation, and malware analysis. As our new colleague you will be responsible for conducting in-depth research and analysis of emerging and existing threats, provide actionable intelligence for detection, and possess a deep understanding of the tactics, techniques, and procedures used by ransomware operators and their ecosystem.

What will you do?

• Lead and conduct in-depth research and analysis of emerging and existing cyber threats, including ransomware campaigns, and other sophisticated attacks.
• Utilize reverse engineering and malware analysis skills to identify and analyze malicious code and artifacts.
• Create actionable intelligence reports and threat briefings to inform senior management and key stakeholders of the potential risks associated with ransomware groups.
• Keep curating a KB on ransomware operations, their tradecraft, affiliations.
• Identify and track threat actors, their capabilities, and the infrastructure they use.
• Analyze malware samples and artifacts to identify their functionality, capabilities, and potential impact.
• Stay current with emerging malware trends, attack techniques, and evasion tactics.
• Create and maintain hunting strategies to keep track of operations and shifting in tactics
• Monitor malicious infrastructures and extract fingerprints to track C2s

What experience or knowledge should you bring?

• Strong knowledge of malware analysis tools and techniques, including static and dynamic analysis, sandboxing, and debugging. + Knowledge of unpacking and deobfuscation.
• Understanding software vulnerabilities, and ability to implement hunting strategies to track and discover them
• Knowledge of various threat intelligence frameworks such as the Diamond Model, MITRE ATT&CK
• Knowledge of the cyber threat landscape, including actors and TTPs
• Strong analytical skills, with the ability to identify patterns and trends in large datasets
• Strong knowledge of Yara to track new malware families and knowledge on validation best practices
• Knowledge of Linux Internals, Linux Threats, Extended Berkeley Packet Filter (eBPF) and Linux containers; familiarity with Linux distributions and their differences
• Rudimentary knowledge about working of EDR in Linux environment
• Familiarity with linux shell scripting (example, bash, zsh, lua)
• Good to have - relevant certifications, such as Certified Malware Analyst (CMA), Certified Reverse Engineering Analyst (CREA), or GIAC Certified Malware Reverse Engineer (GREM)
• Programming experience with Python, Perl or Lua
• Expertise in Linux Systems: Advanced knowledge and hands-on experience with Linux operating systems, including various distributions and architectures.
• In-depth Understanding of Linux Internals: Strong familiarity with Linux internals, including kernel structures, memory management, file systems, and networking stack.
• Linux Malware Analysis: Proven experience in identifying, analyzing, and mitigating Linux-based malware. Skilled in reverse engineering and dissecting malware samples to understand their behavior, attack vectors, and impact on Linux systems.

Why us?

You will be joining a cutting-edge company, where you will tackle extraordinary challenges and work with the very best in the industry along with competitive compensation.

• Flexible working hours and hybrid/remote work model
• Flexible Time Off
• Flexible Paid Sick Days
• Global gender-neutral Parental Leave (16 weeks, beyond the leave provided by the local laws)
• Generous employee stock plan in the form of RSUs (restricted stock units)
• On top of RSUs, you can benefit from our attractive ESPP (employee stock purchase plan)
• Gym membership/sports gears by Cultfit
• Wellness Coach app, with 3,000+ on-demand sessions, daily interactive classes, audiobooks, and unlimited private coaching
• Private medical insurance plan for you and your family
• Life Insurance covered by S1 (for employees)
• Telemedical app consultation (Practo)
• Global Employee Assistance Program (confidential counseling related to both personal and work life matters)
• High-end MacBook or Windows laptop
• Home-office-setup allowances (one time) and maintenance allowance
• Internet allowances.
• Provident Fund and Gratuity (as per govt clause)
• NPS contribution (Employee contribution)
• Half yearly bonus program depending on the individual and company performance
• Above standard referral bonus as per policy
• LinkedIn Learning platform for Hard/Soft skills Training & Support for your further educational activities/trainings
• Sodexo food coupons