Address
Form of work
SalaryPurpose of Position: Reporting to the Manager of Threat Analysts, the Threat Analyst is responsible for the analysis and processing of phishing threats reported by our customers and providing details and guidance to help customers mitigate identified threats.
Essential Duties/Responsibilities
- Monitor systems for customer reported emails
- Analyze phishing campaigns and related threats to identify patterns
- Gather intelligence information from analyzed malware for dissemination to customers.
- Assess reported emails to determine if an email poses a threat or is benign
- Identify malicious nature of threats and provide details and guidance to the customer on how to mitigate the threat
- Initiate threat analysis tickets for email threats
- Maintain ownership of tickets opened for customers including updating, communicating and documenting resolutions for customers
- Write rules, signatures, and descriptors for data sharing and automation technologies
- Leverage malware analysis platforms and technologies to identify malware infrastructure and tactics as needed.
- Assist in production of monthly customer reports
- Identify process improvements to add efficiency and effectiveness to our services
- Other duties as assigned.
Knowledge, Skills, and Abilities Required
- Ability to apply critical thinking to threat investigations
- Ability to recognize the need for prompt escalation of malware review
- Working knowledge of networking, operating systems, email Infrastructures, anti-virus programs, and advanced threat detection systems
- Skilled with common end-user applications, web browsers, and productivity applications such as MS Word, Excel, and PowerPoint that are commonly targeted by malware
- Flexibility to work evening hour shifts as the job necessitates.
- Demonstrate the ability to apply critical thinking to threat investigations
- Strong verbal and written communication and organizational skills.
- Strong critical thinking and operational judgment skills.
- Ability to work in a fast-paced, team-oriented environment.
- Basic understanding of email protocols, headers, and formats.
- Ability to learn new techniques for conducting malware analysis.
- Ability to learn and quickly implement tradecraft standards.
- Ability to exercise independent judgment and creative problem-solving techniques.
- Regex and YARA rule creation nice to have
Education and/or Experience:
- 1+ years of IT security experience or security education
- Degree in Computer Science, Information Systems, Cybersecurity, or equivalent experience preferred.
- Demonstrated experience to perform phishing and malware analysis
- Certification in one major technology provider or Malware Analysis and Incident Response preferred
- CEH, GCIA, Security+, MCSA/MCSE, VCP, CCNA/CCNE, Network+, A+, CCSP, AWS Architect, etc.
- Disclaimer-
The above statements are neither intended to be an all-inclusive list of the duties and responsibilities of the job described, nor are they intended to be a listing of all of the skills and abilities required to do the job. Rather, they are intended only to describe the general nature of the job. This job description is not a contract of employment, either express or implied. Employment with Cofense will be voluntarily entered into and your employment is considered at will. Cofense reserves the right to alter the job description at any time without notice.
Cofense is committed to equal employment opportunity. We will not discriminate against employees or applicants for employment on any legally recognized basis [protected class] including, but not limited to: veteran status, uniform service member status, race, color, religion, sex (including pregnancy), gender identity, sexual orientation, national origin, age, physical or mental disability, marital status, genetic information or any other status or characteristic protected by applicable national, federal, state or local laws and ordinances. We adhere to these commitments in all aspects of employment, including recruitment, hiring, training, compensation, promotion, benefits, and discipline.
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c)
