SpyCloud is on a mission to make the internet a safer place by disrupting the criminal underground. Our solutions thwart cyberattacks that originate from the use of stolen credentials, access details, and PII, including account takeover, ransomware, and online fraud, and protect more than 2 billion accounts every day. Cybersecurity is an exciting, evolving space and being at the forefront of the fight to disrupt the cybercrime economy makes SpyCloud a special place to work. If you’re driven to create an experience that allows you to grow your career while connecting with a fantastic mission, look no further!
The ideal candidate possesses a strong understanding of the behavior of threat actors and the organization and operation of the criminal underground. This role will be within SpyCloud Labs, SpyCloud’s in-house Security Research team, and focus on building automation and other internal tooling to facilitate the collection of recaptured third-party breach and malware data. This is a full-time remote role supporting a hybrid workforce.
What You'll Do
- Work directly with teams to support the targeting and collection of recaptured underground data
- Build pipelines to acquire data from various sources and submit into SpyCloud recaptured data workflow, with the assistance of the Security Research Engineering Coordinator.
- Be the subject matter expert on Security Research Engineering and the data acquisition process.
- Clearly document activities to support the data analysis process.
- Constantly work to improve the recaptured data workflow and ETL pipelines.
- Communicate effectively within the SpyCloud Labs team and with the various business leaders.
- Deliver periodic updates to the business on the progress of the various research and data collection efforts.
- Participate in security research including investigation of threat actors, malware, and other critical research in support of SpyCloud’s priorities.
- Mentor junior security researchers and engineers including providing code review and guidance on efficient code writing and professional development
Requirements
- 5+ years experience in a Senior or Principal role within cyber security research.
- 6-8 years of professional experience as a Python developer
- Bachelor’s degree, or equivalent experience, in Math, Science, Engineering, or Business fields.
- Has working knowledge of the criminal underground and how to access data traded through the clearnet and deep and dark web.
- Self-directed with the ability to identify and deliver on tasks without needing direct supervision.
- Critical thinker that is comfortable supporting collaborative problem solving in a team environment.
- Excellent communication skills.
- Highly self-directed, empathetic, curious, and flexible.
- Be self-motivated and be able to switch contexts as business needs change.
Nice to Have
- Experience working with large enterprises in delivery of security analytics products.
- Experience in acquiring and processing malware-exfiltrated data
- Experience in using data science to analyze datasets for the purposes of detecting fraud or cyberthreats.
- Experience with databases (relational or NoSQL) and designing efficient database architecture.
We are not currently sponsoring Visas for candidates.