Senior Security Researcher (Phishing)

3 weeks ago
Full-time
Senior
Data Science and Analytics
SpyCloud

SpyCloud

SpyCloud offers Cybercrime Analytics to prevent cyberattacks, safeguard identities, and power investigations for businesses globally.

Internet Software & Services
51-250
Founded 2016
$168M raised

Description

  • Locate, target, and recapture data from Phishing-as-a-Service (PhaaS) kits using human intelligence and platform sourcing.
  • Apply data science techniques to assess sourced data quality and improve the PhaaS data sourcing pipeline.
  • Use human intelligence methods such as alternate persona management, actor engagement, and social engineering to support data recapture efforts.
  • Draft research blogs and analytical products that support customers and business objectives.
  • Investigate threat actors, PhaaS, and other priority security topics as part of SpyCloud’s research efforts.
  • Work with teams across the organization to build applications and processes that enable data collection at scale.

Requirements

  • 5+ years of experience as a cybersecurity researcher, analyst, or in a similar cybersecurity role.
  • Working knowledge of modern PhaaS kits and techniques, including AiTM and Device Code phishing.
  • Working knowledge of the criminal underground and how to access data traded through the deep and dark web.
  • Experience with human intelligence techniques, including elicitation, persona management, and direct threat actor engagement.
  • Strong critical thinking skills and comfort with collaborative problem solving in a team environment.
  • Excellent communication skills.
  • Highly curious, empathetic, flexible, and self-directed.
  • Experience working in a remote environment with team members distributed around the world.
  • A passion for thwarting bad actors in the cybercriminal ecosystem.
  • Preferred: experience with Python, Rust, or Go.
  • Preferred: experience supporting large enterprises with security analytics products.
  • Preferred: experience using data science to analyze datasets for fraud or cyberthreat detection.
  • Preferred: experience with relational or NoSQL databases.
  • Preferred: experience automating data collection and analysis with a programming language.
  • Preferred: experience working with industry peers and sharing information securely.
  • Preferred: experience using AI/LLMs for data analysis on large datasets.
  • Preferred: experience scraping data from the deep and dark web.

Benefits

  • Base salary range of $119,000 to $155,000.
  • Competitive salary package.
  • 401(k) with employer contribution.
  • Health, vision, and dental insurance.
  • Health Savings Account (HSA) with employer contribution.
  • Employer-paid life, short-term, and long-term disability insurance.
  • Generous PTO plan plus 16 paid holidays per year.
  • Flexible and remote-friendly work options.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Security Operations Analyst

Remote Raven 11-50 Professional Services

Transcend is hiring Security Operations Analysts to remotely monitor client security systems, assess and respond to live alerts, and document incidents across multiple sites.

Cybersecurity
4 hours, 17 minutes ago

IT & Compliance Auditor

AJAIA | AI Consultancy 1-10 management consulting

Ajaia is hiring an IT & Compliance Auditor to manage compliance programs, security audits, and risk management across its multi-cloud consulting and product environment as the company scales into regulated industries.

Azure HIPAA
4 hours, 32 minutes ago

FIU Analyst

MoonPay 251-1K Diversified Financial Services

MoonPay is hiring an FIU Analyst to help safeguard its digital payments platform by reviewing financial crime alerts, investigating suspicious activity, and supporting AML and counter-terrorism financing compliance.

1 day, 4 hours ago

IT Security Analyst

Lakeside Software 251-1K IT Services

Lakeside Software is hiring a Cybersecurity Analyst to protect its Azure cloud services and information systems within a complex IT environment by identifying vulnerabilities, supporting incident response, and maintaining security controls.

Azure Burp Suite Linux macOS SIEM WAF
1 day, 4 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers