Senior Staff Security Researcher
Zscaler- Full Time
- Senior (5 to 8 years)
Candidates should possess a Bachelor’s degree in Computer Science, Cybersecurity, or a related field, and have at least 5 years of experience in cloud security research, with a strong focus on identity-based threats and cloud-targeted Tactics, Techniques, and Procedures (TTPs). A solid understanding of cyber threat intelligence, adversary behaviors, and open-source threat research is essential, along with proficiency in analytical and problem-solving skills.
The Senior Cloud Security Researcher will investigate raw telemetry, analyze suspicious and confirmed threats, and conduct open-source research to associate activity with known adversaries, particularly those targeting cloud and SaaS environments like AWS, GCP, and Azure. They will develop intelligence on emerging threats, produce actionable intelligence reports, define new threat clusters, and identify opportunities to bolster detection and response capabilities. Additionally, they will engage with internal teams, external partners, customers, and the broader infosec community to communicate unique trends and noteworthy threat actor TTPs through blogs and presentations, and support customers in understanding and responding to their specific threat models.
Managed detection and response cybersecurity services
Red Canary provides Managed Detection and Response (MDR) services to help businesses protect their digital assets from cyber threats. Their services include continuous monitoring and expert analysis, which involve collecting and analyzing telemetry data to identify potential security issues in real-time. They focus on Endpoint Detection and Response (EDR) to address threats at the individual device level and conduct ongoing security operations to ensure the effectiveness of their measures. Red Canary stands out from competitors by emphasizing measurable outcomes, using behavioral analytics to detect critical threats, and offering 24/7 expert investigation to minimize false positives. Their subscription-based model allows clients to benefit from ongoing security improvements and support, with the goal of reducing risk and enhancing security for various industries.