Threat Researcher - Product Innovation

| Greater Boston Area

Carbon Black, the leader in advanced threat protection, is seeking a Threat Researcher. This is a mid level position in Cyber Security, targeted toward individuals with more than 4 years of experience. Educational and personal experience with network/systems administration and/or information security related work is necessary. Expert understanding of modern defensive and offensive security tools, techniques and methods required.

Threat Researchers at Carbon Black are responsible for leading, conducting and presenting threat research done by Threat Analysis Unit (TAU) and build systems used across our security program. This includes the strong understanding of endpoint detection, cloud technologies, security operations, current threatscape and emerging threats. Threat Researchers are also expected to provide mentorship to other members of the team, and take lead in maturing procedures, evaluating new security technologies, incident response, penetration testing, and prototype/experiment with new ideas and technologies to improve both our product and services.

What You’ll Do

  • Perform security research, handle complex security events, and analyze incident response, coordinate with other teams

  • Ensure that we are implementing best practice security policies that address the client's business needs while protecting their vital corporate assets

  • Work closely with internal and external customers for product and service improvements.

  • Take ownership or support ongoing projects by assisting in the implementation, research, testing and documentation of security related projects.

  • Dig through large scale data pipeline to help build a massively scalable, automatically updating Threat Intelligence Ecosystem.

  • Research anomalies to uncover new threat actor groups, malware, vulnerabilities, tools, and techniques.

  • Share data and expertise with private and public communities - Create custom rules for dissemination into the Carbon Black product suite.

  • Maintain knowledge of emerging security technologies and discipline developments. Research and manage the implementation of new technologies to enhance our products and customers’ security postures.

  • Manage and lead evaluations conducted by external third parties, including vulnerability assessments, product efficacy and penetration tests. Respond to reported product security vulnerabilities and bypasses.

  • Serve as subject matter expert (SME) and tier three support for security team members as they manage security events and incidents.

  • Being the voice of Research team to Product Marketing and Engineering, enabling to respond to real world customer demands and capabilities.

  • Train and mentor security leaders and managers, security operations teams, threat intelligence groups and incident responders including team members outside of the TAU group

  • Actively participate in the Carbon Black User-Exchange community as a subject matter expert, presenting in forums, online and at conferences.
     

Technical Skills / Experience:

  • Advanced skills in Windows, Linux, and/or OSX

  • Experience with a number of the following is a requirement: Unix Shell scripts, Perl, Python, Powershell, C#

  • Endpoint Security (e.g. Carbon Black Protection, Carbon Black Response, Symantec, McAfee, Forefront)

  • Windows Management (e.g. WSUS, SCCM, SCOM, Active Directory, Group Policy Objects,)

  • Vulnerability Management (e.g. Nexpose, Tenable Nessus, Qualys)

  • Penetration Testing Tools (e.g. Metasploit, Backtrack, Kali) and offensive techniques

  • Blue Team Detection Engineering (e.g. SIEM, Firewall, IDS, IPS, AntiVirus, EDR, etc.)

  • Operating Systems (e.g. Windows Desktops and Servers 2008/2012 etc, CentOS/Ubuntu/Debian Linux, OSX)

  • Ability to translate descriptions of attacks or malware techniques into proof of concept demonstrations for testing and product improvement.

  • Experience with building and/or managing large scale virtualized attack “firing ranges” a plus


 

What You’ll Bring

  • Understanding of exploits and attacks against Windows, Linux and OSX systems.

  • Windows system internals experience

  • Knowledge of x86 and x64 instruction set architectures

  • Ability to use IDA Pro for reverse engineering, as well as other debuggers, hex editors, and disassemblers

  • Understanding defensive capabilities and how attackers bypass them

  • Understanding of anti-analysis techniques and how to work around them.

  • Experience creating and/or developing analysis environments

  • Ability to analyze malware and extract indicators and feed them back into the products

  • Understanding the threat landscape and latest attack techniques

  • Strong analytical skills to define risk, identify potential threats, and develop action/mitigation plan. An ability to communicate these concepts to technical and non-technical audiences

  • Strong interpersonal skills, ability to mentor/train staff and bring awareness to current and emerging threats

  • Certifications a Plus: CISSP, SANS GIAC Certifications (GCIH, GPEN, GSEC, etc.) OSCP/OSCE

  • Strong written and verbal communication skills with an ability to present technical risks and issues to non-technical audiences

Read Full Job Description

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • C++Languages
    • JavaLanguages
    • JavascriptLanguages
    • PerlLanguages
    • PythonLanguages
    • ScalaLanguages
    • HTMLLanguages
    • D3JSLibraries
    • ReactLibraries
    • AngularJSFrameworks
    • Node.jsFrameworks
    • MySQLDatabases
    • Google AnalyticsAnalytics
    • OptimizelyAnalytics
    • IllustratorDesign
    • PhotoshopDesign
    • SketchDesign
    • AsanaManagement
    • ConfluenceManagement
    • JIRAManagement
    • Microsoft ProjectManagement
    • WordpressCMS
    • SalesforceCRM
    • MarketoLead Gen

Location

Waltham HQ - 1100 Winter Street, Waltham Boston Location - 201 South Street, Boston

An Insider's view of Carbon Black

What does career growth look like on your team?

We consider the Sales Development Representative Program an important first step in building out the foundation of a future leader. Whatever your first steps are at Carbon Black won’t be your last. Our program isn’t just about getting SDRs to be a good quota carrying rep; it’s also about helping them develop the next best step in their careers.

Susan

Sr. Director, Corporate Sales

How do you make yourself accessible to the rest of the team?

My leadership style is all about empowering my teams. I work in a way that is transparent and honest and want to help people achieve personal and professional goals. I want to foster technical abilities and make sure our people are keeping up with the leading edge technologies.

Tarun

VP of Product Infrastructure & Operations

What are some social events your company does?

Our culture club, Life at CB, focuses on a range of events. From company parties and sports leagues to philanthropy and learning and development, there's a ton of ways we get together. Also, a lot of communities were created by our employees, such as the Hiking Club, Women in the Workplace, and more.

Ashley

Sr. Talent Brand Ambassador

What are Carbon Black Perks + Benefits

Culture
Volunteer in local community
Partners with Nonprofits
Friends outside of work
Eat lunch together
Intracompany committees
Daily stand up
Open door policy
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Pair programming
Open office floor plan
Diversity
Documented equal pay policy
Dedicated Diversity/Inclusion Staff
Unconscious bias training
Diversity manifesto
Mean gender pay gap below 10%
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Pet Insurance
Wellness Programs
Onsite Gym
In our Waltham HQ location.
Retirement & Stock Options Benefits
401(K)
Employee Stock Purchase Plan
Performance Bonus
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
Remote Work Program
Family Medical Leave
Vacation & Time Off Benefits
Unlimited Vacation Policy
Generous PTO
Paid Volunteer Time
Paid Holidays
Paid Sick Days
Perks & Discounts
Beer on Tap
Casual Dress
Company Outings
Game Room
Stocked Kitchen
Some Meals Provided
Happy Hours
Parking
For our Waltham HQ
Recreational Clubs
Relocation Assistance
For some roles, we will offer relocation assistance.
Fitness Subsidies
Professional Development Benefits
Job Training & Conferences
Diversity Program
Lunch and learns
Promote from within
Mentorship program
Time allotted for learning
More Jobs at Carbon Black47 open jobs
All Jobs
Finance
Data + Analytics
Design + UX
Dev + Engineer
HR
Legal
Marketing
Operations
Product
Project Mgmt
Sales
Content
Marketing
new
Boston
Sales
new
Boston
Marketing
new
Boston
Data + Analytics
new
Boston
Developer
new
Boston
Developer
new
Boston
Developer
new
Boston
Product
new
Boston
Sales
new
Boston
Project Mgmt
new
Boston
Developer
new
Boston
Finance
new
Boston
Developer
new
Boston
Developer
new
Boston
Developer
new
Boston
Data + Analytics
new
Boston
Data + Analytics
new
Boston
Design + UX
new
Boston
Product
new
Boston
Content
new
Boston
Developer
new
Boston
Operations
new
Boston
Operations
new
Boston
Design + UX
new
Boston
Developer
new
Boston
Developer
new
Boston
Operations
new
Boston
Design + UX
new
Boston
Project Mgmt
new
Boston
Marketing
new
Boston