Senior Research & Efficacy Analyst, StealthWatch

Company: Cisco Systems, Inc.
Location: Austin, Texas, United States
Type: Full-time
Posted: 23.NOV.2019
< >

Summary

Cisco enjoys a unique position and is leveraging an unprecedented capability to secure the network through intelligence derived from data co...

Description


Cisco enjoys a unique position and is leveraging an unprecedented capability to secure the network through intelligence derived from data collected on a global scale. The Cisco Research & Efficacy teams are leading the way in their capacity to invent, prove-out, and enable new technologies in big data analytics and threat intelligence.

Who You'll Work With
The Research & Efficacy Team is composed of highly skilled individuals who are comfortable working in a fast-paced and technically challenging environment. The Research and Efficacy Team are tasked with improving the detection and alerting capabilities of the Cisco security product lines. Part of this work includes researching malware, attack surface and exploitation methods in order to add to the detection and prevention capabilities of the respective products.

What You'll Do

Are you passionate about the changing threat landscape, love the challenge of understanding how the latest malware works, and can evangelize the risks and issues across a broad organization? This position allows you the ability to conduct research into the attack landscape of network security and apply your findings to the development of engines and detection content which will seek to protect the infrastructure of networks under the protection of Cisco products. This position requires a professional with a strong security and threat analysis background with a keen understanding of network analysis, protocols and how threat actors leverage these to conduct their operations.

Role & Responsibilities

  • Conduct literature reviews and keep abreast of state of the hack, data sources, data analysis techniques and big data
  • Invent and/or apply new techniques to telemetry data on a global scale and identify new security threats
  • Interface with fellow security researchers across the team sharing knowledge and participating in joint research efforts
  • Provide guidance and engineering support in the development of security detections and prevention capabilities in line with research
  • Provide detailed research and direction write-ups to engineering teams in order to implement detection and prevention mechanisms.
  • Create and disseminate research and threat briefings to engineers with varying degrees of security knowledge
  • Create new and refine existing processes and procedures for the research team specific to product coverage
  • Interface Directly with Tier 3 support team to provide resolution of issues with detections and other support cases
  • Identify root cause of false-positive detection and false negatives in product, and suggest/implement remediation
  • Analyze Network traffic and binaries to identify malicious behavior and characteristics
  • Break larger objectives into tasks and manage workflow across a small team
  • Suggest product improvements and enhancements through daily activities


Who You Are

  • Knowledge of operating system internals including Windows, Linux and Mac OS.
  • Previous experience working in position related to network administration.
  • Prior knowledge or experience with Malware detection or remediation
  • Ability to Read and comprehend Packet captures
  • Ability and prior experiencing in writing and validation of threat signatures (Snort, Yara, Clam, OpenIOC)
  • Scripting or programing experience
  • Excellent communication skills
  • Ability to articulate technical issues


Preferable Qualifications




Incident response experience

Network Engineering or Analysis experience.

Process development & Documentation experience

Reverse Engineering and experience with IDA Pro, WinDbg, OllyDbg

Data Mining and interpretation skills

Background or knowledge of Quality Assurance

Why Cisco:

#WeAreCisco, where each person is unique, but we bring our talents to work as a team and make a difference. Here's how we do it.

We embrace digital, and help our customers implement change in their digital businesses. Some may think we're "old" (30 years strong!) and only about hardware, but we're also a software company. And a security company. A blockchain company. An AI/Machine Learning company. We even invented an intuitive network that adapts, predicts, learns and protects. No other company can do what we do - you can't put us in a box!

But "Digital Transformation" is an empty buzz phrase without a culture that allows for innovation, creativity, and yes, even failure (if you learn from it.)

So, you have colorful hair? Don't care. Tattoos? Show off your ink. Like polka dots? That's cool. Pop culture geek? Many of us are. Passion for technology and world changing? Be you, with us! - provided by Dice

 
Apply Now

Share

Free eBook

Flash-bkgn
Loader2 Processing ...