Paranoids Sr. Cyber Threat Investigator

It takes powerful technology to connect our brands and partners with an audience of hundreds of millions of people. Whether you’re looking to write mobile app code, engineer the servers behind our massive ad tech stacks, or develop algorithms to help us process trillions of data points a day, what you do here will have a huge impact on our business—and the world.

A Little About Us

When you impact millions of people every day, you become a large target for adversaries of all types within all layers of the stack. Our job is to keep our users safe and make Yahoo one of the safest places on the Internet.

We are the information security team at Yahoo; known as "The Paranoids".

As a part of the Paranoids Advanced Cyber Threats Team, we protect Yahoo, its brands, and their users. We ensure that our users are kept safe from targeted attacks and account hijacking by government backed attackers. We investigate cyber threats that affect Yahoo's infrastructure, properties, and worldwide user base and apply innovative legal and technical remedies to mitigate those activities.

A Lot About You

We’re looking for a forward-thinking investigator who is passionate about protecting our company and users from cyber threats at Yahoo scale. We value collaboration and often partner with others in industry and academia. In this role, you will manage multiple technically-demanding cases and inform detection strategies. We’re looking for someone who can proactively produce intelligence and apply methodologies to identify and track current foreign adversaries and/or emerging threat groups targeting our platform. We also work closely with internal Yahoo teams - such as Legal, Mail, Incident Response, Security Operations, Business Human Rights Program (BHRP) and others - to ensure that any targeted threat issues encountered are identified, raised and remediated appropriately.

You are an ideal candidate for our team if you value:

• Protecting employees, users and making the Internet a safer place for everyone

• Demonstrating a high level of curiosity and staying ahead of the latest cyber threat landscape and threat intelligence trends

• Taking a proactive nature to identify gaps and resolve problems

• Exercising sound judgment and reason  

• Working independently, effectively, and with integrity

• Collaborating with internal team members  

• Demonstrating responsibility, reliability, and compassion 

• Safeguarding business operations and brand integrity

In a typical day, you may find yourself:

• Utilizing internal Yahoo tools, cyber-threat intelligence feeds, and external open-source resources to conduct independent, efficient, and comprehensive investigations to affect company defensive posture.

• Working on a geographically diverse team to protect Yahoo consumers and corporate assets.

• Working with multiple engineering teams to improve detection capabilities for mitigating abuse against Yahoo.

• Communicating the results of your work to a variety of audiences, either verbally or in written format

• Disseminate operational and/or strategic threat analysis to appropriate stakeholders 

• Collaborating with trusted industry partners on emerging threats posed by cyber threat actors

• Collaborating with cross-functional teams to enhance the integration of tactical and/or strategic intelligence into incident response, risk management, and business development

You must have: 

• Requirements include a bachelor's degree, or the ability to demonstrate equivalent work experience

• Expertise and knowledge of Advanced Persistent Threat (APT) groups, especially China/Asia-Pacific Cyber Threat Groups (ie: DPRK, PRC) and their respective tactics, techniques, and procedures (TTPs)

• Experience conducting cyber threat investigations using industry standard models such as the Cyber Killchain, Diamond Model and/or MITRE ATT&CK

• An understanding of cyber threat intelligence and how it impacts the threat detection/defense cycle

• An understanding of geopolitical issues and how it impacts the cyber threat landscape (ie: global legislations, conflict zones, regional conflicts etc)

Nice to have (but not required):

• Expertise in Malware Analysis

• Chinese language proficiency

• Experience with automating tasks and processes using Python or equivalent languages

• Previous experience with large datasets

The material job duties and responsibilities of this role include those listed above as well as adhering to Yahoo policies; exercising sound judgment; working effectively, safely and inclusively with others; exhibiting trustworthiness and meeting expectations; and safeguarding business operations and brand integrity.

At Yahoo, we offer flexible hybrid work options that our employees love! While most roles don’t require regular office attendance, you may occasionally be asked to attend in-person events or team sessions. You’ll always get notice to make arrangements. Your recruiter will let you know if a specific job requires regular attendance at a Yahoo office or facility. If you have any questions about how this applies to the role, just ask the recruiter!

Yahoo is proud to be an equal opportunity workplace. All qualified applicants will receive consideration for employment without regard to, and will not be discriminated against based on age, race, gender, color, religion, national origin, sexual orientation, gender identity, veteran status, disability or any other protected category. Yahoo will consider for employment qualified applicants with criminal histories in a manner consistent with applicable law. Yahoo is dedicated to providing an accessible environment for all candidates during the application process and for employees during their employment. If you need accessibility assistance and/or a reasonable accommodation due to a disability, please submit a request via the Accommodation Request Form (www.yahooinc.com/careers/contact-us.html) or call +1.866.772.3182. Requests and calls received for non-disability related issues, such as following up on an application, will not receive a response.

We believe that a diverse and inclusive workplace strengthens Yahoo and deepens our relationships. When you support everyone to be their best selves, they spark discovery, innovation and creativity. Among other efforts, our 11 employee resource groups (ERGs) enhance a culture of belonging with programs, events and fellowship that help educate, support and create a workplace where all feel welcome. Check out our diversity and inclusion (www.yahooinc.com/diversity/) page to learn more.

The compensation for this position ranges from $128,250.00 - $266,875.00/yr and will vary depending on factors such as your location, skills and experience. The compensation package may also include incentive compensation opportunities in the form of discretionary annual bonus or commissions, in addition to equity incentives. Our comprehensive benefits include healthcare, a great 401k, backup childcare, education stipends and much (much) more.

Currently work for Yahoo? Please apply on our internal career site.