Associate Threat Researcher

Whether you’re an experienced professional or just getting started, your contributions matter at Fortra. If you’re passionate about tackling meaningful challenges alongside talented team members committed to helping each other succeed, all while having lots of fun, we want to hear from you. We offer competitive benefits and salaries, personal and professional development opportunities, flexibility, and much more! 

At Fortra, we’re breaking the attack chain. Ready to join us? 

As an Associate Threat Researcher, you will join Fortra’s Managed Threat Intelligence group, a world-class team focused on generating actionable threat intelligence findings for clients of Fortra Managed Services. With a core focus on email-based threats, account takeover attacks, and other digital impersonation fraud such as counterfeiting, this role helps Fortra clients fully understand the nature of the threats targeting them and provides critical intelligence to help clients most effectively prioritize aspects of their defensive posture.

WHAT YOU'LL DO

•    Actively research a variety of cyber threats using technical analysis techniques, data analysis, and both open-source and deep/dark web intelligence gathering.
•    Produce both long and short form finished intelligence products, including threat reports, intelligence briefings, whitepapers, and RFI deliverables.
•    Partner with Marketing and other content teams to translate intelligence findings into blog posts and other material demonstrating Fortra’s thought leadership.
•    Perform cutting-edge research on BEC and other types of phishing attacks.
•    Write intelligence alerts, threat reports, whitepapers, and blog posts based on research findings from Fortra’s Threat Intelligence teams.
•    Participate in a peer review process of intelligence deliverables by providing notes and constructive feedback.
•    Analyze threats to identify novel adversary capabilities, tactics, techniques, and procedures.
•    Conduct data analysis to identify notable trends and activity groups in email- delivered, Account Takeover, and Digital Impersonation activity across the cybercrime ecosystem.
•    Monitor previously identified activity groups over time to track activity and evolution in their behavior.
•    Engage with customers and internal stakeholders to conduct RFI intake briefings and communicate threat research findings. This will involve presenting findings to key stakeholders.
•    Other duties as assigned.
 
QUALIFICATIONS

•    5+ years in security operations, or 1-3 years in intelligence analysis or investigative journalism.
•    Strong understanding of social engineering techniques, phishing threats, and digital impersonation tactics.
•    Able to effectively develop intelligence requirements to an RFI via interaction with stakeholders.
•    Exceptional research skills using both OSINT and private threat data.
•    Outstanding data analysis skills and experience with data analysis tools, including Microsoft Excel.
•    Exceptionally strong analytical reasoning, problem-solving, and decision-making skills.
•    Ability to write reports communicating complex research findings to a broad audience.
•    Able to effectively present analytical findings to both technical and non-technical audiences.
•    Desire to self-develop in order to keep up with the evolving threat landscape.
•    Able to work independently and effectively as part of a remote team with minimal supervision.
•    Experience querying both relational and non-relational databases.
•    Intermediate scripting knowledge, and an aptitude for automating routine or repetitive tasks.
•    Understanding of web-based languages including HTML, PHP, and JavaScript.

3306

Visit our website to learn more about why employees choose to work for Fortra. Remember to connect with us on LinkedIn.

As an EEO/Affirmative Action Employer, all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, veteran or disability status.