Description:
In OryxLabs, we are continuously researching & developing new tools that assess, monitor, protect & improve our client’s network environment. You will be part of a multicultural, highly collaborative Elite team of tier one-security specialists and engineers who are passionate about crafting effective solutions. With the agility of a startup and the talent of an experienced firm, we take pride in producing efficient, reliable, secure, and integrated cyber protection services.
Join us for the opportunity to make an impact and work with new technologies to create world-class solutions and products that support our clients in protecting against an evolving cyber threat landscape.
Job Responsibilities:-
- Research public or private vulnerabilities to determine or confirm exploitability/impact.
- Research traffic on our clients’ networks, create baselines for expected norms, and identify and investigate outliers. Provide your analysis and document your research.
- Manage research related to threat hunting adversaries in our clients’ environments
- Participate in investigations related to threat hunting adversaries in our clients’ networks.
- Monitor and analyze the output from many log sources including cloud services, on-premises network equipment, productions platforms, and employee provided devices, and recommend security actions per procedures where required
- Integrate our unique tools into your methodology and provide feedback to enhance them
- Continuously learn about new technologies and help keep the team informed of industry developments and evolving best practices
- Required: Knowledge and proficiency of Mitre ATT&CK Framework (esp. Tactics, Techniques, and Groups
Qualifications / Technical Skills:-
- Bachelor’s or Master’s in Computer Science, Computer Engineering or related field with 3 to 5 years of experience in security research, or equivalent years of demonstrable experience
- In-depth experience with security threats, vulnerability research, and familiarity with the cyber-attack chain
- Monitoring non-traditional IT services such as SaaS and cloud services
- Working knowledge of popular Firewalls, NAC solutions, Network Intrusion Detection platforms, and Host Intrusion prevention tools.
- Working knowledge of SIEM platforms
- Experience working with development teams to support commercial cyber security products
- Required: Knowledge and proficiency of Mitre ATT&CK Framework (esp. Tactics, Techniques, and Groups)
Operating Systems
Enterprise Linux (CentOS / Amazon Linux)
Programming Languages
Python(Required), Bash, Ruby, and Go(Ideally)
Threat Hunting toolset
Maltego, Cyberchef, Yara, Or anything that does the job for you
Productivity / Collaboration
Jira, Confluence, GIT, Jenkins, Mattermost