Lead Security Expert

Israel - Tel Aviv

Location(s)

Israel - Tel Aviv

Team(s)

IntSights


Lead Security Expert - Threat Intelligence Platform R&D

We are looking for an experienced Security expert to join our Team of Researchers and developers in the threat intelligence platform team.

We are building a brand new Threat Intelligence platform from scratch for use by our analysts teams and customers. Be one of the first security professionals in our team leading Research into new ways to find problems and vulnerabilities in our customers' environments, find relevant threat intelligence in clear and dark web sources and find malicious infrastructure targeting the customer users.

This is a leadership position tasked with researching and defining the needed capabilities and features of the platform. while working closely with both the developers and analysts teams to achieve these objectives.

We are looking for a researcher looking to broaden his view and take a critical role in building a data driven platform that will allow our analysts teams to bring critical threat intelligence to our customers.

Responsibilities:

  • Research and create new methodologies for the development of automations in:

    • Asset discovery

    • Attack surface analyses

    • Vulnerability discovery and assessment

    • Clear and Dark web threat intel

    • Malicious infrastructure targeting our customers

  • Work closely with the dev and analysts team to implement new workflows and use cases

  • Gather a leverage our unique data comes from our automations and analysts

  • Be a source of knowledge and expertise for the entities services group

  • Collaborate with other departments in Rapid7 Like Metasploit ,MDR ,Cloud-sec, VM etc.

Requirements:

  • 5+ years of experience in the cybersecurity industry in research or analyst roles.

  • Independent researcher and natural leader with ability to lead ongoing efforts to build capabilities and new features.

  • Expert knowledge of common operating systems, services, networking protocols, logging, attacker techniques and tools.

  • Prior operational experience leveraging threat intelligence to detect and respond to adversaries.

  • A strong understanding of the current threat landscape including the latest tactics, tools, and procedures, common malware variants, and effective techniques for detecting this malicious activity.

  • Experience in investigating threats, utilizing OSINT, HUMINT and other research techniques to uncover threat actors and their TTP

  • Familiarity with network defense technologies, cyber kill chain, Mitre ATT&CK framework, known cyber crime groups, APTs and their targeted sectors.

  • Very strong scripting skills in python/bash

Advantage:

  • Previous experience working on security products

  • Knowledge in data analysis AI/ML 

  • Previous experience in a product role

  • previous experience as a developer (preferably Python)