Senior Cyber Security Analyst

Intuition Machines provides machine learning-driven products and services to many of the largest companies in the world. We are currently the Largest Independent CAPTCHA service, protecting over 20% of the internet and securing billions of monthly transactions with hCaptcha.com, a world-class humanity detection service. The hCaptcha Enterprise solution has also become the most popular independent solution for large enterprises, online services, public clouds, and firewall providers, and has been deployed by many of the world's largest companies.

As a Senior Security Analyst, you will leverage your expertise in bot detection, web traffic analysis, and deep behavioral analytics to identify and investigate anomalous activities within our SaaS bot management platform. Your primary responsibilities will include conducting advanced investigations of potential threats, analyzing complex patterns and behaviors, and developing actionable insights to enhance our security posture. Working closely with cross-functional teams, you will contribute to the continuous improvement of our detection and response capabilities, ensuring that our platform remains resilient against evolving cybersecurity challenges. By staying up-to-date with the latest developments in the cybersecurity landscape, you will play a pivotal role in fortifying the security of our platform, thereby protecting our Customers' data and digital assets.

What You'll Be Doing:

• Monitoring, identifying and analyzing events from a range of sources to spot threats and respond to such incidents with a sense of urgency
• Collaborating with globally dispersed teams to accomplish tasks
• Assisting in the collection of metrics to measure the efficiency of Security Operations functions
• Auditing the effectiveness of security measures to check if the systems meet the Security compliance norms
• Assisting in implementation of security policies and procedures
• Fine-tuning of the process and eventually updating standard operating procedures for the team
• Participating in various stages of incident investigations and threat hunting engagements
• Working closely with internal company teams (such as Product, Customer Success, etc.)

What're looking for:

• Must have a solid exposure to web, API security, coding standards, WAFs advanced persistent threat actors, botnets (off the shelf and custom) and attack mitigation.
• Hands-on Advanced SQL proficiency is a must-have
• Knowledge in managing, securing and preparing production web environments
• Familiar with Threat Hunting - Web/ API, web hacking, web data analysis or WAF hands-on experience.
• Have an in-depth knowledge of the web technology and web application security field.
• Have a deep understanding of the cybersecurity threat landscape, and the attackers mindset.
• Have experience in scripting and programming (JavaScript, Python, etc.)
• Show an interest in analysing industry trends and market demands to recommend product enhancements and new sources of intelligence
• Demonstrate an interest in working with data and metrics as applied to security with respect to large data sets
• Be a great collaborator and communicator, be curious and want to innovate

Nice to Have:

• Exposure to advanced analytics and visualization tools like Apache Superset is a huge plus
• Experience developing bot-nets and whitehat hacking
• Hands on knowledge on Web security modules and secure configuration
• Hands-on experience and proficiency in API test automation and standardisation
• Experience and solid knowledge on computer and network security
• Integrating security into build automation, deployment automation, test automation, SDLC orchestration, environment management, monitoring, and production
• Mentor development teams, review pull requests, and guide evolution of the development pipeline
• Experience with modern application packaging, deployment, containerisation, bug tracking tools and other supporting tools ( Jenkins, Docker, Kubernetes, etc.)
• Familiar with ISMS (ISO/IEC 27001), SOC2, NIST Cybersecurity Framework, CIS Controls and Open Web Application Security Project

What do we offer:

• inspiring work environment with great, competent and humble colleagues
• exposure to bleeding edge technology stack, including cloud, security and machine learning
• work with one of the most innovative bot management platforms in the world
• fully remote work, 100% from anywhere in the world #LI-Remote
• rolling contract with competitive salary