Threat Analyst, Philippines (Remote, 6am- 3pm local time)

Reporting to the Manager, Threat Analysts, the Threat Analyst is responsible for the analysis and processing of phishing threats reported by our customers and providing details and guidance to help customers mitigate identified threats. 

Essential Duties/Responsibilities

• Monitor systems for customer reported emails
• Analyze phishing campaigns and related threats to identify patterns
• Gather intelligence information from analyzed malware for dissemination to customers.
• Assess reported emails to determine if an email poses a threat or is benign
• Identify malicious nature of threats and provide details and guidance to the customer on how to mitigate the threat
• Initiate threat analysis tickets for email threats
• Maintain ownership of tickets opened for customers including updating, communicating and documenting resolutions for customers
• Write rules, signatures, and descriptors for data sharing and automation technologies
• Leverage malware analysis platforms and technologies to identify malware infrastructure and tactics as needed.
• Assist in production of monthly customer reports
• Identify process improvements to add efficiency and effectiveness to our services
• Other duties as assigned.

Knowledge, Skills, and Abilities Required

• Ability to apply critical thinking to threat investigations
• Ability to recognize the need for prompt escalation of malware review
• Working knowledge of networking, operating systems, email Infrastructures, anti-virus programs, and advanced threat detection systems
• Skilled with common end-user applications, web browsers, and productivity applications such as MS Word, Excel, and PowerPoint that are commonly targeted by malware
• Must be able to work flexible hours and adjust shifts temporarily as needed for work urgencies.
• Demonstrate the ability to apply critical thinking to threat investigations
• Strong verbal and written communication and organizational skills.
• Strong critical thinking and operational judgment skills.
• Ability to work in a fast-paced, team-oriented environment.
• Basic understanding of email protocols, headers, and formats.
• Ability to learn new techniques for conducting malware analysis.
• Ability to learn and quickly implement tradecraft standards.
• Ability to exercise independent judgment and creative problem-solving techniques.
• Regex and YARA rule creation nice to have

Education and/or Experience:

• 1+ years of IT security experience or security education
• Degree in Computer Science, Information Systems, Cybersecurity, or equivalent experience preferred.
• Demonstrated experience to perform phishing and malware analysis
• Certification in one major technology provider or Malware Analysis and Incident Response preferred
  • CEH, GCIA, Security+, MCSA/MCSE, VCP, CCNA/CCNE, Network+, A+, CCSP, AWS Architect, etc.

- Disclaimer-

Cofense is committed to equal employment opportunity. We will not discriminate against employees or applicants for employment on any legally recognized basis [protected class] including, but not limited to: veteran status, uniform service member status, race, color, religion, sex (including pregnancy), gender identity, sexual orientation, national origin, age, physical or mental disability, marital status, genetic information or any other status or characteristic protected by applicable national, federal, state or local laws and ordinances. We adhere to these commitments in all aspects of employment, including recruitment, hiring, training, compensation, promotion, benefits, and discipline.