Senior Staff Threat Intelligence Researcher - Remote

About the Role

Lookout, Inc. is seeking a Senior Staff Threat Intelligence Researcher to join our dynamic team. This remote position offers the opportunity to work at the forefront of cybersecurity, where you will safeguard data across devices, apps, networks, and clouds. As a key member of our Threat Intelligence team, you will utilize advanced detection tools and a vast collection of over 200 million mobile apps to combat mobile malware and track malicious actors.

What You'll Do

• Independently identify, analyze, and track advanced nation-state and financially motivated threat actors and their tactics, techniques, and procedures (TTPs).
• Drive the development of strategies to hunt mobile threats targeting enterprises and individuals.
• Reverse-engineer and analyze the capabilities of mobile malware.
• Investigate adversary command-and-control and phishing infrastructure.
• Conduct independent research and report findings to Threat Intelligence customers.
• Mine internal and external data sources to identify new campaigns, malware families, and malicious actors.
• Devise and implement new detection logic and develop innovative ways to expand and finetune coverage.
• Prepare and deliver public media reports and present findings at conferences and customer events.

Requirements

• Experience in threat hunting across multiple datasets and security tools such as VirusTotal, Validin, and Shodan.
• Familiarity with big data technologies (e.g., Lucene, ElasticSearch, AWS Athena).
• Experience in reverse engineering software, preferably mobile app reversing.
• Ability to articulate technical findings in written reports and presentations.
• Experience with tools such as JEB, IDA Pro, Ghidra, Hopper, Frida, Wireshark, and DirBuster.
• Proficiency in reading code in Java and C; knowledge of ARM Assembly, ObjectiveC, and Swift is a bonus.
• Experience in conducting OSINT investigations.
• Ability to create research tools in Python.
• Familiarity with threat intelligence file types, tools, and terminology such as MITRE ATT&CK, STIX, YARA, MISP, OpenCTI, and the Intelligence Cycle.
• Interest in geopolitical dynamics and the ability to apply that context to inform intelligence analysis and threat hunting activities.

Nice to Have

• Curiosity and a strong drive to understand how both state and criminal actors operate.

What We Offer

• Competitive salary ranging from $120,000 to $150,000 per year.
• Fully remote work environment, providing flexibility and work-life balance.
• Opportunities for professional growth and development.
• Engagement with a team of top-tier security researchers.
• Access to cutting-edge tools and technologies in cybersecurity.