Senior Staff Threat Intelligence Researcher - Remote

About the Role

Join Lookout as a Senior Staff Threat Intelligence Researcher to enhance our cybersecurity efforts. This Senior Staff Threat Intelligence Researcher remote position allows you to work with a top-tier team dedicated to identifying and tracking targeted attacks on mobile devices. You will leverage cutting-edge tools and a vast database of over 200 million mobile apps to combat mobile malware and malicious actors.

What You'll Do

• Independently identify, analyze, and track advanced nation-state and financially motivated threat actors and their tactics, techniques, and procedures (TTPs).
• Drive the development of strategies to hunt mobile threats targeting enterprises and individuals.
• Reverse-engineer and analyze capabilities of mobile malware.
• Investigate adversary command-and-control and phishing infrastructure.
• Conduct independent research and report findings to Threat Intelligence customers.
• Mine internal and external data sources to identify new campaigns, malware families, and malicious actors.
• Devise and implement new detection logic and develop innovative and efficient ways to expand and finetune coverage.
• Prepare and deliver public media reports and present findings at conferences and customer events.

Requirements

• Experience in threat hunting across multiple datasets and security tools such as VirusTotal, Validin, and Shodan, leveraging big data technologies (e.g., Lucene, ElasticSearch, AWS Athena).
• Experience in reverse engineering software, preferably mobile app reversing.
• Ability to articulate technical findings in written reports and presentations.
• Familiarity with tools like JEB, IDA Pro, Ghidra, Hopper, Frida, Wireshark, and DirBuster.
• Proficiency in reading code in Java and C; knowledge of ARM Assembly, ObjectiveC, and Swift is a bonus.
• Experience in conducting OSINT investigations.
• Ability to create research tools in Python.
• Familiarity with threat intelligence file types, tools, and terminology such as MITRE ATT&CK, STIX, YARA, MISP, OpenCTI, and the Intelligence Cycle.
• Interest in geopolitical dynamics to inform intelligence analysis and threat hunting activities.
• A strong curiosity and drive to understand how both state and criminal actors operate.

What We Offer

• Competitive salary ranging from $140,000 to $180,000 annually.
• Remote work flexibility allowing you to work from anywhere.
• Opportunity to work with a leading cybersecurity team.
• Access to cutting-edge tools and technologies.
• Professional development opportunities and support for continuous learning.
• Comprehensive health benefits and wellness programs.
• Collaborative and innovative work environment.
• Engagement in meaningful work that impacts data security for organizations and individuals.