Threat Analyst

Proofpoint (Posted 19 Jan 22)

We’re looking for a highly intelligent, self-motivated person to join the team of talented individuals to combat with various threats that are coming through with emails. As a threat analyst, you will have direct impact to protect our customers from getting malicious emails by stopping unique or wide-spread threats. If you’re interested in combatting threats by analyzing email that is a number one threat vector, this is the role for you. This role is a remote role for anywhere in Australia, Japan or Singapore. Your day-to-day

  • Analyze emails and classify them as spam, phish, malware, impostor or legitimate for heuristic engine by updating spam definitions which may contain regular expression.

  • Respond to attacks by monitoring traffic and creating signatures/rules to stop them from being delivered to customer environment.

  • Communicate with customers by providing written responses to their inquiries through a ticketing system.

  • Be on-call to respond to urgent issues and attacks.

  • Provide feedback to reputation system to influence direction of emails.

  • Develop, test and deploy rules for static detection for URLs and attachments.

  • Work with feeds to identify threats and create rules for proactive measure.

What You Bring To The Team

  • BSCS or equivalent, or equivalent technical experience.

  • Minimum of 2 years of experience with email threats such as spam, phishing, malware and impostor.

  • Knowledge of how email delivery mechanism works including SMTP protocols, DNS, MTA.

  • Knowledge of email headers, body, attachments, mime-type.

  • Understanding of social engineering, 419, BEC.

  • Familiarity with Unix environments and command line tools for manipulating, extracting, and analyzing text files.

  • Ability to identify suspicious characteristics of email, URLs, and attachments.

  • Great analytical and problem solving skills.

  • Excellent written and verbal communication skills to respond to customers to help resolve issues.

  • Sufficient data mining skills for text extraction.

  • A hard-working, self-directed team player.

  • Ability to work independently and remotely.

PreviousCyber Threat Intel AnalystNextOSINT Technologist

Last updated