Remote Senior Cloud Intelligence Analyst

Description:

• Red Canary is a cyber security company focused on empowering organizations to make better security decisions without fear of cyber threats.
• The Senior Cloud Intelligence Analyst will be part of the Intelligence Team, conducting in-depth analysis to prioritize detection and response efforts.
• Responsibilities include investigating raw telemetry, analyzing suspicious and confirmed threats, and conducting open-source research to associate activity with known adversaries.
• A significant focus will be on researching identity-based threat actors and cloud-targeted TTPs across infrastructure services like AWS, GCP, and Azure, as well as platform services such as Okta, EntraID, and Kubernetes.
• The role requires strong collaboration, outstanding communication, and experience in open-source threat research.
• Key tasks include developing intelligence on emerging threats, producing actionable intelligence reports, defining new threat clusters, and identifying opportunities to enhance detection and response capabilities.
• The analyst will engage with internal teams, external partners, customers, and the broader infosec community to communicate trends and noteworthy threat actor TTPs through blogs and presentations.
• Staying updated on emerging threats, suggesting workflow improvements, and supporting customers in understanding their specific threat models are also essential aspects of the role.

Requirements:

• Candidates should have experience with or a drive to research cloud and SaaS providers, including AWS, GCP, Azure, Office 365, and Google Workspaces.
• Proficiency in analytical problem-solving and familiarity with query languages and data platforms like SQL, Splunk, and Elasticsearch is required.
• Strong analytical and problem-solving skills, including the ability to synthesize complex information, are essential.
• Experience in open-source threat research, including social media and malware sandboxes, is necessary.
• Knowledge of cyber threat intelligence concepts, including attribution and group naming, is required.
• Candidates should have experience tracking adversaries and the ability to differentiate unique and shared characteristics of clusters.
• Outstanding written and verbal communication skills are necessary to convey technical concepts clearly to various audiences.
• Experience in Intelligence, Security Operations Center (SOC), Digital Forensics and Incident Response (DFIR), or other security-focused roles is preferred.
• Curiosity and adaptability to tackle new challenges in a fast-paced environment are essential traits.

Benefits:

• Red Canary offers a 100% paid plan option for medical, dental, and vision for employees and their dependents, with no waiting period.
• Access to mental health services, an Employee Assistance Program, and additional health incentive programs are provided.
• All new hires are eligible for fertility benefits from their first day.
• Flexible Time Off is available, allowing employees to take the time they need for vacation, sick leave, bereavement, jury duty, and holidays.
• Paid Parental Leave is offered at full base pay to bond and care for a new child.
• A variety of pre-tax plans, including FSA, HRA, and HSA, are available with employer funding to help offset out-of-pocket healthcare expenses.
• The company supports a flexible work environment, with 60% of the workforce working remotely from almost anywhere in the US.