Canary Red

Senior Intelligence Analyst

Canary Red

full-time

Posted on:

Location Type: Remote

Location: Remote • 🇺🇸 United States

Visit company website
AI Apply
Apply

Salary

💰 $119,000 - $170,000 per year

Job Level

Senior

Tech Stack

CloudElasticSearchSplunkSQL

About the role

  • Utilizing Synapse and Storm Query Language for data modeling and analytic workflows to identify patterns and trends that can be disseminated to customers
  • Investigating telemetry to identify new activity clusters based on analysis of malicious and suspicious behaviors and activity observed across our customer base
  • Conducting open and closed source research to analyze threat patterns and trends, writing actionable intelligence products to customers and the community to communicate TTPs, detection coverage, and remediation strategies
  • Actively engaging with internal teams, external partners, customers, and the infosec community to share knowledge and enhance collaboration
  • Validating Red Canary’s endpoint, cloud, and identity detection coverage against the continuously evolving threat landscape and identify unique or emerging threats to build detection coverage for. Recommending solutions to visibility gaps in telemetry and data sources

Requirements

  • Strong analytical and problem-solving skills, including the ability to synthesize complex and contradictory information, specifically through utilizing graph databases, or with query languages and data platforms such as SQL, Splunk, Elasticsearch, or Synapse Storm
  • Knowledge of cyber threat intelligence concepts including attribution, group naming, making assessments, and pivoting. Familiarity with the mechanics of attack behaviors and MITRE ATT&CK ®.
  • Experience tracking adversaries, including threat groups, activity groups, or malware families, and ability to differentiate unique and shared characteristics of clusters.
  • Outstanding communication skills, both written and verbal, including the ability to communicate technical concepts in a clear, succinct fashion to subject matter and non-subject matter experts alike.
  • Experience in Intelligence,  Security Operations Center (SOC), Digital Forensics and Incident Response (DFIR), or other security-focused roles
Benefits
  • Various health plans
  • Time off plans for vacation and sick time
  • Parental leave options
  • Retirement options
  • Education reimbursement
  • In-office perks, and more!

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
data modelinganalytic workflowstelemetry analysisgraph databasesquery languagesSQLSplunkElasticsearchSynapse Stormcyber threat intelligence
Soft skills
analytical skillsproblem-solving skillscommunication skillswritten communicationverbal communicationcollaborationknowledge sharingsynthesis of information