Principal Threat Researcher

Summary

Join Palo Alto Networks' Unit 42, National Security Team (NATSEC) as a threat intelligence analyst. You will work with a global team, embedded in a customer environment, tracking cybercriminals and advanced threats. Your responsibilities include providing actionable intelligence, leveraging global datasets to track malicious actors, collaborating on threat analysis, developing threat assessments, and communicating with product engineering teams. This role requires a Singapore CAT 2A Government Clearance, a BS/MS in Computer Science or equivalent, and experience in threat intelligence analysis. Proficiency in Python, C, or C++ is also necessary. Additional languages are a plus.

Requirements

• Eligible for a Singapore CAT 2A Government Clearance
• BS/MS in Computer Science, Computer Engineering or equivalent military experience, or 8+ years of experience as a cleared cyber threat intelligence analyst
• Working knowledge of BigQuery
• Proficiency in Python, C, and/or C++
• Familiar common malware families and research techniques
• Familiar with common tactics, techniques, and procedures used by cyber threat actors to conduct network reconnaissance and intrusions, including knowledge of the MITRE ATT&CK Matrix for enterprise and individual techniques
• Strong knowledge of cyber security threat actors, particularly their tactics, techniques, procedures, tooling, and noteworthy attacks
• Experience leveraging netflow, passive DNS, IP registration, malware telemetry, and other data sets to form comprehensive threat assessments
• Experience working with information security teams such as fusion centers, security operations centers, vulnerability threat management, security incident management, threat hunting, and data analytics
• Excellent time management, often working under tight deadlines with multiple assignments
• Outstanding verbal and written communication skills
• Comfortable with creating and delivering presentations in a range of environments, from industry conferences to customer briefings
• Native level English & Malay fluency, any other languages a plus

Responsibilities

• Provide timely and actionable intelligence to support customer intelligence requirements
• Leverage global datasets (netflow, malware, passive DNS, etc) to track malicious cyber actors, their infrastructure and campaigns
• Collaborate with a global team of threat intelligence analysts to analyze and develop coverage for emerging threats
• Develop tactical hunting and strategic threat assessments in support of customer needs
• Communicate with product engineering teams to improve detection efficacy in our ecosystem of products

Benefits

• FLEXBenefits wellbeing spending account with over 1,000 eligible items selected by employees
• Mental and financial health resources
• Personalized learning opportunities