Threat Operations Analyst I (AUS Weekend Shift)

Reports To: Head of Threat Operations Center

Location: Remote - West Australia Note that at this time, we are only able to extend offers to individuals who have full Australian Working Rights. This position has the flexibility to condense the work week, as long as the required 37.5 hours include a full day Saturday and Sunday.

Compensation AUD Range: $56,000 to $70,000 base plus equity and superannuation - depending on experience level

What We Do:

Founded in 2015 by former NSA cyber operators, Huntress was built on a simple premise: to force hackers to earn every inch of their access. 

Today’s cyber-attacks aren’t limited to large organizations with the security tools that can ward off threats. Hackers don't discriminate and will find a way to penetrate any vulnerability in any size business.  

Huntress enables IT providers and resellers to stop hidden threats that sneak past preventive security tools. 

Through a combination of expert human threat hunters, a comprehensive platform, and a desire to make the world a safer place, we’re working to deliver cybersecurity to the 99%—those small to midsize businesses that make up the backbone of our economy.  

Join the hunt and help us stop hackers in their tracks!

What You’ll Do:

The Huntress ThreatOps team has the unique honor of waking up every morning knowing we’re going to make hackers regret targeting our customers and over 1 million endpoints we secure. As a ThreatOps Analyst you provide the human powered element to our cybersecurity defenses. You’ll be at the front lines countering attacks and constantly evolving threats. You’ll leverage research to dig into potential issues and to understand what a credible threat is and provide insight and analytics to our internal teams and partners.  

The ThreatOps team addresses this challenge head-on by using highly automated efficiencies—augmented by our Threat Analysts operating across the globe—that make intruders earn every inch of their access. 

Since security is ever evolving, this is a great opportunity to bring your experience working with large scale data categorization and classification, host-based threat hunting, malware analysis, and incident response and make a difference to our customers, while also continuing to learn industry best practices and solutions.  

Responsibilities: 

• Assist in triaging potential threats and signs of compromise, adding human perspective, experience and personality to our investigations and reporting
• Perform manual malware analysis of newly identified threats discovered by the Huntress platform. (You will be shown how to use tools such as Ghidra, Cyberchef, Radare, etc.)
• Assist customers with remediation and recovery from malware compromise
• Occasionally respond to support tickets related to security incidents, providing assistance with containment and remediation if necessary
• Continually grow your knowledge of internal procedures, the Huntress product, the threat landscape, and customer environments
• Contribute to our collaboratively mentored team (we're all here to make each other better!) 

What You Bring To The Team:

• Must be able to work West Australia hours - AWST; UTC+08:00
• Bachelor’s degree or Certificate IV in an area of Cyber Security, Information Technology or Systems Administration or demonstrated experience with online platforms such as HackTheBox, TryHackMe, Blue Team Labs Online, etc.
• System Administration Skills: (Network Protocols & Ports, OSI Layers, Network Segmentation techniques such as VLANs, Network Address Translation, Public & Private IP Addresses, Default Gateways, Subnet Masks, and IP Address assignment, DNS, Firewalls, IDS, Load Balancers, and Proxy Servers, Remote Access Methods such as VPNs, RDP, SSH, VNC, and Telnet)
• Familiarity with Windows Enterprise Domain Administration: (Active Directory, Group Policy, PowerShell, Windows Server Update Service, and Domain Trusts)
• Network Analysis: (Familiarity with Wireshark, Basic understanding of HTTP Headers & Methods, File extraction from PCAP)
• Experience with scripting languages (such as PowerShell, Python, Bash, PHP, JavaScript, or Ruby)
• Familiarity with basic Threat Actor Tools & Techniques: (MITRE ATT&CK Framework, PowerShell & Command Prompt Terminals, WMIC, Scheduled Tasks, SCM, Windows Domain & Host Enumeration Techniques, Basic Lateral Movement Techniques, Basic Persistence Mechanisms, Basic Defense Evasion Techniques)
• Entry Level understanding of Malware Analysis (Configuration of isolated Malware Analysis VM, Identification of File Formats, Basic Static & Dynamic analysis)
• Familiarity with MSP tools such as RMMs and PSAs
• Participation in Cyber Security competitions such as Capture the Flags, CySCA, B-sides CTF etc.

What We Offer: 

• Work is fully remote
• Generous personal leave entitlements
• Superannuation
• Competitive salary with stock options
• Paid vacation and sick leave
• Stipend to upgrade your home office
• Partial reimbursement for your cellular plan

Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to show up to work every day as their full self. 

We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status or any other legally protected status. 

People from all culturally diverse backgrounds including Aboriginal & Torres Strait Islander Peoples are encouraged to apply.

We do discriminate against hackers who try to exploit small businesses.

Accommodations:

If you require reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to [email protected]. Please note non-accommodation requests to this inbox will not receive a response. 

#BI-Remote