Threat Research Manager

Do you like securing complex networks? Want to be a part of a collaborative team that builds solutions that protect some of the biggest networks in the world? ExtraHop is seeking a Manager Threat Researcher experienced with threat research and detection to grow our world-class Threat Research team.

We are looking for an expert in network-based cyber attacks to lead our Threat Research team. You must have a strong understanding of attacker techniques have experience in leading a team of researchers and collaborating with cross-functional teams to deliver detectors.

Duties & Responsibilities

• Lead a team of threat researchers focusing on network-based cyber attacks and vulnerability exploitation

• Mentor and teach less experienced security engineers about cyber attacks malware analysis and vulnerability research

• Work together with engineering leadership and product management to set research priorities and to improve analysis and detector development processes

• Lead ExtraHop’s response to emerging critical network-based threats

• Act as a subject matter expert on cybersecurity and adversary behaviors

Required Skills & Experience

• Bachelor’s degree or equivalent experience in cyber security computer science engineering or network forensics

• Experience in leading a team of engineers whose primary responsibility has been threat research detection engineering or threat intelligence

• Strong understanding of network security and networking basics including the OSI model and excellent working knowledge of the key protocols from Layer 2 through Layer 7 including IP TCP UDP and HTTP

• Good communication skills with the ability to clearly communicate in writing technical details about attacks

• Strong working experience in using Wireshark TShark or other network analysis tools.

Desired Skills & Experience

• 3 years of professional experience as a Threat Researcher Penetration Tester Detection Engineering Malware Analyst or Vulnerability Researcher

• Knowledge of various signature frameworks including Suricata Snort YARA ClamAV JA3/4 or JARM

• Experience in using machine learning for detecting network-based cyber attacks

• Strong working experience with Python or equivalent scripting languages

All R&D Employees will be required to attend 2 mandatory in-person events every year of approx. 4 days duration.

$149000- $198000 + benefits+ options

Applicants must be authorized to work for ANY employer in the U.S.  We are unable to sponsor or assume sponsorship of an employment Visa at this time.

#LI-CS1

#remote