Our client is one of the leading Tech companies in the world. Our mission is to empower people and society through the internet while aiming at becoming the Global Innovation Company. they started their own MVNO (Mobile Virtual Network Operator) Service in 2014 and, since then, it has become the No.1 MVNO in Japan.
Participating in cyber analysis and you remaining abreast of the latest adversary TTPs while responding to emerging threats, such as APT and other forms of targeted strikes for both large scale and complex incidents.
Providing forensic analysis of network packet captures, DNS, proxy, Netflow, malware, as well as logs from various types of security sensors, applications and operating systems.
Designing and developing scripts, frameworks, tools and the methods required for facilitating and executing complex attacks and emulating adversarial TTPs.
Analyzing and reverse engineering Malware to extract indicators of compromise to be used to support testing and hunting activities.
You love to perform analysis of security incidents & threat actors for further enhancement of Detection Catalog and Hunt missions by leveraging the MITRE ATT&CK framework.
Facilitating training in attack techniques, tool/exploit development, intelligence analysis and adversarial tactics.
You will review alerts generated by detection infrastructure for false positive alerts and modify alerts as needed
Collaborate: You will be a part of a growing organization that is passionate about our members and one another every single day.
Strong experience/knowledge in at least 3 of the following (and knowledge of remainder):
-Web Penetration Testing (injection, XSS, validation, session mgmt., web services etc.
-Database (Oracle, MSSQL, and MySQL: hosting, configuration, etc.) Network (protocols, traffic analysis, wireless, etc.)
-Operating System (UNIX, Solaris, Linux, Mac, Windows: configuration, file system, etc.). Development (coding, scripting, SQL, computer architecture, exploit writing, code analysis).
-Application Analysis (fuzzing, reverse engineering, disassembling (IDA, OllyDbg).
-Crypto (password cracking, encryption, algorithm analysis) and Campaign/Intrusion Set analysis and tracking experience.
-Demonstrable skills in identifying and mitigating security vulnerabilities in operating systems and web applications.
-Knowledge of industry good practice for foundational security elements including network device and system-level hardening.
-5 years in Information Security with 3+ years of recent operational security experience (SOC, Incident Response, Malware Analysis, IDS/IPS Analysis, etc.)
Education and Certifications:
-Bachelor's degree in related area (Computer Science, Information Systems, or related discipline) or an equivalent combination of education and experience