SpyCloud is looking for a self-driven
Security Researcher to join our team and participate in our research initiatives that drive SpyCloud's tailored intelligence collection. You will work closely with teams across the organization to build applications and processes that enable data collection at scale.
What You'll Do- Data Collection: Locate, target and recapture data from Phishing-as-a-Service (PhaaS) kits using a combination of human intelligence and platform sourcing.
- Data Analysis: Apply data science techniques to understand the quality of sourced data, in order to refine and improve the PhaaS data sourcing pipeline.
- Human Intelligence: Perform human intelligence techniques such as managing multiple alternate personas, actor engagements, and social engineering in support of data recapture efforts.
- Security Analysis: Participate in the drafting of research blogs and analytical products to support customers and business objectives.
- Security Research: Participate in security research including investigation of threat actors, PhaaS, and other critical research in support of SpyCloud's priorities.
Requirements- 5+ year(s) experience as a cybersecurity researcher, analyst, or similar cybersecurity related position.
- Working knowledge of modern PhaaS kits and techniques, inducing AiTM and Device Code phishing.
- Working knowledge of the criminal underground and how to access data traded through the deep and dark net.
- Experience with human intelligence techniques including elicitation, persona management, and direct threat actor engagement.
- Critical thinker that is comfortable supporting collaborative problem solving in a team environment.
- Excellent communication skills.
- Highly curious, empathetic, flexible and self-directed.
- Experience working in a remote work environment with team members all around the world.
- A passion for thwarting bad actors in the cyber criminal ecosystem.
Nice to Have- Experience with a high-level programming language like Python, Rust, Go.
- Experience working with large enterprises in delivery of security analytics products.
- Experience in using data science to analyze datasets for the purposes of detecting fraud or cyberthreats.
- Experience with databases (relational or NoSQL).
- Experience automating data collection and analysis with a programming language.
- Experience working with industry peers and sharing information in a secure manner.
- Experience using AI/LLMs to perform data analysis tasks with large datasets.
- Experience scraping data from deep and dark web.
Base Salary Range: $119,000 - $155,000
The salary range reflects the expected base compensation for a fully qualified candidate at this level based on experience, qualifications, and market data at the time of posting.
U.S.-Based Benefits + Perks (for Full Time Employees):At SpyCloud, we are committed to working alongside individuals who are equally passionate about preventing cybercrime, regardless of their department or role. Guided by our core values in all business decisions, we prioritize unity in our mission and ensure all SpyCloud employees have the support and benefits they need to stay focused on our goals. In addition to our engaging workspace in South Austin, flexible and remote-friendly work options, and competitive salary package, we offer our employees a comprehensive benefits package that includes:
- 401(k) with Employer Contribution
- Health, Vision, and Dental Insurance
- Health Savings Account (HSA) available with Employer Contribution
- Employer Paid Life, Short-term, and Long-term Disability Insurance
- Generous PTO Plan and 16 paid holidays per year
U.K.-Based Benefits + Perks (for Full Time Employees):- Retirement Savings Plan with Employer Contribution
- Employer Provided Private Health Insurance and Healthcare Cashplan
- Employer Paid Life Insurance and Income Replacement
- Generous Holiday Plan and 14 paid holidays per year
