Job Description
Summary
We are seeking a skilled Senior Threat Disruption Engineer to track, analyze, and disrupt cyber campaigns orchestrated by both nation-state actors and non-state threat groups. The ideal candidate possesses deep expertise in threat campaign tracking, on-chain analysis, and investigating cryptocurrency-related fraud.
Responsibilities:
- Campaign Tracking: Identify, monitor, and analyze malicious campaigns leveraging advanced tools and methods.
- Threat Intelligence Analysis: Collaborate with threat intelligence teams to deliver in-depth assessments of adversarial TTPs tied to active and potential campaigns.
- On-Chain Analysis: Conduct meticulous on-chain analysis to trace illicit activity, identify transaction patterns, and expose threat actor relationships.
- Threat Hunting: Proactively hunt for novel threats using threat intelligence, telemetry, and IOCs to fortify our defenses.
- Disruption Operations: Engineer and execute threat disruption strategies, employing technical, procedural, and legal countermeasures against ongoing attacks.
- Incident Response Support: Partner with incident response teams during investigations into APTs, nation-state activity, and cybercriminal incidents.
- Automation & Tool Development: Develop and maintain tools that streamline threat detection, tracking, and mitigation.
- Collaboration: Work cross-functionally with legal, fraud, and compliance teams to support enforcement actions, policy creation, and legal cases related to crypto-related fraud or cybercrime.
- Reporting: Generate comprehensive technical reports and threat intelligence briefings, providing strategic and tactical insights for internal stakeholders.
Qualifications:
- Education: B.S. in Computer Science, Cybersecurity, equivalent field, or relevant work experience
- Experience:
- 3+ years in threat analysis, threat hunting, or incident response specializing in advanced threat actor activity.
- Demonstrated success tracking complex global cyber campaigns.
- Expertise in on-chain analysis and crypto fraud investigations.
Skills:
- Proficiency with threat intelligence platforms and campaign tracking tools (MISP, ThreatConnect, Maltego).
- Deep understanding of blockchain technology, cryptocurrency, and crypto fraud techniques.
- Familiarity with threat actor TTPs, including MITRE ATT&CK framework.
- Hands-on experience with tools like YARA, Suricata, or Snort for threat detection and rule writing.
- Strong scripting/programming skills (Python, Bash, etc.) for automation.
- Knowledge of malware analysis, reverse engineering, and incident forensics a plus.
- Key Competencies:
- Exceptional analytical and problem-solving abilities.
- Capacity for independent and collaborative work.
- Excellent technical writing and communication skills.
- Thrive in a fast-paced, high-pressure setting, adeptly managing multiple priorities.
- Proactive and relentless in the pursuit of mitigating emerging threats.
It Pays to Work Here
The compensation & benefits package for this role includes:
- Competitive starting salary
- A discretionary annual bonus
- Long-term incentive in the form of a new hire equity grant
- Comprehensive health plans
- 401K with company matching
- Paid Parental Leave
- Flexible time off
Salary Range:
The base salary range for this role is between $152,000 - $190,000 in the State of New York, the State of California and the State of Washington. This range is not inclusive of our discretionary bonus or equity package. When determining a candidate’s compensation, we consider a number of factors including skillset, experience, job scope, and current market data.
Skills
- Analytical Thinking
- Communications Skills
- Cryptocurrency
- Cybersecurity Solutions
- Development
- Problem Solving
- Python
- Team Collaboration