Skip to main content

Remote - Washington, United States

Senior Security Researcher – Global Threats Research Lead - Secureworks - 100% US Remote

Apply Now

as rated by current and former employees

Secureworks® (NASDAQ: SCWX) is a global cybersecurity leader that protects customer progress with Secureworks® Taegis™, a cloud-native security analytics platform built on 20+ years of real-world threat intelligence and research, improving customers’ ability to detect advanced threats, streamline and collaborate on investigations, and automate the right actions.

www.secureworks.com

We enjoy competitive compensation and benefits packages, and reward and recognize our employees for exceptional results. A constant focus on continued learning and growth keeps our team members engaged and excited about “what’s next.” We offer flexible work options when available, and emphasize the importance of work-life balance. We know that when our people are rewarded, recognized, and rejuvenated, we win as a team.  

The Analysis team within the Counter Threat Unit (CTU) Threat Research group is the Secureworks threat intelligence team that develops, applies, and distributes intelligence on active and emerging information security threats. Within the team, certain aspects of the threat landscape are broken up into thematic areas and assigned a dedicated lead: namely for threats associated with China, Russia, Iran, North Korea, cybercrime, hostile state actors from other countries (referred to as rest of world or ROW), and emerging but unattributed threats.

The CIC is recruiting for a security researcher with a primary focus on ROW and emerging threats. The role will also likely include leading on research relating to North Korean threats.

Responsibilities will include, but are not limited to, the following:

  • Developing an overarching view of the threat landscape as it relates to ROW and emerging threats. Coordinate the overall programme of CTU research activity in these areas and identify ways to develop new intelligence collection and analysis opportunities, research methodologies, and investigative leads.
  • Conduct proactive strategic and technical analysis combining client telemetry, open source, and commercial data feeds to identify and investigate threats impacting Secureworks customers, with a particular focus on ROW and emerging threats.
  • Produce written threat intelligence reports, to include customer-facing reporting as well as public blogs and threat analyses.
  • Generate technical countermeasure requests for malware and other threat actor TTPs, including but not limited to those associated with ROW and emerging threats.
  • Support or deliver customer threat briefs, internal presentations, and responses to media enquiries where required.
  • Provide regular updates to peers within the CTU on activity relating to this thematic area.
  • Coordinate and run collaborative research sprints focused on specific threat research-based questions.
  • Provide support to incident response engagements, including but not limited to those that relate to ROW and emerging threats.
  • Participate in and lead certain sections of meetings with external public and private sector intelligence partners. Conduct information exchanges with analysts within those intelligence partner organizations.
  • Provide feedback to contribute to the development and improvement of internal knowledge management and analysis systems.

You’ll get the chance to:

  • Work on the most significant cyber threats impacting Secureworks customers, drawing on a unique combination of client telemetry and external data sources.
  • Collaborate with experienced researchers within the CTU to produce first-class research deliverables and customer protections.
  • Conduct self-driven and proactive research against threats likely to be of relevance to Secureworks customers, with access to both internal customer telemetry and external data sources.
  • Develop your own skills in technical analysis, intelligence investigations and threat hunting.

To do this, you’ll need to have:

  • An understanding of the kinds of cyber threats facing enterprises.
  • An ability to operate both independently, with limited oversight, and as part of a team.
  • A strong understanding of cyber threat intelligence concepts, investigative techniques, and some knowledge of North Korean, ROW and emerging threats.
  • An ability to capture threat research in internal systems in a structured and coherent way.
  • Excellent written and verbal technical communication skills.
  • Experience of applying techniques relating to malware, infrastructure, and intrusion analysis.
  • An ability to suggest improvements in process and technology to optimise analyst workflows.
  • Inherent passion for information security and service excellence and an ability to work effectively across teams to deliver customer-facing outcomes.
  • A willingness to undergo government security clearance vetting at some point, if requested.
  • (Desirable) Experience in threat hunting using EDR technologies.
  • (Desirable) Other specific skills applicable to this thematic research area, for example language skills.

#LI-Remote

Secureworks (A Dell Technologies Company) is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Secureworks are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Secureworks will not tolerate discrimination or harassment based on any of these characteristics.  Learn more about Diversity and Inclusion at Secureworks here.

As members of the disability confident scheme, we guarantee to interview all disabled applicants who meet the minimum criteria for the vacancies and ensure our recruitment process is inclusive and accessible.

Job ID: R177670

Request an Accomodation Apply Now

Why Work Here

Global Benefits

  • Comprehensive Healthcare Programs

  • Award Winning Financial Wellness Tools and Resources

  • Generous Leave of Absence for New Parents and Caregivers

  • Industry Leading Wellness Platform

  • Employee Assistance Program

Be The First To See New Opportunities

Join Our Talent Network

Sign up, stay connected and get opportunities that match your skills sent right to your inbox.

*Denotes required field

Interested InSelect a job category and/or location, then click "Add" for each saved search. Finally, click "Sign Up" to create your job alert.

  • Information Technology, RemoteRemove
  • Information Technology, Washington, United StatesRemove
  • Secureworks, RemoteRemove
  • Secureworks, Washington, United StatesRemove
  • Remote, RemoteRemove
  • Remote, Washington, United StatesRemove