Missouri Information Technology Jobs

Jobs.mo.gov mobile logo

Job Information

Proofpoint Security Research Analyst - Phishing (Remote - Anywhere in the US) in St. Louis, Missouri

It's fun to work in a company where people truly BELIEVE in what they're doing!

We're committed to bringing passion and customer focus to the business.

The Role

This role is responsible for creating credential phishing detection rules for our Emerging Threats Pro IDS feed product as well as for ClamAV for threats in email. You'll write network and email defense signatures in order to detect credential phishing threats to our customers.

As a Proofpoint Security Research Analyst, you will perform phishing landscape analysis and spend time searching through our corpus of malicious URL data to analyze the threats within, create detections, and make that information meaningful to our customers. You’ll be a part of a team of dynamic and creative threat researchers focused on finding these threats, understanding how we can efficiently protect against them, and using that knowledge to improve our products.

This position requires experience in analysis of the phishing landscape and its detection methodology.

Your day-to-day

  • Analyze phishing landscape in order to create detections that are best fit to the threat

  • Write intrusion detection rules for the Snort and Suricata platform

  • Write ClamAV rules for internal static processing

  • Work with the open-source community to maintain and optimize the ETOpen ruleset

  • Research new and past threats to build proactive detections into our suite

What you bring to the team

  • Experience with network traffic inspection tools, such as Wireshark, tcpdump, Arkime.

  • Experience analyzing modern credential phishing threats

  • Familiarity with writing signatures for the Snort or Suricata IDS platforms.

  • Experience with ClamAV signature creation

  • An interest in the larger credential phishing threat landscape

  • Ability to analyze collated data and triage efforts for best efficacy return

  • Familiarity with virtualization technologies, such as VMware products, VirtualBox, KVM, etc.

  • Experience with one or more scripting languages. Python proficiency preferred.

  • Experience with PCRE.

  • Excellent verbal and written communication skills

  • Creativity, enthusiasm for the email threat space, and willingness to learn from mentors

  • Must be able to work independently

#LI-EC1

If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!

At Proofpoint, we have a passion for protecting people, data, and brands from today’s advanced threats and compliance risks. We hire the best people in the business to:

  • Build and enhance our proven security platform

  • Blend innovation and speed in a constantly evolving cloud architecture

  • Analyze new threats and offer deep insight through data-driven intel

  • Collaborate with customers to help solve their toughest security challenges

We are singularly devoted to helping our customers protect what matters most. That’s why we’re a leader in next-generation cybersecurity—and why more than half of the Fortune 100 trust us as a security partner.

Proofpoint is an equal opportunity employer, we hire without consideration to race, religion, creed, color, national origin, age, gender, sexual orientation, marital status, veteran status or disability.

DirectEmployers