Detection & Mitigation Engineer (Cybersecurity)

TL;DR

Detection & Mitigation Engineer (Cybersecurity): Identifying, tracking, and defeating sophisticated threats and abuse across a global platform with an accent on real-time threat mitigation and leveraging emerging technologies. Focus on analyzing attacker TTPs, developing innovative detection methods, and protecting millions from cyber attacks.

Location: Hybrid, Mexico City - MX

Company

hirify.global is a large-scale technology company building a better, safer, and more powerful internet by running one of the world's largest networks.

What you will do

• Identify, track, and defeat sophisticated threats and abuse across the platform.
• Examine and mitigate threats in real-time.
• Leverage emerging technologies to build detections that protect customers.
• Identify Tactics, Techniques, and Procedures (TTPs) of ongoing cyber attacks.
• Collaborate with team members to develop new ways to present and interact with security insights.

Requirements

• Experience in one of the following: Data analysis, Metadata analysis, or Network Traffic analysis.
• A passion for analyzing attacker TTPs at varying levels.
• Ability to understand the latest security trends related to platform threats and abuse.
• Experience using a comprehensive data analysis platform and rule configuration.
• Understanding of the cyber threat landscape, cyber intelligence, and threat actors.
• Experience tracking and analyzing cyber campaigns utilizing Technical Indicators of Compromise (IOCs).
• Working knowledge of SQL and Python or other scripting experience.
• Capable and comfortable communicating actionable threat intelligence to both technical and executive-level stakeholders.

Nice to have

• Working knowledge of a specific platform's authentication protocols and experience in related header/log analysis.
• Experience analyzing, tracking, and defending against various types of cyber attacks, including phishing and malware.
• Strong understanding of the cyber threat landscape, with expertise in advanced persistent threat (APT) groups.
• Working knowledge of OSI Layers, TCP/UDP/ICMP, DNS, HTTP/HTTPS, SMTP/SMTPS, SSH/SFTP/SCP, FTP.
• Familiarity with regular expressions and their practical application in tracking malicious activity.
• Experience with detection development using YARA, Snort, Suricata, or equivalent.
• BS in Computer Science, Information Technology, Information Security, Computer Security or Information Systems.

Culture & Benefits

• Mission to help build a better and free Internet.
• Involvement in projects like Project Galileo, Athenian Project, and 1.1.1.1.
• Commitment to building a diverse and inclusive team.
• Support for developing skills and continuous learning.
• Proud to be an equal opportunity employer, providing reasonable accommodations for disabilities.