{$ msg.text $}

Senior Threat Intelligence Researcher

  • London
  • London

F-Secure is a world-renowned cyber security company with a diverse portfolio of products and services, from award-winning endpoint protection solutions and consumer security products, all the way to world-class cyber security consulting services and managed detection and response services. Put simply, we protect both private citizens, and the critical businesses and governments that they depend upon, from cyber threats.

F-Secure Countercept is our managed detection and response (MDR) service. Our mission is to protect our clients from advanced, targeted cyber-attacks. We do this by having a world-class team of threat hunters, incident responders and researchers. We do this by testing ourselves with attacks from our own red teams. We do this by building the best technology we can to support the great people that we have. The end result? We have an exceptional track record of successfully protecting our clients from attacks by both serious organised crime groups and nation state attackers.

One of the best things about F-Secure is working with true leaders in the field of cyber-security. We are pioneering in many areas and, for almost any aspect of cyber-security you can think of, you will be able to find someone who is an expert in it. If you are deeply passionate about cyber-security and want to be surrounded by people you can learn from, then you will love it here.

What we need...

We need an experienced and passionate threat intelligence researcher to join our growing threat intelligence team. We are looking for an individual with strong analytical skills who is able to identify and track threat actors. F-Secure has a wide aperture full of valuable data sources relating to both criminal and nation state threats; therefore, the maximisation of the value from these sources combined with open-source intelligence will be a key requirement of the role. Reverse engineering skills and experience are desired, but not essential.

The team has an expanding remit and there is an opportunity to shape the future direction of threat intelligence at F-Secure and focus on delivering real value to consumers beyond the industry hype.

Job duties..

  • Collect and analyse data from a variety of sources, including: primary source intelligence, Open Source Intelligence (OSINT) and other data sources
  • Analyse malware and other malicious artefacts relating to threat actor activity to extract indicators and TTPs
  • Analyse data relating to threat actor infrastructure to identify key indicators and tradecraft
  • Provide threat intelligence expertise to support the major incident response activities that F-Secure deals with regularly, through insight on threat actor tradecraft and tactical support
  • Contribute to the engineering of detection logic and analysis tooling to enable internal teams at F-Secure to counter threat actor activity
  • Communicate effectively with key stakeholders and work to understand their key threat intelligence requirements
  • Contribute to the production of world-class threat intelligence reports for sharing with our customers and the wider industry
  • To be an active team member who contributes towards a culture of constructive critical analysis of intelligence assessments and mentors more junior analysts
  • Effectively manage workload and time to meet deadlines of intelligence requirements

Desirable skills and experience...

  • Experience working in a similar role in threat intelligence, research or incident response that involved elements of threat actor tracking and investigation
  • A deep understanding of threat actor tradecraft and the techniques used to hunt for this activity across various data sets
  • A strong understanding of OS fundamentals and network communication protocols
  • Experience conducting static and dynamic analysis of different complexities of malware (obfuscation, packers, etc) using a variety of tools and techniques (IDA, WinDbg, R2 etc)
  • Experience with programming/scripting languages (python, C#, etc) and exposure to MySQL, Elasticsearch or other similar back-end technologies
  • A passion and willingness to learn and continuously acquire knowledge to keep pace with modern threat actors’ operations and offensive techniques
  • Familiarity with common techniques used by malware and threat actors and the industry standard lexicon for discussing such threats (e.g. MITRE ATT&CK)
  • Experience conducting intelligence analysis using a variety of structure analytical techniques (e.g. ACH)
  • Excellent written English and communication skills for producing quality intelligence reports, both at the executive level and for highly technical practitioners

What you will have access to...


MDR Tech Stack – Primarily based on our in-house EDR solution, but increasingly involving cloud-based data as well, this gives us deep visibility over all our customer’s estates. The data is invaluable both for extracting intelligence and hunting for adversaries and other threats.

In-house Malware Intelligence – We have various in-house technologies connected to different cyber security products we offer, which collect huge amounts of data on files seen executing, sandbox executions, URLs visited, certificates observed etc.

Incident Response – Our IR team regularly deals with major incidents across the world which provides findings that are extremely valuable for remaining at the front line of the ever-changing threat landscape.

World-class Expertise – F-Secure employs around 1,700 people, a large percentage of which are security experts. Across the various areas of the business, such as consultancy, MDR and security software development, you can find at least one expert in almost any area of technology or security that you can think of.

Our four promises to you…

  • Freedom – you will have the opportunity to define new ways of working how we engage with our customers, and how product value gets represented
  • You will work together with experienced and enthusiastic colleagues, and within F-Secure you will find some of the best minds in the cyber security industry
  • Your work will be clearly visible and recognised – all over the world and across our business units
  • You can rely on the support from the entire F-Secure leadership including our top executives

You can’t design culture!

The F-Secure team is diverse, fluid, fun-loving, and full of energy. It’s our job to preserve that, so we’ve made it our business to help individuals traverse from passion to passion, from specialism to specialism, from the flavour of today to tomorrow’s. We move with their needs, and help them build pathways, always focusing on the things that make them happy in and beyond of the office

PLEASE NOTE: Due to the current pandemic this position will be remotely based until further notice.

Work with great people

Karolina Malagocka
Senior Marketing Manager
"At F-Secure we see the value of each and every person"
Robert Grześkowiak
Lead Software Engineer
"At F-Secure you won't feel bored. There are opportunities to learn new things every day."
Fairuz Zainor
Malware Analyst
"I joined F-Secure straight after graduating and now, 10 years later, I am still happy to be here."
Ruediger Trost
Pre-Sales Manager
"After more than 11 years, I still go to the office with a smile, even if it is a Monday morning =)"

Great Place to Work

  • Over 1,700 amazing colleagues in nearly 30 offices

  • Possibility to protect the world

  • Work with best of class experts who care

  • Relaxed, open and fun working environment

  • 68+ of nationalities

  • Global with the spirit of a small company

About the company

You can’t design culture!

The F-Secure team is diverse, fluid, fun-loving, and full of energy. It’s our job to preserve that, so we’ve made it our business to help individuals traverse from passion to passion, from specialism to specialism, from the flavor of today to tomorrow’s. We move with their needs, and help them build Pathways, always focusing on the things that make them happy in and beyond of the office.

See yourself here? Bring your best self and apply now.


1988F-Secure established under the name Data Fellows

1992First public hysteria about a computer virus

2002First Antivirus for mobile phones

2004F‑Secure Labs launches first antivirus industry blog

2009F‑Secure’s next step into the cloud

2015F-Secure aims to become the leading European cyber security company

2018MWR InfoSecurity joins F-Secure

Danielle Acott | Hiring Manager

I'm interested
F-Secure Cyber Security Ltd

London
Visit website