Principal Security Researcher – Threat Intelligence – Secureworks – London- – DELL – London


# Principal Security Researcher – Threat Intelligence
UK Wide Remote
Secureworks® (NASDAQ: SCWX) is a technology-driven cybersecurity leader that
protects organizations in the digitally connected world. Built on proprietary
technologies and world-class threat intelligence- our applications and
solutions help prevent- detect- and respond to cyber threats. Red Cloak™
software brings advanced threat analytics to thousands of customers- and the
Secureworks Counter Threat Platform™ processes over 300B threat events per
day. We understand complex security environments and are passionate about
simplifying security with Defense in Concert™ so that security becomes a
business enabler. More than 4-000 customers across over 50 countries ar

protected by Secureworks- benefit from our network effect and are Collectivel

Smarter. Exponentially Safer.™

We enjoy competitive compensation and benefits packages- and reward an

recognize our employees for exceptional results. A constant focus on continued
learning and growth keeps our team members engaged and excited about |what`s
next.| We offer flexible work options when available- and emphasize the
importance of work-life balance. We know that when our people are rewarded-
recognized and rejuvenated- we win as a team.

## Role Overview

The successful candidate must be a strong leader in the security field with
proven technical skills and experience researching- responding to and
defending against advanced threat actors. As a member of a highly trained
security research team – The Counter Threat Unit (CTU™) – the person will
provide senior technical leadership for client-focused projects- generate
high-confidence threat intelligence and tailor additional research for
insights and contextual intelligence relevant to threats of specific interest
to our client.

They will also assist in the ingestion- sanitization- and optimization of the
Secureworks Threat Intelligence feeds- products and services on behalf of the
client. In addition- they will coordinate reach back access to Secureworks CTU
tools and researchers for enrichment regarding relevant threats-
vulnerabilities and advisories.

## Role Responsibilities:

Interact with internal and external customers to understand specific threat context for focused threat research
Identify and lead performance of proactive all-source research to identify and characterize new threats- vulnerabilities- and risks to customer security context
Use threat research to develop actionable intelligence to drive customer protection
Influence client security through publication and presentation of new and novel security research
Provide input into strategic direction of organization and services in areas without precedent
Provide expert advice to security researchers and customers on security strategy- policies- and procedures
Work independently or with colleagues to analyse- classify and document malware and malicious files
Occasional intelligence collection via the application of forensic techniques to analysis static disks or memory images
Identify network and host based artefacts suitable for countermeasure creation across a range of host- network and cloud based security controls.
Analyse Secureworks telemetry and third party data to identify and automate patterns associated with specific threat group behaviours with a focus on protective countermeasure development and new intelligence collection
Provide intelligence analysis support and expertise to high priority incident response engagements

## Requirements:

6+ years experience researching- responding to and defending against advanced threat actors
Prior experience with a threat research platform such as Maltego- Palantir or Labyrinth.
Prior experience with developing yara based classification rules
Self-driven- proactive- hardworking team-player with an inquisitive and creative mindset
Ability to juggle multiple competing priorities and work to deadlines
Must be eligible to work in the UK

### Responsibilities include- but are not limited to- the following:

Practice secure operational tradecraft when conducting research in potentially hostile environments
Conduct original- novel- research to identify new threats and/or new means of identifying and tracking threats.
Perform proactive all-source research to identify and characterize new threats- vulnerabilities- and risks based on customer security context;
Identify current and emerging cyber threat and trends including technical information as well as geopolitical and transnational issues/events surrounding designated thematic areas.
Maintain expert knowledge of threat group tools- tactics and procedures within a designated thematic area
Collaborate with teams across the Counter Threat Unit and wider Secureworks organisation to share knowledge and identify opportunities for collaborative research
Participate in regular threat focus meetings with CTU and external groups
Identify- evaluate- and catalog sources of information security-related threat intelligence
Produce actionable intelligence information for delivery to colleagues and customers in the form of technical reports- briefings- and data feeds;
Work with development and engineering resources to drive improvements to the CTU Threat Intelligence Management System
Serve as Subject Matter Expert for threat intelligence activities to other groups within the CTU and the company at large
Develop documentation and other teaching products on intelligence data sets and investigative processes

Why work with us?

Life at Secureworks means collaborating with dedicated professionals with a
passion for technology. When we see something that could be improved- we get
to work inventing the solution. Our people demonstrate our winning culture
through positive and meaningful relationships. We invest in our people and
offer a series of programs that enables them to pursue a career that fulfils
their potential. Our team members` health and wellness is our priority as well
as rewarding them for their hard work.

Secureworks is part of the Dell Technologies family of brands. If you require
any assistance in applying for an open position or have any specific
requirements to attend an interview- please contact

We are a Disability Confident Committed Employer and aim to ensure our
recruitment process is inclusive and accessible. As members of the disability
confident scheme- we guarantee to interview all disabled applicants who meet
the minimum criteria for the vacancies and ensure our recruitment process is
inclusive and accessible.

Secureworks- a Dell Technologies company- is committed to the principle of
equal employment opportunity for all employees and to providing employees with
a work environment free of discrimination and harassment. All employment
decisions at Secureworks are based on business needs- job requirements and
individual qualifications- without regard to race- colour- religion or belief-
national- social or ethnic origin- sex (including pregnancy)- age- physical-
mental or sensory disability- HIV status- sexual orientation- gender identity
and/or expression- marital- civil union or domestic partnership status- past
or present military service- family medical history or genetic information-
family or parental status- or any other status protected by the laws or
regulations in the locations where we operate. Secureworks will not tolerate
discrimination or harassment based on any of these characteristics.


Job Family: Secureworks Remote Job ID: R027922