Security Engineer Advanced Threat Intelligence – remote

Security Engineer Advanced Threat Intelligence – can be remote

Company

InfoArmor provides industry-leading employee identity protection and advanced threat intelligence that enable its clients to combat an ever-changing cyber threat landscape. Located in Scottsdale, Arizona, we are passionate about our culture and offer team members rewarding opportunities in a fast-growing, dynamic environment.

Description

At InfoArmor, our priority is to maintain the security of our participants.

Facilitating InfoArmor’s threat intelligence collection, aggregation, and maintenance. This person would be responsible for ensuring that responsible source parties produce data on time, ensure automated collection sources are functioning in a meaningful way, and monitor performance of data pool as it grows.

Primary Responsibilities

Overall, the engineer would play a crucial part in ensuring ‘freshness’ and frequency of threat intel data. This includes:

• Forum scrapers
• Break/fix of individual scrapers
• Seeing if a forum is actually active
• Break/fix of TOR and other server network connections
• Honeypot data
• Monitor current Honeypot feed
• Break/fix of collection points (or detailed requests to engineering/devs to address specific identified issues)
• Take requirements/suggestions from customers as distilled by product managers/sales and transform in to actionable development tasks, either carried out by dev team or by the engineer
• Twitter/social feed
• Monitor Gnip usage/optimization of Gnip usage
• Work with relevant dev teams to ensure continued development and optimization of retrieval and storage of tweets/dat

Skills and Experience

Technical skills: Expectation is to be able to navigate the data stores, and identify and make meaningful suggestions for improvements in the code/schema/indexes.

Engineer should be proficient enough in PHP/Python and front-end coding to templates and tailor them as needed

• Basic PHP (2-4 years)
• Medium python (4-6 years)
• Knowledge of relational databases
• Be able to look for and write a query that may cover billions of rows or join across several tables
• Query optimization
• Dumping and moving data from different databases
• Knowledge of no-sql/document store/big data
• Elasticsearch
• Writing queries
• Monitoring cluster health
• General REST api usage
• Twistd framework
• HTML/CSS/JS parsing
• BeautifulSoup or similar is a plus
• Jira ticketing
• Bitbucket/git version control

InfoArmor is an Equal Opportunity Employer

Job Type: Full-time