Startup Careers

Be a part of our family by contributing to our portfolio companies’ innovation and success. Browse open positions below with Intel Capital portfolio companies.

Threat Intelligence Lead at Vectra AI
North America

Vectra’s Threat Labs represents the core security knowledge and research capability within the company – tasked with powering our leading-edge technologies and aiding customers. As a member of the Vectra Threat Labs team, you will be part of a highly experienced organization and respected authority on security threats and attack techniques.

Serving in the role of Threat Intelligence Lead, you will have a direct impact in delivering value to our customers through our portfolio of products by building and leading a team responsible for analyzing network and detection metadata across our customer base, identifying and labeling clusters of observed activities, researching and identifying attackers in the wild, and helping to shape the overall product direction. Some of the specific responsibilities include:

  • Identifying common detection types and external entities that can be enriched with subject matter expertise labels and notes to assist customers in understanding detections
  • Hunt for active threats within network metadata
  • Research APT campaigns and investigate their presence within our customer base
  • Shape and help build the overall development and build-out of a threat intelligence capability within Vectra
  • Identify requirements for tooling (custom and off the shelf) to support the Threat Intelligence team’s overall mission; developing internal tools where necessary and coordinating with Product Management and Engineering to integrate the necessary capabilities into the product

Vectra offers the opportunity to be on the leading edge of cyber security – helping us grow a world-renowned security research organization. As the threat intelligence analyst responsible for developing and leading the threat intelligence capability at Vectra, you will be an integral part of our success.

As part of the broader Security Research team, you will work alongside and interact with our Security Researchers, Data Scientists, and Engineering team and are expected to research new security topics, engage in bug-hunts, and contribute to the community in a way that helps grow both your personal and company brands.

 

What You Will Do [Responsibilities]

  • Analyze data shared by customers to:
    • Identify, label, and annotate common benign detections
    • Identify, label, and annotate common known external entities
    • Identify, label, and annotate likely attacks within customer environments
  • Research new threats and attacker campaigns
  • Collaborate across Vectra to identify detection mechanisms using a set of provided tools within our platform (behavioral/complex/time series signatures)
  • Design and develop operational tools in support of automation, efficiency and capabilities development
  • Evaluate and report on the quality of threat intel related lists (Sinkholes, CDNs, etc.)
  • Pursue security research topics that contribute to the knowledge and enumeration of new threats
  • Provide an attackers-eye-view to the evidence presented by Vectra products and educate customers to the technical nature of the threat

 

What Will You Need [Requirements]

  • 5+ years direct experience in areas of threat intelligence, security operations, threat hunting, security research, malware analysis, networking/system administration or software development
  • Undergraduate technical degree
  • Knowledgeable in network and application protocols, and traffic analysis (network forensics)
  • Proficiency with network traffic analysis and network forensics tools such as Wireshark and tcpdump
  • Proficiency in big data collection and analysis and related technologies such as Hadoop and Spark
  • Knowledge of corporate security investigation and incident response processes, along with malware detection and mitigation technologies
  • Solid programming skills with scripting languages such as Python
  • Deep working knowledge of networking and network application concepts: TCP/IP, HTTP, TLS, FTP, IRC, RPC, DNS, SMB, Kerberos, etc.
  • Strong problem solving, troubleshooting and analysis skills
  • Excellent written and verbal communication skills
  • Excellent inter-personal and teamwork skills
  • Proactive, hard-working team player with a good sense of humor
  • Self-driven, able to efficiently work remotely without close supervision

 

What Will Help You [Expectations]

  • Professional or academic research in advanced security threats
  • Operational experience in infosec as an incident responder, threat intelligence analyst, threat hunter, administrator, or internal consultant
  • Participation in the broader infosec community with requisite contacts and access to external intelligence sources
  • Understanding the lifecycle and economics of advanced threats