Senior Threat Research - Malaysia - BlackBerry Inc.

Description

Senior Threat Research & Intelligence Analyst page is loaded

Senior Threat Research & Intelligence Analyst

Worker Sub-Type:

Job Description:

PURPOSE

The role of Threat Research Investigations is to monitor and adapt to the ever-changing threat landscape. As a Senior Threat Research & Intelligence Analyst you will be responsible for collecting, analyzing, and interpreting data to identify and mitigate potential security threats. You will identify and analyze new adversarial tactics, techniques and procedures (TTPs) and apply these findings to proactive use cases. You will be a subject matter expert in analyzing malicious files and be an escalation point for the other members of the team. As the Senior Analyst you will possess and develop strong technical and interpersonal skills and will have the ability to handle high profile research. You will mentor junior analysts and contribute to the development of best practices.

In return for your talent and enthusiasm, we will provide you with an attractive compensation & benefits package. You will have the opportunity to thrive in a dynamic environment, working alongside outstanding colleagues. In short, you bring the talent, and we provide the environment, tools and resources for you to succeed, win big and accelerate your professional growth & development.

KEY RESPONSIBILITIES

In this role you will:

• Provide expert knowledge on a wide range of customer focused investigations, threat assessments, and deep dive reports, often with multiple deadlines.
• Lead efforts in gathering and analyzing data from various sources to identify potential threats in the region. Utilize advanced analytical techniques to understand threat patterns and behaviors.
• Perform reverse engineering (RE), vulnerability research (VR).
• Collaborate with other researchers and engineers developing and maintaining automation scripts and tooling when needed.
• Document deliverables to facilitate knowledge transfer.
• Prepare regular threat intelligence reports for both the internal business and for public consumption.
• Work collaboratively with other teams in the business to prepare in-depth deep dive reports on actors in the current threat landscape.
• Participate in cross team initiatives as a leader and representative of both the Threat Research Investigations team and BlackBerry Threat Research.
• Stay up to date on the latest security/threat analysis techniques and tools; attend applicable training, conferences, and learn new tools as needed.

EDUCATION AND/OR WORK EXPERIENCE

• Seven years minimum related experience in threat intelligence analysis and malware analysis.
• Bachelor's or high level degree preferred; relevant and demonstrable experience can be substituted for educational degree.

CRITICAL SKILLS

• Experience in researching cyber threat and providing actionable intelligence from that research.
• Experience in identifying, investigating and documenting techniques and technology relating to threats and threat actors.
• Knowledge and application of low-level computer fundamentals including operational knowledge of multiple operating systems.
• 7 years minimum of experience programming in x86 Assembly, ARM Assembly, C, C++ or Python.
• Demonstrate advanced skills in query languages such as SQL, SPL, or similar, for extracting and analyzing data from databases and data lakes.
• Work with data lakes to store, process, and analyze large datasets. Ensure efficient data retrieval and high-performance data processing.
• Strong understanding of low-level computer fundamentals, assembly, and processor architecture.
• Experience reverse engineering COTS software, malware, or hardware.
• Proficiency with software version control systems (e.g., Git).
• Proficiency with TCP/IP and networking fundamentals.
• Excellent oral and written communication skills with strong analytical and troubleshooting skills.
• Understanding of virtualization and sandboxing.
• Fluent in both Malay and English (written and oral).

OTHER SKILLS

Ideally, you will have:

• Experience presenting at technical conferences and leading training sessions.
• Experience with data manipulation and analysis in Python and Jupyter Notebooks for creating and sharing documents that contain live code, equations, visualizations, and narrative text.
• Proficiency with IDA Pro, Ghidra, Windbg, Ollydbg, GDB, or equivalent debugger.
• Experience with fuzzing, crash analysis and runtime instrumentation (AFL, Intel PIN, WinDbg, OllyDbg, etc).
• Windows, Linux, Android, iOS kernel experience and development skills.
• Low-level system security / programming (e.g., kernel, driver, hypervisor, secure boot).

#LI-HY1

Scheduled Weekly Hours:

About Us

BlackBerry (NYSE: BB; TSX: BB) is a trusted security software and services company that provides enterprises and governments with the technology they need to secure the Internet of Things. Headquartered in Waterloo, Ontario, the company is unwavering in its commitment to safety, cybersecurity and data privacy, and leads in key areas such as artificial intelligence, endpoint security and management, encryption and embedded systems. You couldn't choose a more exciting time to consider joining us For more information, visit and follow @BlackBerry.

It is the policy of BlackBerry to ensure equal employment opportunity without discrimination or harassment on the basis of race, color, creed, religion, national origin, alienage or citizenship, status, age, sex, sexual orientation, gender identity or expression, marital or domestic/civil partnership status, disability, veteran status, genetic information, or any other basis protected by law.

EEO Minorities/Females/Protected Veteran/Disabled

BlackBerry strives to create an accessible and inclusive application and selection process and is committed to working with and providing reasonable accommodation to job applicants who may require provisions to participate in the selection process. Should you require an accommodation, please contact or contact our HR department by calling We will reply to your request as soon as possible.