Security Researcher – Threat Defence Unit

Insight
Assess | Advise | Enhance
Evolve
Engineer | Integrate | Operate
Respond
Respond | Hunt | Recover
Extend
People | Skills | Resources

Job ID: 001607TXGSRTDU

Region: Asia

Location: Taichung, Taiwan

Salary: Competitive

Apply

Logic Bounce is an independent research-driven and insight-led security consultancy founded in 2013 with offices in Europe, Asia and North America. In a rapidly changing technology landscape, innovation is essential and we believe passionately that the surest way to run out of new ideas is to hold too tightly onto old ones. In an era of digital disruption and transformation, cybersecurity is the essential component that ensures that companies have the confidence to implement digital processes and technologies to drive innovation and growth. We offer a complete portfolio of services to help identify threats and risks, define strategy, deploy the right technologies, develop capabilities and ensure operational readiness to enable business through security. We have the ability to address the needs at a strategic program level, at the operational project level and at all levels in between.

Role Overview

The Threat Defence Unit (TDU) within Logic Bounce is a group of elite security experts dedicated to identifying, analysing, and developing countermeasures to the constant flow of threats and vulnerabilities. Our mission is to protect and support our clients during complex incident response engagements, and drive innovation to enhance Logic Bounce’s capabilities to protect and resist, detect and contain and response and adapt to threats.

Contribute to a security research team that helps organisations identify and act to defend against information security threats. As a Security Researcher within our Threat Defence Unit research team, you will be an expert practitioner in emerging threat research working with internal and external stakeholders.

You will both mentor and learn across a variety of aspects of the challenging security domain while providing value to our clients. You will apply your expertise to make a difference every day.

You will be responsible for researching and communicating intelligence about emerging threats, providing threat intelligence and malware analysis support to our clients, and working to make the people around you better able to execute their missions to effectively compete with the adversary.

Role Responsibilities

  • Perform Technical and Security Compliance Assessments and other client work related to our professional services offerings
  • Create and recommend remediation for components of security policies, procedures, processes, and standards
  • Provide guidance and recommendations for technical security controls
  • Provide specific recommendations for business or technical issues
  • Create detailed, professional documentation to be delivered to customers both in written and verbal formats
  • Work on multiple projects concurrently, manage time effectively, and require minimal supervision in the execution of projects

Logic Bounce expects its employees to understand and apply commonly known security practices and possess a working knowledge of applicable industry controls such as NIST 800-53. Employees will be expected to acknowledge their security responsibilities in writing prior to gaining access to company systems. Employees will be required to maintain a working knowledge of local security policies and execute general controls as assigned.

Qualifications

  • Extensive professional experience in systems administration, systems engineering, software development, and/or TCP/IP network administration
  • Extensive experience with a variety of commercial security-related contexts, including threat research, intelligence analysis, link analysis, vulnerability analysis, network and host security tools, incident response, digital forensics, malware analysis, cloud computing, virtualisation, or mobile security
  • Experience of software development experience to include scripting-level languages (Perl, Python, Javascript, etc.) with fluency in at least two high-level programming languages such as C/C++, Java, or Visual Basic
  • Experience of malware analysis experience to include run-time analysis and reverse engineering to include fluency in x86 assembly language on 32 and 64 bit x86 platforms
  • Technical knowledge of fundamental internet infrastructure and application layer protocols to include TCP, UDP, ICMP, DNS, HTTP(S), SMTP, etc.
  • Ability to identify, research, characterise, and authoritatively communicate new emerging security threats across the security spectrum to include publication, presentation, and defining appropriate countermeasures
  • Demonstrated and recognised expertise in at least one aspect of information security, to include significant publication and/or presentation of new or novel research topic to public forum, conference, or media outlet
  • Demonstrated track record of identifying and pursuing strategic and complex areas of security research in collaboration with internal and external stakeholders at all levels, to include defining appropriate policies, practices, and countermeasures
  • CISSP, GIAC, or SSCP certification preferred
  • Undergraduate degree in Information Security, Computer Science, or other applicable relevant experience; or Graduate degree in Information Security, Computer Science, or other applicable field or relevant experience; or relevant combination of education and work experience
  • Ability to communicate and present complex technical information clearly and effectively to internal and client stakeholders in both written and verbal form

Logic Bounce is committed to the principle of equal employment opportunities for all employees and to provide employees with a work environment free of discrimination and harassment. All employment decisions at Logic Bounce are based on business needs, job requirements and individual qualifications, without regard to race, colour, religion or belief, national, social or ethnic origin, sex, age physical, mental or sensory disability, sexual orientation, gender identity and/or expression, martial, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status or any other status protected by the laws or regulations in the locations where we operate. Logic Bounce will not tolerate discrimination or harassment based on any of these characteristics. Logic Bounce encourages applicants of all ages.