Threat Analyst - Email-Borne Threat - Phishing, Spam, Malware

Proofpoint Inc Sunnyvale , CA 94085

Posted 2 weeks ago

Company Overview

At Proofpoint, we have a passion for protecting people, data, and brands from today's advanced threats and compliance risks. We hire the best people in the business to:

  • Build and enhance our proven security platform

  • Blend innovation and speed in a constantly evolving cloud architecture

  • Analyze new threats and offer deep insight through data-driven intel

  • Collaborate with customers to help solve their toughest security challenges

We are singularly devoted to helping our customers protect what matters most. That's why we're a leader in next- generation cybersecurityand why more than half of the Fortune 100 trust us as a security partner.


We are looking for a highly intelligent, driven person to join a dynamic group of people who are passionate about saving the world from the growing threat of e-mail messaging abuse. And we're competing against a very active, creative, and motivated adversary who was credited as sending over 40 trillion spam messages last year alone! If you're interested in helping us achieve our goal and rid the world of spam, we'd definitely like to speak with you. We offer a challenging environment that fosters creativity and rewards excellence.

Responsibilities include:

  • Member of a creative, enthusiastic, and geographically-distributed team (in a 24/7/365 "follow the sun" model) that is responsible for identifying, parameterizing, and responding quickly to spam attacks levied against some of the world's largest organizations

  • Provide responses and explanations to customers who request assistance through our ticketing system

  • Analyze email messages reported by customers in order to determine correct classification (spam, threat, bulk, ham)

  • Be available in an on-call basis to analyze e-mail messages to determine correct classification (spam, threat, bulk, ham)

  • Perform deep analyses of spam message headers & structures to identify novel spam features, and design regular-expression (regex) based rules to detect those features

  • Participate in attack post-mortems to improve the team's response to threats

  • Provide responses and explanations to customers in a positive, professional manner

  • Analyze misclassified messages (spam and legitimate) and make updates to spam definitions to correct their classifications.

  • Ad-hoc development of tools as necessary to aid/streamline analysis activities

  • Help us define the landscape, prevalence, and evolution of messaging abuse, threats, and attacks by participating in future requirements definition discussions of our products


  • Familiarity with Unix environments and comfort with a range of Unix command line tools for manipulating and extracting content from text files

  • Strong written and verbal communication skills, including the ability to convey highly technical information in an accessible manner

  • Experience with Perl, especially advanced regular expressions and Unix command line invocations

  • General familiarity with how mail delivery works, including SMTP

  • Willingness to play an important technical role that does NOT primarily involve development

  • General curiosity about the headers and structure of email messages

  • Demonstrated analytical and creative problem-solving abilities

  • Willingness to interact with customers (web and occasionally phone-based support) to help resolve their issues

  • Ability to work independently yet fully integrate with worldwide, remote teams

  • Can-do attitude with a focus on problem solving, product quality, and a strong desire to get the job done

  • Requirements/Education and/or Equivalent Experience (including technical and non-technical capabilities)

  • BSCS or equivalent, or equivalent technical experience.

Why Proofpoint

As a customer focused and driven-to-win organization with leading edge products, there are many exciting reasons to join the Proofpoint team. We believe in hiring the best the brightest and cultivating a culture of collaboration and appreciation. As we continue to grow and expand globally, we understand that hiring the right people and treating them well is key to our success! We are a multi-national company with locations in 10 countries, with each location contributing to Proofpoint's amazing culture!


See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Paranoids Cyber Threat Investigator


Posted 2 days ago

VIEW JOBS 10/14/2018 12:00:00 AM 2019-01-12T00:00 Oath, a subsidiary of Verizon, is a values-led company committed to building brands people love. We reach over one billion people around the world with a dynamic house of media and technology brands. A global leader in digital and mobile, Oath is shaping the future of media. When you impact millions of people every day, you become a large target for adversaries of all types within all layers of the stack. Our job is to keep our users safe and make Oath one of the safest places on the Internet. We are the information security team at Oath; known as "The Paranoids". We protect Oath, its brands, and their users. We ensure that our users are kept safe from targeted attacks and account hijacking. We investigate cyber threats that affects Oath's infrastructure, properties, and worldwide user base and apply innovative legal and technical remedies to mitigate those activities. Responsibilities: You are a dynamic, experienced cyber threat investigator who tackles serious problems at Oath scale. Your interpersonal and communication skills will help insure that stakeholders across the company are represented and their issues are addressed and investigated by the Advanced Threats team. You can adeptly manage multiple technically-demanding cases while achieving results. You are a proven collaborator with others in industry and academia. - Work with internal teams - such as Legal, Mail, PR, Customer Care, the Paranoids, and others - to ensure that any targeted threat issues encountered on Oath properties are identified and escalated to the Advanced Cyber Threats team. * Utilize internal Oath tools, cyber-threat intelligence feeds, and external open-source resources to conduct independent, efficient, and comprehensive investigations. * Collaborate with other Advanced Cyber Threats investigators and other Paranoids teams on emerging issues and incidents. * Deliver results by reducing account hijacking and malware activity on our platforms through targeted, purposeful actions. Minimum Qualifications: * A passion for protecting users and making the Internet a safer place for everyone. * Familiar with the current government-backed (APT) threat landscape and the various actors and groups involved. * Proven track record of investigating large-scale internet abuse issues. * Must possess excellent written communication skills and the proven ability to understand and present complex technical information to both technical and nontechnical audiences. * Comfortable with ambiguity, and a self-starter capable of interfacing with engineering, policy, legal, and product teams. * B.S. in Computer Science or related technical field; higher degrees are a plus. Preferred Qualifications: * 3-5 years experience in information security, forensics, threat intelligence, or counterintelligence. * Intermediate to advanced development or scripting experience in Perl, Python, PHP, or related languages; data storage experience in MySQL, Hadoop, or similar. * Experience in malware analysis and/or reverse engineering a plus. * Eligibility for a US government security clearance. Oath is proud to be an equal opportunity workplace. All qualified applicants will receive consideration for employment without regard to, and will not be discriminated against based on, age, race, gender, color, religion, national origin, sexual orientation, gender identity, veteran status, disability or any other protected category. Oath is dedicated to providing an accessible environment for all candidates during the application process and for employees during their employment. Please let us know if you need a reasonable accommodation to apply for a job or participate in the application process. Currently work for Oath? Please apply on our internal career site. Oath Sunnyvale CA

Threat Analyst - Email-Borne Threat - Phishing, Spam, Malware

Proofpoint Inc